This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/ccd3884a-c385-4b65-9866-4f6383172672/0/3134372e3132352e3231352e302f32342d3234203d3e203239383032.roa File: 3134372e3132352e3231352e302f32342d3234203d3e203239383032.roa (raw, json) Hash identifier: ShfCiWjrGE85UsFGSUs0DcXpQ+vx8XaEMDvh0ezkheE= Subject key identifier: F5:FD:5C:C8:BC:2A:73:82:66:93:25:49:CC:B7:51:32:D8:BB:47:E2 Certificate issuer: /CN=6ccdc82bae7800f7d507c737924869bdeb5a76ea Certificate serial: 2675872AD99A33A9B2C271C66B976300EF1E8560 Authority key identifier: 6C:CD:C8:2B:AE:78:00:F7:D5:07:C7:37:92:48:69:BD:EB:5A:76:EA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bM3IK654APfVB8c3kkhpvetaduo.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/ccd3884a-c385-4b65-9866-4f6383172672/0/3134372e3132352e3231352e302f32342d3234203d3e203239383032.roa Signing time: Thu 29 Jan 2026 03:24:25 +0000 ROA not before: Thu 29 Jan 2026 03:19:25 +0000 ROA not after: Thu 28 Jan 2027 03:24:25 +0000 asID: 29802 IP address blocks: 147.125.215.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/ccd3884a-c385-4b65-9866-4f6383172672/0/6CCDC82BAE7800F7D507C737924869BDEB5A76EA.crl rsync://rsync.paas.rpki.ripe.net/repository/ccd3884a-c385-4b65-9866-4f6383172672/0/6CCDC82BAE7800F7D507C737924869BDEB5A76EA.mft rsync://rpki.ripe.net/repository/DEFAULT/bM3IK654APfVB8c3kkhpvetaduo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 30 Jan 2026 06:26:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:75:87:2a:d9:9a:33:a9:b2:c2:71:c6:6b:97:63:00:ef:1e:85:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ccdc82bae7800f7d507c737924869bdeb5a76ea Validity Not Before: Jan 29 03:19:25 2026 GMT Not After : Jan 28 03:24:25 2027 GMT Subject: CN=F5FD5CC8BC2A738266932549CCB75132D8BB47E2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:28:1b:ff:ae:c2:43:b5:2d:c3:85:2c:06:e5: 4b:d8:77:57:cd:69:30:0f:a7:a2:de:96:ea:72:74: 75:61:7d:d9:49:2e:1b:7f:b8:5d:03:92:f2:37:46: 01:f3:8f:87:eb:a3:9d:27:88:09:c7:58:a5:6a:94: b6:52:8a:72:97:c9:9a:4a:03:44:94:53:42:74:c1: 36:b1:18:10:e9:30:df:70:19:ef:da:17:38:9a:cb: 6f:11:cd:4f:be:9a:7a:9e:cf:16:4c:ab:28:62:6e: e2:8c:de:17:2c:6a:a4:67:2f:f2:c3:12:0c:c4:32: 03:70:0c:51:c6:50:51:68:28:7c:9e:7d:0b:34:a6: f9:a0:59:2a:d2:d0:c1:37:5a:14:ba:ca:b6:e0:23: 25:00:ee:b1:64:50:84:11:43:e6:fb:6d:67:bd:34: a7:c6:9a:dc:57:e4:c1:f1:82:5e:8f:2d:53:c9:8f: 2b:1a:0d:8c:01:d8:a2:80:79:7d:68:75:4a:a6:a0: 5d:cc:bb:2e:e2:75:00:61:b5:13:d0:85:fd:7b:23: 42:2f:61:82:44:ae:ef:b9:c7:3a:09:d7:89:70:f1: b6:16:2f:2c:3c:7e:d3:12:c0:ca:f0:1d:47:ae:f6: 6d:1f:81:3f:c9:e6:aa:41:73:bc:0f:ab:70:10:eb: 67:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:FD:5C:C8:BC:2A:73:82:66:93:25:49:CC:B7:51:32:D8:BB:47:E2 X509v3 Authority Key Identifier: keyid:6C:CD:C8:2B:AE:78:00:F7:D5:07:C7:37:92:48:69:BD:EB:5A:76:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/ccd3884a-c385-4b65-9866-4f6383172672/0/6CCDC82BAE7800F7D507C737924869BDEB5A76EA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bM3IK654APfVB8c3kkhpvetaduo.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/ccd3884a-c385-4b65-9866-4f6383172672/0/3134372e3132352e3231352e302f32342d3234203d3e203239383032.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 147.125.215.0/24 Signature Algorithm: sha256WithRSAEncryption 17:44:13:55:94:41:f6:03:9d:2f:a3:d5:ac:72:5e:f9:bc:23: 02:d5:29:fd:76:30:26:e5:4c:11:52:61:b3:27:95:a8:5e:af: 06:64:a6:d0:41:be:38:08:ef:a2:d2:cd:e4:bb:ba:04:a5:f4: 94:e4:34:1e:d9:c5:54:1c:e8:b5:fd:20:56:de:1c:6b:e9:e6: 8b:d8:46:28:0b:64:87:c5:f0:c3:2f:db:d9:1c:0f:5b:4b:ce: 7d:63:88:be:bd:07:58:48:1d:6f:a3:d9:2b:7a:3c:d5:a1:49: 28:31:6e:30:d2:be:cf:b4:06:72:93:ed:f5:b7:46:6c:5c:46: 1c:0f:11:ce:75:84:31:eb:19:19:ab:ad:6d:e7:f0:99:d1:3b: bd:48:67:ce:fd:d8:a1:92:04:14:78:07:47:31:b5:9c:b8:af: be:28:91:10:ad:ec:29:fa:32:46:c9:70:53:95:3d:47:11:d0: 53:2a:e9:ba:04:66:84:25:b1:aa:a1:f9:8d:ce:9e:77:89:e4: 63:db:2b:62:fd:be:1f:ae:08:d9:58:19:f0:55:55:38:c2:9f: 63:24:64:fe:62:b2:0a:a4:0b:02:7f:33:d0:b2:1d:a5:e3:21: 4d:52:a7:9d:23:4b:6d:b5:f3:71:96:99:27:52:1f:ac:c5:b1: a8:f4:26:0f -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUJnWHKtmaM6mywnHGa5djAO8ehWAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNmNjZGM4MmJhZTc4MDBmN2Q1MDdjNzM3OTI0ODY5YmRl YjVhNzZlYTAeFw0yNjAxMjkwMzE5MjVaFw0yNzAxMjgwMzI0MjVaMDMxMTAvBgNV BAMTKEY1RkQ1Q0M4QkMyQTczODI2NjkzMjU0OUNDQjc1MTMyRDhCQjQ3RTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxKBv/rsJDtS3DhSwG5UvYd1fN aTAPp6LelupydHVhfdlJLht/uF0DkvI3RgHzj4fro50niAnHWKVqlLZSinKXyZpK A0SUU0J0wTaxGBDpMN9wGe/aFziay28RzU++mnqezxZMqyhibuKM3hcsaqRnL/LD EgzEMgNwDFHGUFFoKHyefQs0pvmgWSrS0ME3WhS6yrbgIyUA7rFkUIQRQ+b7bWe9 NKfGmtxX5MHxgl6PLVPJjysaDYwB2KKAeX1odUqmoF3Muy7idQBhtRPQhf17I0Iv YYJEru+5xzoJ14lw8bYWLyw8ftMSwMrwHUeu9m0fgT/J5qpBc7wPq3AQ62c5AgMB AAGjggI/MIICOzAdBgNVHQ4EFgQU9f1cyLwqc4JmkyVJzLdRMti7R+IwHwYDVR0j BBgwFoAUbM3IK654APfVB8c3kkhpvetaduowDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvY2NkMzg4NGEtYzM4NS00YjY1LTk4NjYtNGY2MzgzMTcy NjcyLzAvNkNDREM4MkJBRTc4MDBGN0Q1MDdDNzM3OTI0ODY5QkRFQjVBNzZFQS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2JNM0lLNjU0QVBmVkI4YzNra2hwdmV0 YWR1by5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvY2NkMzg4NGEt YzM4NS00YjY1LTk4NjYtNGY2MzgzMTcyNjcyLzAvMzEzNDM3MmUzMTMyMzUyZTMy MzEzNTJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMyMzkzODMwMzIucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BACTfdcwDQYJKoZIhvcNAQELBQADggEBABdEE1WUQfYDnS+j1axyXvm8IwLVKf12 MCblTBFSYbMnlaherwZkptBBvjgI76LSzeS7ugSl9JTkNB7ZxVQc6LX9IFbeHGvp 5ovYRigLZIfF8MMv29kcD1tLzn1jiL69B1hIHW+j2St6PNWhSSgxbjDSvs+0BnKT 7fW3RmxcRhwPEc51hDHrGRmrrW3n8JnRO71IZ8792KGSBBR4B0cxtZy4r74okRCt 7Cn6MkbJcFOVPUcR0FMq6boEZoQlsaqh+Y3OnneJ5GPbK2L9vh+uCNlYGfBVVTjC n2MkZP5isgqkCwJ/M9CyHaXjIU1Sp50jS22183GWmSdSH6zFsaj0Jg8= -----END CERTIFICATE-----Generated at Thu Jan 29 17:49:03 2026 by rpki-client