This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3138342e302f32342d3234203d3e203136323736.roa File: 3130392e3131302e3138342e302f32342d3234203d3e203136323736.roa (raw, json) Hash identifier: aXzje4SQSf/NPoyyp4WQPgVUJsSsEDaZzBSsWFsrKBk= Subject key identifier: DA:4C:32:5F:16:17:13:52:07:37:C8:E4:76:4E:9C:8C:A8:B0:49:E6 Certificate issuer: /CN=7adf63e375b0b785081b5945b1d18d9de86e0efc Certificate serial: 6BE4BD21FB308171BEE7E59667725F410C68C4E2 Authority key identifier: 7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3138342e302f32342d3234203d3e203136323736.roa Signing time: Fri 26 Dec 2025 21:55:32 +0000 ROA not before: Fri 26 Dec 2025 21:50:32 +0000 ROA not after: Fri 25 Dec 2026 21:55:32 +0000 asID: 16276 IP address blocks: 109.110.184.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.mft rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 08:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:e4:bd:21:fb:30:81:71:be:e7:e5:96:67:72:5f:41:0c:68:c4:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7adf63e375b0b785081b5945b1d18d9de86e0efc Validity Not Before: Dec 26 21:50:32 2025 GMT Not After : Dec 25 21:55:32 2026 GMT Subject: CN=DA4C325F161713520737C8E4764E9C8CA8B049E6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:3b:77:eb:56:d7:f4:38:42:09:da:45:de:d5: f1:49:d1:ae:1b:2e:b7:e0:41:59:e3:cd:29:dc:a4: a4:8b:79:ef:52:38:03:7c:d6:ec:cd:ea:d5:08:56: 08:9b:d7:f0:27:82:a0:78:f1:8e:8a:6f:cc:c3:13: 36:53:15:80:ba:c2:38:bb:5b:c0:24:4e:6b:eb:59: f9:a9:27:63:57:44:79:49:72:b7:ec:9b:66:1e:31: f7:b9:97:e1:86:1f:5b:80:b5:15:69:3a:9d:54:22: 15:69:13:7b:86:04:1b:4a:51:d5:7e:80:b5:34:e1: 93:0e:b1:80:f9:34:23:52:e0:8f:1a:7d:2c:14:91: 18:81:1c:2b:1c:00:9a:73:3e:5a:96:79:8f:39:7d: 99:a2:49:72:92:5b:32:ee:df:60:8f:18:58:3f:26: e7:6e:cc:1d:51:d8:85:77:e1:5c:7b:27:22:b4:8c: 54:04:3e:3e:a9:fa:2e:d2:77:1d:2c:c2:dd:3a:a8: bf:e3:bd:d9:45:b6:95:42:29:16:95:e4:77:65:08: 81:0d:74:18:5e:a2:93:ff:19:9e:76:b1:16:2a:6d: ab:67:56:69:26:9c:a1:ef:7e:37:8d:c9:5e:45:55: cd:04:1c:52:0b:22:82:e6:1f:0f:03:e4:24:4e:1f: 97:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:4C:32:5F:16:17:13:52:07:37:C8:E4:76:4E:9C:8C:A8:B0:49:E6 X509v3 Authority Key Identifier: keyid:7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3138342e302f32342d3234203d3e203136323736.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 109.110.184.0/24 Signature Algorithm: sha256WithRSAEncryption 3c:05:7f:67:f1:6d:c3:13:42:29:55:d1:19:1e:6a:53:ea:5e: c5:93:d0:f5:35:f0:00:06:38:28:0b:2f:69:29:33:c6:6a:d2: 48:9d:73:4c:77:63:31:83:e3:8f:06:00:27:b8:24:bc:ba:4e: 64:c5:93:a2:de:3f:65:70:5d:8a:1b:00:28:e7:a2:1f:32:85: 92:4a:7e:f7:ce:6e:07:36:68:e4:5d:66:0c:49:ea:9a:69:89: 6d:fa:b3:4f:f1:ad:ec:c4:82:47:de:d0:22:2e:37:09:12:7a: ae:d5:19:45:fd:67:b2:12:b0:b3:fd:57:d7:7f:0f:03:b9:ab: 6f:a3:e1:41:a8:03:fb:be:5a:cc:df:a6:3a:d7:79:2a:40:46: 98:29:fb:78:10:81:8f:3b:ca:83:14:36:49:ff:3e:e5:52:e0: df:b4:bf:cd:4f:e6:d5:62:77:73:ad:0b:44:68:dd:6d:38:03: d3:39:d0:e8:88:f0:14:7c:39:d3:df:d8:04:a7:4a:73:54:56: 53:ac:fe:30:04:c5:27:f7:bb:ae:22:ab:bd:8f:8b:dc:2a:01: f4:08:ce:76:37:20:63:ac:b2:c4:d7:a2:1b:21:10:6e:84:7b: 00:49:89:5d:90:f3:ec:14:5f:51:01:fc:d4:6d:3c:61:b1:17: 72:29:f4:4d -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUa+S9IfswgXG+5+WWZ3JfQQxoxOIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN2FkZjYzZTM3NWIwYjc4NTA4MWI1OTQ1YjFkMThkOWRl ODZlMGVmYzAeFw0yNTEyMjYyMTUwMzJaFw0yNjEyMjUyMTU1MzJaMDMxMTAvBgNV BAMTKERBNEMzMjVGMTYxNzEzNTIwNzM3QzhFNDc2NEU5QzhDQThCMDQ5RTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpO3frVtf0OEIJ2kXe1fFJ0a4b LrfgQVnjzSncpKSLee9SOAN81uzN6tUIVgib1/AngqB48Y6Kb8zDEzZTFYC6wji7 W8AkTmvrWfmpJ2NXRHlJcrfsm2YeMfe5l+GGH1uAtRVpOp1UIhVpE3uGBBtKUdV+ gLU04ZMOsYD5NCNS4I8afSwUkRiBHCscAJpzPlqWeY85fZmiSXKSWzLu32CPGFg/ JuduzB1R2IV34Vx7JyK0jFQEPj6p+i7Sdx0swt06qL/jvdlFtpVCKRaV5HdlCIEN dBheopP/GZ52sRYqbatnVmkmnKHvfjeNyV5FVc0EHFILIoLmHw8D5CROH5epAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQU2kwyXxYXE1IHN8jkdk6cjKiwSeYwHwYDVR0j BBgwFoAUet9j43Wwt4UIG1lFsdGNnehuDvwwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWVlM2Q1OGQtOTA0YS00Mzc1LWJmOTMtOGI1ZjM4Y2Fi MDAyLzAvN0FERjYzRTM3NUIwQjc4NTA4MUI1OTQ1QjFEMThEOURFODZFMEVGQy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2V0OWo0M1d3dDRVSUcxbEZzZEdObmVo dUR2dy5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWVlM2Q1OGQt OTA0YS00Mzc1LWJmOTMtOGI1ZjM4Y2FiMDAyLzAvMzEzMDM5MmUzMTMxMzAyZTMx MzgzNDJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzYzMjM3MzYucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABtbrgwDQYJKoZIhvcNAQELBQADggEBADwFf2fxbcMTQilV0RkealPqXsWT0PU1 8AAGOCgLL2kpM8Zq0kidc0x3YzGD448GACe4JLy6TmTFk6LeP2VwXYobACjnoh8y hZJKfvfObgc2aORdZgxJ6pppiW36s0/xrezEgkfe0CIuNwkSeq7VGUX9Z7ISsLP9 V9d/DwO5q2+j4UGoA/u+WszfpjrXeSpARpgp+3gQgY87yoMUNkn/PuVS4N+0v81P 5tVid3OtC0Ro3W04A9M50OiI8BR8OdPf2ASnSnNUVlOs/jAExSf3u64iq72Pi9wq AfQIznY3IGOsssTXohshEG6EewBJiV2Q8+wUX1EB/NRtPGGxF3Ip9E0= -----END CERTIFICATE-----Generated at Mon Jan 19 14:07:39 2026 by rpki-client