This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3139342e34382e3230342e302f32342d3234203d3e20313336373837.roa File: 3139342e34382e3230342e302f32342d3234203d3e20313336373837.roa (raw, json) Hash identifier: AQkGT/Y89HCbAN42jkGk3fZ3eGUiXIKHDnno4xaxXn0= Subject key identifier: 38:BD:60:C9:E4:A2:FB:A1:AB:7F:8E:CB:59:BC:7C:C8:DB:AE:6A:B6 Certificate issuer: /CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959 Certificate serial: 52EA3184BD0F9CDBA98C68C305227EDAACBD6F32 Authority key identifier: 09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3139342e34382e3230342e302f32342d3234203d3e20313336373837.roa Signing time: Thu 22 Jan 2026 10:23:10 +0000 ROA not before: Thu 22 Jan 2026 10:18:10 +0000 ROA not after: Thu 21 Jan 2027 10:23:10 +0000 asID: 136787 IP address blocks: 194.48.204.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.mft rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 13:13:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:ea:31:84:bd:0f:9c:db:a9:8c:68:c3:05:22:7e:da:ac:bd:6f:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959 Validity Not Before: Jan 22 10:18:10 2026 GMT Not After : Jan 21 10:23:10 2027 GMT Subject: CN=38BD60C9E4A2FBA1AB7F8ECB59BC7CC8DBAE6AB6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:d2:61:ed:f9:a1:47:8c:95:57:a7:f7:48:e9: 16:68:c2:c8:55:9b:3d:31:28:2c:e6:4c:5d:01:5a: 87:01:5e:e6:5d:96:1d:43:33:54:fc:07:23:ce:4a: 01:d3:9f:62:fb:da:e5:62:cb:3f:ff:b6:3d:90:1e: 7b:13:92:73:e1:53:59:c0:2a:e2:14:9c:47:55:28: 1c:ba:3c:7f:33:1b:57:68:34:a9:9f:c8:d4:88:f8: 46:9f:ef:c2:b7:d0:da:2b:22:af:b8:51:c6:78:d4: 13:f8:c1:36:7f:26:7e:9a:e9:51:ae:b9:e1:e5:34: 3f:47:29:3d:34:74:7b:81:fd:77:fb:74:b6:e4:82: f5:aa:82:a6:c3:9f:e9:2d:52:f4:a7:e5:cd:3c:ab: 74:59:33:f8:0a:82:90:c4:31:0f:7a:41:40:71:15: bf:ee:73:29:ac:25:40:bb:30:f7:be:61:aa:ba:58: 78:fa:7c:3c:8c:98:d5:56:09:11:4b:23:ba:67:e1: c2:74:60:50:ab:26:1b:3e:17:e0:ad:e7:c8:04:44: 6c:07:6f:85:38:ba:1f:31:83:e2:50:cb:48:ef:48: 3c:85:32:9f:aa:76:cc:9f:c9:89:cd:29:61:ff:59: 27:b3:f7:b6:83:0e:52:cd:1c:97:52:85:db:9e:de: 13:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:BD:60:C9:E4:A2:FB:A1:AB:7F:8E:CB:59:BC:7C:C8:DB:AE:6A:B6 X509v3 Authority Key Identifier: keyid:09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3139342e34382e3230342e302f32342d3234203d3e20313336373837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.48.204.0/24 Signature Algorithm: sha256WithRSAEncryption 8c:98:69:ac:9c:ba:7a:8a:8b:3e:5e:09:95:2e:8e:11:fc:9a: 2a:8a:34:52:74:13:78:c8:6d:7d:ac:08:a2:37:7b:77:ee:0f: d7:9f:40:ec:d7:33:84:f3:10:b9:1f:e2:1e:b5:f9:0a:50:0d: 54:d2:88:89:f0:2a:a8:1e:c5:50:e2:ea:98:b7:76:7a:b0:1a: f6:0f:54:40:e7:51:ec:9c:1a:ed:77:34:60:34:61:75:c2:32: 8b:a3:1a:85:5a:06:c6:43:7f:4f:1b:c5:6d:38:7f:e3:90:60: 20:b1:e1:35:03:ba:4b:6c:cb:38:3d:49:dc:fb:68:00:d6:ff: ad:54:c7:95:f9:0c:57:e3:7e:3a:06:fc:14:e6:71:4b:86:2f: 5f:13:76:1d:73:b4:ed:1f:16:20:52:d5:4a:7a:6c:1c:76:fe: 91:3b:f8:93:70:0a:de:bd:ce:b0:8f:90:e7:b7:6e:4c:73:de: 54:cc:05:1e:a4:03:51:1f:4e:49:95:04:56:4d:54:26:3c:73: 99:03:85:07:e0:e8:e8:69:e6:8c:23:78:bb:26:d9:8a:99:ce: 5b:f2:8c:a2:2a:24:3a:da:c1:1d:d9:e9:e9:ba:38:ac:6c:66: a7:33:88:98:97:4b:4b:1c:41:b9:c5:8e:9e:a3:d0:ac:86:80: af:77:12:62 -----BEGIN CERTIFICATE----- MIIFOjCCBCKgAwIBAgIUUuoxhL0PnNupjGjDBSJ+2qy9bzIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDk3YTI4Zjc3ZWIwYTRhYzM1NGE4YWMyODc1NGIyYTNi YmUzYTk1OTAeFw0yNjAxMjIxMDE4MTBaFw0yNzAxMjExMDIzMTBaMDMxMTAvBgNV BAMTKDM4QkQ2MEM5RTRBMkZCQTFBQjdGOEVDQjU5QkM3Q0M4REJBRTZBQjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDH0mHt+aFHjJVXp/dI6RZowshV mz0xKCzmTF0BWocBXuZdlh1DM1T8ByPOSgHTn2L72uViyz//tj2QHnsTknPhU1nA KuIUnEdVKBy6PH8zG1doNKmfyNSI+Eaf78K30NorIq+4UcZ41BP4wTZ/Jn6a6VGu ueHlND9HKT00dHuB/Xf7dLbkgvWqgqbDn+ktUvSn5c08q3RZM/gKgpDEMQ96QUBx Fb/ucymsJUC7MPe+Yaq6WHj6fDyMmNVWCRFLI7pn4cJ0YFCrJhs+F+Ct58gERGwH b4U4uh8xg+JQy0jvSDyFMp+qdsyfyYnNKWH/WSez97aDDlLNHJdShdue3hNpAgMB AAGjggJEMIICQDAdBgNVHQ4EFgQUOL1gyeSi+6Grf47LWbx8yNuuarYwHwYDVR0j BBgwFoAUCXoo936wpKw1SorCh1Syo7vjqVkwDgYDVR0PAQH/BAQDAgeAMIGYBgNV HR8EgZAwgY0wgYqggYeggYSGgYFyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5L2ZlMzcwOGEwLTY3ZDUtNGFjMi1hYmM0LWEzMzI1OTBi OTlhZi8xNzcvMDk3QTI4Rjc3RUIwQTRBQzM1NEE4QUMyODc1NEIyQTNCQkUzQTk1 OS5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2ku cmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0NYb285MzZ3cEt3MVNvckNoMVN5 bzd2anFWay5jZXIwgbEGCCsGAQUFBwELBIGkMIGhMIGeBggrBgEFBQcwC4aBkXJz eW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4 YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzE3Ny8zMTM5MzQyZTM0Mzgy ZTMyMzAzNDJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzMzNjM3MzgzNy5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAMIwzDANBgkqhkiG9w0BAQsFAAOCAQEAjJhprJy6eoqLPl4JlS6OEfya Koo0UnQTeMhtfawIojd7d+4P159A7NczhPMQuR/iHrX5ClANVNKIifAqqB7FUOLq mLd2erAa9g9UQOdR7Jwa7Xc0YDRhdcIyi6MahVoGxkN/TxvFbTh/45BgILHhNQO6 S2zLOD1J3PtoANb/rVTHlfkMV+N+Ogb8FOZxS4YvXxN2HXO07R8WIFLVSnpsHHb+ kTv4k3AK3r3OsI+Q57duTHPeVMwFHqQDUR9OSZUEVk1UJjxzmQOFB+Do6GnmjCN4 uybZipnOW/KMoiokOtrBHdnp6bo4rGxmpzOImJdLSxxBucWOnqPQrIaAr3cSYg== -----END CERTIFICATE-----Generated at Tue Jan 27 04:26:37 2026 by rpki-client