This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3138352e342e3232302e302f32342d3234203d3e203630393439.roa File: 3138352e342e3232302e302f32342d3234203d3e203630393439.roa (raw, json) Hash identifier: aCQLtsESUafO17Uoj+xwThl6gj6qBUDGnVchCbEXt9k= Subject key identifier: 42:12:75:12:FA:00:AC:AC:8C:D7:BD:1D:E4:2F:3C:A7:A7:8A:23:8B Certificate issuer: /CN=7adf63e375b0b785081b5945b1d18d9de86e0efc Certificate serial: 17C6322A3E96E1D176452F31E48D91B19B778E80 Authority key identifier: 7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3138352e342e3232302e302f32342d3234203d3e203630393439.roa Signing time: Wed 31 Dec 2025 13:55:33 +0000 ROA not before: Wed 31 Dec 2025 13:50:33 +0000 ROA not after: Wed 30 Dec 2026 13:55:33 +0000 asID: 60949 IP address blocks: 185.4.220.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.mft rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 31 Jan 2026 20:59:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:c6:32:2a:3e:96:e1:d1:76:45:2f:31:e4:8d:91:b1:9b:77:8e:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7adf63e375b0b785081b5945b1d18d9de86e0efc Validity Not Before: Dec 31 13:50:33 2025 GMT Not After : Dec 30 13:55:33 2026 GMT Subject: CN=42127512FA00ACAC8CD7BD1DE42F3CA7A78A238B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:74:cb:6c:62:6d:79:92:85:b6:67:ae:be:6f: 4a:6c:6d:08:9c:8f:21:f0:38:7a:08:63:73:33:06: 14:71:1b:39:7e:6a:2e:8d:b2:bd:4d:c0:44:88:0d: a3:0f:ad:30:c0:3f:c9:48:1a:54:44:55:47:6a:e2: 7e:95:c5:ea:41:ee:3c:2c:bb:38:a5:53:f4:f0:6b: d1:c2:67:b1:f1:bc:cb:23:ad:c3:59:30:da:c0:91: bf:db:21:4a:ae:89:02:a5:a0:21:ad:94:86:19:32: c4:f9:4d:d6:4d:22:90:e3:94:5d:c8:0e:2a:48:76: b4:10:94:2f:2e:49:91:cd:cf:c5:83:56:b2:19:48: 81:d9:df:fe:cc:87:d5:a8:ce:9c:0e:09:3f:5e:67: d2:2f:05:d0:50:70:f1:81:b2:79:59:b9:ae:57:ad: 0e:3d:d4:2f:2d:af:f2:70:03:8e:71:d2:ff:de:00: f5:ee:5a:5a:04:93:19:39:36:6e:bb:5f:fa:4b:87: 43:34:d1:a8:f9:3e:85:a8:bd:8f:82:5e:bc:ce:2e: 78:29:62:9f:2b:1f:11:0d:00:ab:e8:c8:26:a3:e6: c5:f3:34:98:b6:b7:2d:9a:f0:51:91:4b:73:d8:6c: bf:34:25:fa:d8:2d:f6:8b:74:d4:70:6f:61:7d:c7: 54:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:12:75:12:FA:00:AC:AC:8C:D7:BD:1D:E4:2F:3C:A7:A7:8A:23:8B X509v3 Authority Key Identifier: keyid:7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3138352e342e3232302e302f32342d3234203d3e203630393439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.4.220.0/24 Signature Algorithm: sha256WithRSAEncryption ab:cc:74:9c:1d:f9:69:58:b4:56:d2:d5:c5:5a:07:df:18:62: 54:64:b4:e4:31:d9:0f:b1:97:dd:46:0d:c7:06:35:f8:e1:6f: 32:dc:37:3e:27:51:d8:9b:1e:20:f6:c7:d0:c4:9e:62:35:09: 89:c9:cf:d2:23:02:32:9f:2e:0e:2c:77:ec:72:54:3a:6a:c2: f8:9f:c4:9f:bf:68:37:ca:7e:64:83:01:74:d0:6c:56:c9:71: 4b:8a:6b:eb:df:d3:db:6f:e6:ac:5e:19:13:79:54:22:d4:2f: 2d:aa:f0:d0:29:e4:53:5f:7b:3b:58:e9:34:a3:25:41:1a:3f: 44:9e:81:03:78:6d:95:78:5a:d1:04:fe:af:97:f8:53:89:e7: b3:e2:f2:e6:9c:dc:f6:a8:41:10:23:fc:78:02:2e:37:b5:dc: 88:31:c5:df:94:3a:3a:5b:6f:32:fc:cd:c9:6c:4d:3b:74:88: 0b:84:45:bb:ae:aa:e5:9f:25:a0:b4:1c:3e:52:87:a7:25:72: 82:33:c9:41:c9:c3:46:e8:39:7d:a2:96:36:b5:d8:5d:94:0b: 61:d6:62:02:56:d1:11:25:9d:a5:11:dd:8c:4c:07:c5:68:ad: d7:1a:0d:98:03:d7:5e:ad:7b:04:17:8a:1f:33:8f:92:0f:4c: d8:11:99:48 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUF8YyKj6W4dF2RS8x5I2RsZt3joAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN2FkZjYzZTM3NWIwYjc4NTA4MWI1OTQ1YjFkMThkOWRl ODZlMGVmYzAeFw0yNTEyMzExMzUwMzNaFw0yNjEyMzAxMzU1MzNaMDMxMTAvBgNV BAMTKDQyMTI3NTEyRkEwMEFDQUM4Q0Q3QkQxREU0MkYzQ0E3QTc4QTIzOEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvdMtsYm15koW2Z66+b0psbQic jyHwOHoIY3MzBhRxGzl+ai6Nsr1NwESIDaMPrTDAP8lIGlREVUdq4n6VxepB7jws uzilU/Twa9HCZ7HxvMsjrcNZMNrAkb/bIUquiQKloCGtlIYZMsT5TdZNIpDjlF3I DipIdrQQlC8uSZHNz8WDVrIZSIHZ3/7Mh9WozpwOCT9eZ9IvBdBQcPGBsnlZua5X rQ491C8tr/JwA45x0v/eAPXuWloEkxk5Nm67X/pLh0M00aj5PoWovY+CXrzOLngp Yp8rHxENAKvoyCaj5sXzNJi2ty2a8FGRS3PYbL80JfrYLfaLdNRwb2F9x1S/AgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUQhJ1EvoArKyM170d5C88p6eKI4swHwYDVR0j BBgwFoAUet9j43Wwt4UIG1lFsdGNnehuDvwwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWVlM2Q1OGQtOTA0YS00Mzc1LWJmOTMtOGI1ZjM4Y2Fi MDAyLzAvN0FERjYzRTM3NUIwQjc4NTA4MUI1OTQ1QjFEMThEOURFODZFMEVGQy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2V0OWo0M1d3dDRVSUcxbEZzZEdObmVo dUR2dy5jZXIwgasGCCsGAQUFBwELBIGeMIGbMIGYBggrBgEFBQcwC4aBi3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWVlM2Q1OGQt OTA0YS00Mzc1LWJmOTMtOGI1ZjM4Y2FiMDAyLzAvMzEzODM1MmUzNDJlMzIzMjMw MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzYzMDM5MzQzOS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALkE 3DANBgkqhkiG9w0BAQsFAAOCAQEAq8x0nB35aVi0VtLVxVoH3xhiVGS05DHZD7GX 3UYNxwY1+OFvMtw3PidR2JseIPbH0MSeYjUJicnP0iMCMp8uDix37HJUOmrC+J/E n79oN8p+ZIMBdNBsVslxS4pr69/T22/mrF4ZE3lUItQvLarw0CnkU197O1jpNKMl QRo/RJ6BA3htlXha0QT+r5f4U4nns+Ly5pzc9qhBECP8eAIuN7XciDHF35Q6Oltv MvzNyWxNO3SIC4RFu66q5Z8loLQcPlKHpyVygjPJQcnDRug5faKWNrXYXZQLYdZi AlbRESWdpRHdjEwHxWit1xoNmAPXXq17BBeKHzOPkg9M2BGZSA== -----END CERTIFICATE-----Generated at Sat Jan 31 04:53:55 2026 by rpki-client