This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3138352e3136392e322e302f32342d3234203d3e203230383630.roa File: 3138352e3136392e322e302f32342d3234203d3e203230383630.roa (raw, json) Hash identifier: xMFoYfs6EPKBaKVBM9YnZ9tkAPZWIoYRzI1icGZz5LE= Subject key identifier: AE:B0:99:AC:B4:84:B5:62:6D:FC:17:D3:B9:BE:50:00:F3:51:1D:99 Certificate issuer: /CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959 Certificate serial: 6DB720C4539BEC7F5974EAF9425BC1A8343E2765 Authority key identifier: 09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3138352e3136392e322e302f32342d3234203d3e203230383630.roa Signing time: Mon 29 Dec 2025 19:51:08 +0000 ROA not before: Mon 29 Dec 2025 19:46:08 +0000 ROA not after: Mon 28 Dec 2026 19:51:08 +0000 asID: 20860 IP address blocks: 185.169.2.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.mft rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 01:10:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:b7:20:c4:53:9b:ec:7f:59:74:ea:f9:42:5b:c1:a8:34:3e:27:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959 Validity Not Before: Dec 29 19:46:08 2025 GMT Not After : Dec 28 19:51:08 2026 GMT Subject: CN=AEB099ACB484B5626DFC17D3B9BE5000F3511D99 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:03:5a:21:c3:7b:cc:19:9a:ba:ec:9c:fb:9b: 00:07:6d:d6:ea:e4:cc:3c:34:6b:d1:42:e5:05:d5: 36:42:47:f3:4a:15:1d:fd:35:d0:21:f6:50:17:5d: f6:bd:4a:db:55:81:17:72:10:e7:b2:c2:cc:7e:47: 08:41:70:37:d9:9c:e3:8f:4d:36:33:45:17:4f:f2: a4:da:d4:5f:d1:73:3b:d8:ee:9f:ef:60:4a:1c:b6: 76:5a:c6:e9:85:3d:54:fa:c2:b1:27:fd:c8:bb:bb: 7d:96:02:75:e6:e4:37:d9:93:5b:b1:a3:c7:15:2a: a2:99:d7:e3:4e:93:b4:a9:1b:5a:ab:28:bc:4e:e2: 3e:49:32:ea:21:f0:bb:61:48:5e:60:f7:3e:ba:77: 30:94:0a:2a:64:2a:e9:8d:6d:f9:9c:f5:e7:f3:90: 65:8a:c8:a7:b8:49:f6:bb:e7:cf:e0:3c:9b:ed:d1: 52:6c:40:3b:0d:e3:ac:74:98:61:bf:fd:6f:a4:6a: 42:ac:88:3a:cf:8f:32:08:0a:f5:0a:65:2e:01:dd: 4f:f5:3f:3e:fe:aa:23:ef:4a:11:3d:d0:35:cc:3f: 79:90:dc:dc:d6:f3:88:74:6f:b6:21:51:39:83:a4: b9:48:21:30:00:68:73:bf:34:73:c5:5f:5e:d0:70: 20:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:B0:99:AC:B4:84:B5:62:6D:FC:17:D3:B9:BE:50:00:F3:51:1D:99 X509v3 Authority Key Identifier: keyid:09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3138352e3136392e322e302f32342d3234203d3e203230383630.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.169.2.0/24 Signature Algorithm: sha256WithRSAEncryption 91:4f:5e:06:1d:23:69:c0:cb:99:3c:d0:e8:79:9a:79:b0:48: 2c:e9:81:8e:6b:09:27:4a:35:fa:7c:75:48:e5:32:05:41:ca: 70:97:a2:c0:83:be:32:6a:3b:dc:42:e2:39:eb:2e:41:7a:ca: 2f:ee:1e:d9:a4:74:ae:10:5b:bb:fc:b5:10:7a:fb:dd:9e:d8: 3f:52:f5:4a:4d:13:80:67:4c:47:35:d9:fe:a0:e0:d9:07:5d: 0e:0c:e8:f5:a9:02:db:81:c4:97:7f:f2:93:e7:1d:22:84:6d: 97:80:bf:50:ef:03:55:bf:ba:8e:33:cf:bd:dc:1e:18:f3:86: f3:7f:f2:24:60:6a:a5:cf:16:7e:d8:2a:58:32:2d:4f:7c:fe: 35:ce:93:bb:ff:11:7d:80:78:51:3f:5b:d1:22:c2:8a:92:43: b0:73:c3:02:bd:33:12:4f:9d:32:72:db:1d:f5:95:49:d5:ec: 2a:fc:c6:18:81:4c:81:f8:a0:c4:bf:6a:08:5d:c2:77:0c:89: 50:b2:68:ff:e8:c2:00:e3:39:f1:c3:16:2e:dd:23:d4:c1:82: ff:c6:09:78:c7:1f:0f:b3:ab:5b:e7:63:6e:80:91:1b:39:62: 0a:e9:e8:4b:18:06:f4:52:84:e7:cd:17:50:8d:e0:f0:20:1d: a6:37:5a:59 -----BEGIN CERTIFICATE----- MIIFNjCCBB6gAwIBAgIUbbcgxFOb7H9ZdOr5QlvBqDQ+J2UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDk3YTI4Zjc3ZWIwYTRhYzM1NGE4YWMyODc1NGIyYTNi YmUzYTk1OTAeFw0yNTEyMjkxOTQ2MDhaFw0yNjEyMjgxOTUxMDhaMDMxMTAvBgNV BAMTKEFFQjA5OUFDQjQ4NEI1NjI2REZDMTdEM0I5QkU1MDAwRjM1MTFEOTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFA1ohw3vMGZq67Jz7mwAHbdbq 5Mw8NGvRQuUF1TZCR/NKFR39NdAh9lAXXfa9SttVgRdyEOeywsx+RwhBcDfZnOOP TTYzRRdP8qTa1F/RczvY7p/vYEoctnZaxumFPVT6wrEn/ci7u32WAnXm5DfZk1ux o8cVKqKZ1+NOk7SpG1qrKLxO4j5JMuoh8LthSF5g9z66dzCUCipkKumNbfmc9efz kGWKyKe4Sfa758/gPJvt0VJsQDsN46x0mGG//W+kakKsiDrPjzIICvUKZS4B3U/1 Pz7+qiPvShE90DXMP3mQ3NzW84h0b7YhUTmDpLlIITAAaHO/NHPFX17QcCD3AgMB AAGjggJAMIICPDAdBgNVHQ4EFgQUrrCZrLSEtWJt/BfTub5QAPNRHZkwHwYDVR0j BBgwFoAUCXoo936wpKw1SorCh1Syo7vjqVkwDgYDVR0PAQH/BAQDAgeAMIGYBgNV HR8EgZAwgY0wgYqggYeggYSGgYFyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5L2ZlMzcwOGEwLTY3ZDUtNGFjMi1hYmM0LWEzMzI1OTBi OTlhZi8xNzcvMDk3QTI4Rjc3RUIwQTRBQzM1NEE4QUMyODc1NEIyQTNCQkUzQTk1 OS5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2ku cmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0NYb285MzZ3cEt3MVNvckNoMVN5 bzd2anFWay5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJz eW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4 YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzE3Ny8zMTM4MzUyZTMxMzYz OTJlMzIyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMjMwMzgzNjMwLnJvYTAYBgNV HSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQAuakCMA0GCSqGSIb3DQEBCwUAA4IBAQCRT14GHSNpwMuZPNDoeZp5sEgs6YGO awknSjX6fHVI5TIFQcpwl6LAg74yajvcQuI56y5Besov7h7ZpHSuEFu7/LUQevvd ntg/UvVKTROAZ0xHNdn+oODZB10ODOj1qQLbgcSXf/KT5x0ihG2XgL9Q7wNVv7qO M8+93B4Y84bzf/IkYGqlzxZ+2CpYMi1PfP41zpO7/xF9gHhRP1vRIsKKkkOwc8MC vTMST50yctsd9ZVJ1ewq/MYYgUyB+KDEv2oIXcJ3DIlQsmj/6MIA4znxwxYu3SPU wYL/xgl4xx8Ps6tb52NugJEbOWIK6ehLGAb0UoTnzRdQjeDwIB2mN1pZ -----END CERTIFICATE-----Generated at Mon Jan 19 17:35:20 2026 by rpki-client