This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/ccd3884a-c385-4b65-9866-4f6383172672/0/3134372e3132352e3230362e302f32342d3234203d3e203436343735.roa File: 3134372e3132352e3230362e302f32342d3234203d3e203436343735.roa (raw, json) Hash identifier: cN4/X5xM4kHlPGiw+RqLsFm9W95TfmH50eZDC56iwc4= Subject key identifier: 23:BC:F8:73:E1:7F:6F:6B:46:81:77:4F:3E:9F:A0:E4:77:E9:9C:83 Certificate issuer: /CN=6ccdc82bae7800f7d507c737924869bdeb5a76ea Certificate serial: 0EBF72920F087479B44C7C80489A140627959D68 Authority key identifier: 6C:CD:C8:2B:AE:78:00:F7:D5:07:C7:37:92:48:69:BD:EB:5A:76:EA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bM3IK654APfVB8c3kkhpvetaduo.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/ccd3884a-c385-4b65-9866-4f6383172672/0/3134372e3132352e3230362e302f32342d3234203d3e203436343735.roa Signing time: Tue 06 Jan 2026 15:06:07 +0000 ROA not before: Tue 06 Jan 2026 15:01:07 +0000 ROA not after: Tue 05 Jan 2027 15:06:07 +0000 asID: 46475 IP address blocks: 147.125.206.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/ccd3884a-c385-4b65-9866-4f6383172672/0/6CCDC82BAE7800F7D507C737924869BDEB5A76EA.crl rsync://rsync.paas.rpki.ripe.net/repository/ccd3884a-c385-4b65-9866-4f6383172672/0/6CCDC82BAE7800F7D507C737924869BDEB5A76EA.mft rsync://rpki.ripe.net/repository/DEFAULT/bM3IK654APfVB8c3kkhpvetaduo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 15:22:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:bf:72:92:0f:08:74:79:b4:4c:7c:80:48:9a:14:06:27:95:9d:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ccdc82bae7800f7d507c737924869bdeb5a76ea Validity Not Before: Jan 6 15:01:07 2026 GMT Not After : Jan 5 15:06:07 2027 GMT Subject: CN=23BCF873E17F6F6B4681774F3E9FA0E477E99C83 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:bc:aa:ba:92:15:7a:7f:62:52:e8:1a:79:49: f5:02:58:db:29:7a:0d:c4:12:bb:78:85:18:d4:9d: 1c:16:13:ec:3d:0c:c1:fc:ce:48:6e:f0:90:e6:67: 8b:1c:94:bb:fe:b8:1b:ef:d7:c5:75:c3:79:02:a4: cb:3d:83:fe:61:71:1a:54:78:53:35:3c:56:b0:fc: ce:69:f5:75:12:4a:83:d2:e2:bb:bd:72:f1:27:59: 62:e2:c6:bd:a0:3c:74:4e:bf:df:9f:f9:12:c3:8f: 27:83:a4:69:46:15:79:c5:9f:ba:9c:ce:37:61:16: 02:61:aa:8d:28:6e:00:c7:f3:ed:e9:34:cb:40:14: 17:83:b2:8d:ff:d0:ce:bd:72:33:f3:83:60:0c:4e: 7f:60:f3:15:2d:8f:eb:f7:49:97:be:6c:b1:1b:26: 7f:4b:89:31:11:c5:60:c8:f9:f3:56:57:1b:6a:1a: 2f:dd:85:da:6b:02:27:b6:f6:57:25:61:58:c0:5d: 89:ea:d9:6b:12:ba:33:60:6a:40:f0:f9:2b:f5:b9: 95:32:fb:d1:33:90:cf:cd:b2:44:66:94:ae:f9:4e: 9c:4f:87:38:f3:08:b2:66:d0:15:e5:d2:6b:ac:aa: 99:9f:ff:26:1e:9a:03:63:8e:f5:13:df:0b:a5:60: 5b:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:BC:F8:73:E1:7F:6F:6B:46:81:77:4F:3E:9F:A0:E4:77:E9:9C:83 X509v3 Authority Key Identifier: keyid:6C:CD:C8:2B:AE:78:00:F7:D5:07:C7:37:92:48:69:BD:EB:5A:76:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/ccd3884a-c385-4b65-9866-4f6383172672/0/6CCDC82BAE7800F7D507C737924869BDEB5A76EA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bM3IK654APfVB8c3kkhpvetaduo.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/ccd3884a-c385-4b65-9866-4f6383172672/0/3134372e3132352e3230362e302f32342d3234203d3e203436343735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 147.125.206.0/24 Signature Algorithm: sha256WithRSAEncryption 12:f9:60:65:7d:04:14:a2:b8:4c:1f:69:28:ea:7e:36:4d:df: ae:13:16:1a:c3:33:b0:f2:ac:9d:67:1e:43:3d:89:fc:53:fd: 54:e3:cf:92:44:79:34:08:15:f3:f4:87:07:0b:10:78:87:e7: 89:64:ae:18:ea:0e:c9:8c:25:f6:c6:9b:32:a4:dd:b4:f9:87: 97:db:12:95:54:a1:bb:f5:31:b5:23:82:a9:75:c2:b3:cb:79: 97:3d:dd:73:63:3a:80:ff:9a:e5:5e:ea:52:05:e8:ae:1a:4e: 51:3b:33:b0:b2:2f:95:c8:12:81:eb:cd:d8:2a:9d:e9:4e:fc: c8:bc:21:b0:d6:6b:3b:5c:e6:67:b1:2c:1d:a2:33:3e:63:e7: e1:d3:bf:09:00:d5:96:e5:c2:53:bc:62:25:70:82:8d:21:55: 31:36:47:10:23:08:df:6b:34:6f:1f:8a:4e:2c:ab:ba:b3:2c: fc:61:e1:cf:8a:ea:a9:31:8d:74:bc:e4:fe:80:19:ec:ed:c2: 23:ae:4e:d4:90:0b:f2:5b:92:41:ef:fe:f7:b6:b7:f9:f4:b0: 67:0f:fa:b2:90:8e:9b:86:55:04:83:f9:13:7b:dc:7d:b9:31: 9c:31:f1:1f:b8:e5:d4:a6:02:22:a8:c0:55:8e:0c:9c:7f:f3: 81:22:8b:31 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUDr9ykg8IdHm0THyASJoUBieVnWgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNmNjZGM4MmJhZTc4MDBmN2Q1MDdjNzM3OTI0ODY5YmRl YjVhNzZlYTAeFw0yNjAxMDYxNTAxMDdaFw0yNzAxMDUxNTA2MDdaMDMxMTAvBgNV BAMTKDIzQkNGODczRTE3RjZGNkI0NjgxNzc0RjNFOUZBMEU0NzdFOTlDODMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2vKq6khV6f2JS6Bp5SfUCWNsp eg3EErt4hRjUnRwWE+w9DMH8zkhu8JDmZ4sclLv+uBvv18V1w3kCpMs9g/5hcRpU eFM1PFaw/M5p9XUSSoPS4ru9cvEnWWLixr2gPHROv9+f+RLDjyeDpGlGFXnFn7qc zjdhFgJhqo0obgDH8+3pNMtAFBeDso3/0M69cjPzg2AMTn9g8xUtj+v3SZe+bLEb Jn9LiTERxWDI+fNWVxtqGi/dhdprAie29lclYVjAXYnq2WsSujNgakDw+Sv1uZUy +9EzkM/NskRmlK75TpxPhzjzCLJm0BXl0musqpmf/yYemgNjjvUT3wulYFtDAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUI7z4c+F/b2tGgXdPPp+g5HfpnIMwHwYDVR0j BBgwFoAUbM3IK654APfVB8c3kkhpvetaduowDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvY2NkMzg4NGEtYzM4NS00YjY1LTk4NjYtNGY2MzgzMTcy NjcyLzAvNkNDREM4MkJBRTc4MDBGN0Q1MDdDNzM3OTI0ODY5QkRFQjVBNzZFQS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2JNM0lLNjU0QVBmVkI4YzNra2hwdmV0 YWR1by5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvY2NkMzg4NGEt YzM4NS00YjY1LTk4NjYtNGY2MzgzMTcyNjcyLzAvMzEzNDM3MmUzMTMyMzUyZTMy MzAzNjJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDM0MzYzNDM3MzUucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BACTfc4wDQYJKoZIhvcNAQELBQADggEBABL5YGV9BBSiuEwfaSjqfjZN364TFhrD M7DyrJ1nHkM9ifxT/VTjz5JEeTQIFfP0hwcLEHiH54lkrhjqDsmMJfbGmzKk3bT5 h5fbEpVUobv1MbUjgql1wrPLeZc93XNjOoD/muVe6lIF6K4aTlE7M7CyL5XIEoHr zdgqnelO/Mi8IbDWaztc5mexLB2iMz5j5+HTvwkA1ZblwlO8YiVwgo0hVTE2RxAj CN9rNG8fik4sq7qzLPxh4c+K6qkxjXS85P6AGeztwiOuTtSQC/JbkkHv/ve2t/n0 sGcP+rKQjpuGVQSD+RN73H25MZwx8R+45dSmAiKowFWODJx/84EiizE= -----END CERTIFICATE-----Generated at Wed Jan 21 17:33:57 2026 by rpki-client