This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/0cc08737-9267-402a-99d4-7aaafea444ed/0/3137382e3133322e3139342e302f32342d3234203d3e2033333230.roa File: 3137382e3133322e3139342e302f32342d3234203d3e2033333230.roa (raw, json) Hash identifier: BSTbx9NRftehGX7dsv5BX6onmmpsKJtVOHvBBhUYkJA= Subject key identifier: 3F:F3:83:B6:87:30:9A:04:4D:F4:EB:C0:A8:0E:5F:F3:77:1F:E1:BC Certificate issuer: /CN=f768ff6e681858c0ec19f3a93fa1792cd16ceed3 Certificate serial: 02E3FDFDD0ED242633A5D8F492468D402B385B47 Authority key identifier: F7:68:FF:6E:68:18:58:C0:EC:19:F3:A9:3F:A1:79:2C:D1:6C:EE:D3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/92j_bmgYWMDsGfOpP6F5LNFs7tM.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/0cc08737-9267-402a-99d4-7aaafea444ed/0/3137382e3133322e3139342e302f32342d3234203d3e2033333230.roa Signing time: Sat 27 Dec 2025 13:55:32 +0000 ROA not before: Sat 27 Dec 2025 13:50:32 +0000 ROA not after: Sat 26 Dec 2026 13:55:32 +0000 asID: 3320 IP address blocks: 178.132.194.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/0cc08737-9267-402a-99d4-7aaafea444ed/0/F768FF6E681858C0EC19F3A93FA1792CD16CEED3.crl rsync://rsync.paas.rpki.ripe.net/repository/0cc08737-9267-402a-99d4-7aaafea444ed/0/F768FF6E681858C0EC19F3A93FA1792CD16CEED3.mft rsync://rpki.ripe.net/repository/DEFAULT/92j_bmgYWMDsGfOpP6F5LNFs7tM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 19 Jan 2026 20:01:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:e3:fd:fd:d0:ed:24:26:33:a5:d8:f4:92:46:8d:40:2b:38:5b:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f768ff6e681858c0ec19f3a93fa1792cd16ceed3 Validity Not Before: Dec 27 13:50:32 2025 GMT Not After : Dec 26 13:55:32 2026 GMT Subject: CN=3FF383B687309A044DF4EBC0A80E5FF3771FE1BC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:55:81:c0:fa:f5:f9:eb:53:1c:20:00:b9:fb: 94:35:8e:c0:cb:53:b6:5d:c6:49:0e:c3:59:00:98: 3a:33:8c:61:20:63:53:3b:ef:5a:f2:61:78:10:67: c4:dd:ec:77:27:b9:4a:03:71:40:d0:e3:7e:2b:03: d4:06:62:59:c6:b2:05:e5:cc:0b:53:c4:df:f9:f8: 59:af:07:94:8e:17:96:89:16:57:ab:bf:43:ca:a1: 27:25:8b:23:4b:30:d1:9b:b0:18:b2:76:20:e5:aa: fe:02:67:6f:6b:c8:9c:e4:58:8f:6b:45:b3:af:e0: 99:65:c8:d8:7f:7f:6c:cb:12:75:f4:cd:57:be:c1: 08:72:cd:53:cf:9c:d3:ca:20:5e:5b:f8:92:b0:a4: dd:44:a1:f7:51:1a:b2:cc:0c:bf:86:b7:ce:fc:52: 70:1d:e7:89:6c:1c:3e:a2:3d:29:00:3a:63:1e:22: f8:ec:69:52:77:8d:3b:db:2d:1f:a7:f4:14:4e:16: 55:f8:16:9e:92:19:b0:b2:67:ff:d1:2d:e6:c5:2e: bf:bb:83:40:a7:da:fb:18:fa:41:af:34:da:d1:92: 2c:40:1f:16:09:2d:32:76:3c:44:41:5e:b5:1a:f5: 82:26:4c:4e:66:11:58:20:e2:47:04:a2:8a:6f:6c: 05:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:F3:83:B6:87:30:9A:04:4D:F4:EB:C0:A8:0E:5F:F3:77:1F:E1:BC X509v3 Authority Key Identifier: keyid:F7:68:FF:6E:68:18:58:C0:EC:19:F3:A9:3F:A1:79:2C:D1:6C:EE:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/0cc08737-9267-402a-99d4-7aaafea444ed/0/F768FF6E681858C0EC19F3A93FA1792CD16CEED3.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/92j_bmgYWMDsGfOpP6F5LNFs7tM.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/0cc08737-9267-402a-99d4-7aaafea444ed/0/3137382e3133322e3139342e302f32342d3234203d3e2033333230.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 178.132.194.0/24 Signature Algorithm: sha256WithRSAEncryption a4:a3:22:0a:d7:eb:9c:87:5e:d0:4a:83:ff:0b:2b:4c:a8:3d: b9:2b:1e:d8:4c:8f:5a:b1:9d:8c:cd:c0:6d:12:56:25:ae:1a: bb:77:10:98:30:f0:5b:45:ce:e9:d6:1b:97:5a:2d:55:8a:a1: d2:b3:6d:56:b9:4f:d9:5b:45:73:12:af:96:d5:c3:03:e7:a1: d8:ab:51:52:32:35:a4:e5:23:d5:c7:86:2b:24:45:5c:6f:31: f7:c4:07:91:32:97:e9:54:2b:f7:d8:58:2c:e3:f4:96:0a:47: f3:10:1b:8d:ea:af:3f:9a:13:ac:f9:bc:6d:7d:74:99:0a:09: db:12:cb:03:5e:a9:dc:7a:3c:a4:0a:b3:ab:b9:a1:84:ab:32: 7b:c4:17:9d:03:7f:b3:f6:ab:eb:4b:b7:0d:36:81:ab:cd:8f: ca:74:c4:3b:91:d4:68:f0:c5:dd:27:11:1d:3d:cc:b8:b3:ae: d3:a2:f7:34:c9:b7:63:98:5e:4c:41:e0:7e:6c:f1:ef:15:26: c3:b6:7e:49:33:9e:25:1d:d0:96:37:a1:9b:65:f0:10:58:91: b6:dc:fe:38:14:9e:18:ae:9f:6e:29:78:63:ee:43:28:98:9a: 52:95:49:60:de:fe:c7:39:d4:4b:b7:85:b6:30:a5:f3:6a:61: 28:76:a6:0b -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUAuP9/dDtJCYzpdj0kkaNQCs4W0cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoZjc2OGZmNmU2ODE4NThjMGVjMTlmM2E5M2ZhMTc5MmNk MTZjZWVkMzAeFw0yNTEyMjcxMzUwMzJaFw0yNjEyMjYxMzU1MzJaMDMxMTAvBgNV BAMTKDNGRjM4M0I2ODczMDlBMDQ0REY0RUJDMEE4MEU1RkYzNzcxRkUxQkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjVYHA+vX561McIAC5+5Q1jsDL U7ZdxkkOw1kAmDozjGEgY1M771ryYXgQZ8Td7HcnuUoDcUDQ434rA9QGYlnGsgXl zAtTxN/5+FmvB5SOF5aJFlerv0PKoScliyNLMNGbsBiydiDlqv4CZ29ryJzkWI9r RbOv4JllyNh/f2zLEnX0zVe+wQhyzVPPnNPKIF5b+JKwpN1EofdRGrLMDL+Gt878 UnAd54lsHD6iPSkAOmMeIvjsaVJ3jTvbLR+n9BROFlX4Fp6SGbCyZ//RLebFLr+7 g0Cn2vsY+kGvNNrRkixAHxYJLTJ2PERBXrUa9YImTE5mEVgg4kcEoopvbAUpAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUP/ODtocwmgRN9OvAqA5f83cf4bwwHwYDVR0j BBgwFoAU92j/bmgYWMDsGfOpP6F5LNFs7tMwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMGNjMDg3MzctOTI2Ny00MDJhLTk5ZDQtN2FhYWZlYTQ0 NGVkLzAvRjc2OEZGNkU2ODE4NThDMEVDMTlGM0E5M0ZBMTc5MkNEMTZDRUVEMy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzkyal9ibWdZV01Ec0dmT3BQNkY1TE5G czd0TS5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMGNjMDg3Mzct OTI2Ny00MDJhLTk5ZDQtN2FhYWZlYTQ0NGVkLzAvMzEzNzM4MmUzMTMzMzIyZTMx MzkzNDJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMzMzMzMjMwLnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA soTCMA0GCSqGSIb3DQEBCwUAA4IBAQCkoyIK1+uch17QSoP/CytMqD25Kx7YTI9a sZ2MzcBtElYlrhq7dxCYMPBbRc7p1huXWi1ViqHSs21WuU/ZW0VzEq+W1cMD56HY q1FSMjWk5SPVx4YrJEVcbzH3xAeRMpfpVCv32Fgs4/SWCkfzEBuN6q8/mhOs+bxt fXSZCgnbEssDXqncejykCrOruaGEqzJ7xBedA3+z9qvrS7cNNoGrzY/KdMQ7kdRo 8MXdJxEdPcy4s67Tovc0ybdjmF5MQeB+bPHvFSbDtn5JM54lHdCWN6GbZfAQWJG2 3P44FJ4Yrp9uKXhj7kMomJpSlUlg3v7HOdRLt4W2MKXzamEodqYL -----END CERTIFICATE-----Generated at Mon Jan 19 11:52:09 2026 by rpki-client