This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/34352e31322e38302e302f32342d3234203d3e203538303631.roa File: 34352e31322e38302e302f32342d3234203d3e203538303631.roa (raw, json) Hash identifier: nRbSSNyT8RRia9XV8QvoqhHkoQ/gtULfnpJ4hPtkZj0= Subject key identifier: 2C:1A:A1:A6:C4:30:FA:E3:D1:E2:13:EC:A9:86:A4:8A:B4:A1:E1:38 Certificate issuer: /CN=70cbd7a9817e470009c0f40ea1e370aa79b5fd91 Certificate serial: 3728CDE727D96D091438F58AD75F0EF2698814D4 Authority key identifier: 70:CB:D7:A9:81:7E:47:00:09:C0:F4:0E:A1:E3:70:AA:79:B5:FD:91 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cMvXqYF-RwAJwPQOoeNwqnm1_ZE.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/34352e31322e38302e302f32342d3234203d3e203538303631.roa Signing time: Fri 09 Jan 2026 06:55:33 +0000 ROA not before: Fri 09 Jan 2026 06:50:33 +0000 ROA not after: Fri 08 Jan 2027 06:55:33 +0000 asID: 58061 IP address blocks: 45.12.80.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/70CBD7A9817E470009C0F40EA1E370AA79B5FD91.crl rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/70CBD7A9817E470009C0F40EA1E370AA79B5FD91.mft rsync://rpki.ripe.net/repository/DEFAULT/cMvXqYF-RwAJwPQOoeNwqnm1_ZE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 03:14:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:28:cd:e7:27:d9:6d:09:14:38:f5:8a:d7:5f:0e:f2:69:88:14:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=70cbd7a9817e470009c0f40ea1e370aa79b5fd91 Validity Not Before: Jan 9 06:50:33 2026 GMT Not After : Jan 8 06:55:33 2027 GMT Subject: CN=2C1AA1A6C430FAE3D1E213ECA986A48AB4A1E138 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:c5:f3:bd:b9:70:22:c5:af:f6:be:79:66:96: 0c:d0:3f:29:7a:7d:7c:6d:52:f1:cc:d2:f2:ca:7c: 42:8a:44:d6:29:84:10:2c:be:7b:0e:e3:6a:8a:6e: 6f:79:73:b9:5f:39:51:09:f3:fe:15:89:95:a3:7a: 7d:93:9d:bd:31:86:1f:df:79:3f:9e:fc:c8:7c:a5: e4:8e:4d:34:81:31:48:6e:f9:7c:26:9d:46:e0:5a: bd:53:4e:f8:7a:57:7f:cc:d1:c7:80:d7:17:f7:5b: b1:f3:ce:93:30:31:05:27:e7:82:08:17:c0:1a:95: 82:25:c1:5f:ea:9f:d6:1e:fd:93:6a:ff:e9:16:c8: ab:75:4a:f5:b5:75:06:4d:a7:67:f6:ab:a6:66:6d: 22:14:30:78:3f:0f:85:2b:20:5a:cf:ef:cd:91:82: 3b:8e:89:e5:cf:8e:ae:7a:cc:8b:5e:b2:bb:cf:2d: 30:c6:66:07:20:29:46:55:f9:d7:ef:2e:f4:62:fb: fd:ec:e0:43:78:4c:f7:e1:4a:f4:fd:fb:36:48:b7: f9:ec:c9:82:45:8a:65:24:28:50:ce:9b:33:c1:04: 8a:61:95:77:1c:a3:5a:84:19:3e:ca:49:14:0f:d4: 89:2d:a1:7a:0e:6c:34:21:7d:b7:36:f8:6d:28:cb: 5e:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:1A:A1:A6:C4:30:FA:E3:D1:E2:13:EC:A9:86:A4:8A:B4:A1:E1:38 X509v3 Authority Key Identifier: keyid:70:CB:D7:A9:81:7E:47:00:09:C0:F4:0E:A1:E3:70:AA:79:B5:FD:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/70CBD7A9817E470009C0F40EA1E370AA79B5FD91.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cMvXqYF-RwAJwPQOoeNwqnm1_ZE.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/34352e31322e38302e302f32342d3234203d3e203538303631.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.12.80.0/24 Signature Algorithm: sha256WithRSAEncryption c6:34:16:03:18:b6:de:c3:df:62:14:f3:ee:38:7b:83:db:b6: 97:19:e0:8e:c6:af:90:83:8d:b3:6f:07:dd:e4:c6:bd:73:dd: 45:ae:3a:4b:d6:19:98:7d:16:49:63:a8:81:65:12:de:19:6d: ac:2b:b4:9e:44:54:98:fd:fc:b9:b6:03:8e:7f:28:2a:0e:2a: f7:8e:ff:1c:07:aa:03:d1:59:19:e2:d4:30:3b:98:5d:f5:d3: 2d:93:08:38:2a:fa:91:90:33:7f:b5:23:a4:77:53:3b:49:a1: 70:24:50:3f:f3:75:e8:b1:0e:f2:5e:1b:a7:e2:d8:7e:1e:6d: 2e:32:08:49:c8:02:64:eb:3c:28:bd:d0:59:d1:98:ec:0b:db: d5:d6:5d:09:3c:4b:06:06:19:a0:9b:60:ca:2a:e0:5b:ec:ab: 4d:3a:33:6e:5e:c0:ab:5a:e8:d3:a7:33:7c:5c:65:8b:21:e7: 7b:34:86:58:f3:1e:eb:8f:1b:41:14:e0:68:2e:f7:5a:fa:cf: 42:94:f3:d5:64:6f:ea:b7:8c:44:94:4e:e8:e3:df:b6:5f:af: 8e:47:af:b9:60:26:5e:5e:0d:48:df:a3:7a:a5:35:a0:d1:db: 54:8a:e0:2f:55:0d:24:7f:a9:45:d2:d7:2d:d3:18:0f:47:92: f5:4d:21:ca -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUNyjN5yfZbQkUOPWK118O8mmIFNQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzBjYmQ3YTk4MTdlNDcwMDA5YzBmNDBlYTFlMzcwYWE3 OWI1ZmQ5MTAeFw0yNjAxMDkwNjUwMzNaFw0yNzAxMDgwNjU1MzNaMDMxMTAvBgNV BAMTKDJDMUFBMUE2QzQzMEZBRTNEMUUyMTNFQ0E5ODZBNDhBQjRBMUUxMzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCMxfO9uXAixa/2vnlmlgzQPyl6 fXxtUvHM0vLKfEKKRNYphBAsvnsO42qKbm95c7lfOVEJ8/4ViZWjen2Tnb0xhh/f eT+e/Mh8peSOTTSBMUhu+XwmnUbgWr1TTvh6V3/M0ceA1xf3W7HzzpMwMQUn54II F8AalYIlwV/qn9Ye/ZNq/+kWyKt1SvW1dQZNp2f2q6ZmbSIUMHg/D4UrIFrP782R gjuOieXPjq56zItesrvPLTDGZgcgKUZV+dfvLvRi+/3s4EN4TPfhSvT9+zZIt/ns yYJFimUkKFDOmzPBBIphlXcco1qEGT7KSRQP1IktoXoObDQhfbc2+G0oy17RAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQULBqhpsQw+uPR4hPsqYakirSh4TgwHwYDVR0j BBgwFoAUcMvXqYF+RwAJwPQOoeNwqnm1/ZEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYjczMzJhZjAtZGQ3My00NzU1LTlkMjAtNjkzZWE4Mjg5 ZjhhLzAvNzBDQkQ3QTk4MTdFNDcwMDA5QzBGNDBFQTFFMzcwQUE3OUI1RkQ5MS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2NNdlhxWUYtUndBSndQUU9vZU53cW5t MV9aRS5jZXIwgakGCCsGAQUFBwELBIGcMIGZMIGWBggrBgEFBQcwC4aBiXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYjczMzJhZjAt ZGQ3My00NzU1LTlkMjAtNjkzZWE4Mjg5ZjhhLzAvMzQzNTJlMzEzMjJlMzgzMDJl MzAyZjMyMzQyZDMyMzQyMDNkM2UyMDM1MzgzMDM2MzEucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAtDFAw DQYJKoZIhvcNAQELBQADggEBAMY0FgMYtt7D32IU8+44e4PbtpcZ4I7Gr5CDjbNv B93kxr1z3UWuOkvWGZh9FkljqIFlEt4ZbawrtJ5EVJj9/Lm2A45/KCoOKveO/xwH qgPRWRni1DA7mF310y2TCDgq+pGQM3+1I6R3UztJoXAkUD/zdeixDvJeG6fi2H4e bS4yCEnIAmTrPCi90FnRmOwL29XWXQk8SwYGGaCbYMoq4Fvsq006M25ewKta6NOn M3xcZYsh53s0hljzHuuPG0EU4Ggu91r6z0KU89Vkb+q3jESUTujj37Zfr45Hr7lg Jl5eDUjfo3qlNaDR21SK4C9VDSR/qUXS1y3TGA9HkvVNIco= -----END CERTIFICATE-----Generated at Mon Jan 19 20:01:55 2026 by rpki-client