This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/0d854c77-fd8b-425a-bd55-82e1d7faa782/0/3138352e3136392e3132302e302f32332d3234203d3e20383334.roa File: 3138352e3136392e3132302e302f32332d3234203d3e20383334.roa (raw, json) Hash identifier: g0Lo9rLGrvw5TqCf+JwkggNN5/xusHvbCCJ5lO3yKYM= Subject key identifier: 49:C0:35:24:13:68:C7:48:52:0A:76:A1:18:51:B5:F8:BA:CD:B3:BC Certificate issuer: /CN=4b3aca3a7c652a9faf8e4e119bd2f7bf54afde76 Certificate serial: 78ED15EF07B39738B3CDA721A2D29C7D8507CBCD Authority key identifier: 4B:3A:CA:3A:7C:65:2A:9F:AF:8E:4E:11:9B:D2:F7:BF:54:AF:DE:76 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SzrKOnxlKp-vjk4Rm9L3v1Sv3nY.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/0d854c77-fd8b-425a-bd55-82e1d7faa782/0/3138352e3136392e3132302e302f32332d3234203d3e20383334.roa Signing time: Tue 13 Jan 2026 07:08:39 +0000 ROA not before: Tue 13 Jan 2026 07:03:39 +0000 ROA not after: Tue 12 Jan 2027 07:08:39 +0000 asID: 834 IP address blocks: 185.169.120.0/23 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/0d854c77-fd8b-425a-bd55-82e1d7faa782/0/4B3ACA3A7C652A9FAF8E4E119BD2F7BF54AFDE76.crl rsync://rsync.paas.rpki.ripe.net/repository/0d854c77-fd8b-425a-bd55-82e1d7faa782/0/4B3ACA3A7C652A9FAF8E4E119BD2F7BF54AFDE76.mft rsync://rpki.ripe.net/repository/DEFAULT/SzrKOnxlKp-vjk4Rm9L3v1Sv3nY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 18 Jan 2026 17:04:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:ed:15:ef:07:b3:97:38:b3:cd:a7:21:a2:d2:9c:7d:85:07:cb:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4b3aca3a7c652a9faf8e4e119bd2f7bf54afde76 Validity Not Before: Jan 13 07:03:39 2026 GMT Not After : Jan 12 07:08:39 2027 GMT Subject: CN=49C035241368C748520A76A11851B5F8BACDB3BC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:be:69:54:2c:84:64:95:1d:4e:f4:64:3a:ec: 80:0e:f5:d8:8e:15:d8:40:c1:3c:3b:c8:be:e4:55: 39:78:a6:d3:39:12:1e:f2:79:7a:f1:b0:16:c1:48: 87:f5:62:0a:73:dc:91:e8:48:2c:e2:43:b6:ff:f8: fa:17:d7:fb:48:38:50:b0:91:69:85:59:16:d2:d8: 93:5d:90:bf:38:4d:52:5c:f1:c9:5e:6b:bc:20:c7: ba:d0:d2:1f:d2:41:7a:ed:33:78:fe:07:49:d4:52: d3:a5:65:24:0b:fc:81:8a:40:ee:a8:04:62:89:7b: 86:0f:f5:f7:32:e0:37:ba:d9:5f:00:03:12:be:95: b4:66:bb:ef:da:b7:ca:d3:de:20:ae:4a:08:ca:31: 52:8d:b5:33:5d:d0:4f:c4:68:0c:01:3a:75:93:94: 9f:a1:1b:df:76:58:7c:a3:f1:6b:ae:0e:d7:71:9e: e8:f3:d5:27:92:e3:5c:6d:6d:21:61:fc:20:07:d8: 1a:47:33:5f:a9:48:8b:a0:8e:1a:97:74:d9:4e:cd: 7c:63:5a:37:43:a7:a3:db:80:ce:40:61:ef:46:7a: f5:23:f1:57:18:b8:26:db:33:6b:a1:9f:76:dc:d5: c6:61:2a:3a:8e:d6:76:f6:1e:23:f3:11:ac:69:1e: 24:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:C0:35:24:13:68:C7:48:52:0A:76:A1:18:51:B5:F8:BA:CD:B3:BC X509v3 Authority Key Identifier: keyid:4B:3A:CA:3A:7C:65:2A:9F:AF:8E:4E:11:9B:D2:F7:BF:54:AF:DE:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/0d854c77-fd8b-425a-bd55-82e1d7faa782/0/4B3ACA3A7C652A9FAF8E4E119BD2F7BF54AFDE76.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SzrKOnxlKp-vjk4Rm9L3v1Sv3nY.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/0d854c77-fd8b-425a-bd55-82e1d7faa782/0/3138352e3136392e3132302e302f32332d3234203d3e20383334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.169.120.0/23 Signature Algorithm: sha256WithRSAEncryption 67:11:b2:ad:43:93:30:fc:05:54:51:0f:2c:7c:e7:ec:fd:39: a3:17:e0:60:f6:d0:3f:08:92:45:cc:3a:24:bc:7c:1f:dd:d1: b2:d4:fa:4b:25:d0:e9:75:88:d0:ac:8f:d2:eb:05:8c:b9:9a: af:48:98:f8:36:58:40:02:3b:97:6e:cd:11:db:ed:e0:a2:27: fb:76:ce:4d:b5:ef:46:25:b6:61:2d:a6:2f:87:22:cb:d9:9e: dc:ba:96:7a:c2:2e:02:ed:cf:0e:2b:2b:40:03:6e:ce:59:52: ec:56:e8:cc:da:d9:07:41:23:c4:05:ff:02:ac:b6:c3:20:3b: 7f:09:b9:4b:f8:a0:bf:47:d3:07:d4:e2:1d:ba:0d:d5:71:fc: a3:4a:e6:73:f2:2a:2a:21:d2:95:92:c7:ed:d6:ed:cf:5f:69: 2b:0f:82:8e:60:67:4c:b9:62:40:b7:ce:d7:56:04:d3:43:e9: 3f:03:a5:49:38:1d:2e:2a:6a:ce:fd:2b:ac:61:66:23:4e:98: be:7e:6f:e5:6d:f5:c4:34:2b:de:b5:d1:68:cc:12:13:8c:25: 50:94:b5:b9:e1:81:24:0a:4d:c7:4f:af:a3:18:88:f0:d8:ca: f9:d1:0c:9e:21:2a:66:e3:4e:2b:c1:58:a9:aa:de:7b:eb:14: bc:02:5c:7d -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUeO0V7wezlzizzachotKcfYUHy80wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNGIzYWNhM2E3YzY1MmE5ZmFmOGU0ZTExOWJkMmY3YmY1 NGFmZGU3NjAeFw0yNjAxMTMwNzAzMzlaFw0yNzAxMTIwNzA4MzlaMDMxMTAvBgNV BAMTKDQ5QzAzNTI0MTM2OEM3NDg1MjBBNzZBMTE4NTFCNUY4QkFDREIzQkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHvmlULIRklR1O9GQ67IAO9diO FdhAwTw7yL7kVTl4ptM5Eh7yeXrxsBbBSIf1Ygpz3JHoSCziQ7b/+PoX1/tIOFCw kWmFWRbS2JNdkL84TVJc8clea7wgx7rQ0h/SQXrtM3j+B0nUUtOlZSQL/IGKQO6o BGKJe4YP9fcy4De62V8AAxK+lbRmu+/at8rT3iCuSgjKMVKNtTNd0E/EaAwBOnWT lJ+hG992WHyj8WuuDtdxnujz1SeS41xtbSFh/CAH2BpHM1+pSIugjhqXdNlOzXxj WjdDp6PbgM5AYe9GevUj8VcYuCbbM2uhn3bc1cZhKjqO1nb2HiPzEaxpHiTlAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUScA1JBNox0hSCnahGFG1+LrNs7wwHwYDVR0j BBgwFoAUSzrKOnxlKp+vjk4Rm9L3v1Sv3nYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMGQ4NTRjNzctZmQ4Yi00MjVhLWJkNTUtODJlMWQ3ZmFh NzgyLzAvNEIzQUNBM0E3QzY1MkE5RkFGOEU0RTExOUJEMkY3QkY1NEFGREU3Ni5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1N6cktPbnhsS3AtdmprNFJtOUwzdjFT djNuWS5jZXIwgasGCCsGAQUFBwELBIGeMIGbMIGYBggrBgEFBQcwC4aBi3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMGQ4NTRjNzct ZmQ4Yi00MjVhLWJkNTUtODJlMWQ3ZmFhNzgyLzAvMzEzODM1MmUzMTM2MzkyZTMx MzIzMDJlMzAyZjMyMzMyZDMyMzQyMDNkM2UyMDM4MzMzNC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAbmp eDANBgkqhkiG9w0BAQsFAAOCAQEAZxGyrUOTMPwFVFEPLHzn7P05oxfgYPbQPwiS Rcw6JLx8H93RstT6SyXQ6XWI0KyP0usFjLmar0iY+DZYQAI7l27NEdvt4KIn+3bO TbXvRiW2YS2mL4ciy9me3LqWesIuAu3PDisrQANuzllS7FbozNrZB0EjxAX/Aqy2 wyA7fwm5S/igv0fTB9TiHboN1XH8o0rmc/IqKiHSlZLH7dbtz19pKw+CjmBnTLli QLfO11YE00PpPwOlSTgdLipqzv0rrGFmI06Yvn5v5W31xDQr3rXRaMwSE4wlUJS1 ueGBJApNx0+voxiI8NjK+dEMniEqZuNOK8FYqaree+sUvAJcfQ== -----END CERTIFICATE-----Generated at Sun Jan 18 06:40:31 2026 by rpki-client