This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/ac143387-f013-4922-838e-e18864be1e4a/0/3137382e3234382e37392e302f32342d3234203d3e20313335333932.roa File: 3137382e3234382e37392e302f32342d3234203d3e20313335333932.roa (raw, json) Hash identifier: YE6bAehCH8ruShBFJdgU4NCX9qGkifZ5lR9x24K4y2c= Subject key identifier: EC:58:B4:5E:35:4A:74:60:F3:67:B9:CE:B6:04:24:F5:FC:DF:76:E2 Certificate issuer: /CN=be0bb78869cdb2ad0c971a6a858a30213eaec47d Certificate serial: 5A52F6049F7D08413D8DDE34FC23C36375A5D8CF Authority key identifier: BE:0B:B7:88:69:CD:B2:AD:0C:97:1A:6A:85:8A:30:21:3E:AE:C4:7D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vgu3iGnNsq0MlxpqhYowIT6uxH0.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/ac143387-f013-4922-838e-e18864be1e4a/0/3137382e3234382e37392e302f32342d3234203d3e20313335333932.roa Signing time: Tue 20 Jan 2026 17:55:34 +0000 ROA not before: Tue 20 Jan 2026 17:50:34 +0000 ROA not after: Tue 19 Jan 2027 17:55:34 +0000 asID: 135392 IP address blocks: 178.248.79.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/ac143387-f013-4922-838e-e18864be1e4a/0/BE0BB78869CDB2AD0C971A6A858A30213EAEC47D.crl rsync://rsync.paas.rpki.ripe.net/repository/ac143387-f013-4922-838e-e18864be1e4a/0/BE0BB78869CDB2AD0C971A6A858A30213EAEC47D.mft rsync://rpki.ripe.net/repository/DEFAULT/vgu3iGnNsq0MlxpqhYowIT6uxH0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 20:31:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:52:f6:04:9f:7d:08:41:3d:8d:de:34:fc:23:c3:63:75:a5:d8:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=be0bb78869cdb2ad0c971a6a858a30213eaec47d Validity Not Before: Jan 20 17:50:34 2026 GMT Not After : Jan 19 17:55:34 2027 GMT Subject: CN=EC58B45E354A7460F367B9CEB60424F5FCDF76E2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:17:04:5e:91:54:53:55:d4:9c:d7:aa:5a:92: 18:82:5e:7c:c4:ad:cc:56:48:1a:40:ba:c6:30:ea: 70:d8:ee:75:2d:f4:fd:24:ff:88:b3:a5:90:5d:73: 0d:bb:c8:3d:8d:92:a4:a5:fa:fd:1f:f8:4d:4a:27: 02:4f:c9:1e:ca:4c:f1:2b:8a:af:67:f1:db:09:2c: 7c:23:e6:7d:10:30:c0:a0:fd:64:bf:00:c8:78:fa: 38:4e:e9:6c:61:a3:25:4c:df:d7:f8:48:3c:eb:bc: 55:ba:5b:ad:98:ca:2b:11:9a:e3:35:fa:31:cc:f8: 81:e5:08:ad:e6:13:51:c6:7d:f3:c8:15:ef:da:4e: db:b0:7f:46:8e:d4:96:af:3d:97:ae:3b:d5:4f:68: f7:fd:60:ea:cd:e7:d3:23:64:01:0d:77:7e:05:ea: 5a:d8:13:a8:71:8c:e5:3a:80:0d:84:cf:08:51:72: 06:6d:ba:6f:0b:8e:49:97:70:8e:4a:0f:5c:b3:d2: b8:4f:9c:29:5b:40:f9:ef:23:14:e5:3a:49:f2:6c: 62:ca:0a:2b:c1:85:9e:37:cb:00:47:df:6d:8d:91: 0f:19:f2:f5:4b:0a:d5:cf:8d:5d:36:56:68:9b:aa: fa:43:d1:6c:77:95:f7:88:c1:96:c2:bc:d4:08:25: 62:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:58:B4:5E:35:4A:74:60:F3:67:B9:CE:B6:04:24:F5:FC:DF:76:E2 X509v3 Authority Key Identifier: keyid:BE:0B:B7:88:69:CD:B2:AD:0C:97:1A:6A:85:8A:30:21:3E:AE:C4:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/ac143387-f013-4922-838e-e18864be1e4a/0/BE0BB78869CDB2AD0C971A6A858A30213EAEC47D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vgu3iGnNsq0MlxpqhYowIT6uxH0.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/ac143387-f013-4922-838e-e18864be1e4a/0/3137382e3234382e37392e302f32342d3234203d3e20313335333932.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 178.248.79.0/24 Signature Algorithm: sha256WithRSAEncryption 5c:96:00:fb:31:00:80:2e:e9:0b:15:ed:b2:21:d0:3c:e7:b8: 27:df:5d:52:be:8b:c1:c5:94:c1:d1:a2:65:0e:dd:ed:02:29: 91:cf:4d:33:b8:c8:17:73:4d:b7:f0:a6:17:af:0e:b3:78:ac: bb:3e:b3:91:32:87:3c:3a:86:9d:a3:94:c0:1f:70:51:ca:aa: f6:fd:d5:8b:6a:e0:89:c9:ef:5a:27:fd:ee:d0:9a:3c:bd:9a: 23:ae:b0:72:25:4b:9e:b3:05:a3:4c:6a:7b:ed:3d:c5:b1:9e: 81:83:ef:07:2c:0e:dc:88:49:b3:ef:b9:21:ca:9c:be:75:82: 9a:0e:48:79:f6:ac:20:a7:5b:8e:aa:e3:73:32:45:a9:e6:0b: 36:a9:ca:d6:b8:77:ab:ec:92:ac:7f:ca:98:ae:44:65:d5:d8: 94:6d:ea:f7:eb:ec:a3:82:17:d6:92:45:8d:49:b1:63:22:1d: 90:f6:43:d3:a1:d6:27:32:b5:8c:88:a6:e2:37:bf:da:b2:6f: 58:0b:ae:14:df:7a:ad:86:c9:5b:94:9e:bb:a1:97:14:69:1e: 88:3e:60:98:49:c9:71:57:88:d0:85:c5:5d:df:e9:1d:67:30: 17:5c:82:7d:86:75:27:f7:b0:be:db:97:96:6d:e2:e2:30:4a: 43:67:66:a6 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUWlL2BJ99CEE9jd40/CPDY3Wl2M8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYmUwYmI3ODg2OWNkYjJhZDBjOTcxYTZhODU4YTMwMjEz ZWFlYzQ3ZDAeFw0yNjAxMjAxNzUwMzRaFw0yNzAxMTkxNzU1MzRaMDMxMTAvBgNV BAMTKEVDNThCNDVFMzU0QTc0NjBGMzY3QjlDRUI2MDQyNEY1RkNERjc2RTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnFwRekVRTVdSc16pakhiCXnzE rcxWSBpAusYw6nDY7nUt9P0k/4izpZBdcw27yD2NkqSl+v0f+E1KJwJPyR7KTPEr iq9n8dsJLHwj5n0QMMCg/WS/AMh4+jhO6WxhoyVM39f4SDzrvFW6W62YyisRmuM1 +jHM+IHlCK3mE1HGffPIFe/aTtuwf0aO1JavPZeuO9VPaPf9YOrN59MjZAENd34F 6lrYE6hxjOU6gA2EzwhRcgZtum8LjkmXcI5KD1yz0rhPnClbQPnvIxTlOknybGLK CivBhZ43ywBH322NkQ8Z8vVLCtXPjV02VmibqvpD0Wx3lfeIwZbCvNQIJWLNAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQU7Fi0XjVKdGDzZ7nOtgQk9fzfduIwHwYDVR0j BBgwFoAUvgu3iGnNsq0MlxpqhYowIT6uxH0wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWMxNDMzODctZjAxMy00OTIyLTgzOGUtZTE4ODY0YmUx ZTRhLzAvQkUwQkI3ODg2OUNEQjJBRDBDOTcxQTZBODU4QTMwMjEzRUFFQzQ3RC5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3ZndTNpR25Oc3EwTWx4cHFoWW93SVQ2 dXhIMC5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWMxNDMzODct ZjAxMy00OTIyLTgzOGUtZTE4ODY0YmUxZTRhLzAvMzEzNzM4MmUzMjM0MzgyZTM3 MzkyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMTMzMzUzMzM5MzIucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BACy+E8wDQYJKoZIhvcNAQELBQADggEBAFyWAPsxAIAu6QsV7bIh0DznuCffXVK+ i8HFlMHRomUO3e0CKZHPTTO4yBdzTbfwphevDrN4rLs+s5Eyhzw6hp2jlMAfcFHK qvb91Ytq4InJ71on/e7Qmjy9miOusHIlS56zBaNManvtPcWxnoGD7wcsDtyISbPv uSHKnL51gpoOSHn2rCCnW46q43MyRanmCzapyta4d6vskqx/ypiuRGXV2JRt6vfr 7KOCF9aSRY1JsWMiHZD2Q9Oh1icytYyIpuI3v9qyb1gLrhTfeq2GyVuUnruhlxRp Hog+YJhJyXFXiNCFxV3f6R1nMBdcgn2GdSf3sL7bl5Zt4uIwSkNnZqY= -----END CERTIFICATE-----Generated at Tue Jan 27 05:37:25 2026 by rpki-client