This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e37322e302f32342d3234203d3e203230383630.roa File: 3231332e3133392e37322e302f32342d3234203d3e203230383630.roa (raw, json) Hash identifier: ZNpXP0V7X1SLVOWk1qf9gaielEOXyCXpXadwIPelQAs= Subject key identifier: FB:29:26:E4:D9:52:02:A6:6E:45:CC:7C:EB:31:2F:2E:54:C3:C5:72 Certificate issuer: /CN=b683f2eb50c5999a77456e8826831609d48c7d3e Certificate serial: 4DB06222FF6BE0A2AD12D141589667EA5FE36A9E Authority key identifier: B6:83:F2:EB:50:C5:99:9A:77:45:6E:88:26:83:16:09:D4:8C:7D:3E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/toPy61DFmZp3RW6IJoMWCdSMfT4.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e37322e302f32342d3234203d3e203230383630.roa Signing time: Tue 23 Dec 2025 16:55:32 +0000 ROA not before: Tue 23 Dec 2025 16:50:32 +0000 ROA not after: Tue 22 Dec 2026 16:55:32 +0000 asID: 20860 IP address blocks: 213.139.72.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/B683F2EB50C5999A77456E8826831609D48C7D3E.crl rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/B683F2EB50C5999A77456E8826831609D48C7D3E.mft rsync://rpki.ripe.net/repository/DEFAULT/toPy61DFmZp3RW6IJoMWCdSMfT4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 09:01:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:b0:62:22:ff:6b:e0:a2:ad:12:d1:41:58:96:67:ea:5f:e3:6a:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b683f2eb50c5999a77456e8826831609d48c7d3e Validity Not Before: Dec 23 16:50:32 2025 GMT Not After : Dec 22 16:55:32 2026 GMT Subject: CN=FB2926E4D95202A66E45CC7CEB312F2E54C3C572 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:5a:e6:ec:02:a8:1d:c2:5e:82:6f:e5:a8:1e: b7:f9:ed:07:e9:4d:f8:3c:18:f1:9a:6b:8c:32:72: d7:68:76:e0:2f:15:e3:a8:ca:59:ec:31:50:58:dc: 17:77:67:41:4d:84:6c:b0:42:4c:8d:2b:99:11:32: be:cf:5d:13:11:bf:ac:91:de:1f:a8:83:af:ff:48: 1b:4c:73:1c:dc:16:c2:ae:22:05:18:e7:0a:e0:fe: 67:9c:cc:6e:38:a1:2d:b8:1d:99:ca:8b:bc:78:43: c3:de:68:ae:f8:ab:bd:0b:00:84:f4:88:9e:47:3e: a2:6d:6f:f4:09:c9:e9:26:eb:3c:dd:2c:a0:fc:15: 97:8c:57:8a:2d:96:8d:96:48:5a:44:11:23:3a:cb: f4:49:16:2e:cd:57:fd:d9:d0:d2:4f:47:25:c6:07: 8b:93:ce:0a:4d:6e:40:ee:21:20:e3:8b:75:eb:bd: 30:cc:82:5d:dc:6d:8b:68:b8:44:c4:29:81:36:54: 57:73:92:ee:4f:58:14:9d:74:6c:71:3c:e3:bd:c3: fa:61:19:b9:b6:34:60:9c:96:69:96:d1:3d:f5:17: c1:6a:60:d8:70:47:82:25:60:42:cc:fc:d2:48:cf: 0f:97:47:58:05:67:bb:03:e5:0d:bb:84:5d:39:b7: a5:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:29:26:E4:D9:52:02:A6:6E:45:CC:7C:EB:31:2F:2E:54:C3:C5:72 X509v3 Authority Key Identifier: keyid:B6:83:F2:EB:50:C5:99:9A:77:45:6E:88:26:83:16:09:D4:8C:7D:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/B683F2EB50C5999A77456E8826831609D48C7D3E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/toPy61DFmZp3RW6IJoMWCdSMfT4.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e37322e302f32342d3234203d3e203230383630.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 213.139.72.0/24 Signature Algorithm: sha256WithRSAEncryption 6b:49:bc:14:69:26:66:5f:93:0a:f2:6f:c6:70:74:41:67:00: fb:63:31:05:8a:d6:7e:dd:28:31:19:35:fb:5a:70:a9:d8:e9: 31:af:bc:4d:9f:6d:e4:a4:f4:1c:19:a0:08:1f:8c:eb:50:1e: 4d:85:9f:ab:1d:26:9d:3e:1c:00:b6:35:73:15:49:a8:bd:8a: 7b:66:01:0b:e9:cc:30:b0:ac:fb:97:21:b5:fe:0e:2f:ac:38: 6a:f9:35:c3:1d:f7:ea:9f:f0:5a:fa:c5:63:b9:aa:ea:e4:5d: db:7c:f2:57:12:95:db:43:69:2a:2e:46:7e:40:01:82:07:91: 67:2f:92:54:e0:78:d9:fa:fd:8a:8d:4c:3e:85:21:a9:76:5f: 6f:19:1e:2c:09:8d:20:24:50:40:36:a5:4e:78:eb:67:a3:52: 5f:f0:e5:4d:ff:00:5e:07:b1:9e:a1:05:a7:3a:4c:1f:31:cd: d4:b2:60:99:b7:f3:fa:37:1e:68:7e:47:b2:0c:6e:70:f0:8c: 4c:39:b5:08:22:27:e9:fd:4a:ce:8c:5f:09:f8:a1:77:16:1e: 50:3d:04:0c:38:8a:b7:ae:22:ab:0c:d5:e1:8b:a6:d9:12:0e: 08:e1:f5:65:f5:72:00:f0:6e:01:14:cc:5c:0c:4b:8e:cc:95: ff:f5:59:e6 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUTbBiIv9r4KKtEtFBWJZn6l/jap4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYjY4M2YyZWI1MGM1OTk5YTc3NDU2ZTg4MjY4MzE2MDlk NDhjN2QzZTAeFw0yNTEyMjMxNjUwMzJaFw0yNjEyMjIxNjU1MzJaMDMxMTAvBgNV BAMTKEZCMjkyNkU0RDk1MjAyQTY2RTQ1Q0M3Q0VCMzEyRjJFNTRDM0M1NzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxWubsAqgdwl6Cb+WoHrf57Qfp Tfg8GPGaa4wyctdoduAvFeOoylnsMVBY3Bd3Z0FNhGywQkyNK5kRMr7PXRMRv6yR 3h+og6//SBtMcxzcFsKuIgUY5wrg/meczG44oS24HZnKi7x4Q8PeaK74q70LAIT0 iJ5HPqJtb/QJyekm6zzdLKD8FZeMV4otlo2WSFpEESM6y/RJFi7NV/3Z0NJPRyXG B4uTzgpNbkDuISDji3XrvTDMgl3cbYtouETEKYE2VFdzku5PWBSddGxxPOO9w/ph Gbm2NGCclmmW0T31F8FqYNhwR4IlYELM/NJIzw+XR1gFZ7sD5Q27hF05t6U/AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU+ykm5NlSAqZuRcx86zEvLlTDxXIwHwYDVR0j BBgwFoAUtoPy61DFmZp3RW6IJoMWCdSMfT4wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYTAxYzE0ZmItYjY2MC00ODlkLTllOWYtOTQwMmU5ZTJj MmUyLzAvQjY4M0YyRUI1MEM1OTk5QTc3NDU2RTg4MjY4MzE2MDlENDhDN0QzRS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3RvUHk2MURGbVpwM1JXNklKb01XQ2RT TWZUNC5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYTAxYzE0ZmIt YjY2MC00ODlkLTllOWYtOTQwMmU5ZTJjMmUyLzAvMzIzMTMzMmUzMTMzMzkyZTM3 MzIyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMjMwMzgzNjMwLnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA 1YtIMA0GCSqGSIb3DQEBCwUAA4IBAQBrSbwUaSZmX5MK8m/GcHRBZwD7YzEFitZ+ 3SgxGTX7WnCp2Okxr7xNn23kpPQcGaAIH4zrUB5NhZ+rHSadPhwAtjVzFUmovYp7 ZgEL6cwwsKz7lyG1/g4vrDhq+TXDHffqn/Ba+sVjuarq5F3bfPJXEpXbQ2kqLkZ+ QAGCB5FnL5JU4HjZ+v2KjUw+hSGpdl9vGR4sCY0gJFBANqVOeOtno1Jf8OVN/wBe B7GeoQWnOkwfMc3UsmCZt/P6Nx5ofkeyDG5w8IxMObUIIifp/UrOjF8J+KF3Fh5Q PQQMOIq3riKrDNXhi6bZEg4I4fVl9XIA8G4BFMxcDEuOzJX/9Vnm -----END CERTIFICATE-----Generated at Mon Jan 19 17:34:56 2026 by rpki-client