This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3138352e38302e302f32342d3332203d3e203531313637.roa File: 3138352e3138352e38302e302f32342d3332203d3e203531313637.roa (raw, json) Hash identifier: 4quExAJopzfGL338N+6v5pwXAc7itwkZuSYUUQ+75Uc= Subject key identifier: 9F:44:DC:32:41:59:35:73:C9:F5:A6:3E:02:FF:00:29:AF:F6:F1:10 Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Certificate serial: 4068A907E78849760B31FFDFD9362BE407FA19FE Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3138352e38302e302f32342d3332203d3e203531313637.roa Signing time: Mon 29 Dec 2025 09:50:57 +0000 ROA not before: Mon 29 Dec 2025 09:45:57 +0000 ROA not after: Mon 28 Dec 2026 09:50:57 +0000 asID: 51167 IP address blocks: 185.185.80.0/24 maxlen: 32 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 01:05:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:68:a9:07:e7:88:49:76:0b:31:ff:df:d9:36:2b:e4:07:fa:19:fe Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Validity Not Before: Dec 29 09:45:57 2025 GMT Not After : Dec 28 09:50:57 2026 GMT Subject: CN=9F44DC3241593573C9F5A63E02FF0029AFF6F110 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:d1:45:00:4a:5a:4c:4e:12:f9:1c:82:9a:39: fd:e8:5c:d4:94:81:87:d1:e7:1a:08:b9:35:23:e7: c8:5c:f0:5d:6a:d3:f2:e1:0f:c0:b3:47:0a:c3:35: 86:d0:59:e5:cc:7a:68:b1:dd:68:54:1b:1d:7f:9a: dc:1c:21:18:c4:f0:15:1a:ce:de:d5:ca:bd:eb:42: b7:c0:67:35:27:f2:93:67:47:c1:e9:33:3c:45:20: cc:f7:eb:89:df:15:46:94:0d:43:96:04:38:28:e2: 76:fe:7d:2e:88:be:41:95:14:ce:25:90:57:c7:07: e8:57:21:be:e8:4e:b0:e6:31:1c:69:1e:25:ee:74: 54:5f:36:d1:a0:52:65:12:a0:00:05:09:db:aa:1f: 22:26:f0:6e:8a:b6:ee:6c:15:55:0f:d1:fa:fe:b1: 69:92:3b:c6:8b:c5:75:bf:fb:5c:39:d4:e7:48:36: ec:e0:34:f3:ac:df:29:81:a8:bf:be:5b:e2:33:90: a6:2e:86:4a:aa:84:70:fe:b5:e8:3b:19:d1:07:f4: 10:67:70:98:4a:9b:02:db:70:54:23:5a:60:40:28: e6:04:1c:e8:56:fd:06:21:28:d4:33:fc:41:d2:0a: 75:30:3d:a8:05:b1:a2:b8:81:69:62:49:31:07:14: 1a:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:44:DC:32:41:59:35:73:C9:F5:A6:3E:02:FF:00:29:AF:F6:F1:10 X509v3 Authority Key Identifier: keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3138352e38302e302f32342d3332203d3e203531313637.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.185.80.0/24 Signature Algorithm: sha256WithRSAEncryption 84:ce:22:f6:0d:9c:71:f1:a1:7f:5a:c8:67:2a:97:00:12:0b: e2:5f:d0:10:c7:b6:67:f9:7d:46:5d:7e:9e:a9:c4:d5:ff:b1: 11:76:6c:3a:11:1b:fe:87:13:17:aa:ed:c0:c0:48:d0:1b:6d: bc:38:7a:10:46:b0:61:db:ed:82:70:b7:bb:2e:cf:10:fc:eb: 6c:9d:d1:89:84:de:2b:9d:63:59:c6:1f:08:3a:7f:59:84:7b: 9b:a5:e4:39:f4:34:05:1f:c9:15:45:ce:01:2b:1b:f0:28:8c: 8f:b4:59:19:3b:7c:bf:97:1a:f5:c6:af:15:f6:ed:9c:02:9a: fa:67:c0:ef:85:a5:5b:f3:c7:34:f7:69:28:d5:94:84:be:54: 7c:0b:43:34:d8:0b:54:80:23:78:08:53:68:20:c5:c3:1f:74: 61:02:86:9d:6a:77:b8:9c:07:f8:c6:a6:56:b3:82:c8:eb:22: 11:77:e6:2e:ab:0e:33:8c:e0:42:c6:d9:f7:0b:a4:48:01:d3: d2:cc:52:e7:db:65:a9:bb:0f:80:38:58:8f:5f:7d:e3:ab:0f: 09:9d:f4:1d:b2:48:f8:d3:bd:da:67:4e:95:8b:19:82:81:d0: ff:ce:62:bf:81:74:4a:ce:c1:2b:1c:70:29:6d:01:6f:61:e0: 06:da:cc:90 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUQGipB+eISXYLMf/f2TYr5Af6Gf4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0 ZWE3Nzc5YzAeFw0yNTEyMjkwOTQ1NTdaFw0yNjEyMjgwOTUwNTdaMDMxMTAvBgNV BAMTKDlGNDREQzMyNDE1OTM1NzNDOUY1QTYzRTAyRkYwMDI5QUZGNkYxMTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDS0UUASlpMThL5HIKaOf3oXNSU gYfR5xoIuTUj58hc8F1q0/LhD8CzRwrDNYbQWeXMemix3WhUGx1/mtwcIRjE8BUa zt7Vyr3rQrfAZzUn8pNnR8HpMzxFIMz364nfFUaUDUOWBDgo4nb+fS6IvkGVFM4l kFfHB+hXIb7oTrDmMRxpHiXudFRfNtGgUmUSoAAFCduqHyIm8G6Ktu5sFVUP0fr+ sWmSO8aLxXW/+1w51OdINuzgNPOs3ymBqL++W+IzkKYuhkqqhHD+teg7GdEH9BBn cJhKmwLbcFQjWmBAKOYEHOhW/QYhKNQz/EHSCnUwPagFsaK4gWliSTEHFBrLAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUn0TcMkFZNXPJ9aY+Av8AKa/28RAwHwYDVR0j BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2 bmQ1dy5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzEzODM1MmUzMTM4MzUyZTM4 MzAyZTMwMmYzMjM0MmQzMzMyMjAzZDNlMjAzNTMxMzEzNjM3LnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA ublQMA0GCSqGSIb3DQEBCwUAA4IBAQCEziL2DZxx8aF/WshnKpcAEgviX9AQx7Zn +X1GXX6eqcTV/7ERdmw6ERv+hxMXqu3AwEjQG228OHoQRrBh2+2CcLe7Ls8Q/Ots ndGJhN4rnWNZxh8IOn9ZhHubpeQ59DQFH8kVRc4BKxvwKIyPtFkZO3y/lxr1xq8V 9u2cApr6Z8DvhaVb88c092ko1ZSEvlR8C0M02AtUgCN4CFNoIMXDH3RhAoadane4 nAf4xqZWs4LI6yIRd+Yuqw4zjOBCxtn3C6RIAdPSzFLn22Wpuw+AOFiPX33jqw8J nfQdskj4073aZ06VixmCgdD/zmK/gXRKzsErHHApbQFvYeAG2syQ -----END CERTIFICATE-----Generated at Mon Jan 19 14:26:15 2026 by rpki-client