This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/ccd3884a-c385-4b65-9866-4f6383172672/0/3134372e3132352e3235332e302f32342d3234203d3e20323131343135.roa File: 3134372e3132352e3235332e302f32342d3234203d3e20323131343135.roa (raw, json) Hash identifier: i18SwH7Er/+8c0T9yXjzJ6cSv1tulzRvOw1jbVAeRS0= Subject key identifier: B7:34:BC:DF:BE:A6:0E:DB:27:FE:00:45:A3:04:5B:55:5B:CB:5A:83 Certificate issuer: /CN=6ccdc82bae7800f7d507c737924869bdeb5a76ea Certificate serial: 3D545D90CA8CC3A222F77085ADBBF9481A5B03E2 Authority key identifier: 6C:CD:C8:2B:AE:78:00:F7:D5:07:C7:37:92:48:69:BD:EB:5A:76:EA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bM3IK654APfVB8c3kkhpvetaduo.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/ccd3884a-c385-4b65-9866-4f6383172672/0/3134372e3132352e3235332e302f32342d3234203d3e20323131343135.roa Signing time: Sat 10 Jan 2026 10:09:40 +0000 ROA not before: Sat 10 Jan 2026 10:04:40 +0000 ROA not after: Sat 09 Jan 2027 10:09:40 +0000 asID: 211415 IP address blocks: 147.125.253.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/ccd3884a-c385-4b65-9866-4f6383172672/0/6CCDC82BAE7800F7D507C737924869BDEB5A76EA.crl rsync://rsync.paas.rpki.ripe.net/repository/ccd3884a-c385-4b65-9866-4f6383172672/0/6CCDC82BAE7800F7D507C737924869BDEB5A76EA.mft rsync://rpki.ripe.net/repository/DEFAULT/bM3IK654APfVB8c3kkhpvetaduo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 12:44:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:54:5d:90:ca:8c:c3:a2:22:f7:70:85:ad:bb:f9:48:1a:5b:03:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ccdc82bae7800f7d507c737924869bdeb5a76ea Validity Not Before: Jan 10 10:04:40 2026 GMT Not After : Jan 9 10:09:40 2027 GMT Subject: CN=B734BCDFBEA60EDB27FE0045A3045B555BCB5A83 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:d8:64:c4:f3:4a:06:50:d8:ef:ac:59:10:0f: 8b:cc:27:a7:8c:67:74:ce:38:72:76:55:47:c3:a4: c5:8e:bc:38:9d:78:32:3d:7d:71:f3:18:ec:bb:34: bf:10:4c:69:d0:46:01:47:06:be:17:09:32:8e:af: 1e:d2:73:fe:1d:cd:f7:00:f8:14:7d:5d:85:4a:a7: 9b:18:b8:02:27:c5:84:b5:a6:f4:d7:46:77:3b:ad: 69:a0:b5:fe:94:03:30:71:bc:7f:7f:6c:3c:86:8d: 35:ec:55:d5:72:8e:67:5a:0c:69:db:47:54:25:69: 16:f9:47:3e:0c:c7:64:2a:9a:b5:62:21:4a:2b:67: a4:2e:e0:f9:e3:67:f4:ab:fb:03:7e:42:b4:6a:b0: de:44:6c:63:33:8b:cd:e8:7a:bf:67:68:d7:78:5b: 0b:68:a0:fd:27:33:16:87:da:ba:1a:02:52:ce:ba: 2c:52:07:a2:01:77:69:16:80:2b:d8:99:33:e1:51: c8:7a:67:a9:66:27:cf:57:86:89:c6:b0:a5:cd:d1: 3e:d1:b4:ae:d6:25:c9:46:86:51:fe:a3:dc:b0:2e: 9e:17:39:08:c5:0b:35:fe:bd:72:d7:4e:b2:58:76: 6c:73:8e:51:aa:d9:2e:a7:8f:41:d9:f8:29:13:dd: ac:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:34:BC:DF:BE:A6:0E:DB:27:FE:00:45:A3:04:5B:55:5B:CB:5A:83 X509v3 Authority Key Identifier: keyid:6C:CD:C8:2B:AE:78:00:F7:D5:07:C7:37:92:48:69:BD:EB:5A:76:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/ccd3884a-c385-4b65-9866-4f6383172672/0/6CCDC82BAE7800F7D507C737924869BDEB5A76EA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bM3IK654APfVB8c3kkhpvetaduo.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/ccd3884a-c385-4b65-9866-4f6383172672/0/3134372e3132352e3235332e302f32342d3234203d3e20323131343135.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 147.125.253.0/24 Signature Algorithm: sha256WithRSAEncryption 01:e8:44:f0:9b:80:be:39:0b:90:86:b0:a6:b2:1a:e6:50:91: 8b:d8:8d:00:dd:2c:59:9b:35:4f:b8:cf:cc:89:4e:56:fc:d3: 34:d9:b6:4d:ad:f9:9d:85:24:40:a1:09:ae:6f:fa:8f:7b:fb: 83:79:05:0e:a9:31:e3:7e:c3:8f:71:99:e6:3c:e7:4f:3c:56: ff:58:64:05:be:d2:3d:b5:98:51:ff:08:9e:e1:8e:f9:c0:6d: 88:58:f6:2b:ad:5c:83:d1:5d:e2:60:6c:b5:b0:40:ea:cb:88: 5d:f6:25:e2:36:1c:cd:7a:09:f6:bb:37:72:f9:86:96:ea:d8: df:a3:34:3a:8d:d8:7c:92:9c:b1:10:ce:e8:87:8d:c2:38:ae: 71:72:3a:d4:01:07:29:95:1a:e7:c3:5e:72:32:5e:15:73:38: d0:ea:5a:ab:e0:20:dd:63:89:35:bf:0a:87:92:15:e4:d2:bd: e5:02:f8:e4:23:90:01:9f:e0:e4:d7:2c:a6:68:46:72:0a:23: 1e:97:c7:17:53:de:ca:ab:8d:4a:c4:74:3d:63:86:c7:df:f5: 89:f8:ad:73:a1:c2:d6:e6:f2:2c:ee:f1:c7:a7:c8:f7:7f:82: e6:ab:1e:00:32:31:8b:17:69:c5:ca:78:8a:34:39:ad:04:e0: 29:38:1e:52 -----BEGIN CERTIFICATE----- MIIFNzCCBB+gAwIBAgIUPVRdkMqMw6Ii93CFrbv5SBpbA+IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNmNjZGM4MmJhZTc4MDBmN2Q1MDdjNzM3OTI0ODY5YmRl YjVhNzZlYTAeFw0yNjAxMTAxMDA0NDBaFw0yNzAxMDkxMDA5NDBaMDMxMTAvBgNV BAMTKEI3MzRCQ0RGQkVBNjBFREIyN0ZFMDA0NUEzMDQ1QjU1NUJDQjVBODMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCa2GTE80oGUNjvrFkQD4vMJ6eM Z3TOOHJ2VUfDpMWOvDideDI9fXHzGOy7NL8QTGnQRgFHBr4XCTKOrx7Sc/4dzfcA +BR9XYVKp5sYuAInxYS1pvTXRnc7rWmgtf6UAzBxvH9/bDyGjTXsVdVyjmdaDGnb R1QlaRb5Rz4Mx2QqmrViIUorZ6Qu4PnjZ/Sr+wN+QrRqsN5EbGMzi83oer9naNd4 WwtooP0nMxaH2roaAlLOuixSB6IBd2kWgCvYmTPhUch6Z6lmJ89XhonGsKXN0T7R tK7WJclGhlH+o9ywLp4XOQjFCzX+vXLXTrJYdmxzjlGq2S6nj0HZ+CkT3axXAgMB AAGjggJBMIICPTAdBgNVHQ4EFgQUtzS8376mDtsn/gBFowRbVVvLWoMwHwYDVR0j BBgwFoAUbM3IK654APfVB8c3kkhpvetaduowDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvY2NkMzg4NGEtYzM4NS00YjY1LTk4NjYtNGY2MzgzMTcy NjcyLzAvNkNDREM4MkJBRTc4MDBGN0Q1MDdDNzM3OTI0ODY5QkRFQjVBNzZFQS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2JNM0lLNjU0QVBmVkI4YzNra2hwdmV0 YWR1by5jZXIwgbEGCCsGAQUFBwELBIGkMIGhMIGeBggrBgEFBQcwC4aBkXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvY2NkMzg4NGEt YzM4NS00YjY1LTk4NjYtNGY2MzgzMTcyNjcyLzAvMzEzNDM3MmUzMTMyMzUyZTMy MzUzMzJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMyMzEzMTM0MzEzNS5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAJN9/TANBgkqhkiG9w0BAQsFAAOCAQEAAehE8JuAvjkLkIawprIa5lCRi9iN AN0sWZs1T7jPzIlOVvzTNNm2Ta35nYUkQKEJrm/6j3v7g3kFDqkx437Dj3GZ5jzn TzxW/1hkBb7SPbWYUf8InuGO+cBtiFj2K61cg9Fd4mBstbBA6suIXfYl4jYczXoJ 9rs3cvmGlurY36M0Oo3YfJKcsRDO6IeNwjiucXI61AEHKZUa58NecjJeFXM40Opa q+Ag3WOJNb8Kh5IV5NK95QL45COQAZ/g5NcspmhGcgojHpfHF1PeyquNSsR0PWOG x9/1ifitc6HC1ubyLO7xx6fI93+C5qseADIxixdpxcp4ijQ5rQTgKTgeUg== -----END CERTIFICATE-----Generated at Mon Jan 19 23:23:22 2026 by rpki-client