This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3137332e3232342e302f32342d3234203d3e203434353932.roa File: 3138352e3137332e3232342e302f32342d3234203d3e203434353932.roa (raw, json) Hash identifier: NA987FE96k6y5F03hd3yIyOtBSxq2V8H2l9e1QCXCiE= Subject key identifier: A2:0B:DC:28:AC:DE:47:34:19:F3:4B:72:B6:B5:81:54:AB:34:0A:36 Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Certificate serial: 74D1F2C3CD1E850D219E4BDD4FF091948E427F61 Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3137332e3232342e302f32342d3234203d3e203434353932.roa Signing time: Mon 29 Dec 2025 09:50:58 +0000 ROA not before: Mon 29 Dec 2025 09:45:58 +0000 ROA not after: Mon 28 Dec 2026 09:50:58 +0000 asID: 44592 IP address blocks: 185.173.224.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 01:05:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:d1:f2:c3:cd:1e:85:0d:21:9e:4b:dd:4f:f0:91:94:8e:42:7f:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Validity Not Before: Dec 29 09:45:58 2025 GMT Not After : Dec 28 09:50:58 2026 GMT Subject: CN=A20BDC28ACDE473419F34B72B6B58154AB340A36 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:25:f4:15:26:dc:90:95:05:51:47:8b:7c:7b: a1:ca:d2:c8:b5:41:b5:73:e2:92:aa:bd:55:85:19: 5d:87:2e:15:32:b5:8c:56:d8:7e:ea:0c:6e:96:02: 69:1e:a8:d9:72:24:6e:62:80:f9:e2:12:08:16:ad: eb:04:06:7f:4d:1b:c0:32:ba:73:71:60:53:c4:e2: aa:e4:88:fc:ed:40:52:8f:d4:70:0e:8a:b8:35:a5: 80:19:06:1f:08:10:72:94:7f:90:6a:69:ba:f9:a7: 38:55:0c:dc:75:93:c2:d2:f1:58:15:be:dd:0c:ae: e8:60:a1:8d:a0:f5:30:88:67:34:18:eb:38:ef:fe: 1f:4b:71:8b:10:55:c1:b2:63:98:7b:ac:1d:a6:29: 86:0b:f0:a4:8c:ca:6f:1f:92:67:de:b9:e0:7b:17: 0c:52:8c:88:46:49:ca:cf:81:4c:5a:70:b4:bd:bf: f4:cd:33:32:f3:40:f6:7a:51:59:26:cc:d4:0f:3d: 94:7f:84:1b:99:ff:77:1a:c1:f2:af:46:d2:50:da: 14:d8:c0:68:6a:86:9f:4c:99:0a:71:88:3a:03:9e: 04:b9:19:f0:65:41:3d:a9:87:74:f6:49:49:ea:21: fd:c8:95:8d:9b:33:68:a3:04:95:81:6b:0c:87:5b: 86:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:0B:DC:28:AC:DE:47:34:19:F3:4B:72:B6:B5:81:54:AB:34:0A:36 X509v3 Authority Key Identifier: keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3137332e3232342e302f32342d3234203d3e203434353932.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.173.224.0/24 Signature Algorithm: sha256WithRSAEncryption 49:69:ed:bb:96:1d:99:92:9b:4c:0b:cb:26:4f:e5:f0:f4:ef: ab:f7:6f:45:20:03:94:8b:82:86:5c:71:9a:4e:7a:c5:12:0f: 4a:95:48:d6:94:79:14:f0:9d:7d:91:03:71:30:7d:47:13:52: 47:4d:7a:38:33:c7:02:f2:81:d7:fb:56:1c:ba:14:4f:1b:20: 34:d9:1e:c9:9c:21:b8:f0:7a:17:f7:91:10:f4:d0:bf:72:d6: 81:ca:17:d5:01:93:ed:b2:c3:40:ad:49:f3:1c:2f:ed:b0:1b: c8:14:e3:ac:50:3d:9f:fe:67:79:63:14:0d:a3:33:24:4c:9e: bd:a7:be:6e:14:4e:8a:f0:43:98:57:1e:20:8a:54:ee:c6:08: 75:bf:84:d9:37:ec:bf:c0:cd:c6:60:6b:9e:8f:08:f8:57:20: f7:6c:02:89:69:2a:61:1a:91:1d:04:0b:5a:8b:1d:32:c6:80: b1:2b:59:1f:57:56:18:88:ef:f8:ac:1f:39:b3:7a:8c:d6:cb: 78:30:41:00:4c:b0:1d:6e:67:ac:35:80:25:b2:3e:ae:68:b5: 46:a0:7b:f4:17:c6:d0:59:51:d7:58:6d:f3:1f:a1:57:c8:07: e3:1c:96:51:26:a7:83:36:01:1c:45:8a:61:1d:69:54:1e:48: 80:b3:f0:8e -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUdNHyw80ehQ0hnkvdT/CRlI5Cf2EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0 ZWE3Nzc5YzAeFw0yNTEyMjkwOTQ1NThaFw0yNjEyMjgwOTUwNThaMDMxMTAvBgNV BAMTKEEyMEJEQzI4QUNERTQ3MzQxOUYzNEI3MkI2QjU4MTU0QUIzNDBBMzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0JfQVJtyQlQVRR4t8e6HK0si1 QbVz4pKqvVWFGV2HLhUytYxW2H7qDG6WAmkeqNlyJG5igPniEggWresEBn9NG8Ay unNxYFPE4qrkiPztQFKP1HAOirg1pYAZBh8IEHKUf5Bqabr5pzhVDNx1k8LS8VgV vt0MruhgoY2g9TCIZzQY6zjv/h9LcYsQVcGyY5h7rB2mKYYL8KSMym8fkmfeueB7 FwxSjIhGScrPgUxacLS9v/TNMzLzQPZ6UVkmzNQPPZR/hBuZ/3cawfKvRtJQ2hTY wGhqhp9MmQpxiDoDngS5GfBlQT2ph3T2SUnqIf3IlY2bM2ijBJWBawyHW4ZZAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUogvcKKzeRzQZ80tytrWBVKs0CjYwHwYDVR0j BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2 bmQ1dy5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzEzODM1MmUzMTM3MzMyZTMy MzIzNDJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDM0MzQzNTM5MzIucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAC5reAwDQYJKoZIhvcNAQELBQADggEBAElp7buWHZmSm0wLyyZP5fD076v3b0Ug A5SLgoZccZpOesUSD0qVSNaUeRTwnX2RA3EwfUcTUkdNejgzxwLygdf7Vhy6FE8b IDTZHsmcIbjwehf3kRD00L9y1oHKF9UBk+2yw0CtSfMcL+2wG8gU46xQPZ/+Z3lj FA2jMyRMnr2nvm4UTorwQ5hXHiCKVO7GCHW/hNk37L/AzcZga56PCPhXIPdsAolp KmEakR0EC1qLHTLGgLErWR9XVhiI7/isHzmzeozWy3gwQQBMsB1uZ6w1gCWyPq5o tUage/QXxtBZUddYbfMfoVfIB+McllEmp4M2ARxFimEdaVQeSICz8I4= -----END CERTIFICATE-----Generated at Mon Jan 19 14:23:31 2026 by rpki-client