This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e38312e302f32342d3234203d3e20383334.roa File: 3231332e3133392e38312e302f32342d3234203d3e20383334.roa (raw, json) Hash identifier: yztwrAAHT5dNvs5wjIatAyd2D9R5WluQG3FSySrDriQ= Subject key identifier: 75:1C:F6:29:9C:89:A9:7E:EF:D8:8A:AF:F9:5E:83:3E:13:37:0E:F4 Certificate issuer: /CN=b683f2eb50c5999a77456e8826831609d48c7d3e Certificate serial: 24A63C8322E7F6AFBFAD23A6C75B4ABBA874C6ED Authority key identifier: B6:83:F2:EB:50:C5:99:9A:77:45:6E:88:26:83:16:09:D4:8C:7D:3E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/toPy61DFmZp3RW6IJoMWCdSMfT4.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e38312e302f32342d3234203d3e20383334.roa Signing time: Tue 03 Feb 2026 04:33:19 +0000 ROA not before: Tue 03 Feb 2026 04:28:19 +0000 ROA not after: Tue 02 Feb 2027 04:33:19 +0000 asID: 834 IP address blocks: 213.139.81.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/B683F2EB50C5999A77456E8826831609D48C7D3E.crl rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/B683F2EB50C5999A77456E8826831609D48C7D3E.mft rsync://rpki.ripe.net/repository/DEFAULT/toPy61DFmZp3RW6IJoMWCdSMfT4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 15 Feb 2026 09:24:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:a6:3c:83:22:e7:f6:af:bf:ad:23:a6:c7:5b:4a:bb:a8:74:c6:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b683f2eb50c5999a77456e8826831609d48c7d3e Validity Not Before: Feb 3 04:28:19 2026 GMT Not After : Feb 2 04:33:19 2027 GMT Subject: CN=751CF6299C89A97EEFD88AAFF95E833E13370EF4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:98:41:69:1b:82:5f:17:69:57:3f:c4:ef:f7: 38:6e:42:34:fa:01:53:2f:02:84:19:ae:84:69:bd: 90:46:e8:a7:13:7e:19:a3:27:e4:b8:0f:3b:e6:74: 5e:d7:1d:9a:74:69:e5:eb:63:80:ea:56:9d:a6:ac: 22:d1:b2:f8:45:e2:3c:a8:21:34:b1:6d:5a:95:9f: 7f:57:ea:42:f6:16:73:1c:93:de:d6:b0:9c:ed:c8: 76:5c:6b:93:15:37:a5:bd:86:60:ca:db:d7:d6:00: c4:29:dc:8e:d5:d3:36:21:20:60:69:67:2a:eb:e0: 68:c7:47:fd:00:e9:fd:d4:74:14:fc:87:86:12:bd: 92:c9:87:e9:4d:37:02:39:e0:34:3d:79:52:81:6f: 2b:9d:ab:c7:fa:b4:55:70:7f:c1:35:7b:d6:39:82: 92:b9:90:87:6e:96:e0:62:a6:c5:fe:92:f6:65:1b: 30:f1:09:9b:15:23:39:d9:fe:d9:10:d2:f9:d2:50: df:61:28:bc:a9:b8:58:bb:8e:9b:78:92:55:da:e1: 9f:74:4a:68:e6:42:9b:b5:f8:1f:c5:a7:c8:9c:94: da:9e:3f:af:49:d3:51:fe:41:a3:f5:52:8a:16:d8: af:68:d6:e7:4a:de:2f:49:30:d3:fa:48:06:55:53: 24:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:1C:F6:29:9C:89:A9:7E:EF:D8:8A:AF:F9:5E:83:3E:13:37:0E:F4 X509v3 Authority Key Identifier: keyid:B6:83:F2:EB:50:C5:99:9A:77:45:6E:88:26:83:16:09:D4:8C:7D:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/B683F2EB50C5999A77456E8826831609D48C7D3E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/toPy61DFmZp3RW6IJoMWCdSMfT4.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e38312e302f32342d3234203d3e20383334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 213.139.81.0/24 Signature Algorithm: sha256WithRSAEncryption 9e:c2:c5:b6:49:60:83:b0:a3:ff:d9:7b:86:db:34:39:66:cd: 26:ac:6b:86:55:5f:3e:47:dd:3e:3e:13:48:c3:55:70:de:6f: 7f:c7:c4:aa:07:00:38:f3:bd:e0:71:e1:09:3a:1f:ae:f2:73: ba:4a:3a:f8:c2:86:9a:03:bc:de:c2:b8:e5:df:4e:44:42:ae: cb:bb:0a:1e:dd:44:c4:d0:d5:93:dd:68:cd:3b:7b:9b:61:54: 04:f0:11:f0:c7:04:e3:42:cc:78:3c:55:81:9b:97:25:ca:93: 6a:9b:0d:86:38:04:ab:c9:e6:05:c4:de:d3:d4:20:b9:7f:8c: b6:08:8e:72:e3:d1:0b:be:ea:8e:34:49:45:1f:4d:74:70:0b: d4:ab:a4:49:4d:ab:78:06:79:4b:cb:be:56:f4:1e:c7:23:fd: 34:4c:42:85:26:06:82:f7:dd:90:e8:c6:1d:e8:a0:9a:6b:97: a3:cb:45:0d:12:0d:2c:cc:69:fe:6b:11:c9:6d:27:bb:86:89: 5b:54:2c:45:ed:40:9e:56:b6:2b:57:d2:f2:4a:04:f4:ea:4a: 62:09:4e:40:88:d1:8e:ce:6c:24:18:a8:29:77:e0:27:5f:cf: a6:9b:21:1e:f9:6d:aa:a1:00:1f:0c:ff:3d:aa:88:9a:d9:15: 69:90:cc:91 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUJKY8gyLn9q+/rSOmx1tKu6h0xu0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYjY4M2YyZWI1MGM1OTk5YTc3NDU2ZTg4MjY4MzE2MDlk NDhjN2QzZTAeFw0yNjAyMDMwNDI4MTlaFw0yNzAyMDIwNDMzMTlaMDMxMTAvBgNV BAMTKDc1MUNGNjI5OUM4OUE5N0VFRkQ4OEFBRkY5NUU4MzNFMTMzNzBFRjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1mEFpG4JfF2lXP8Tv9zhuQjT6 AVMvAoQZroRpvZBG6KcTfhmjJ+S4DzvmdF7XHZp0aeXrY4DqVp2mrCLRsvhF4jyo ITSxbVqVn39X6kL2FnMck97WsJztyHZca5MVN6W9hmDK29fWAMQp3I7V0zYhIGBp Zyrr4GjHR/0A6f3UdBT8h4YSvZLJh+lNNwI54DQ9eVKBbyudq8f6tFVwf8E1e9Y5 gpK5kIduluBipsX+kvZlGzDxCZsVIznZ/tkQ0vnSUN9hKLypuFi7jpt4klXa4Z90 SmjmQpu1+B/Fp8iclNqeP69J01H+QaP1UooW2K9o1udK3i9JMNP6SAZVUySpAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUdRz2KZyJqX7v2Iqv+V6DPhM3DvQwHwYDVR0j BBgwFoAUtoPy61DFmZp3RW6IJoMWCdSMfT4wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYTAxYzE0ZmItYjY2MC00ODlkLTllOWYtOTQwMmU5ZTJj MmUyLzAvQjY4M0YyRUI1MEM1OTk5QTc3NDU2RTg4MjY4MzE2MDlENDhDN0QzRS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3RvUHk2MURGbVpwM1JXNklKb01XQ2RT TWZUNC5jZXIwgakGCCsGAQUFBwELBIGcMIGZMIGWBggrBgEFBQcwC4aBiXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYTAxYzE0ZmIt YjY2MC00ODlkLTllOWYtOTQwMmU5ZTJjMmUyLzAvMzIzMTMzMmUzMTMzMzkyZTM4 MzEyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzODMzMzQucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADVi1Ew DQYJKoZIhvcNAQELBQADggEBAJ7CxbZJYIOwo//Ze4bbNDlmzSasa4ZVXz5H3T4+ E0jDVXDeb3/HxKoHADjzveBx4Qk6H67yc7pKOvjChpoDvN7CuOXfTkRCrsu7Ch7d RMTQ1ZPdaM07e5thVATwEfDHBONCzHg8VYGblyXKk2qbDYY4BKvJ5gXE3tPUILl/ jLYIjnLj0Qu+6o40SUUfTXRwC9SrpElNq3gGeUvLvlb0Hscj/TRMQoUmBoL33ZDo xh3ooJprl6PLRQ0SDSzMaf5rEcltJ7uGiVtULEXtQJ5WtitX0vJKBPTqSmIJTkCI 0Y7ObCQYqCl34Cdfz6abIR75baqhAB8M/z2qiJrZFWmQzJE= -----END CERTIFICATE-----Generated at Sat Feb 14 17:26:38 2026 by rpki-client