This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3137362e3132362e38352e302f32342d3234203d3e203633343733.roa File: 3137362e3132362e38352e302f32342d3234203d3e203633343733.roa (raw, json) Hash identifier: N/avhLwcuGVF7V3ekmhbYTXfrgPobxeskfaVtkphJO8= Subject key identifier: C4:56:40:BF:4A:1A:87:7E:89:A4:A6:71:D2:A7:7A:77:3E:E8:E0:7F Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Certificate serial: 70955F76A19B779D9C8587EBEF8A70DD6B7F9B56 Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3137362e3132362e38352e302f32342d3234203d3e203633343733.roa Signing time: Tue 06 Jan 2026 09:51:19 +0000 ROA not before: Tue 06 Jan 2026 09:46:19 +0000 ROA not after: Tue 05 Jan 2027 09:51:19 +0000 asID: 63473 IP address blocks: 176.126.85.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 01:05:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:95:5f:76:a1:9b:77:9d:9c:85:87:eb:ef:8a:70:dd:6b:7f:9b:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Validity Not Before: Jan 6 09:46:19 2026 GMT Not After : Jan 5 09:51:19 2027 GMT Subject: CN=C45640BF4A1A877E89A4A671D2A77A773EE8E07F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:95:da:2f:53:0b:91:62:3b:65:90:6b:ea:0c: ae:c1:7a:4b:13:5f:74:69:0f:15:d1:26:36:b4:12: 30:51:51:7f:93:3e:a9:9c:af:a3:eb:49:e1:58:e9: c8:4a:81:69:a6:ec:f6:5d:f1:1b:4b:dc:0a:11:f0: 80:30:f7:7d:76:0a:55:1a:1a:19:c6:66:26:1b:fc: cd:8d:18:40:17:1e:67:7d:95:19:c8:3e:ce:de:67: 49:35:f7:19:b1:da:4f:6b:cc:57:6d:8d:17:e7:2d: af:0e:1b:76:bd:9b:80:e6:17:d7:25:4e:cc:21:6c: e9:3e:56:22:79:b2:d0:bc:e1:4d:7c:b1:d9:ed:9c: ad:d6:71:66:6f:cb:64:d7:84:7a:29:1c:87:f2:48: e1:45:84:e7:d8:ff:a1:9a:d0:f3:49:b6:97:14:6e: 7c:7d:65:7d:ba:4a:7b:4e:38:5d:2f:93:ea:1f:df: 6d:da:aa:2d:84:8f:64:09:44:92:88:9e:88:8e:58: dd:5c:e8:c2:dd:b2:18:9b:81:eb:b0:db:a7:cd:c6: cf:32:12:e9:2c:35:5d:e5:9d:33:1b:e0:14:69:78: d5:7d:f9:c7:55:a3:f5:77:b7:c9:5d:6d:b8:1c:7b: 4c:ef:5b:14:2d:74:a0:ca:4b:f5:e3:8d:38:04:48: 7d:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:56:40:BF:4A:1A:87:7E:89:A4:A6:71:D2:A7:7A:77:3E:E8:E0:7F X509v3 Authority Key Identifier: keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3137362e3132362e38352e302f32342d3234203d3e203633343733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 176.126.85.0/24 Signature Algorithm: sha256WithRSAEncryption 43:02:7c:c7:39:c7:2e:6b:f5:4f:de:20:58:bb:c7:f2:11:7c: 80:d0:35:5d:14:d8:79:3f:cc:ff:5b:5e:6d:d2:7d:78:a5:60: 3d:75:f9:7f:19:46:df:75:95:5a:36:eb:e5:c6:65:8d:30:58: 2e:40:59:c0:38:90:a3:87:9b:73:dd:b0:1a:83:f3:36:1b:14: 32:0a:2d:d1:01:50:2f:34:91:dc:3d:11:18:0d:f4:f8:4a:7b: ad:f3:81:70:b6:04:a7:f7:63:20:8c:85:6b:71:6f:2b:d0:4d: 68:a4:0e:af:27:40:10:93:d4:21:5e:6a:18:87:09:b0:09:c8: 1e:22:41:b8:15:34:cb:cf:19:e5:2f:7c:99:9a:a9:c4:02:98: d4:cd:74:1b:02:0a:64:35:84:a1:18:e1:a7:fb:5b:fd:8e:61: 0d:7b:ab:89:56:08:74:8b:25:57:95:f1:55:12:3e:b4:43:4a: 4e:ad:05:02:c0:bf:92:eb:fd:ee:70:77:b4:3e:36:4d:8c:b1: bf:0e:c5:d5:f2:42:9d:87:ea:40:4e:8a:c5:4c:ab:23:e3:4c: b5:1a:91:89:94:39:61:8a:87:b1:54:e5:3e:25:9a:44:a6:cd: 10:35:95:1d:b7:10:b5:ca:c6:95:f5:77:ce:db:eb:c8:43:12: 2a:32:65:3d -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUcJVfdqGbd52chYfr74pw3Wt/m1YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0 ZWE3Nzc5YzAeFw0yNjAxMDYwOTQ2MTlaFw0yNzAxMDUwOTUxMTlaMDMxMTAvBgNV BAMTKEM0NTY0MEJGNEExQTg3N0U4OUE0QTY3MUQyQTc3QTc3M0VFOEUwN0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxldovUwuRYjtlkGvqDK7BeksT X3RpDxXRJja0EjBRUX+TPqmcr6PrSeFY6chKgWmm7PZd8RtL3AoR8IAw9312ClUa GhnGZiYb/M2NGEAXHmd9lRnIPs7eZ0k19xmx2k9rzFdtjRfnLa8OG3a9m4DmF9cl TswhbOk+ViJ5stC84U18sdntnK3WcWZvy2TXhHopHIfySOFFhOfY/6Ga0PNJtpcU bnx9ZX26SntOOF0vk+of323aqi2Ej2QJRJKInoiOWN1c6MLdshibgeuw26fNxs8y EuksNV3lnTMb4BRpeNV9+cdVo/V3t8ldbbgce0zvWxQtdKDKS/XjjTgESH3BAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUxFZAv0oah36JpKZx0qd6dz7o4H8wHwYDVR0j BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2 bmQ1dy5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzEzNzM2MmUzMTMyMzYyZTM4 MzUyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzNjMzMzQzNzMzLnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA sH5VMA0GCSqGSIb3DQEBCwUAA4IBAQBDAnzHOccua/VP3iBYu8fyEXyA0DVdFNh5 P8z/W15t0n14pWA9dfl/GUbfdZVaNuvlxmWNMFguQFnAOJCjh5tz3bAag/M2GxQy Ci3RAVAvNJHcPREYDfT4Snut84FwtgSn92MgjIVrcW8r0E1opA6vJ0AQk9QhXmoY hwmwCcgeIkG4FTTLzxnlL3yZmqnEApjUzXQbAgpkNYShGOGn+1v9jmENe6uJVgh0 iyVXlfFVEj60Q0pOrQUCwL+S6/3ucHe0PjZNjLG/DsXV8kKdh+pATorFTKsj40y1 GpGJlDlhioexVOU+JZpEps0QNZUdtxC1ysaV9XfO2+vIQxIqMmU9 -----END CERTIFICATE-----Generated at Mon Jan 19 14:23:28 2026 by rpki-client