This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/933b2fd7-31c1-451c-8288-c1aa0aa12750/0/37372e38312e37392e302f32342d3234203d3e2035363530.roa File: 37372e38312e37392e302f32342d3234203d3e2035363530.roa (raw, json) Hash identifier: chtAnXZi5q6GRUxpR5xO2uIiP96tdCrOBTIeDsoa8hE= Subject key identifier: D7:94:C7:EE:13:87:7A:90:74:E5:C5:ED:05:10:EE:A1:08:82:EB:D4 Certificate issuer: /CN=45e8648e445dccd0d8ee699f5140bb814e43ae1b Certificate serial: 595B90BAE25A5AA5E4A222A70E70782E83C590D9 Authority key identifier: 45:E8:64:8E:44:5D:CC:D0:D8:EE:69:9F:51:40:BB:81:4E:43:AE:1B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RehkjkRdzNDY7mmfUUC7gU5Drhs.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/933b2fd7-31c1-451c-8288-c1aa0aa12750/0/37372e38312e37392e302f32342d3234203d3e2035363530.roa Signing time: Tue 06 Jan 2026 08:37:18 +0000 ROA not before: Tue 06 Jan 2026 08:32:18 +0000 ROA not after: Tue 05 Jan 2027 08:37:18 +0000 asID: 5650 IP address blocks: 77.81.79.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/933b2fd7-31c1-451c-8288-c1aa0aa12750/0/45E8648E445DCCD0D8EE699F5140BB814E43AE1B.crl rsync://rsync.paas.rpki.ripe.net/repository/933b2fd7-31c1-451c-8288-c1aa0aa12750/0/45E8648E445DCCD0D8EE699F5140BB814E43AE1B.mft rsync://rpki.ripe.net/repository/DEFAULT/RehkjkRdzNDY7mmfUUC7gU5Drhs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 18 Jan 2026 18:52:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:5b:90:ba:e2:5a:5a:a5:e4:a2:22:a7:0e:70:78:2e:83:c5:90:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=45e8648e445dccd0d8ee699f5140bb814e43ae1b Validity Not Before: Jan 6 08:32:18 2026 GMT Not After : Jan 5 08:37:18 2027 GMT Subject: CN=D794C7EE13877A9074E5C5ED0510EEA10882EBD4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:f5:21:c1:33:74:9a:ae:bb:61:8e:f9:63:fc: 77:09:f8:ff:5b:4d:d8:ff:10:fb:07:4b:97:27:ac: cf:af:59:20:3e:39:f1:3e:97:c1:7a:d0:30:b9:6a: ec:e1:cc:77:c9:b7:69:34:3d:19:bc:19:4c:b6:a4: 1e:37:78:f6:a2:3c:6a:18:61:68:d7:9e:03:26:cb: 3e:bd:32:3c:58:18:63:00:41:b6:3e:9c:6d:7c:a1: 24:56:a2:61:aa:b4:b3:60:48:8b:1e:44:9d:a4:54: 61:e3:cd:95:ec:53:e1:2b:41:9f:bd:52:e7:63:67: 92:ae:1b:eb:be:a4:6b:df:4e:b9:fe:c3:3f:bf:4b: 14:73:dd:d4:ad:23:bb:94:ab:26:86:29:dd:f0:18: 28:a1:37:74:77:a2:22:3e:a5:fd:1b:4c:c5:db:9b: 29:2c:fd:5d:1b:3c:be:84:02:ad:1a:be:47:ab:12: e1:e7:db:c0:b7:23:13:55:0d:8d:b7:91:ea:76:a3: 9b:3a:39:5f:c9:05:32:78:4e:0c:db:d2:91:5a:01: bf:47:4d:ae:79:b2:e3:15:0c:0d:13:ba:13:77:42: a2:66:7e:ec:21:74:31:03:47:ec:2d:59:4c:5f:88: 11:a0:2c:55:4b:c2:1c:be:09:11:32:96:71:22:e1: b3:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:94:C7:EE:13:87:7A:90:74:E5:C5:ED:05:10:EE:A1:08:82:EB:D4 X509v3 Authority Key Identifier: keyid:45:E8:64:8E:44:5D:CC:D0:D8:EE:69:9F:51:40:BB:81:4E:43:AE:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/933b2fd7-31c1-451c-8288-c1aa0aa12750/0/45E8648E445DCCD0D8EE699F5140BB814E43AE1B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RehkjkRdzNDY7mmfUUC7gU5Drhs.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/933b2fd7-31c1-451c-8288-c1aa0aa12750/0/37372e38312e37392e302f32342d3234203d3e2035363530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 77.81.79.0/24 Signature Algorithm: sha256WithRSAEncryption 81:6c:10:59:46:2e:27:a8:5e:5d:7d:7f:7d:3d:79:1d:b0:43: dd:a3:34:cd:7a:7d:ac:f9:83:57:c1:ae:35:9f:66:c7:02:4c: 9c:5d:5c:54:4b:98:4f:dd:70:d3:31:95:56:8b:b3:7e:ff:77: 75:9a:5c:da:04:5b:95:f5:3d:c6:c1:58:a4:c2:e7:d0:19:46: 2d:7b:0f:9a:44:2e:ca:8f:5c:72:24:05:e7:e9:fd:2b:e1:a5: f2:2c:90:e8:87:a4:92:cc:1c:a0:8b:b0:54:39:47:5c:59:74: 35:dd:11:9e:6f:89:bd:40:bb:b0:22:e8:67:88:2f:61:43:ca: d4:c5:9e:78:db:94:6a:6a:bc:1a:ff:0d:92:8e:0c:32:2e:25: a6:eb:b5:84:b5:ca:fb:4c:a6:8a:49:96:fa:fd:c6:8c:e0:52: 35:ea:df:a2:0b:f7:f7:29:c8:53:e0:df:91:7c:a8:51:62:e5: 53:b9:ad:3c:a6:c9:98:16:20:3a:c7:d7:d8:82:15:be:ab:48: e8:34:51:67:bf:c8:a8:30:43:f5:08:9a:4a:90:aa:97:bb:c3: 22:0f:60:6c:99:2d:5a:ac:d0:71:c0:bd:b8:97:4a:da:a7:59: 74:b1:b4:71:5b:07:40:95:f9:e4:13:ea:c2:f8:5e:0b:5b:22: 28:90:ee:c0 -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUWVuQuuJaWqXkoiKnDnB4LoPFkNkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDVlODY0OGU0NDVkY2NkMGQ4ZWU2OTlmNTE0MGJiODE0 ZTQzYWUxYjAeFw0yNjAxMDYwODMyMThaFw0yNzAxMDUwODM3MThaMDMxMTAvBgNV BAMTKEQ3OTRDN0VFMTM4NzdBOTA3NEU1QzVFRDA1MTBFRUExMDg4MkVCRDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDY9SHBM3Sarrthjvlj/HcJ+P9b Tdj/EPsHS5cnrM+vWSA+OfE+l8F60DC5auzhzHfJt2k0PRm8GUy2pB43ePaiPGoY YWjXngMmyz69MjxYGGMAQbY+nG18oSRWomGqtLNgSIseRJ2kVGHjzZXsU+ErQZ+9 UudjZ5KuG+u+pGvfTrn+wz+/SxRz3dStI7uUqyaGKd3wGCihN3R3oiI+pf0bTMXb myks/V0bPL6EAq0avkerEuHn28C3IxNVDY23kep2o5s6OV/JBTJ4Tgzb0pFaAb9H Ta55suMVDA0TuhN3QqJmfuwhdDEDR+wtWUxfiBGgLFVLwhy+CREylnEi4bNJAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQU15TH7hOHepB05cXtBRDuoQiC69QwHwYDVR0j BBgwFoAURehkjkRdzNDY7mmfUUC7gU5DrhswDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvOTMzYjJmZDctMzFjMS00NTFjLTgyODgtYzFhYTBhYTEy NzUwLzAvNDVFODY0OEU0NDVEQ0NEMEQ4RUU2OTlGNTE0MEJCODE0RTQzQUUxQi5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1JlaGtqa1Jkek5EWTdtbWZVVUM3Z1U1 RHJocy5jZXIwgacGCCsGAQUFBwELBIGaMIGXMIGUBggrBgEFBQcwC4aBh3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvOTMzYjJmZDct MzFjMS00NTFjLTgyODgtYzFhYTBhYTEyNzUwLzAvMzczNzJlMzgzMTJlMzczOTJl MzAyZjMyMzQyZDMyMzQyMDNkM2UyMDM1MzYzNTMwLnJvYTAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQATVFPMA0G CSqGSIb3DQEBCwUAA4IBAQCBbBBZRi4nqF5dfX99PXkdsEPdozTNen2s+YNXwa41 n2bHAkycXVxUS5hP3XDTMZVWi7N+/3d1mlzaBFuV9T3GwVikwufQGUYtew+aRC7K j1xyJAXn6f0r4aXyLJDoh6SSzBygi7BUOUdcWXQ13RGeb4m9QLuwIuhniC9hQ8rU xZ5425Rqarwa/w2SjgwyLiWm67WEtcr7TKaKSZb6/caM4FI16t+iC/f3KchT4N+R fKhRYuVTua08psmYFiA6x9fYghW+q0joNFFnv8ioMEP1CJpKkKqXu8MiD2BsmS1a rNBxwL24l0rap1l0sbRxWwdAlfnkE+rC+F4LWyIokO7A -----END CERTIFICATE-----Generated at Sun Jan 18 11:03:49 2026 by rpki-client