This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/eafebdb4-6f0b-404b-98e2-a26be94a6620/0/3130332e34392e3133302e302f32342d3234203d3e20383334.roa File: 3130332e34392e3133302e302f32342d3234203d3e20383334.roa (raw, json) Hash identifier: BeVzuWN/0Qvsq9GYvTx4ZuaACwAjnMKfoJ2e9z9vYwU= Subject key identifier: 0E:32:E1:B2:A8:7C:88:F2:29:C4:9A:91:84:B9:32:46:E8:40:E6:24 Certificate issuer: /CN=c770f43358b97ba0aa9bdc62bbd511e90aeab29d Certificate serial: 0F27931A1224F08AF4AFDE7FF9B5DCD16CBB2F54 Authority key identifier: C7:70:F4:33:58:B9:7B:A0:AA:9B:DC:62:BB:D5:11:E9:0A:EA:B2:9D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x3D0M1i5e6Cqm9xiu9UR6Qrqsp0.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/eafebdb4-6f0b-404b-98e2-a26be94a6620/0/3130332e34392e3133302e302f32342d3234203d3e20383334.roa Signing time: Sun 18 Jan 2026 08:19:31 +0000 ROA not before: Sun 18 Jan 2026 08:14:31 +0000 ROA not after: Sun 17 Jan 2027 08:19:31 +0000 asID: 834 IP address blocks: 103.49.130.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/eafebdb4-6f0b-404b-98e2-a26be94a6620/0/C770F43358B97BA0AA9BDC62BBD511E90AEAB29D.crl rsync://rsync.paas.rpki.ripe.net/repository/eafebdb4-6f0b-404b-98e2-a26be94a6620/0/C770F43358B97BA0AA9BDC62BBD511E90AEAB29D.mft rsync://rpki.ripe.net/repository/DEFAULT/x3D0M1i5e6Cqm9xiu9UR6Qrqsp0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 16:55:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:27:93:1a:12:24:f0:8a:f4:af:de:7f:f9:b5:dc:d1:6c:bb:2f:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c770f43358b97ba0aa9bdc62bbd511e90aeab29d Validity Not Before: Jan 18 08:14:31 2026 GMT Not After : Jan 17 08:19:31 2027 GMT Subject: CN=0E32E1B2A87C88F229C49A9184B93246E840E624 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:4d:8d:3b:b7:ce:a5:a1:70:5d:59:77:a4:24: ba:13:3c:0a:15:09:ff:ad:6b:2a:2c:02:a1:46:13: 59:5f:89:ba:ee:74:29:aa:89:4c:0d:e0:71:20:27: 0f:ce:6c:ca:04:ed:42:4a:95:bb:2c:16:c2:a3:40: b3:30:f0:3c:94:4d:fc:10:7f:83:60:60:be:90:8d: 24:15:1a:8d:14:66:e6:65:a8:7b:b0:61:56:f1:be: da:e7:a8:68:7b:de:f5:b4:9b:2e:c1:ae:20:8d:fb: be:ed:a4:3f:d4:0d:6f:6d:12:83:42:a0:c3:32:a4: 51:b0:5e:2c:de:05:9a:cb:ec:f5:21:45:52:aa:e4: 32:1b:cf:b5:16:ec:ca:70:e8:01:59:63:ab:3d:e5: 96:14:4a:e2:e0:2d:dd:d7:2c:49:d7:01:f1:cc:ec: 5e:6a:b6:7e:e6:5a:1b:8a:68:0e:fe:b4:68:af:ca: e1:2a:aa:eb:0b:71:6b:d0:80:01:ec:7d:f2:70:91: eb:cc:19:c4:e6:30:ba:eb:c6:c7:d8:10:7c:c9:55: 0a:66:2e:35:11:fe:82:a5:22:1f:e7:79:89:78:53: 6b:ec:70:d0:75:46:4d:4d:cd:4c:92:05:94:53:cc: 21:a2:7b:a8:13:1e:5f:e5:27:89:06:bf:7e:e1:95: 56:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:32:E1:B2:A8:7C:88:F2:29:C4:9A:91:84:B9:32:46:E8:40:E6:24 X509v3 Authority Key Identifier: keyid:C7:70:F4:33:58:B9:7B:A0:AA:9B:DC:62:BB:D5:11:E9:0A:EA:B2:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/eafebdb4-6f0b-404b-98e2-a26be94a6620/0/C770F43358B97BA0AA9BDC62BBD511E90AEAB29D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x3D0M1i5e6Cqm9xiu9UR6Qrqsp0.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/eafebdb4-6f0b-404b-98e2-a26be94a6620/0/3130332e34392e3133302e302f32342d3234203d3e20383334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.49.130.0/24 Signature Algorithm: sha256WithRSAEncryption 58:fb:64:df:e8:6b:2d:bf:46:1c:e1:ca:ec:84:1f:3e:3a:79: 86:66:4b:71:21:75:a3:d0:13:bb:02:17:8a:23:55:25:cd:b8: 87:89:ee:ef:2b:77:af:34:36:f6:97:a0:1c:b6:cc:b8:7d:f9: 2d:42:1f:06:37:29:7f:7e:f8:ad:a7:36:7d:99:2d:cf:41:21: eb:e4:cb:b1:c7:63:03:2e:ac:ea:68:74:bb:ba:21:e1:8d:e8: 50:bf:08:c5:d5:bc:4b:23:0d:f1:d0:0d:f4:28:3a:fb:2c:b5: 36:c7:ce:34:14:3f:9a:2f:98:7f:55:9f:95:fc:41:f1:4e:86: 6c:9c:93:fb:83:f9:61:f2:34:66:89:d0:57:4a:a4:ee:5f:30: 51:1e:f8:16:ee:c5:63:9a:e0:5e:63:48:21:4e:89:89:38:f1: 17:0d:47:3c:c1:3c:f1:72:c1:f2:18:15:c1:23:dc:82:ad:08: ff:2a:ef:5a:92:18:19:9f:21:70:c7:e3:bd:59:c4:97:b3:00: e7:81:d3:5f:9d:36:35:d1:53:10:26:92:b2:0a:1b:11:82:15: 05:e2:8d:51:f6:42:91:5b:4c:ef:66:fd:a8:e2:48:a0:52:d4: b8:c0:6a:66:92:de:01:cc:6b:98:f2:4b:55:af:90:ff:01:41: 1b:ad:5e:1d -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUDyeTGhIk8Ir0r95/+bXc0Wy7L1QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYzc3MGY0MzM1OGI5N2JhMGFhOWJkYzYyYmJkNTExZTkw YWVhYjI5ZDAeFw0yNjAxMTgwODE0MzFaFw0yNzAxMTcwODE5MzFaMDMxMTAvBgNV BAMTKDBFMzJFMUIyQTg3Qzg4RjIyOUM0OUE5MTg0QjkzMjQ2RTg0MEU2MjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnTY07t86loXBdWXekJLoTPAoV Cf+tayosAqFGE1lfibrudCmqiUwN4HEgJw/ObMoE7UJKlbssFsKjQLMw8DyUTfwQ f4NgYL6QjSQVGo0UZuZlqHuwYVbxvtrnqGh73vW0my7BriCN+77tpD/UDW9tEoNC oMMypFGwXizeBZrL7PUhRVKq5DIbz7UW7Mpw6AFZY6s95ZYUSuLgLd3XLEnXAfHM 7F5qtn7mWhuKaA7+tGivyuEqqusLcWvQgAHsffJwkevMGcTmMLrrxsfYEHzJVQpm LjUR/oKlIh/neYl4U2vscNB1Rk1NzUySBZRTzCGie6gTHl/lJ4kGv37hlVYVAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUDjLhsqh8iPIpxJqRhLkyRuhA5iQwHwYDVR0j BBgwFoAUx3D0M1i5e6Cqm9xiu9UR6Qrqsp0wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZWFmZWJkYjQtNmYwYi00MDRiLTk4ZTItYTI2YmU5NGE2 NjIwLzAvQzc3MEY0MzM1OEI5N0JBMEFBOUJEQzYyQkJENTExRTkwQUVBQjI5RC5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3gzRDBNMWk1ZTZDcW05eGl1OVVSNlFy cXNwMC5jZXIwgakGCCsGAQUFBwELBIGcMIGZMIGWBggrBgEFBQcwC4aBiXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZWFmZWJkYjQt NmYwYi00MDRiLTk4ZTItYTI2YmU5NGE2NjIwLzAvMzEzMDMzMmUzNDM5MmUzMTMz MzAyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzODMzMzQucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnMYIw DQYJKoZIhvcNAQELBQADggEBAFj7ZN/oay2/RhzhyuyEHz46eYZmS3EhdaPQE7sC F4ojVSXNuIeJ7u8rd680NvaXoBy2zLh9+S1CHwY3KX9++K2nNn2ZLc9BIevky7HH YwMurOpodLu6IeGN6FC/CMXVvEsjDfHQDfQoOvsstTbHzjQUP5ovmH9Vn5X8QfFO hmyck/uD+WHyNGaJ0FdKpO5fMFEe+BbuxWOa4F5jSCFOiYk48RcNRzzBPPFywfIY FcEj3IKtCP8q71qSGBmfIXDH471ZxJezAOeB01+dNjXRUxAmkrIKGxGCFQXijVH2 QpFbTO9m/ajiSKBS1LjAamaS3gHMa5jyS1WvkP8BQRutXh0= -----END CERTIFICATE-----Generated at Mon Jan 19 20:19:36 2026 by rpki-client