This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/3139332e33392e392e302f32342d3234203d3e203339333638.roa File: 3139332e33392e392e302f32342d3234203d3e203339333638.roa (raw, json) Hash identifier: b0/cqO0kDv34iuhyURYcIs2GEfxWQJjxlG/AXwqFSqw= Subject key identifier: C2:14:F6:0D:DC:1C:CF:3D:68:0A:BE:B5:F0:1D:94:36:BB:B0:8B:AA Certificate issuer: /CN=70cbd7a9817e470009c0f40ea1e370aa79b5fd91 Certificate serial: 6E30BC1905183561617159A0A544869F7A91EABF Authority key identifier: 70:CB:D7:A9:81:7E:47:00:09:C0:F4:0E:A1:E3:70:AA:79:B5:FD:91 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cMvXqYF-RwAJwPQOoeNwqnm1_ZE.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/3139332e33392e392e302f32342d3234203d3e203339333638.roa Signing time: Wed 24 Dec 2025 19:55:32 +0000 ROA not before: Wed 24 Dec 2025 19:50:32 +0000 ROA not after: Wed 23 Dec 2026 19:55:32 +0000 asID: 39368 IP address blocks: 193.39.9.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/70CBD7A9817E470009C0F40EA1E370AA79B5FD91.crl rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/70CBD7A9817E470009C0F40EA1E370AA79B5FD91.mft rsync://rpki.ripe.net/repository/DEFAULT/cMvXqYF-RwAJwPQOoeNwqnm1_ZE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 05 Feb 2026 16:54:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:30:bc:19:05:18:35:61:61:71:59:a0:a5:44:86:9f:7a:91:ea:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=70cbd7a9817e470009c0f40ea1e370aa79b5fd91 Validity Not Before: Dec 24 19:50:32 2025 GMT Not After : Dec 23 19:55:32 2026 GMT Subject: CN=C214F60DDC1CCF3D680ABEB5F01D9436BBB08BAA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:3c:9a:58:7d:b8:3a:ab:58:ca:a7:49:35:a5: f0:a6:9e:16:d1:20:85:98:eb:f2:34:ef:ee:13:00: c2:eb:41:45:2f:0c:da:08:46:fa:15:0c:92:00:ea: 69:e0:c8:dd:13:1d:20:89:60:3f:23:ba:86:a3:28: 88:c4:fe:2f:5e:6f:57:ce:bf:4a:da:89:28:fc:dd: 14:57:e1:95:4c:0c:4f:8e:db:94:3a:85:8c:44:24: 59:42:f7:96:23:9d:d6:c5:cb:4a:e8:cc:ea:96:45: 30:e5:57:eb:c3:d7:0a:e1:08:4b:dd:1b:15:10:9c: 9b:f6:e7:2f:bc:fd:af:b5:69:2c:7f:38:af:8d:81: 8c:d2:38:f2:41:c8:bc:16:ee:8a:21:74:75:d7:0c: d5:7a:0d:7e:6e:30:b0:72:92:36:2f:52:3c:e8:eb: ce:07:f3:a4:ba:18:32:7a:35:b3:9d:e0:d7:bc:56: 2a:43:e8:db:03:e7:c8:18:da:b3:cf:c3:8e:96:3c: 26:ec:89:95:04:22:8c:62:d6:97:52:e6:62:c7:59: ca:df:96:b3:db:7f:58:63:b0:88:2e:f3:0a:18:de: b2:36:14:be:34:e4:d8:7a:d0:63:41:e2:07:a5:b5: bc:d0:1a:e8:ea:06:c7:fc:10:92:28:90:9b:8f:f1: 46:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:14:F6:0D:DC:1C:CF:3D:68:0A:BE:B5:F0:1D:94:36:BB:B0:8B:AA X509v3 Authority Key Identifier: keyid:70:CB:D7:A9:81:7E:47:00:09:C0:F4:0E:A1:E3:70:AA:79:B5:FD:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/70CBD7A9817E470009C0F40EA1E370AA79B5FD91.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cMvXqYF-RwAJwPQOoeNwqnm1_ZE.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/3139332e33392e392e302f32342d3234203d3e203339333638.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.39.9.0/24 Signature Algorithm: sha256WithRSAEncryption 9e:1f:31:13:3f:a2:12:1b:fa:32:b0:f8:61:26:5c:89:7c:b6: e8:9b:02:20:07:5b:b4:56:04:53:87:78:4f:31:91:28:07:f4: 0e:7b:b6:17:95:13:4d:30:7b:45:6a:28:eb:88:ef:a2:0d:64: 48:bb:15:0c:1c:9a:a5:61:e0:02:86:12:65:8a:6c:ed:4f:21: a2:bf:e8:2c:19:c2:b5:2d:c2:36:b5:8f:74:3f:69:56:23:e8: 6c:a2:d3:26:78:cc:d7:cf:8c:83:98:2c:bf:50:25:32:d0:a4: d8:31:37:57:5c:d1:d6:22:2a:54:9a:c5:e2:ff:f3:3d:fc:44: be:56:71:b5:00:bb:88:08:ff:89:6a:f2:ce:86:64:d8:86:72: 92:85:06:d5:60:cd:99:fc:a7:7c:2e:89:8a:92:43:7f:8d:97: 25:a5:14:fc:ad:30:bb:0d:d6:a5:5d:3a:7e:d0:ba:c1:d2:68: 6f:4b:6a:4c:ab:5a:c8:ac:8b:e0:ca:58:aa:fa:15:4f:6c:3c: d8:ab:f3:f3:7d:f9:be:be:d6:e2:83:0b:e8:36:d0:43:f6:cd: 6a:7b:c9:2c:f5:87:99:64:9f:51:b0:5b:09:bc:d7:db:b6:da: e1:b4:c8:51:cf:6f:3f:fa:fd:44:94:01:66:6d:0c:8e:c1:f2: 55:61:80:cb -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUbjC8GQUYNWFhcVmgpUSGn3qR6r8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzBjYmQ3YTk4MTdlNDcwMDA5YzBmNDBlYTFlMzcwYWE3 OWI1ZmQ5MTAeFw0yNTEyMjQxOTUwMzJaFw0yNjEyMjMxOTU1MzJaMDMxMTAvBgNV BAMTKEMyMTRGNjBEREMxQ0NGM0Q2ODBBQkVCNUYwMUQ5NDM2QkJCMDhCQUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLPJpYfbg6q1jKp0k1pfCmnhbR IIWY6/I07+4TAMLrQUUvDNoIRvoVDJIA6mngyN0THSCJYD8juoajKIjE/i9eb1fO v0raiSj83RRX4ZVMDE+O25Q6hYxEJFlC95YjndbFy0rozOqWRTDlV+vD1wrhCEvd GxUQnJv25y+8/a+1aSx/OK+NgYzSOPJByLwW7oohdHXXDNV6DX5uMLBykjYvUjzo 684H86S6GDJ6NbOd4Ne8VipD6NsD58gY2rPPw46WPCbsiZUEIoxi1pdS5mLHWcrf lrPbf1hjsIgu8woY3rI2FL405Nh60GNB4geltbzQGujqBsf8EJIokJuP8UZlAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUwhT2Ddwczz1oCr618B2UNruwi6owHwYDVR0j BBgwFoAUcMvXqYF+RwAJwPQOoeNwqnm1/ZEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYjczMzJhZjAtZGQ3My00NzU1LTlkMjAtNjkzZWE4Mjg5 ZjhhLzAvNzBDQkQ3QTk4MTdFNDcwMDA5QzBGNDBFQTFFMzcwQUE3OUI1RkQ5MS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2NNdlhxWUYtUndBSndQUU9vZU53cW5t MV9aRS5jZXIwgakGCCsGAQUFBwELBIGcMIGZMIGWBggrBgEFBQcwC4aBiXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYjczMzJhZjAt ZGQ3My00NzU1LTlkMjAtNjkzZWE4Mjg5ZjhhLzAvMzEzOTMzMmUzMzM5MmUzOTJl MzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMzMzkzMzM2Mzgucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADBJwkw DQYJKoZIhvcNAQELBQADggEBAJ4fMRM/ohIb+jKw+GEmXIl8tuibAiAHW7RWBFOH eE8xkSgH9A57theVE00we0VqKOuI76INZEi7FQwcmqVh4AKGEmWKbO1PIaK/6CwZ wrUtwja1j3Q/aVYj6Gyi0yZ4zNfPjIOYLL9QJTLQpNgxN1dc0dYiKlSaxeL/8z38 RL5WcbUAu4gI/4lq8s6GZNiGcpKFBtVgzZn8p3wuiYqSQ3+NlyWlFPytMLsN1qVd On7QusHSaG9LakyrWsisi+DKWKr6FU9sPNir8/N9+b6+1uKDC+g20EP2zWp7ySz1 h5lkn1GwWwm819u22uG0yFHPbz/6/USUAWZtDI7B8lVhgMs= -----END CERTIFICATE-----Generated at Wed Feb 4 20:17:51 2026 by rpki-client