This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/ccd3884a-c385-4b65-9866-4f6383172672/0/3134372e3132352e3231342e302f32342d3234203d3e20323131343135.roa File: 3134372e3132352e3231342e302f32342d3234203d3e20323131343135.roa (raw, json) Hash identifier: Wmiyju65ImAV25l2Q09sGa8y5BwAZAYA6eCOZ7kuV9c= Subject key identifier: 17:4F:D7:00:BC:D0:7F:65:BE:9F:11:25:7B:A1:AF:60:88:5D:63:19 Certificate issuer: /CN=6ccdc82bae7800f7d507c737924869bdeb5a76ea Certificate serial: 14F9CAB71B2EB2E2C1D2A7D222416C515C89DF4B Authority key identifier: 6C:CD:C8:2B:AE:78:00:F7:D5:07:C7:37:92:48:69:BD:EB:5A:76:EA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bM3IK654APfVB8c3kkhpvetaduo.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/ccd3884a-c385-4b65-9866-4f6383172672/0/3134372e3132352e3231342e302f32342d3234203d3e20323131343135.roa Signing time: Fri 09 Jan 2026 10:40:09 +0000 ROA not before: Fri 09 Jan 2026 10:35:09 +0000 ROA not after: Fri 08 Jan 2027 10:40:09 +0000 asID: 211415 IP address blocks: 147.125.214.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/ccd3884a-c385-4b65-9866-4f6383172672/0/6CCDC82BAE7800F7D507C737924869BDEB5A76EA.crl rsync://rsync.paas.rpki.ripe.net/repository/ccd3884a-c385-4b65-9866-4f6383172672/0/6CCDC82BAE7800F7D507C737924869BDEB5A76EA.mft rsync://rpki.ripe.net/repository/DEFAULT/bM3IK654APfVB8c3kkhpvetaduo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 12:44:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:f9:ca:b7:1b:2e:b2:e2:c1:d2:a7:d2:22:41:6c:51:5c:89:df:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ccdc82bae7800f7d507c737924869bdeb5a76ea Validity Not Before: Jan 9 10:35:09 2026 GMT Not After : Jan 8 10:40:09 2027 GMT Subject: CN=174FD700BCD07F65BE9F11257BA1AF60885D6319 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:bb:ec:9c:72:58:0b:12:19:0e:78:16:50:05: d6:70:db:e8:66:15:13:15:ac:01:91:9c:76:6d:ec: be:2e:20:7d:3d:b6:bf:4e:31:53:04:6f:cb:d1:ee: 13:03:f2:fc:63:08:30:94:f8:56:e3:90:cf:f9:86: b5:91:a2:7f:a4:de:26:c7:d9:6c:df:9f:e2:aa:09: 70:f8:35:60:a6:84:cd:2d:7d:1a:3f:a5:20:7c:65: 51:53:93:74:03:cc:83:3f:c6:11:ae:ef:9d:6d:61: c5:d1:0d:c9:17:53:55:37:4b:b4:6d:75:75:78:a8: 79:54:8b:69:0b:f0:fe:d2:26:ed:6c:d3:30:6b:93: 8b:7c:cb:58:02:a1:e3:84:0c:c4:5a:47:b1:00:e7: 4c:76:2d:c8:25:57:cf:72:0d:39:15:12:08:c2:fe: 8b:c5:18:55:e2:0d:ff:cd:cc:a5:1e:32:28:a6:df: 20:17:9a:6d:4b:b3:7a:7e:86:6b:36:fa:d5:4c:39: 7c:b3:f1:bb:aa:2a:13:bf:95:79:44:37:09:b1:60: 51:c8:88:b7:83:3c:da:3d:f3:91:f8:39:22:8f:2a: ee:e8:69:42:0a:82:2d:fa:cc:f7:85:e6:35:e2:7d: 3f:26:a1:52:65:73:0d:78:61:80:ab:05:6f:be:ff: 39:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:4F:D7:00:BC:D0:7F:65:BE:9F:11:25:7B:A1:AF:60:88:5D:63:19 X509v3 Authority Key Identifier: keyid:6C:CD:C8:2B:AE:78:00:F7:D5:07:C7:37:92:48:69:BD:EB:5A:76:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/ccd3884a-c385-4b65-9866-4f6383172672/0/6CCDC82BAE7800F7D507C737924869BDEB5A76EA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bM3IK654APfVB8c3kkhpvetaduo.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/ccd3884a-c385-4b65-9866-4f6383172672/0/3134372e3132352e3231342e302f32342d3234203d3e20323131343135.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 147.125.214.0/24 Signature Algorithm: sha256WithRSAEncryption 0f:0d:c1:1a:a0:b0:86:e9:44:67:5c:f2:9c:71:b5:aa:33:46: 4a:5f:16:aa:24:2f:84:1a:b6:a6:66:f6:52:93:1a:8b:a0:ff: b2:b9:9e:31:31:28:31:a3:df:d6:d3:b3:fa:0d:20:a4:87:ef: 41:1e:a4:39:29:1e:b9:96:26:80:be:99:ce:06:bf:88:7d:47: 99:8f:c4:c7:33:ca:c7:eb:36:6e:ec:f5:34:f4:7e:ca:ef:ed: dc:54:0c:74:85:0a:ea:4c:8e:21:ce:0d:ca:21:62:8e:49:fd: d0:81:41:6a:5c:57:24:c9:4d:97:25:89:eb:64:b8:a8:df:5f: 08:01:6e:4e:60:73:15:89:9a:e7:5a:95:00:88:ff:b1:13:1b: 1d:8f:a2:ed:20:c2:f7:e3:76:ff:9b:45:cc:43:56:5f:57:e0: 03:64:0e:3d:e9:39:f5:ac:34:3a:89:27:2f:3d:2a:f4:c6:26: d2:24:9c:61:6f:b8:7a:27:d4:f7:b7:8f:5b:0e:6a:a4:5f:eb: 5f:91:c3:20:05:88:c0:4a:04:12:12:bb:5a:48:94:cf:c6:3f: 2b:a2:3e:57:e7:64:58:24:e2:11:38:28:1a:e2:ab:ef:7b:d5: 03:2c:e6:8c:99:fa:33:21:5c:69:5c:d3:7b:62:df:45:79:7b: 5d:cb:e1:02 -----BEGIN CERTIFICATE----- MIIFNzCCBB+gAwIBAgIUFPnKtxsusuLB0qfSIkFsUVyJ30swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNmNjZGM4MmJhZTc4MDBmN2Q1MDdjNzM3OTI0ODY5YmRl YjVhNzZlYTAeFw0yNjAxMDkxMDM1MDlaFw0yNzAxMDgxMDQwMDlaMDMxMTAvBgNV BAMTKDE3NEZENzAwQkNEMDdGNjVCRTlGMTEyNTdCQTFBRjYwODg1RDYzMTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCru+ycclgLEhkOeBZQBdZw2+hm FRMVrAGRnHZt7L4uIH09tr9OMVMEb8vR7hMD8vxjCDCU+FbjkM/5hrWRon+k3ibH 2Wzfn+KqCXD4NWCmhM0tfRo/pSB8ZVFTk3QDzIM/xhGu751tYcXRDckXU1U3S7Rt dXV4qHlUi2kL8P7SJu1s0zBrk4t8y1gCoeOEDMRaR7EA50x2LcglV89yDTkVEgjC /ovFGFXiDf/NzKUeMiim3yAXmm1Ls3p+hms2+tVMOXyz8buqKhO/lXlENwmxYFHI iLeDPNo985H4OSKPKu7oaUIKgi36zPeF5jXifT8moVJlcw14YYCrBW++/zmXAgMB AAGjggJBMIICPTAdBgNVHQ4EFgQUF0/XALzQf2W+nxEle6GvYIhdYxkwHwYDVR0j BBgwFoAUbM3IK654APfVB8c3kkhpvetaduowDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvY2NkMzg4NGEtYzM4NS00YjY1LTk4NjYtNGY2MzgzMTcy NjcyLzAvNkNDREM4MkJBRTc4MDBGN0Q1MDdDNzM3OTI0ODY5QkRFQjVBNzZFQS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2JNM0lLNjU0QVBmVkI4YzNra2hwdmV0 YWR1by5jZXIwgbEGCCsGAQUFBwELBIGkMIGhMIGeBggrBgEFBQcwC4aBkXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvY2NkMzg4NGEt YzM4NS00YjY1LTk4NjYtNGY2MzgzMTcyNjcyLzAvMzEzNDM3MmUzMTMyMzUyZTMy MzEzNDJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMyMzEzMTM0MzEzNS5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAJN91jANBgkqhkiG9w0BAQsFAAOCAQEADw3BGqCwhulEZ1zynHG1qjNGSl8W qiQvhBq2pmb2UpMai6D/srmeMTEoMaPf1tOz+g0gpIfvQR6kOSkeuZYmgL6Zzga/ iH1HmY/ExzPKx+s2buz1NPR+yu/t3FQMdIUK6kyOIc4NyiFijkn90IFBalxXJMlN lyWJ62S4qN9fCAFuTmBzFYma51qVAIj/sRMbHY+i7SDC9+N2/5tFzENWX1fgA2QO Pek59aw0OoknLz0q9MYm0iScYW+4eifU97ePWw5qpF/rX5HDIAWIwEoEEhK7WkiU z8Y/K6I+V+dkWCTiETgoGuKr73vVAyzmjJn6MyFcaVzTe2LfRXl7XcvhAg== -----END CERTIFICATE-----Generated at Mon Jan 19 23:22:26 2026 by rpki-client