This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3132382e3132362e302f32332d3234203d3e20313336373837.roa File: 3138352e3132382e3132362e302f32332d3234203d3e20313336373837.roa (raw, json) Hash identifier: O0GIri/BVOcN0K8nVXi1p987disE4lgZk5BWLP7X+Lg= Subject key identifier: EF:53:D4:CC:91:CA:B2:1E:18:65:D6:5C:5F:F6:1C:A7:3F:F8:2C:12 Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Certificate serial: 1747A59FEBA426F0C1542AB85BBAF8B97BD1DB0C Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3132382e3132362e302f32332d3234203d3e20313336373837.roa Signing time: Mon 29 Dec 2025 09:50:41 +0000 ROA not before: Mon 29 Dec 2025 09:45:41 +0000 ROA not after: Mon 28 Dec 2026 09:50:41 +0000 asID: 136787 IP address blocks: 185.128.126.0/23 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 01:05:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:47:a5:9f:eb:a4:26:f0:c1:54:2a:b8:5b:ba:f8:b9:7b:d1:db:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Validity Not Before: Dec 29 09:45:41 2025 GMT Not After : Dec 28 09:50:41 2026 GMT Subject: CN=EF53D4CC91CAB21E1865D65C5FF61CA73FF82C12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:95:77:cb:74:6a:cf:b6:0d:1b:e4:44:0e:6c: ea:a8:1e:7a:65:d6:c6:62:91:3a:ec:59:be:67:b8: e2:0e:57:11:61:86:ac:43:81:f3:6d:b5:d3:c3:d6: ab:f0:a0:ab:2d:4c:18:ea:a6:cc:fc:42:e0:8d:ff: 2c:bb:91:40:33:5e:4d:a1:92:7a:39:18:e4:81:24: 3f:1d:e2:12:ce:19:7b:32:8c:ad:de:1f:4c:1d:41: 9a:6a:4d:eb:20:d8:9d:54:f8:a1:06:6a:ee:7b:0c: cd:5f:52:5d:9e:bb:e7:c2:84:b9:2d:70:9b:60:b6: d4:45:62:bf:1e:80:6c:b2:ea:af:d4:e3:d4:32:72: da:b8:86:bd:2a:ea:0a:b8:5a:67:94:05:13:89:23: f4:f4:c1:52:bb:00:69:c0:61:63:fe:dd:5e:c8:f8: ca:9d:34:77:a4:76:f7:87:fb:72:3e:b6:35:45:e4: 01:0f:f8:47:29:63:92:35:24:9a:51:e4:01:cb:76: 64:d1:e9:b1:1d:04:73:5d:d4:d0:6d:c3:a7:6b:df: 89:02:9b:13:b0:1c:1a:70:10:fa:c6:ae:0a:c1:56: 13:9c:f9:79:9b:1f:22:f3:fb:49:0f:49:dd:da:e2: 47:21:6f:db:1b:2a:b3:e3:09:61:b9:72:60:fc:c1: 88:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:53:D4:CC:91:CA:B2:1E:18:65:D6:5C:5F:F6:1C:A7:3F:F8:2C:12 X509v3 Authority Key Identifier: keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3132382e3132362e302f32332d3234203d3e20313336373837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.128.126.0/23 Signature Algorithm: sha256WithRSAEncryption 9d:fa:b9:f3:f3:82:69:fb:68:44:6c:18:83:71:9a:54:17:9a: b5:4e:cc:1e:57:67:d3:c8:53:01:26:65:c7:34:a1:0e:1d:c6: 9b:70:bb:47:ff:8d:3d:6d:9e:ff:76:b0:f4:c8:7e:72:e9:6c: 1a:d2:97:a9:a9:65:5b:2e:4f:43:aa:88:ba:3e:88:06:42:60: ac:3b:9c:b4:e9:41:18:b7:55:c7:60:37:5c:7a:62:61:30:06: 1f:c4:5b:cb:1d:21:5f:2a:c0:bf:43:16:b3:3b:63:36:14:b4: 33:0e:17:b5:95:fd:16:c3:a5:de:f6:f7:71:fc:fc:ee:9f:70: 9c:61:93:3b:bb:29:28:b3:56:95:6b:d4:fc:7d:0e:90:e5:ba: 04:16:ea:f5:aa:83:5e:cc:ae:7f:e2:22:45:dd:a9:1d:90:08: e6:29:61:11:5e:26:4b:c7:39:d1:cd:2e:d7:06:90:43:f4:94: 24:4c:12:27:32:4b:b0:1a:b4:6c:02:b7:49:57:46:51:c4:20: d8:72:46:f7:73:53:65:b4:ea:05:8e:47:ad:6a:08:1c:51:3f: 31:b1:ac:c1:d9:4d:9e:ab:09:a6:36:15:33:95:50:df:4a:69: cb:b3:07:c0:3c:f7:1d:df:06:96:46:ce:42:f1:ff:10:d7:75: 4b:cf:57:91 -----BEGIN CERTIFICATE----- MIIFNzCCBB+gAwIBAgIUF0eln+ukJvDBVCq4W7r4uXvR2wwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0 ZWE3Nzc5YzAeFw0yNTEyMjkwOTQ1NDFaFw0yNjEyMjgwOTUwNDFaMDMxMTAvBgNV BAMTKEVGNTNENENDOTFDQUIyMUUxODY1RDY1QzVGRjYxQ0E3M0ZGODJDMTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxlXfLdGrPtg0b5EQObOqoHnpl 1sZikTrsWb5nuOIOVxFhhqxDgfNttdPD1qvwoKstTBjqpsz8QuCN/yy7kUAzXk2h kno5GOSBJD8d4hLOGXsyjK3eH0wdQZpqTesg2J1U+KEGau57DM1fUl2eu+fChLkt cJtgttRFYr8egGyy6q/U49Qyctq4hr0q6gq4WmeUBROJI/T0wVK7AGnAYWP+3V7I +MqdNHekdveH+3I+tjVF5AEP+EcpY5I1JJpR5AHLdmTR6bEdBHNd1NBtw6dr34kC mxOwHBpwEPrGrgrBVhOc+XmbHyLz+0kPSd3a4kchb9sbKrPjCWG5cmD8wYhPAgMB AAGjggJBMIICPTAdBgNVHQ4EFgQU71PUzJHKsh4YZdZcX/Ycpz/4LBIwHwYDVR0j BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2 bmQ1dy5jZXIwgbEGCCsGAQUFBwELBIGkMIGhMIGeBggrBgEFBQcwC4aBkXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzEzODM1MmUzMTMyMzgyZTMx MzIzNjJlMzAyZjMyMzMyZDMyMzQyMDNkM2UyMDMxMzMzNjM3MzgzNy5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAbmAfjANBgkqhkiG9w0BAQsFAAOCAQEAnfq58/OCaftoRGwYg3GaVBeatU7M Hldn08hTASZlxzShDh3Gm3C7R/+NPW2e/3aw9Mh+culsGtKXqallWy5PQ6qIuj6I BkJgrDuctOlBGLdVx2A3XHpiYTAGH8Rbyx0hXyrAv0MWsztjNhS0Mw4XtZX9FsOl 3vb3cfz87p9wnGGTO7spKLNWlWvU/H0OkOW6BBbq9aqDXsyuf+IiRd2pHZAI5ilh EV4mS8c50c0u1waQQ/SUJEwSJzJLsBq0bAK3SVdGUcQg2HJG93NTZbTqBY5HrWoI HFE/MbGswdlNnqsJpjYVM5VQ30ppy7MHwDz3Hd8GlkbOQvH/ENd1S89XkQ== -----END CERTIFICATE-----Generated at Mon Jan 19 14:26:14 2026 by rpki-client