This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3136362e3138382e302f32342d3234203d3e203437353833.roa File: 3138352e3136362e3138382e302f32342d3234203d3e203437353833.roa (raw, json) Hash identifier: uvvd1+1Z9D/0n39mTppV3A003PFc6LtuFthzfifEzoc= Subject key identifier: 8D:5B:1E:E8:F1:AD:A5:73:B0:F4:B3:4F:C6:9B:7A:D4:87:C8:38:C3 Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Certificate serial: 0C44DB7BAF6C65DB7EABDBF3EDBF6546CE79647C Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3136362e3138382e302f32342d3234203d3e203437353833.roa Signing time: Mon 29 Dec 2025 09:50:34 +0000 ROA not before: Mon 29 Dec 2025 09:45:34 +0000 ROA not after: Mon 28 Dec 2026 09:50:34 +0000 asID: 47583 IP address blocks: 185.166.188.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 01:05:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:44:db:7b:af:6c:65:db:7e:ab:db:f3:ed:bf:65:46:ce:79:64:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Validity Not Before: Dec 29 09:45:34 2025 GMT Not After : Dec 28 09:50:34 2026 GMT Subject: CN=8D5B1EE8F1ADA573B0F4B34FC69B7AD487C838C3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:d8:ee:a2:f2:e6:7d:4c:34:3d:a5:ef:09:6b: 24:7e:81:59:6b:25:ec:f5:f0:14:69:f4:b7:07:08: 09:df:25:4f:5d:0e:00:79:e3:e6:40:65:1c:0c:81: e1:b9:de:8f:22:f0:1d:44:bb:7c:fb:4d:02:80:06: 35:da:e8:c0:93:01:6b:84:b2:ae:2b:e1:0d:9f:50: a5:85:90:f7:f3:93:07:dd:68:0e:0d:27:bf:4f:59: a5:e0:d8:42:f7:48:d1:57:41:ba:92:88:66:db:47: 83:63:0f:cb:bd:c0:1d:ef:66:b6:c5:93:7a:4e:7a: 30:5c:df:f7:9c:a9:72:83:0b:2a:60:ab:a2:7c:c7: e3:d8:5d:12:67:08:31:25:51:b2:09:56:db:a8:09: 05:34:fb:7b:63:53:d8:0c:83:af:1b:a7:cd:5a:1c: 5d:fd:d1:70:f1:fd:db:af:2b:ed:f1:b2:a8:59:92: 82:a9:9a:d1:74:bd:6f:76:92:5f:78:85:6b:89:a3: 9c:f1:8f:c4:07:46:d7:04:27:ed:c7:4c:60:30:fa: 99:07:37:e3:3d:c1:bd:f3:09:10:96:f5:81:fe:8e: da:23:07:d6:d3:e7:c3:63:1a:e7:64:ed:b2:fd:a5: e7:d5:c8:cb:3b:4c:1d:b7:48:be:1f:ea:50:e8:eb: 8f:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:5B:1E:E8:F1:AD:A5:73:B0:F4:B3:4F:C6:9B:7A:D4:87:C8:38:C3 X509v3 Authority Key Identifier: keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3136362e3138382e302f32342d3234203d3e203437353833.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.166.188.0/24 Signature Algorithm: sha256WithRSAEncryption 70:6c:2e:ce:be:9e:e2:a1:9c:b5:3d:86:91:e0:39:23:7d:e5: 86:5f:2d:e3:2c:99:8e:5e:ed:d9:bc:df:36:61:5c:06:26:67: 17:2f:b3:98:10:7f:67:90:85:38:82:f9:1e:8b:1e:70:64:d5: eb:50:8f:08:38:5a:72:0b:68:d0:28:b4:95:d9:2f:51:e3:fa: 8b:e8:ec:bc:01:b3:12:ef:8c:8a:98:98:7e:5c:fb:c2:ad:07: c0:8e:ac:01:cc:8e:44:ac:c1:18:bb:23:cc:eb:6e:a7:6c:de: 31:71:4c:97:bb:a8:08:04:d1:aa:c5:86:32:c7:1b:f8:28:ae: d4:d0:9e:70:91:a1:7a:15:f5:ba:04:7d:c7:e9:ff:93:e9:fe: 53:d1:3c:66:4d:f1:02:90:3a:0a:a6:d4:47:5b:d1:4e:96:7a: 0d:9a:0c:ab:ea:87:60:b2:f0:92:57:69:79:66:dd:e2:5e:d5: c8:60:4b:ca:70:fc:ff:b5:a1:83:bf:16:d7:d6:c6:7e:cb:e1: fa:07:0a:a9:c2:f2:60:67:ef:4c:f4:48:a9:59:60:67:46:03: dc:a4:47:4a:94:4e:ec:ab:b6:e5:d2:52:bd:52:e6:98:3d:c2: 5e:c1:b7:45:8c:e9:ad:f5:76:64:9b:64:68:af:30:66:0c:50: 02:d1:7c:0d -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUDETbe69sZdt+q9vz7b9lRs55ZHwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0 ZWE3Nzc5YzAeFw0yNTEyMjkwOTQ1MzRaFw0yNjEyMjgwOTUwMzRaMDMxMTAvBgNV BAMTKDhENUIxRUU4RjFBREE1NzNCMEY0QjM0RkM2OUI3QUQ0ODdDODM4QzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDP2O6i8uZ9TDQ9pe8JayR+gVlr Jez18BRp9LcHCAnfJU9dDgB54+ZAZRwMgeG53o8i8B1Eu3z7TQKABjXa6MCTAWuE sq4r4Q2fUKWFkPfzkwfdaA4NJ79PWaXg2EL3SNFXQbqSiGbbR4NjD8u9wB3vZrbF k3pOejBc3/ecqXKDCypgq6J8x+PYXRJnCDElUbIJVtuoCQU0+3tjU9gMg68bp81a HF390XDx/duvK+3xsqhZkoKpmtF0vW92kl94hWuJo5zxj8QHRtcEJ+3HTGAw+pkH N+M9wb3zCRCW9YH+jtojB9bT58NjGudk7bL9pefVyMs7TB23SL4f6lDo649RAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUjVse6PGtpXOw9LNPxpt61IfIOMMwHwYDVR0j BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2 bmQ1dy5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzEzODM1MmUzMTM2MzYyZTMx MzgzODJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDM0MzczNTM4MzMucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAC5prwwDQYJKoZIhvcNAQELBQADggEBAHBsLs6+nuKhnLU9hpHgOSN95YZfLeMs mY5e7dm83zZhXAYmZxcvs5gQf2eQhTiC+R6LHnBk1etQjwg4WnILaNAotJXZL1Hj +ovo7LwBsxLvjIqYmH5c+8KtB8COrAHMjkSswRi7I8zrbqds3jFxTJe7qAgE0arF hjLHG/gortTQnnCRoXoV9boEfcfp/5Pp/lPRPGZN8QKQOgqm1Edb0U6Weg2aDKvq h2Cy8JJXaXlm3eJe1chgS8pw/P+1oYO/FtfWxn7L4foHCqnC8mBn70z0SKlZYGdG A9ykR0qUTuyrtuXSUr1S5pg9wl7Bt0WM6a31dmSbZGivMGYMUALRfA0= -----END CERTIFICATE-----Generated at Mon Jan 19 14:26:12 2026 by rpki-client