This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3137372e3131362e302f32342d3332203d3e203531313637.roa File: 3138352e3137372e3131362e302f32342d3332203d3e203531313637.roa (raw, json) Hash identifier: TSgvVqFOV9NPTd4yc1SauaW2LuhNXNWw70CpM33nBJM= Subject key identifier: 83:CE:34:96:5F:D0:4E:8F:25:8B:7D:76:FF:5E:AC:07:7E:40:5C:6B Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Certificate serial: 2EAB89299BEA4025035D2E1EB0383B74F1BF5795 Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3137372e3131362e302f32342d3332203d3e203531313637.roa Signing time: Mon 29 Dec 2025 09:51:03 +0000 ROA not before: Mon 29 Dec 2025 09:46:03 +0000 ROA not after: Mon 28 Dec 2026 09:51:03 +0000 asID: 51167 IP address blocks: 185.177.116.0/24 maxlen: 32 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 01:05:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:ab:89:29:9b:ea:40:25:03:5d:2e:1e:b0:38:3b:74:f1:bf:57:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Validity Not Before: Dec 29 09:46:03 2025 GMT Not After : Dec 28 09:51:03 2026 GMT Subject: CN=83CE34965FD04E8F258B7D76FF5EAC077E405C6B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:a1:25:4e:b2:56:a1:8b:30:82:85:f9:e0:7d: 1a:fe:e8:f7:6c:0e:c6:df:85:57:e2:5a:d2:04:d5: 17:d4:3f:1e:62:82:88:2c:cb:40:84:2f:01:9a:5d: 8c:a8:1a:59:0c:47:0c:64:10:71:d2:31:69:7e:33: 6b:64:21:d4:4e:c2:9d:d8:c1:1e:12:0a:ce:1d:3f: ab:13:94:dd:d2:de:9e:ac:b0:6e:b1:f9:e2:39:b6: 55:31:83:45:a9:25:c5:df:f3:e6:0b:34:38:c1:76: 61:41:88:06:41:32:eb:9f:a7:e5:e9:df:0e:8c:28: 03:3d:65:5c:32:d1:f5:5f:5e:23:f4:34:c8:21:f9: 98:2c:4e:97:4b:39:0a:98:93:8d:5a:3e:a3:ee:4d: 0f:e2:80:41:0f:c8:bd:a7:7a:14:26:27:72:ee:14: 18:d7:d3:3f:7f:ef:5d:e5:4c:3b:65:38:88:c6:e6: 29:2d:0c:5c:e0:68:bb:28:54:08:99:4e:74:9d:e1: 46:2f:cf:15:9f:48:c6:93:04:0a:93:77:85:c6:32: 01:70:68:0c:e0:73:b0:db:e1:87:6f:6f:70:4f:27: 43:f1:5a:7b:0f:03:23:f9:15:0f:e6:e7:3f:38:15: c2:a4:34:a3:a8:41:58:8d:eb:b7:5e:ae:f3:2e:e8: bc:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:CE:34:96:5F:D0:4E:8F:25:8B:7D:76:FF:5E:AC:07:7E:40:5C:6B X509v3 Authority Key Identifier: keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3137372e3131362e302f32342d3332203d3e203531313637.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.177.116.0/24 Signature Algorithm: sha256WithRSAEncryption 6e:f1:de:4b:1c:19:ec:a8:ee:73:1c:5a:45:c2:d9:22:81:4e: 97:96:70:e0:c1:10:33:11:bb:34:e1:2a:83:7f:d8:81:51:c3: 68:08:0d:ac:c4:9e:5a:3e:dc:6b:06:c9:48:a3:04:d8:2b:0a: 9a:5a:ed:52:50:2b:4d:6d:8e:44:e1:04:2a:83:6c:ed:c1:a6: 8e:41:54:f8:29:f7:72:8d:61:5f:fa:91:c5:d8:73:bf:57:12: 8c:73:d0:15:db:05:e6:c0:db:dd:f5:00:f0:4d:5f:ab:cc:fa: 76:e3:56:9d:c5:20:5e:e7:11:91:65:e3:0c:6b:1e:a8:d2:bb: cf:a4:3d:7a:fe:6e:f7:d0:f6:e8:2d:de:cf:5d:7c:d2:3b:94: e7:25:1a:57:0f:3a:ab:05:7d:83:22:2b:fd:da:76:ef:9d:58: 90:0e:05:87:92:5a:6f:a8:90:78:91:93:5d:3e:d4:81:09:bf: fd:ba:d4:3b:d6:6c:95:0b:86:96:24:8c:96:66:8c:b9:9f:a5: ce:cd:11:79:7e:ee:8f:57:bc:0e:5e:b5:0f:b4:21:87:90:75: 7e:60:6f:23:9c:8e:29:8c:34:f5:79:27:b6:63:b7:86:b6:25: 45:90:e4:39:4d:da:d8:4c:ae:13:d6:f6:b3:33:d8:15:ba:6f: dd:28:9e:d4 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIULquJKZvqQCUDXS4esDg7dPG/V5UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0 ZWE3Nzc5YzAeFw0yNTEyMjkwOTQ2MDNaFw0yNjEyMjgwOTUxMDNaMDMxMTAvBgNV BAMTKDgzQ0UzNDk2NUZEMDRFOEYyNThCN0Q3NkZGNUVBQzA3N0U0MDVDNkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwoSVOslahizCChfngfRr+6Pds DsbfhVfiWtIE1RfUPx5igogsy0CELwGaXYyoGlkMRwxkEHHSMWl+M2tkIdROwp3Y wR4SCs4dP6sTlN3S3p6ssG6x+eI5tlUxg0WpJcXf8+YLNDjBdmFBiAZBMuufp+Xp 3w6MKAM9ZVwy0fVfXiP0NMgh+ZgsTpdLOQqYk41aPqPuTQ/igEEPyL2nehQmJ3Lu FBjX0z9/713lTDtlOIjG5iktDFzgaLsoVAiZTnSd4UYvzxWfSMaTBAqTd4XGMgFw aAzgc7Db4Ydvb3BPJ0PxWnsPAyP5FQ/m5z84FcKkNKOoQViN67dervMu6LxJAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUg840ll/QTo8li312/16sB35AXGswHwYDVR0j BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2 bmQ1dy5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzEzODM1MmUzMTM3MzcyZTMx MzEzNjJlMzAyZjMyMzQyZDMzMzIyMDNkM2UyMDM1MzEzMTM2Mzcucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAC5sXQwDQYJKoZIhvcNAQELBQADggEBAG7x3kscGeyo7nMcWkXC2SKBTpeWcODB EDMRuzThKoN/2IFRw2gIDazEnlo+3GsGyUijBNgrCppa7VJQK01tjkThBCqDbO3B po5BVPgp93KNYV/6kcXYc79XEoxz0BXbBebA2931APBNX6vM+nbjVp3FIF7nEZFl 4wxrHqjSu8+kPXr+bvfQ9ugt3s9dfNI7lOclGlcPOqsFfYMiK/3adu+dWJAOBYeS Wm+okHiRk10+1IEJv/261DvWbJULhpYkjJZmjLmfpc7NEXl+7o9XvA5etQ+0IYeQ dX5gbyOcjimMNPV5J7Zjt4a2JUWQ5DlN2thMrhPW9rMz2BW6b90ontQ= -----END CERTIFICATE-----Generated at Mon Jan 19 14:27:20 2026 by rpki-client