This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/0cc08737-9267-402a-99d4-7aaafea444ed/0/3130392e3233342e3231312e302f32342d3234203d3e203133333335.roa File: 3130392e3233342e3231312e302f32342d3234203d3e203133333335.roa (raw, json) Hash identifier: 3WrBrAOV7SjPMl8BInuI3B0KtzI0JvDAuGMIMq+S9D8= Subject key identifier: 6B:86:C7:7A:34:47:1C:6F:DA:8A:E6:44:68:43:B5:EE:CD:80:0A:DB Certificate issuer: /CN=f768ff6e681858c0ec19f3a93fa1792cd16ceed3 Certificate serial: 6FB1FC4AC1F1A8FB5143E0E7045CEFA633704356 Authority key identifier: F7:68:FF:6E:68:18:58:C0:EC:19:F3:A9:3F:A1:79:2C:D1:6C:EE:D3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/92j_bmgYWMDsGfOpP6F5LNFs7tM.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/0cc08737-9267-402a-99d4-7aaafea444ed/0/3130392e3233342e3231312e302f32342d3234203d3e203133333335.roa Signing time: Tue 13 Jan 2026 10:55:33 +0000 ROA not before: Tue 13 Jan 2026 10:50:33 +0000 ROA not after: Tue 12 Jan 2027 10:55:33 +0000 asID: 13335 IP address blocks: 109.234.211.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/0cc08737-9267-402a-99d4-7aaafea444ed/0/F768FF6E681858C0EC19F3A93FA1792CD16CEED3.crl rsync://rsync.paas.rpki.ripe.net/repository/0cc08737-9267-402a-99d4-7aaafea444ed/0/F768FF6E681858C0EC19F3A93FA1792CD16CEED3.mft rsync://rpki.ripe.net/repository/DEFAULT/92j_bmgYWMDsGfOpP6F5LNFs7tM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 19 Jan 2026 00:04:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:b1:fc:4a:c1:f1:a8:fb:51:43:e0:e7:04:5c:ef:a6:33:70:43:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f768ff6e681858c0ec19f3a93fa1792cd16ceed3 Validity Not Before: Jan 13 10:50:33 2026 GMT Not After : Jan 12 10:55:33 2027 GMT Subject: CN=6B86C77A34471C6FDA8AE6446843B5EECD800ADB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:a2:06:1b:56:5f:68:ec:0b:90:4b:da:7d:8e: 5e:ee:ae:4c:ca:91:9a:8a:38:3b:2d:dd:34:4a:cf: 6a:01:0e:51:eb:83:71:fa:91:2f:61:b2:34:6f:09: 57:08:13:38:92:53:33:2b:03:85:e3:3e:39:cc:70: d1:61:3a:bb:54:17:ae:6b:7e:64:12:64:b2:ad:a2: 51:c0:aa:44:ab:7a:aa:d9:f5:2b:b5:65:1f:bf:e5: c7:cb:17:3c:d5:f6:27:73:91:51:c6:2c:4a:db:0d: 79:6d:39:cb:eb:b6:90:8c:86:14:45:04:ba:0f:49: dc:59:87:db:46:b3:52:c8:d2:f9:49:28:68:7c:2a: 0a:4f:b8:64:0a:bc:20:3c:02:6d:b1:9b:30:f0:74: cd:9f:6a:b7:de:e7:71:16:a9:f9:89:f7:36:94:8c: 07:da:8f:8b:e2:1f:99:62:2f:66:cf:f3:87:42:f0: 59:6d:e5:02:ed:27:7b:f6:59:4e:ec:fe:80:59:84: c1:dd:47:45:03:2e:f2:28:1f:23:96:2f:47:db:b8: 86:53:39:55:dc:f6:2b:ae:09:9f:20:6b:ce:c0:c6: fa:84:3e:e7:fd:1e:dd:83:20:de:5e:31:9b:6e:e4: a0:1b:52:ce:06:61:f7:33:48:b8:92:52:ab:c4:fa: 43:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:86:C7:7A:34:47:1C:6F:DA:8A:E6:44:68:43:B5:EE:CD:80:0A:DB X509v3 Authority Key Identifier: keyid:F7:68:FF:6E:68:18:58:C0:EC:19:F3:A9:3F:A1:79:2C:D1:6C:EE:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/0cc08737-9267-402a-99d4-7aaafea444ed/0/F768FF6E681858C0EC19F3A93FA1792CD16CEED3.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/92j_bmgYWMDsGfOpP6F5LNFs7tM.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/0cc08737-9267-402a-99d4-7aaafea444ed/0/3130392e3233342e3231312e302f32342d3234203d3e203133333335.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 109.234.211.0/24 Signature Algorithm: sha256WithRSAEncryption 64:8c:8a:a3:8f:39:80:cd:3a:07:f4:a3:80:3e:4c:3c:13:25: 56:a3:47:e6:0f:49:c9:03:36:1f:0b:ae:fe:e5:72:e1:f2:3a: 4c:e0:a8:62:f7:e8:77:a9:4e:b4:27:73:84:38:f5:8a:fd:4c: c6:c9:39:92:29:ea:21:13:19:b3:b0:37:3d:52:24:f4:39:73: dd:c0:20:d3:4d:4d:64:25:b6:ff:88:f9:bb:b9:9e:4c:42:05: 93:5a:ea:8c:00:e3:39:82:3f:8e:f0:c0:70:c1:b0:6e:1a:46: e9:49:9b:6b:1f:24:9c:cc:cb:97:3b:c9:6b:a4:db:29:c2:12: 3f:72:5e:b6:c2:e9:5b:da:c7:5a:74:33:b1:32:62:7d:98:59: bb:c7:b2:63:5a:a0:65:40:86:99:2c:58:1e:68:95:95:48:cc: c6:b2:43:c8:e3:c1:37:47:f0:dc:b3:c2:13:0a:c7:b4:61:ad: ac:ee:b3:fa:ad:52:e8:c4:3b:8d:85:8e:57:48:e5:52:aa:35: a4:9a:bf:63:72:7a:61:dd:26:4f:69:77:43:e6:5f:4b:55:fc: 6c:74:6c:cd:7a:22:72:33:59:41:d9:95:05:40:98:21:21:35: a9:a3:ae:26:da:19:be:b2:1c:29:9b:34:a5:a9:77:c7:d9:04: b8:b5:f5:16 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUb7H8SsHxqPtRQ+DnBFzvpjNwQ1YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoZjc2OGZmNmU2ODE4NThjMGVjMTlmM2E5M2ZhMTc5MmNk MTZjZWVkMzAeFw0yNjAxMTMxMDUwMzNaFw0yNzAxMTIxMDU1MzNaMDMxMTAvBgNV BAMTKDZCODZDNzdBMzQ0NzFDNkZEQThBRTY0NDY4NDNCNUVFQ0Q4MDBBREIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJogYbVl9o7AuQS9p9jl7urkzK kZqKODst3TRKz2oBDlHrg3H6kS9hsjRvCVcIEziSUzMrA4XjPjnMcNFhOrtUF65r fmQSZLKtolHAqkSreqrZ9Su1ZR+/5cfLFzzV9idzkVHGLErbDXltOcvrtpCMhhRF BLoPSdxZh9tGs1LI0vlJKGh8KgpPuGQKvCA8Am2xmzDwdM2farfe53EWqfmJ9zaU jAfaj4viH5liL2bP84dC8Flt5QLtJ3v2WU7s/oBZhMHdR0UDLvIoHyOWL0fbuIZT OVXc9iuuCZ8ga87AxvqEPuf9Ht2DIN5eMZtu5KAbUs4GYfczSLiSUqvE+kN9AgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUa4bHejRHHG/aiuZEaEO17s2ACtswHwYDVR0j BBgwFoAU92j/bmgYWMDsGfOpP6F5LNFs7tMwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMGNjMDg3MzctOTI2Ny00MDJhLTk5ZDQtN2FhYWZlYTQ0 NGVkLzAvRjc2OEZGNkU2ODE4NThDMEVDMTlGM0E5M0ZBMTc5MkNEMTZDRUVEMy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzkyal9ibWdZV01Ec0dmT3BQNkY1TE5G czd0TS5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMGNjMDg3Mzct OTI2Ny00MDJhLTk5ZDQtN2FhYWZlYTQ0NGVkLzAvMzEzMDM5MmUzMjMzMzQyZTMy MzEzMTJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzMzMzMzMzUucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABt6tMwDQYJKoZIhvcNAQELBQADggEBAGSMiqOPOYDNOgf0o4A+TDwTJVajR+YP SckDNh8Lrv7lcuHyOkzgqGL36HepTrQnc4Q49Yr9TMbJOZIp6iETGbOwNz1SJPQ5 c93AINNNTWQltv+I+bu5nkxCBZNa6owA4zmCP47wwHDBsG4aRulJm2sfJJzMy5c7 yWuk2ynCEj9yXrbC6Vvax1p0M7EyYn2YWbvHsmNaoGVAhpksWB5olZVIzMayQ8jj wTdH8NyzwhMKx7Rhrazus/qtUujEO42FjldI5VKqNaSav2NyemHdJk9pd0PmX0tV /Gx0bM16InIzWUHZlQVAmCEhNamjribaGb6yHCmbNKWpd8fZBLi19RY= -----END CERTIFICATE-----Generated at Sun Jan 18 11:05:08 2026 by rpki-client