This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/8c0aa8-ad94-47a5-8eee-ef1591afaa86/1/PuYckfTPaEQN4beiQXX7upuOr3I.roa File: PuYckfTPaEQN4beiQXX7upuOr3I.roa (raw, json) Hash identifier: sBCyR1KSqyGnMo+n9mb4woR1xziuhqzF6ro+c/USxkw= Subject key identifier: 3E:E6:1C:91:F4:CF:68:44:0D:E1:B7:A2:41:75:FB:BA:9B:8E:AF:72 Certificate issuer: /CN=179eb87bdc32793dbfed184a6ffbc14ed15d32a4 Certificate serial: 019B797E978AC63AA2638CAAB598A4FF9753 Authority key identifier: 17:9E:B8:7B:DC:32:79:3D:BF:ED:18:4A:6F:FB:C1:4E:D1:5D:32:A4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F564e9wyeT2_7RhKb_vBTtFdMqQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/8c0aa8-ad94-47a5-8eee-ef1591afaa86/1/PuYckfTPaEQN4beiQXX7upuOr3I.roa Signing time: Thu 01 Jan 2026 12:18:18 +0000 ROA not before: Thu 01 Jan 2026 12:18:18 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 60273 IP address blocks: 81.25.32.0/21 maxlen: 21 81.25.40.0/21 maxlen: 21 91.187.0.0/20 maxlen: 20 91.187.16.0/20 maxlen: 20 109.232.112.0/22 maxlen: 22 109.232.116.0/22 maxlen: 22 185.10.80.0/24 maxlen: 24 185.10.81.0/24 maxlen: 24 185.10.82.0/24 maxlen: 24 185.10.83.0/24 maxlen: 24 185.50.0.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ae/8c0aa8-ad94-47a5-8eee-ef1591afaa86/1/F564e9wyeT2_7RhKb_vBTtFdMqQ.crl rsync://rpki.ripe.net/repository/DEFAULT/ae/8c0aa8-ad94-47a5-8eee-ef1591afaa86/1/F564e9wyeT2_7RhKb_vBTtFdMqQ.mft rsync://rpki.ripe.net/repository/DEFAULT/F564e9wyeT2_7RhKb_vBTtFdMqQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 21:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7e:97:8a:c6:3a:a2:63:8c:aa:b5:98:a4:ff:97:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=179eb87bdc32793dbfed184a6ffbc14ed15d32a4 Validity Not Before: Jan 1 12:18:18 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=3ee61c91f4cf68440de1b7a24175fbba9b8eaf72 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:be:77:16:89:77:40:5e:89:44:f5:8d:12:9f: a6:b3:dd:66:36:c6:10:e4:e8:ec:27:89:6e:18:a2: 07:f1:7b:ee:3b:d5:21:03:9a:16:e8:da:c9:77:4e: ff:e2:6b:79:1f:ed:a4:7a:e0:6a:e3:a0:a9:40:95: fb:a6:10:bd:57:f7:5f:98:27:1c:34:6a:bc:01:7a: 49:fa:41:bf:94:4e:9d:ce:de:7e:da:fb:ec:e6:a1: fb:39:b1:27:ea:7c:6d:7f:3a:00:71:f9:9c:5a:8d: bf:19:97:0d:60:6d:bb:77:06:1b:2f:02:9c:5a:c4: 58:8d:ca:86:4a:e5:27:54:a4:4e:54:ee:0e:3d:dd: 2c:a7:d3:8f:80:5f:ed:b0:83:a2:2a:af:32:9a:11: 1a:3a:dd:19:02:25:a8:af:a0:4c:e7:14:9c:7d:ea: 40:93:24:2b:83:dc:70:8b:c3:c8:fc:66:34:2e:3f: 71:6c:85:d7:8d:90:02:ce:43:0e:bb:5f:61:7e:86: e8:a8:de:5f:ba:1e:c6:94:e0:83:21:2f:53:5c:fb: 23:2b:bb:04:83:1f:65:8b:a2:de:f5:04:fc:80:a6: 85:2c:a2:fa:c0:6d:9b:ec:e7:9b:26:2f:cf:42:8c: 0b:24:a7:a5:df:4b:fe:98:5f:a5:5e:b3:2d:86:cb: cd:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:E6:1C:91:F4:CF:68:44:0D:E1:B7:A2:41:75:FB:BA:9B:8E:AF:72 X509v3 Authority Key Identifier: keyid:17:9E:B8:7B:DC:32:79:3D:BF:ED:18:4A:6F:FB:C1:4E:D1:5D:32:A4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F564e9wyeT2_7RhKb_vBTtFdMqQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/8c0aa8-ad94-47a5-8eee-ef1591afaa86/1/PuYckfTPaEQN4beiQXX7upuOr3I.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/8c0aa8-ad94-47a5-8eee-ef1591afaa86/1/F564e9wyeT2_7RhKb_vBTtFdMqQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 81.25.32.0/20 91.187.0.0/19 109.232.112.0/21 185.10.80.0/22 185.50.0.0/22 Signature Algorithm: sha256WithRSAEncryption 22:91:13:25:f2:47:9d:78:2c:a6:36:af:1a:ce:da:41:5c:7b: 07:c6:1f:6b:13:df:8f:12:20:81:1a:d0:79:0c:4a:e0:73:0d: 1d:4c:f2:20:cd:ee:e3:a4:6f:50:0d:7f:7b:ab:0d:f3:c7:fd: 0e:35:9a:8f:26:0b:03:a7:27:ef:7c:61:7f:bf:13:c0:b6:86: 4d:82:a0:ac:c6:d2:b8:4e:70:5c:81:4b:75:52:95:02:64:16: 39:e6:c7:27:9d:ce:a6:72:aa:93:ed:fe:c4:7f:85:ba:7c:60: 51:66:9d:3c:a8:da:90:0f:d8:6b:58:f6:a2:81:09:eb:2e:29: bb:52:e4:58:4b:46:25:72:d8:f6:92:0e:5f:38:3a:ae:19:9a: a1:67:4b:70:80:cc:60:d5:12:80:c0:db:74:2b:4b:01:d4:9c: 69:d3:fe:f1:8a:de:56:01:5e:ed:5b:a7:21:0a:b5:1a:2a:97: 9f:66:b0:a2:1c:b4:99:ac:52:15:b8:c7:a6:1c:d4:fd:e0:35: 83:59:1f:72:a3:0f:2f:da:e0:9f:4e:aa:d0:1c:ef:d6:dd:cf: 6a:cb:20:7f:85:6d:8f:dd:c1:8e:1d:02:b6:85:8e:c0:8e:4e: 8f:16:82:b6:17:07:68:ac:17:08:6a:3a:fd:7e:2e:1e:7d:b1: 52:9a:75:f6 -----BEGIN CERTIFICATE----- MIIFFTCCA/2gAwIBAgISAZt5fpeKxjqiY4yqtZik/5dTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDE3OWViODdiZGMzMjc5M2RiZmVkMTg0YTZmZmJjMTRlZDE1 ZDMyYTQwHhcNMjYwMTAxMTIxODE4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzZWU2MWM5MWY0Y2Y2ODQ0MGRlMWI3YTI0MTc1ZmJiYTliOGVhZjcyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApb53Fol3QF6JRPWNEp+ms91mNsYQ 5OjsJ4luGKIH8XvuO9UhA5oW6NrJd07/4mt5H+2keuBq46CpQJX7phC9V/dfmCcc NGq8AXpJ+kG/lE6dzt5+2vvs5qH7ObEn6nxtfzoAcfmcWo2/GZcNYG27dwYbLwKc WsRYjcqGSuUnVKROVO4OPd0sp9OPgF/tsIOiKq8ymhEaOt0ZAiWor6BM5xScfepA kyQrg9xwi8PI/GY0Lj9xbIXXjZACzkMOu19hfoboqN5fuh7GlOCDIS9TXPsjK7sE gx9li6Le9QT8gKaFLKL6wG2b7OebJi/PQowLJKel30v+mF+lXrMthsvNTQIDAQAB o4ICITCCAh0wHQYDVR0OBBYEFD7mHJH0z2hEDeG3okF1+7qbjq9yMB8GA1UdIwQY MBaAFBeeuHvcMnk9v+0YSm/7wU7RXTKkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRjU2NGU5d3llVDJfN1JoS2JfdkJUdEZkTXFRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZS84YzBhYTgtYWQ5NC00N2E1LThlZWUt ZWYxNTkxYWZhYTg2LzEvUHVZY2tmVFBhRVFONGJlaVFYWDd1cHVPcjNJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hZS84YzBhYTgtYWQ5NC00N2E1LThlZWUtZWYxNTkxYWZhYTg2 LzEvRjU2NGU5d3llVDJfN1JoS2JfdkJUdEZkTXFRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDcGCCsGAQUFBwEHAQH/BCgwJjAkBAIAATAeAwQEURkgAwQF W7sAAwQDbehwAwQCuQpQAwQCuTIAMA0GCSqGSIb3DQEBCwUAA4IBAQAikRMl8ked eCymNq8aztpBXHsHxh9rE9+PEiCBGtB5DErgcw0dTPIgze7jpG9QDX97qw3zx/0O NZqPJgsDpyfvfGF/vxPAtoZNgqCsxtK4TnBcgUt1UpUCZBY55scnnc6mcqqT7f7E f4W6fGBRZp08qNqQD9hrWPaigQnrLim7UuRYS0Ylctj2kg5fODquGZqhZ0twgMxg 1RKAwNt0K0sB1Jxp0/7xit5WAV7tW6chCrUaKpefZrCiHLSZrFIVuMemHNT94DWD WR9yow8v2uCfTqrQHO/W3c9qyyB/hW2P3cGOHQK2hY7Ajk6PFoK2FwdorBcIajr9 fi4efbFSmnX2 -----END CERTIFICATE-----Generated at Sat Jan 3 06:22:17 2026 by rpki-client