This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e36352e302f32342d3234203d3e20383334.roa File: 3231332e3133392e36352e302f32342d3234203d3e20383334.roa (raw, json) Hash identifier: 8XV/cTtJk6+1eBlX3AfSKp/J+YnF93qPUv0P3+L9/94= Subject key identifier: 9E:DE:82:10:62:90:00:34:60:89:DB:2E:12:91:2B:66:9D:7F:0E:2C Certificate issuer: /CN=b683f2eb50c5999a77456e8826831609d48c7d3e Certificate serial: 1FE0518B5D38D623369DE3D977EE8C2947A974F7 Authority key identifier: B6:83:F2:EB:50:C5:99:9A:77:45:6E:88:26:83:16:09:D4:8C:7D:3E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/toPy61DFmZp3RW6IJoMWCdSMfT4.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e36352e302f32342d3234203d3e20383334.roa Signing time: Thu 05 Feb 2026 05:17:53 +0000 ROA not before: Thu 05 Feb 2026 05:12:53 +0000 ROA not after: Thu 04 Feb 2027 05:17:53 +0000 asID: 834 IP address blocks: 213.139.65.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/B683F2EB50C5999A77456E8826831609D48C7D3E.crl rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/B683F2EB50C5999A77456E8826831609D48C7D3E.mft rsync://rpki.ripe.net/repository/DEFAULT/toPy61DFmZp3RW6IJoMWCdSMfT4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 15 Feb 2026 09:24:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:e0:51:8b:5d:38:d6:23:36:9d:e3:d9:77:ee:8c:29:47:a9:74:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b683f2eb50c5999a77456e8826831609d48c7d3e Validity Not Before: Feb 5 05:12:53 2026 GMT Not After : Feb 4 05:17:53 2027 GMT Subject: CN=9EDE8210629000346089DB2E12912B669D7F0E2C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:52:bc:7a:10:fc:57:19:c0:f6:d4:04:19:ed: af:fc:5e:5e:d3:2c:46:9c:98:9c:de:72:1f:41:3b: 87:21:fd:c6:b9:d3:82:9f:8e:af:a4:e8:29:26:fa: 07:d0:54:6a:4d:b3:e7:ac:e8:76:3a:9f:06:e5:16: e3:74:3e:9a:0e:68:cb:8d:be:f0:20:4e:f7:47:dd: d9:e0:6b:dd:a9:92:e0:ea:af:ba:ff:ea:a2:87:69: 15:2e:34:00:b0:59:6b:d0:8d:73:f9:9e:4b:1c:47: ce:3a:ac:51:1b:de:1b:22:73:3d:b6:f6:04:c7:f5: cc:ea:18:25:e6:a5:3a:c6:c6:0b:ba:6b:e1:2b:39: ea:ed:dd:af:db:66:71:96:0b:83:d8:ec:38:5b:78: 71:7e:2d:41:0c:66:80:fe:72:8b:d0:76:c5:ff:a4: 33:8a:f7:76:39:27:70:18:3f:ff:cf:13:0d:49:8d: c6:e1:0f:fd:f2:f3:31:50:72:06:28:88:b3:f4:d0: b9:5d:bd:56:95:06:b1:5c:ee:27:d1:f4:bc:56:2f: 5f:4c:a3:8a:40:8b:6d:f8:66:96:88:39:f4:c9:2f: 65:09:7f:9d:17:75:4b:d0:15:c3:4d:b1:5a:9d:b3: 1b:6b:a6:c7:ae:42:6a:d3:9c:14:ae:49:b8:ab:1c: e0:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:DE:82:10:62:90:00:34:60:89:DB:2E:12:91:2B:66:9D:7F:0E:2C X509v3 Authority Key Identifier: keyid:B6:83:F2:EB:50:C5:99:9A:77:45:6E:88:26:83:16:09:D4:8C:7D:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/B683F2EB50C5999A77456E8826831609D48C7D3E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/toPy61DFmZp3RW6IJoMWCdSMfT4.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e36352e302f32342d3234203d3e20383334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 213.139.65.0/24 Signature Algorithm: sha256WithRSAEncryption 21:87:c6:c7:a5:d6:8f:af:61:f1:93:33:05:62:5a:e4:b9:90: 7e:ed:d1:a4:67:e8:f8:fa:b2:40:86:4f:be:38:94:65:95:aa: de:c9:17:f7:ac:e4:62:50:bd:c4:5b:b5:78:c0:92:12:c1:20: c7:37:73:7f:ad:68:0f:9a:78:67:dd:17:82:a8:23:e8:9f:15: 5f:e3:55:44:1a:3f:f6:74:36:8e:c2:ad:47:ba:86:5f:63:02: a3:2d:b2:3b:ff:f1:74:a3:2e:51:99:9b:e9:c1:7c:c4:a7:80: 0f:5b:61:dc:b6:95:56:39:fd:e0:6f:85:0b:4e:2f:b7:12:64: 51:ff:30:1a:1b:9f:45:5b:10:6c:b6:cd:47:47:35:d0:3e:4f: b6:f0:d9:82:82:1a:50:6b:01:13:5a:43:94:b1:97:dd:ca:b8: 2e:78:75:fb:2c:fb:ee:f6:b9:cd:7f:e4:07:0f:99:78:83:56: 8e:d1:13:d3:f1:38:d2:c2:35:04:1b:6d:1b:c6:4f:7d:fe:21: b8:19:b4:28:dc:24:5c:67:70:9c:29:50:7e:37:47:ab:93:c5: 8e:60:2e:1b:25:ec:2d:86:f9:f3:e2:62:69:d2:b7:40:f2:6b: a4:88:a7:5b:72:6a:66:17:2d:2a:ec:cb:2b:3e:04:3f:31:8e: b3:4b:88:46 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUH+BRi1041iM2nePZd+6MKUepdPcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYjY4M2YyZWI1MGM1OTk5YTc3NDU2ZTg4MjY4MzE2MDlk NDhjN2QzZTAeFw0yNjAyMDUwNTEyNTNaFw0yNzAyMDQwNTE3NTNaMDMxMTAvBgNV BAMTKDlFREU4MjEwNjI5MDAwMzQ2MDg5REIyRTEyOTEyQjY2OUQ3RjBFMkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyUrx6EPxXGcD21AQZ7a/8Xl7T LEacmJzech9BO4ch/ca504Kfjq+k6Ckm+gfQVGpNs+es6HY6nwblFuN0PpoOaMuN vvAgTvdH3dnga92pkuDqr7r/6qKHaRUuNACwWWvQjXP5nkscR846rFEb3hsicz22 9gTH9czqGCXmpTrGxgu6a+ErOert3a/bZnGWC4PY7DhbeHF+LUEMZoD+covQdsX/ pDOK93Y5J3AYP//PEw1JjcbhD/3y8zFQcgYoiLP00LldvVaVBrFc7ifR9LxWL19M o4pAi234ZpaIOfTJL2UJf50XdUvQFcNNsVqdsxtrpseuQmrTnBSuSbirHOAXAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUnt6CEGKQADRgidsuEpErZp1/DiwwHwYDVR0j BBgwFoAUtoPy61DFmZp3RW6IJoMWCdSMfT4wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYTAxYzE0ZmItYjY2MC00ODlkLTllOWYtOTQwMmU5ZTJj MmUyLzAvQjY4M0YyRUI1MEM1OTk5QTc3NDU2RTg4MjY4MzE2MDlENDhDN0QzRS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3RvUHk2MURGbVpwM1JXNklKb01XQ2RT TWZUNC5jZXIwgakGCCsGAQUFBwELBIGcMIGZMIGWBggrBgEFBQcwC4aBiXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYTAxYzE0ZmIt YjY2MC00ODlkLTllOWYtOTQwMmU5ZTJjMmUyLzAvMzIzMTMzMmUzMTMzMzkyZTM2 MzUyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzODMzMzQucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADVi0Ew DQYJKoZIhvcNAQELBQADggEBACGHxsel1o+vYfGTMwViWuS5kH7t0aRn6Pj6skCG T744lGWVqt7JF/es5GJQvcRbtXjAkhLBIMc3c3+taA+aeGfdF4KoI+ifFV/jVUQa P/Z0No7CrUe6hl9jAqMtsjv/8XSjLlGZm+nBfMSngA9bYdy2lVY5/eBvhQtOL7cS ZFH/MBobn0VbEGy2zUdHNdA+T7bw2YKCGlBrARNaQ5Sxl93KuC54dfss++72uc1/ 5AcPmXiDVo7RE9PxONLCNQQbbRvGT33+IbgZtCjcJFxncJwpUH43R6uTxY5gLhsl 7C2G+fPiYmnSt0Dya6SIp1tyamYXLSrsyys+BD8xjrNLiEY= -----END CERTIFICATE-----Generated at Sat Feb 14 17:26:38 2026 by rpki-client