This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/1/32332e3137352e32342e302f32342d3234203d3e203533383038.roa File: 32332e3137352e32342e302f32342d3234203d3e203533383038.roa (raw, json) Hash identifier: 3g+bm1Ov3KS4q8fCecAmN/EtcwCqqHTyfkZNmIpgPag= Subject key identifier: D9:B0:74:19:39:86:F9:0A:E8:F4:81:7C:10:80:D8:F3:AE:17:C0:4E Certificate issuer: /CN=a22aa82bd609b7b6808e2134a4f8bb6ceef2851441ed7c0fe8 Certificate serial: 21667241E115C624DFE2A195BB286F89CDECE52E Authority key identifier: 65:2C:01:99:E6:56:2F:B6:11:9E:25:92:30:16:98:26:29:C2:10:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/7f33cf59-ae35-41d4-8252-d9bdbaba4210/a22aa82bd609b7b6808e2134a4f8bb6ceef2851441ed7c0fe8.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/1/32332e3137352e32342e302f32342d3234203d3e203533383038.roa Signing time: Sat 17 Jan 2026 21:01:12 +0000 ROA not before: Sat 17 Jan 2026 20:56:12 +0000 ROA not after: Sat 16 Jan 2027 21:01:12 +0000 asID: 53808 IP address blocks: 23.175.24.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/1/652C0199E6562FB6119E25923016982629C2108D.crl rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/1/652C0199E6562FB6119E25923016982629C2108D.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/7f33cf59-ae35-41d4-8252-d9bdbaba4210/a22aa82bd609b7b6808e2134a4f8bb6ceef2851441ed7c0fe8.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/7f33cf59-ae35-41d4-8252-d9bdbaba4210/7f33cf59-ae35-41d4-8252-d9bdbaba4210.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/7f33cf59-ae35-41d4-8252-d9bdbaba4210/7f33cf59-ae35-41d4-8252-d9bdbaba4210.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/7f33cf59-ae35-41d4-8252-d9bdbaba4210.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/746e0111-fafb-430f-b778-d204cfcd99a8.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/746e0111-fafb-430f-b778-d204cfcd99a8.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 19 Jan 2026 11:02:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:66:72:41:e1:15:c6:24:df:e2:a1:95:bb:28:6f:89:cd:ec:e5:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a22aa82bd609b7b6808e2134a4f8bb6ceef2851441ed7c0fe8 Validity Not Before: Jan 17 20:56:12 2026 GMT Not After : Jan 16 21:01:12 2027 GMT Subject: CN=D9B074193986F90AE8F4817C1080D8F3AE17C04E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:6a:a2:a7:03:8c:dd:00:48:01:c4:14:36:b1: bc:e6:45:a3:06:2a:59:0b:e3:29:5a:c9:b2:c2:9a: b5:41:78:4b:cc:8f:a1:a1:ab:99:7d:25:95:0c:08: d2:0b:99:0f:67:d6:ac:ae:84:4d:f9:07:0d:32:4c: d9:0f:4d:03:40:fa:6c:ab:c9:5c:3a:79:0b:a6:8c: e4:e3:96:cb:82:41:ae:fe:82:53:e2:70:3f:f4:27: c9:62:f3:01:21:29:e7:e7:d2:66:e7:85:af:53:a8: 4f:60:54:c1:b5:54:6c:46:51:de:aa:f1:de:7d:58: d4:1a:16:3d:92:40:6b:c0:d6:8d:fa:d8:61:53:b7: ce:d4:bd:82:01:9e:68:da:97:ad:8f:c1:7e:f9:a9: 8b:de:6f:92:8f:c6:16:15:84:8f:30:56:34:28:63: 9a:f0:cb:b4:c7:cf:6f:fc:74:21:f4:cc:b9:27:fc: 2a:0a:52:18:d2:a5:da:1a:ee:0c:7b:00:e1:1a:f1: 41:21:44:09:f6:c2:ce:d9:8a:6d:e2:d2:3c:ae:9b: f8:f4:c3:f9:b1:ec:01:b2:f9:41:d2:e3:31:af:81: a7:2f:97:90:a6:8c:f2:9b:52:db:fa:8e:98:4e:91: 11:d1:f8:f0:64:64:e3:cb:2a:da:d0:11:97:09:a6: f2:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:B0:74:19:39:86:F9:0A:E8:F4:81:7C:10:80:D8:F3:AE:17:C0:4E X509v3 Authority Key Identifier: keyid:65:2C:01:99:E6:56:2F:B6:11:9E:25:92:30:16:98:26:29:C2:10:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/1/652C0199E6562FB6119E25923016982629C2108D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/7f33cf59-ae35-41d4-8252-d9bdbaba4210/a22aa82bd609b7b6808e2134a4f8bb6ceef2851441ed7c0fe8.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/1/32332e3137352e32342e302f32342d3234203d3e203533383038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.175.24.0/24 Signature Algorithm: sha256WithRSAEncryption 08:e8:43:68:8b:c8:49:58:a0:1f:8c:4d:72:36:fc:50:6e:29: 21:79:dc:a4:73:1b:a4:cd:65:8a:dc:a7:74:71:bb:f7:70:5b: ba:40:3f:ec:27:4c:a7:27:a4:4f:6e:6f:08:39:b1:38:37:b5: 92:ca:e3:6f:81:b6:60:da:b2:14:5f:0b:14:d4:f9:8d:4f:7f: 3a:fe:0b:fe:ab:d4:a4:ba:2a:7c:4a:9a:05:c9:40:1b:e0:85: 43:c4:2a:01:e8:b8:89:6d:08:7c:3e:75:ff:01:52:ac:09:0e: dd:66:73:4a:69:9f:54:e7:4a:5a:ba:64:63:45:f8:97:89:70: 99:d3:44:cf:1d:76:56:21:97:5f:1e:06:0b:26:48:3f:7e:1c: 65:7a:f5:67:3e:ca:45:f1:a4:b3:c9:8c:25:00:00:d3:06:b9: b2:5c:42:29:05:80:38:77:30:ac:bb:a9:4e:67:fb:55:ef:ee: cc:8c:59:7a:0c:09:41:7c:e6:62:d6:47:f7:8a:4c:9a:ab:cb: 73:d9:8b:62:0f:65:1f:38:ca:e0:83:cb:30:b2:e3:05:db:0c: 94:cf:51:fe:0b:83:57:32:8b:d7:d5:e0:af:e8:60:4d:b5:77: 85:61:02:e3:a0:21:21:bb:6f:2a:b1:4c:b8:1e:db:35:7b:6d: b6:ae:cd:9d -----BEGIN CERTIFICATE----- MIIFyzCCBLOgAwIBAgIUIWZyQeEVxiTf4qGVuyhvic3s5S4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYTIyYWE4MmJkNjA5YjdiNjgwOGUyMTM0YTRmOGJiNmNl ZWYyODUxNDQxZWQ3YzBmZTgwHhcNMjYwMTE3MjA1NjEyWhcNMjcwMTE2MjEwMTEy WjAzMTEwLwYDVQQDEyhEOUIwNzQxOTM5ODZGOTBBRThGNDgxN0MxMDgwRDhGM0FF MTdDMDRFMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoGqipwOM3QBI AcQUNrG85kWjBipZC+MpWsmywpq1QXhLzI+hoauZfSWVDAjSC5kPZ9asroRN+QcN MkzZD00DQPpsq8lcOnkLpozk45bLgkGu/oJT4nA/9CfJYvMBISnn59Jm54WvU6hP YFTBtVRsRlHeqvHefVjUGhY9kkBrwNaN+thhU7fO1L2CAZ5o2petj8F++amL3m+S j8YWFYSPMFY0KGOa8Mu0x89v/HQh9My5J/wqClIY0qXaGu4MewDhGvFBIUQJ9sLO 2Ypt4tI8rpv49MP5sewBsvlB0uMxr4GnL5eQpozym1Lb+o6YTpER0fjwZGTjyyra 0BGXCabySwIDAQABo4ICyzCCAscwHQYDVR0OBBYEFNmwdBk5hvkK6PSBfBCA2POu F8BOMB8GA1UdIwQYMBaAFGUsAZnmVi+2EZ4lkjAWmCYpwhCNMA4GA1UdDwEB/wQE AwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3luYzovL3JzeW5jLnBhYXMu cnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzhhZmI1ZmUyLTNjMmEtNDkzOS05NWU5 LTAwNzdiODBiNGYwZS8xLzY1MkMwMTk5RTY1NjJGQjYxMTlFMjU5MjMwMTY5ODI2 MjlDMjEwOEQuY3JsMIHzBggrBgEFBQcBAQSB5jCB4zCB4AYIKwYBBQUHMAKGgdNy c3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0 YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzc0NmUwMTExLWZhZmIt NDMwZi1iNzc4LWQyMDRjZmNkOTlhOC83ZjMzY2Y1OS1hZTM1LTQxZDQtODI1Mi1k OWJkYmFiYTQyMTAvYTIyYWE4MmJkNjA5YjdiNjgwOGUyMTM0YTRmOGJiNmNlZWYy ODUxNDQxZWQ3YzBmZTguY2VyMIGrBggrBgEFBQcBCwSBnjCBmzCBmAYIKwYBBQUH MAuGgYtyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5 LzhhZmI1ZmUyLTNjMmEtNDkzOS05NWU5LTAwNzdiODBiNGYwZS8xLzMyMzMyZTMx MzczNTJlMzIzNDJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDM1MzMzODMwMzgucm9h MBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAAXrxgwDQYJKoZIhvcNAQELBQADggEBAAjoQ2iLyElYoB+MTXI2/FBu KSF53KRzG6TNZYrcp3Rxu/dwW7pAP+wnTKcnpE9ubwg5sTg3tZLK42+BtmDashRf CxTU+Y1Pfzr+C/6r1KS6KnxKmgXJQBvghUPEKgHouIltCHw+df8BUqwJDt1mc0pp n1TnSlq6ZGNF+JeJcJnTRM8ddlYhl18eBgsmSD9+HGV69Wc+ykXxpLPJjCUAANMG ubJcQikFgDh3MKy7qU5n+1Xv7syMWXoMCUF85mLWR/eKTJqry3PZi2IPZR84yuCD yzCy4wXbDJTPUf4Lg1cyi9fV4K/oYE21d4VhAuOgISG7byqxTLge2zV7bbauzZ0= -----END CERTIFICATE-----Generated at Sun Jan 18 17:53:40 2026 by rpki-client