This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/03dd48eb-d136-4f0e-af8a-57a6bdd93a9d/0/3132382e302e35382e302f32332d3234203d3e20323037393133.roa File: 3132382e302e35382e302f32332d3234203d3e20323037393133.roa (raw, json) Hash identifier: evvCNtOVI1fbsGnk0IOmt+MgmV0CYqajp3KnPaRY4pw= Subject key identifier: 9A:FD:74:FF:B7:84:68:7A:C4:FD:45:99:EE:12:94:82:41:B3:75:73 Certificate issuer: /CN=7fea37fdfe29b34173e97f1b637a44ec41acebb8 Certificate serial: 7336768EA81166A95C360D7896AF7F09EB9BB797 Authority key identifier: 7F:EA:37:FD:FE:29:B3:41:73:E9:7F:1B:63:7A:44:EC:41:AC:EB:B8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/f-o3_f4ps0Fz6X8bY3pE7EGs67g.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/03dd48eb-d136-4f0e-af8a-57a6bdd93a9d/0/3132382e302e35382e302f32332d3234203d3e20323037393133.roa Signing time: Wed 28 Jan 2026 13:00:53 +0000 ROA not before: Wed 28 Jan 2026 12:55:53 +0000 ROA not after: Wed 27 Jan 2027 13:00:53 +0000 asID: 207913 IP address blocks: 128.0.58.0/23 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/03dd48eb-d136-4f0e-af8a-57a6bdd93a9d/0/7FEA37FDFE29B34173E97F1B637A44EC41ACEBB8.crl rsync://rsync.paas.rpki.ripe.net/repository/03dd48eb-d136-4f0e-af8a-57a6bdd93a9d/0/7FEA37FDFE29B34173E97F1B637A44EC41ACEBB8.mft rsync://rpki.ripe.net/repository/DEFAULT/f-o3_f4ps0Fz6X8bY3pE7EGs67g.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 07:28:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:36:76:8e:a8:11:66:a9:5c:36:0d:78:96:af:7f:09:eb:9b:b7:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7fea37fdfe29b34173e97f1b637a44ec41acebb8 Validity Not Before: Jan 28 12:55:53 2026 GMT Not After : Jan 27 13:00:53 2027 GMT Subject: CN=9AFD74FFB784687AC4FD4599EE12948241B37573 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:1c:03:cb:f7:1f:7b:89:4c:43:02:cf:36:87: 0f:8b:8e:05:97:4f:a1:98:f7:cf:eb:0e:d0:75:f8: 26:12:da:be:bf:6a:35:70:e6:a0:32:f7:dc:37:70: ca:cf:ed:45:b6:23:29:1f:90:15:75:c1:bb:5f:52: a2:98:49:24:dd:af:57:27:7f:0b:49:30:0e:41:08: cb:e1:6f:69:c1:92:22:02:9a:6e:4f:fe:c2:58:f5: dc:2d:6b:6d:b3:c9:b6:80:e7:7b:39:c3:64:6c:25: 2b:f1:38:42:2f:4f:c0:72:9c:bc:bd:8e:95:11:7d: 6d:8c:20:a9:d0:9f:0e:4b:63:8e:51:62:16:92:85: 89:44:0f:87:07:cc:53:74:54:1b:49:95:88:62:23: 85:38:a3:dd:86:d7:06:ed:76:ad:4e:35:2b:07:aa: 6b:98:e1:8a:3a:f9:b8:33:96:a8:28:26:da:1b:7e: 85:1f:33:04:99:a6:81:e4:74:da:9a:01:ea:fb:69: cc:d1:28:ac:73:8a:6f:b9:91:94:e6:be:38:dd:b5: 84:76:c7:30:47:ac:a4:4d:9c:59:64:d7:f5:96:fa: cd:c8:b7:be:ca:b9:2c:b6:09:74:07:5c:b7:04:60: e5:f4:55:a6:ab:4e:ff:e0:d8:c5:20:f1:49:bd:77: 45:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:FD:74:FF:B7:84:68:7A:C4:FD:45:99:EE:12:94:82:41:B3:75:73 X509v3 Authority Key Identifier: keyid:7F:EA:37:FD:FE:29:B3:41:73:E9:7F:1B:63:7A:44:EC:41:AC:EB:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/03dd48eb-d136-4f0e-af8a-57a6bdd93a9d/0/7FEA37FDFE29B34173E97F1B637A44EC41ACEBB8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/f-o3_f4ps0Fz6X8bY3pE7EGs67g.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/03dd48eb-d136-4f0e-af8a-57a6bdd93a9d/0/3132382e302e35382e302f32332d3234203d3e20323037393133.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 128.0.58.0/23 Signature Algorithm: sha256WithRSAEncryption 8d:af:99:a1:af:f3:a9:16:e7:d2:6d:ab:7a:49:36:6f:fd:3f: 21:8e:f7:7e:f3:21:43:4c:e9:9b:86:81:a2:d2:69:af:61:bf: e8:bb:6f:8b:37:6e:df:7f:28:8e:d1:ac:e1:21:63:4a:72:5a: be:b3:4a:4b:95:33:9a:f0:80:e6:67:4e:dc:e1:49:4b:60:09: 99:29:b7:27:f7:37:06:c7:89:46:00:2f:40:bc:3b:75:01:c0: 48:f8:1d:a2:df:89:7b:97:94:f7:a7:1f:71:f2:c7:00:86:fe: 77:da:2e:c3:10:9b:56:ec:23:ff:b0:00:37:d5:43:47:49:56: 88:43:66:95:78:07:30:de:62:96:46:73:74:64:03:6b:d8:78: 12:0f:36:0e:2d:6e:ec:51:9d:58:d2:c8:3d:57:b9:e9:80:46: 9d:35:a2:cd:a4:e5:b6:c7:24:ad:08:28:d0:d1:39:d2:bd:14: 01:f4:82:b0:4e:c1:f7:5c:67:74:49:64:62:de:27:6b:af:ac: 87:7d:8b:fa:87:50:a6:1b:fd:0f:23:26:aa:1e:b2:1d:4f:2a: b5:be:8d:75:d7:ee:34:4d:5e:b3:f4:8c:6c:ab:34:53:cf:01: 6d:b1:38:77:eb:a1:7f:e6:7e:bd:fd:02:43:8e:27:0f:8b:38: 29:44:2a:08 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUczZ2jqgRZqlcNg14lq9/Ceubt5cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN2ZlYTM3ZmRmZTI5YjM0MTczZTk3ZjFiNjM3YTQ0ZWM0 MWFjZWJiODAeFw0yNjAxMjgxMjU1NTNaFw0yNzAxMjcxMzAwNTNaMDMxMTAvBgNV BAMTKDlBRkQ3NEZGQjc4NDY4N0FDNEZENDU5OUVFMTI5NDgyNDFCMzc1NzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvHAPL9x97iUxDAs82hw+LjgWX T6GY98/rDtB1+CYS2r6/ajVw5qAy99w3cMrP7UW2IykfkBV1wbtfUqKYSSTdr1cn fwtJMA5BCMvhb2nBkiICmm5P/sJY9dwta22zybaA53s5w2RsJSvxOEIvT8BynLy9 jpURfW2MIKnQnw5LY45RYhaShYlED4cHzFN0VBtJlYhiI4U4o92G1wbtdq1ONSsH qmuY4Yo6+bgzlqgoJtobfoUfMwSZpoHkdNqaAer7aczRKKxzim+5kZTmvjjdtYR2 xzBHrKRNnFlk1/WW+s3It77KuSy2CXQHXLcEYOX0VaarTv/g2MUg8Um9d0XhAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUmv10/7eEaHrE/UWZ7hKUgkGzdXMwHwYDVR0j BBgwFoAUf+o3/f4ps0Fz6X8bY3pE7EGs67gwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMDNkZDQ4ZWItZDEzNi00ZjBlLWFmOGEtNTdhNmJkZDkz YTlkLzAvN0ZFQTM3RkRGRTI5QjM0MTczRTk3RjFCNjM3QTQ0RUM0MUFDRUJCOC5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2YtbzNfZjRwczBGejZYOGJZM3BFN0VH czY3Zy5jZXIwgasGCCsGAQUFBwELBIGeMIGbMIGYBggrBgEFBQcwC4aBi3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMDNkZDQ4ZWIt ZDEzNi00ZjBlLWFmOGEtNTdhNmJkZDkzYTlkLzAvMzEzMjM4MmUzMDJlMzUzODJl MzAyZjMyMzMyZDMyMzQyMDNkM2UyMDMyMzAzNzM5MzEzMy5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAYAA OjANBgkqhkiG9w0BAQsFAAOCAQEAja+Zoa/zqRbn0m2rekk2b/0/IY73fvMhQ0zp m4aBotJpr2G/6Ltvizdu338ojtGs4SFjSnJavrNKS5UzmvCA5mdO3OFJS2AJmSm3 J/c3BseJRgAvQLw7dQHASPgdot+Je5eU96cfcfLHAIb+d9ouwxCbVuwj/7AAN9VD R0lWiENmlXgHMN5ilkZzdGQDa9h4Eg82Di1u7FGdWNLIPVe56YBGnTWizaTltsck rQgo0NE50r0UAfSCsE7B91xndElkYt4na6+sh32L+odQphv9DyMmqh6yHU8qtb6N ddfuNE1es/SMbKs0U88BbbE4d+uhf+Z+vf0CQ44nD4s4KUQqCA== -----END CERTIFICATE-----Generated at Mon Feb 9 22:31:43 2026 by rpki-client