This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3131312e3135392e302f32342d3332203d3e20313431393935.roa File: 3138352e3131312e3135392e302f32342d3332203d3e20313431393935.roa (raw, json) Hash identifier: guBIMhzzR48iMm7ZqsImUHymQwsdoodSmARQix8I9q4= Subject key identifier: 6B:19:D7:45:8D:76:71:76:E3:A0:E9:51:2E:A9:0E:3F:B2:3A:81:B9 Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Certificate serial: 14F4ED32DDEDECC8D6B9681842B210D00B274EF9 Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3131312e3135392e302f32342d3332203d3e20313431393935.roa Signing time: Mon 29 Dec 2025 09:51:00 +0000 ROA not before: Mon 29 Dec 2025 09:46:00 +0000 ROA not after: Mon 28 Dec 2026 09:51:00 +0000 asID: 141995 IP address blocks: 185.111.159.0/24 maxlen: 32 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 01:05:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:f4:ed:32:dd:ed:ec:c8:d6:b9:68:18:42:b2:10:d0:0b:27:4e:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Validity Not Before: Dec 29 09:46:00 2025 GMT Not After : Dec 28 09:51:00 2026 GMT Subject: CN=6B19D7458D767176E3A0E9512EA90E3FB23A81B9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:2d:b4:b8:d6:be:43:07:23:9d:ac:2a:b2:d2: c6:46:a0:28:04:10:69:04:ef:af:f3:c6:35:ee:f7: 97:ec:e9:a1:b7:6b:77:d8:0e:78:ed:ce:16:8b:6c: 65:01:70:67:14:ca:ce:f2:33:1e:6d:17:f6:be:5c: a2:aa:e8:51:68:b1:85:e3:d8:28:46:08:be:4b:5c: 62:c7:62:15:db:31:61:ef:d0:01:14:98:46:d5:d9: d6:69:4f:a9:4d:ee:6c:e8:58:b8:74:79:fc:82:82: c8:28:de:87:1e:d8:d6:9f:03:3c:9f:d0:15:25:ed: 63:b6:78:36:75:29:d0:05:7a:29:95:58:81:c8:2f: 9b:17:79:bb:2c:b8:a6:fc:68:90:e9:52:a9:2e:52: 34:0c:f0:d8:c7:74:65:86:0a:f5:96:fa:5e:1a:49: 33:11:01:21:ca:e5:d0:cc:24:06:b3:71:16:5b:5a: eb:19:f9:55:e4:47:fd:3e:fe:9b:7b:c0:1d:2b:6c: a3:58:1c:c1:4d:1b:ac:b0:eb:59:9a:ba:6f:10:95: 7b:62:cb:da:f8:bf:9a:c3:b7:4b:01:e4:6f:e7:b7: 1e:f8:05:a6:6f:90:f7:1d:b8:9e:49:47:df:47:64: e9:1e:db:be:9c:d5:fa:94:9a:eb:37:6e:5d:6b:e2: 6b:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:19:D7:45:8D:76:71:76:E3:A0:E9:51:2E:A9:0E:3F:B2:3A:81:B9 X509v3 Authority Key Identifier: keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3131312e3135392e302f32342d3332203d3e20313431393935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.111.159.0/24 Signature Algorithm: sha256WithRSAEncryption 28:6a:18:a7:94:59:b0:ec:bf:c4:d7:a3:72:30:dd:24:7d:d4: 16:16:ab:e0:33:a5:5f:0b:f8:30:70:64:56:98:d1:8a:a8:4d: d4:af:a2:8c:b4:7c:ac:93:de:cf:87:86:37:0e:7c:91:60:52: 38:4f:0a:4f:fd:51:77:4c:3d:4f:6f:bc:fd:02:2f:6e:a1:b5: b9:79:cd:56:fc:f9:b5:60:88:7f:76:92:2b:f7:c6:b2:bc:44: 5d:4e:d6:dc:d3:da:92:b5:0b:10:2c:e5:35:fa:3a:0a:28:dd: f3:91:5b:8a:0a:ed:44:59:d2:79:9f:86:ad:44:7a:43:69:82: 79:db:a8:a8:94:4e:1c:ff:03:02:ee:4d:3c:c5:4c:fa:32:9e: 72:37:47:af:15:b9:91:22:37:5f:7e:d8:12:33:0f:99:d3:fc: 77:75:1b:09:1c:5d:76:e1:a7:b8:7e:83:56:e4:eb:35:df:bc: b5:03:f2:bc:1c:19:25:82:76:c1:34:a0:7c:f3:a4:11:52:46: cd:e6:d7:b8:e0:0a:fa:21:58:dc:25:a5:06:ab:59:78:b2:26: 08:c5:81:f4:d3:20:64:17:bd:fb:91:6a:d7:33:c9:e9:09:7f: d6:db:85:90:05:d7:8a:5a:9d:8d:68:14:e7:a0:12:a9:10:68: c0:c0:7e:c4 -----BEGIN CERTIFICATE----- MIIFNzCCBB+gAwIBAgIUFPTtMt3t7MjWuWgYQrIQ0AsnTvkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0 ZWE3Nzc5YzAeFw0yNTEyMjkwOTQ2MDBaFw0yNjEyMjgwOTUxMDBaMDMxMTAvBgNV BAMTKDZCMTlENzQ1OEQ3NjcxNzZFM0EwRTk1MTJFQTkwRTNGQjIzQTgxQjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+LbS41r5DByOdrCqy0sZGoCgE EGkE76/zxjXu95fs6aG3a3fYDnjtzhaLbGUBcGcUys7yMx5tF/a+XKKq6FFosYXj 2ChGCL5LXGLHYhXbMWHv0AEUmEbV2dZpT6lN7mzoWLh0efyCgsgo3oce2NafAzyf 0BUl7WO2eDZ1KdAFeimVWIHIL5sXebssuKb8aJDpUqkuUjQM8NjHdGWGCvWW+l4a STMRASHK5dDMJAazcRZbWusZ+VXkR/0+/pt7wB0rbKNYHMFNG6yw61maum8QlXti y9r4v5rDt0sB5G/ntx74BaZvkPcduJ5JR99HZOke276c1fqUmus3bl1r4mtTAgMB AAGjggJBMIICPTAdBgNVHQ4EFgQUaxnXRY12cXbjoOlRLqkOP7I6gbkwHwYDVR0j BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2 bmQ1dy5jZXIwgbEGCCsGAQUFBwELBIGkMIGhMIGeBggrBgEFBQcwC4aBkXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzEzODM1MmUzMTMxMzEyZTMx MzUzOTJlMzAyZjMyMzQyZDMzMzIyMDNkM2UyMDMxMzQzMTM5MzkzNS5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEALlvnzANBgkqhkiG9w0BAQsFAAOCAQEAKGoYp5RZsOy/xNejcjDdJH3UFhar 4DOlXwv4MHBkVpjRiqhN1K+ijLR8rJPez4eGNw58kWBSOE8KT/1Rd0w9T2+8/QIv bqG1uXnNVvz5tWCIf3aSK/fGsrxEXU7W3NPakrULECzlNfo6Cijd85FbigrtRFnS eZ+GrUR6Q2mCeduoqJROHP8DAu5NPMVM+jKecjdHrxW5kSI3X37YEjMPmdP8d3Ub CRxdduGnuH6DVuTrNd+8tQPyvBwZJYJ2wTSgfPOkEVJGzebXuOAK+iFY3CWlBqtZ eLImCMWB9NMgZBe9+5Fq1zPJ6Ql/1tuFkAXXilqdjWgU56ASqRBowMB+xA== -----END CERTIFICATE-----Generated at Mon Jan 19 14:28:02 2026 by rpki-client