This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3135382e3232302e3131322e302f32302d3332203d3e203531313637.roa File: 3135382e3232302e3131322e302f32302d3332203d3e203531313637.roa (raw, json) Hash identifier: iJNxRxic2IhSRa6GmQoLcNEYlTnO7JRWVq75u00ihzs= Subject key identifier: 88:91:A1:7E:00:3E:F3:3F:33:2E:70:AA:54:43:85:5E:98:95:B4:32 Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Certificate serial: 7D730CA54787BE9722ADBA389D035D488F1A2A8D Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3135382e3232302e3131322e302f32302d3332203d3e203531313637.roa Signing time: Fri 02 Jan 2026 09:51:10 +0000 ROA not before: Fri 02 Jan 2026 09:46:10 +0000 ROA not after: Fri 01 Jan 2027 09:51:10 +0000 asID: 51167 IP address blocks: 158.220.112.0/20 maxlen: 32 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 01:05:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:73:0c:a5:47:87:be:97:22:ad:ba:38:9d:03:5d:48:8f:1a:2a:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Validity Not Before: Jan 2 09:46:10 2026 GMT Not After : Jan 1 09:51:10 2027 GMT Subject: CN=8891A17E003EF33F332E70AA5443855E9895B432 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:02:4b:ba:84:8d:e6:19:42:12:06:56:cb:fa: 65:fc:f8:d3:f7:55:f2:05:89:3a:a1:14:c6:c9:bb: 4b:82:5d:a4:99:a4:25:78:68:f3:3c:ab:64:1a:bf: 50:e0:ed:0c:b8:46:ee:10:c1:74:c7:01:d8:16:91: 12:87:32:11:4a:2a:2b:e6:70:cd:3b:aa:03:55:a6: 93:19:c9:b4:0e:89:ac:6e:33:d2:83:8b:b5:cf:41: ff:01:17:53:9a:85:01:0b:56:2f:1b:ae:f9:d6:a2: 2e:64:53:b3:87:b9:08:d5:52:b2:3a:6f:82:32:e8: 02:a0:7b:7c:6a:e4:2c:dd:b5:e5:97:7f:fc:18:0d: b8:c9:af:5e:4c:c5:c8:5c:a7:4a:09:4a:7d:ef:00: 75:fe:b9:05:56:35:47:f1:cf:46:59:81:6d:20:65: 0e:b7:3b:a2:1b:f8:c6:2e:0d:69:fc:c8:59:06:2c: 1f:af:c1:f0:a2:96:2a:9e:f5:fd:3f:56:20:5d:d1: 94:fa:ca:71:b7:88:5d:e5:b4:8b:2c:b5:0f:30:c8: b2:74:a2:6f:1e:62:4f:e9:a2:cb:12:b7:95:5e:60: af:97:70:aa:51:90:4d:88:f3:ec:47:f9:aa:93:19: a2:ad:2e:2d:9d:12:2f:01:9c:de:43:d8:e2:5a:15: 5e:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:91:A1:7E:00:3E:F3:3F:33:2E:70:AA:54:43:85:5E:98:95:B4:32 X509v3 Authority Key Identifier: keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3135382e3232302e3131322e302f32302d3332203d3e203531313637.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 158.220.112.0/20 Signature Algorithm: sha256WithRSAEncryption 02:f1:1c:f1:52:07:60:8e:fa:f0:74:c1:ed:dd:b0:00:c3:b6: 7d:94:d2:a4:6b:15:3e:b4:39:b2:c4:ea:9f:28:fa:d6:94:c3: 5e:0e:e9:a3:4c:b7:c6:56:c0:11:86:ca:19:1f:94:e0:4b:b0: 28:de:4d:ca:e0:46:f9:26:44:bf:3f:04:d2:f3:e2:a0:1d:db: 7e:5f:5e:6a:44:1f:8f:63:af:49:02:f5:61:07:dd:80:9c:6a: 9a:44:9c:11:70:27:58:f5:fe:3a:f6:9c:6b:29:3c:c3:42:e4: 99:bf:0b:5d:90:89:02:92:da:be:42:75:ee:c5:4d:fb:d1:48: 59:ac:8e:a1:6c:ed:04:c1:58:e0:87:de:ef:a8:1d:c2:58:5b: d4:3b:a9:05:f4:6c:54:e6:e9:f6:51:1b:f8:67:32:f4:6a:cd: 73:14:07:4e:19:07:20:5e:3e:cd:c0:df:8a:7d:e3:34:46:45: ad:7b:8c:88:88:23:b2:fd:b3:99:48:70:be:11:4e:6d:0e:4b: f4:bc:79:c2:50:a0:ba:55:d3:32:b0:b1:44:7d:99:70:d2:94: b8:a4:ee:d1:01:ff:fe:4a:b1:bc:66:5a:0a:67:5b:46:3e:51: 77:06:1c:a9:f9:b8:33:a5:a0:41:dd:49:cf:7c:26:12:28:70: a5:8f:af:58 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUfXMMpUeHvpcirbo4nQNdSI8aKo0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0 ZWE3Nzc5YzAeFw0yNjAxMDIwOTQ2MTBaFw0yNzAxMDEwOTUxMTBaMDMxMTAvBgNV BAMTKDg4OTFBMTdFMDAzRUYzM0YzMzJFNzBBQTU0NDM4NTVFOTg5NUI0MzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVAku6hI3mGUISBlbL+mX8+NP3 VfIFiTqhFMbJu0uCXaSZpCV4aPM8q2Qav1Dg7Qy4Ru4QwXTHAdgWkRKHMhFKKivm cM07qgNVppMZybQOiaxuM9KDi7XPQf8BF1OahQELVi8brvnWoi5kU7OHuQjVUrI6 b4Iy6AKge3xq5CzdteWXf/wYDbjJr15Mxchcp0oJSn3vAHX+uQVWNUfxz0ZZgW0g ZQ63O6Ib+MYuDWn8yFkGLB+vwfCiliqe9f0/ViBd0ZT6ynG3iF3ltIsstQ8wyLJ0 om8eYk/possSt5VeYK+XcKpRkE2I8+xH+aqTGaKtLi2dEi8BnN5D2OJaFV6nAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUiJGhfgA+8z8zLnCqVEOFXpiVtDIwHwYDVR0j BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2 bmQ1dy5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzEzNTM4MmUzMjMyMzAyZTMx MzEzMjJlMzAyZjMyMzAyZDMzMzIyMDNkM2UyMDM1MzEzMTM2Mzcucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BASe3HAwDQYJKoZIhvcNAQELBQADggEBAALxHPFSB2CO+vB0we3dsADDtn2U0qRr FT60ObLE6p8o+taUw14O6aNMt8ZWwBGGyhkflOBLsCjeTcrgRvkmRL8/BNLz4qAd 235fXmpEH49jr0kC9WEH3YCcappEnBFwJ1j1/jr2nGspPMNC5Jm/C12QiQKS2r5C de7FTfvRSFmsjqFs7QTBWOCH3u+oHcJYW9Q7qQX0bFTm6fZRG/hnMvRqzXMUB04Z ByBePs3A34p94zRGRa17jIiII7L9s5lIcL4RTm0OS/S8ecJQoLpV0zKwsUR9mXDS lLik7tEB//5KsbxmWgpnW0Y+UXcGHKn5uDOloEHdSc98JhIocKWPr1g= -----END CERTIFICATE-----Generated at Mon Jan 19 14:25:24 2026 by rpki-client