This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/0d854c77-fd8b-425a-bd55-82e1d7faa782/0/352e3139392e32382e302f32342d3234203d3e20323033303736.roa File: 352e3139392e32382e302f32342d3234203d3e20323033303736.roa (raw, json) Hash identifier: mCYAH2lEEPfpns9QmzKVL6Ue37eY4WE86+Fyl4fMeAo= Subject key identifier: F9:89:42:B4:DF:C9:43:00:A4:73:BA:4B:3E:7E:DA:29:D2:80:0C:D9 Certificate issuer: /CN=4b3aca3a7c652a9faf8e4e119bd2f7bf54afde76 Certificate serial: 64E0765FBB9E51127CDF4909AB9417C3D94A4F4F Authority key identifier: 4B:3A:CA:3A:7C:65:2A:9F:AF:8E:4E:11:9B:D2:F7:BF:54:AF:DE:76 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SzrKOnxlKp-vjk4Rm9L3v1Sv3nY.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/0d854c77-fd8b-425a-bd55-82e1d7faa782/0/352e3139392e32382e302f32342d3234203d3e20323033303736.roa Signing time: Tue 03 Feb 2026 05:51:35 +0000 ROA not before: Tue 03 Feb 2026 05:46:35 +0000 ROA not after: Tue 02 Feb 2027 05:51:35 +0000 asID: 203076 IP address blocks: 5.199.28.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/0d854c77-fd8b-425a-bd55-82e1d7faa782/0/4B3ACA3A7C652A9FAF8E4E119BD2F7BF54AFDE76.crl rsync://rsync.paas.rpki.ripe.net/repository/0d854c77-fd8b-425a-bd55-82e1d7faa782/0/4B3ACA3A7C652A9FAF8E4E119BD2F7BF54AFDE76.mft rsync://rpki.ripe.net/repository/DEFAULT/SzrKOnxlKp-vjk4Rm9L3v1Sv3nY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:51:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:e0:76:5f:bb:9e:51:12:7c:df:49:09:ab:94:17:c3:d9:4a:4f:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4b3aca3a7c652a9faf8e4e119bd2f7bf54afde76 Validity Not Before: Feb 3 05:46:35 2026 GMT Not After : Feb 2 05:51:35 2027 GMT Subject: CN=F98942B4DFC94300A473BA4B3E7EDA29D2800CD9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:1d:8a:73:0e:7c:da:e3:9c:51:ed:d7:e1:6b: 53:6d:0f:6a:55:4e:e9:99:78:3f:06:db:db:cf:f2: 1f:3f:25:6f:a2:f6:df:fe:a1:bf:0d:2c:19:36:fa: 33:02:f9:2a:16:90:65:ef:c2:76:ee:20:9d:fc:72: 21:01:e1:b6:e3:66:bb:da:08:25:0d:6b:f2:68:f6: c5:00:ee:c7:ac:41:39:f5:d9:bc:59:b4:2e:67:98: 9a:10:5b:76:9b:c8:52:c3:84:e2:3f:cc:04:ee:94: d0:a0:94:5e:e1:28:1f:76:f4:fa:53:6c:fd:9f:04: 6a:b3:68:b1:36:36:9b:1e:db:66:3c:fa:45:7a:a3: 08:92:0c:5d:1a:d1:96:c1:df:ac:f4:9c:e7:ba:83: f5:58:a1:f7:8a:aa:38:52:1f:7a:48:a1:2f:01:d1: 4c:4c:24:7f:7a:50:88:1c:74:66:10:61:5f:53:39: c0:6b:52:3b:36:d0:1d:bc:de:75:de:4d:a4:9d:2d: 98:b1:20:ab:cc:40:71:29:ed:df:e7:f9:e3:74:41: c1:c7:eb:39:ba:8a:57:d7:b2:cc:d6:d1:33:1b:63: 53:3d:f9:f5:31:6d:a2:da:2e:b1:77:f1:d9:42:e1: 22:ee:0a:d6:19:08:db:04:4c:ff:86:ac:b3:fe:4f: 6c:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:89:42:B4:DF:C9:43:00:A4:73:BA:4B:3E:7E:DA:29:D2:80:0C:D9 X509v3 Authority Key Identifier: keyid:4B:3A:CA:3A:7C:65:2A:9F:AF:8E:4E:11:9B:D2:F7:BF:54:AF:DE:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/0d854c77-fd8b-425a-bd55-82e1d7faa782/0/4B3ACA3A7C652A9FAF8E4E119BD2F7BF54AFDE76.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SzrKOnxlKp-vjk4Rm9L3v1Sv3nY.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/0d854c77-fd8b-425a-bd55-82e1d7faa782/0/352e3139392e32382e302f32342d3234203d3e20323033303736.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.199.28.0/24 Signature Algorithm: sha256WithRSAEncryption 2e:09:9c:91:82:30:6d:0d:e1:92:9c:e6:e4:d9:88:ad:6a:bc: ff:58:27:51:01:97:eb:24:7f:25:df:d1:c5:9c:19:b0:60:51: 77:64:0d:2e:a8:22:66:ea:9e:af:c5:6c:d8:f8:a2:ad:6a:6f: 2b:94:e1:13:7c:02:1e:4d:68:b5:df:b1:6e:da:ca:46:b3:7e: db:2a:b4:40:fa:c9:37:5b:74:e5:56:af:2d:16:f8:f9:dd:78: 08:5d:cb:bf:24:81:b8:56:29:97:5c:cd:95:d8:fe:27:23:6c: 04:46:9e:1e:dc:3f:4a:45:7e:2d:85:9c:27:9d:71:2f:b7:a4: a1:f1:05:6e:d5:fc:ef:6f:59:1e:af:37:cc:ab:95:fb:89:63: 3c:9d:f0:49:13:b7:03:65:b8:6d:45:aa:c0:8e:73:c3:81:3d: 34:72:56:9c:0b:4e:d6:87:34:96:20:ce:e1:54:51:b9:1d:4b: c7:d9:4b:f5:2c:21:94:f7:34:d5:87:1f:48:4b:ad:a4:b3:1e: cf:fb:79:7a:09:74:44:43:a0:6b:4d:39:cc:15:04:35:63:38: ee:07:cc:ce:4a:32:d8:e8:79:16:50:00:93:d9:ba:12:b2:85: 3a:ee:af:5f:31:87:f0:02:18:ac:c2:14:b7:7a:b9:f9:03:a1: be:98:a1:e7 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUZOB2X7ueURJ830kJq5QXw9lKT08wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNGIzYWNhM2E3YzY1MmE5ZmFmOGU0ZTExOWJkMmY3YmY1 NGFmZGU3NjAeFw0yNjAyMDMwNTQ2MzVaFw0yNzAyMDIwNTUxMzVaMDMxMTAvBgNV BAMTKEY5ODk0MkI0REZDOTQzMDBBNDczQkE0QjNFN0VEQTI5RDI4MDBDRDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQHYpzDnza45xR7dfha1NtD2pV TumZeD8G29vP8h8/JW+i9t/+ob8NLBk2+jMC+SoWkGXvwnbuIJ38ciEB4bbjZrva CCUNa/Jo9sUA7sesQTn12bxZtC5nmJoQW3abyFLDhOI/zATulNCglF7hKB929PpT bP2fBGqzaLE2Npse22Y8+kV6owiSDF0a0ZbB36z0nOe6g/VYofeKqjhSH3pIoS8B 0UxMJH96UIgcdGYQYV9TOcBrUjs20B283nXeTaSdLZixIKvMQHEp7d/n+eN0QcHH 6zm6ilfXsszW0TMbY1M9+fUxbaLaLrF38dlC4SLuCtYZCNsETP+GrLP+T2zPAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQU+YlCtN/JQwCkc7pLPn7aKdKADNkwHwYDVR0j BBgwFoAUSzrKOnxlKp+vjk4Rm9L3v1Sv3nYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMGQ4NTRjNzctZmQ4Yi00MjVhLWJkNTUtODJlMWQ3ZmFh NzgyLzAvNEIzQUNBM0E3QzY1MkE5RkFGOEU0RTExOUJEMkY3QkY1NEFGREU3Ni5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1N6cktPbnhsS3AtdmprNFJtOUwzdjFT djNuWS5jZXIwgasGCCsGAQUFBwELBIGeMIGbMIGYBggrBgEFBQcwC4aBi3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMGQ4NTRjNzct ZmQ4Yi00MjVhLWJkNTUtODJlMWQ3ZmFhNzgyLzAvMzUyZTMxMzkzOTJlMzIzODJl MzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMyMzAzMzMwMzczNi5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAAXH HDANBgkqhkiG9w0BAQsFAAOCAQEALgmckYIwbQ3hkpzm5NmIrWq8/1gnUQGX6yR/ Jd/RxZwZsGBRd2QNLqgiZuqer8Vs2PiirWpvK5ThE3wCHk1otd+xbtrKRrN+2yq0 QPrJN1t05VavLRb4+d14CF3LvySBuFYpl1zNldj+JyNsBEaeHtw/SkV+LYWcJ51x L7ekofEFbtX8729ZHq83zKuV+4ljPJ3wSRO3A2W4bUWqwI5zw4E9NHJWnAtO1oc0 liDO4VRRuR1Lx9lL9SwhlPc01YcfSEutpLMez/t5egl0REOga005zBUENWM47gfM zkoy2Oh5FlAAk9m6ErKFOu6vXzGH8AIYrMIUt3q5+QOhvpih5w== -----END CERTIFICATE-----Generated at Tue Feb 10 01:04:39 2026 by rpki-client