This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3138372e3136382e302f32342d3234203d3e20313336373837.roa File: 3138352e3138372e3136382e302f32342d3234203d3e20313336373837.roa (raw, json) Hash identifier: 1GPR5Xsw4TEZ2d3Ou7xogDpkeNbkSkSMqylHG/hbb5c= Subject key identifier: C3:B2:69:26:92:14:17:D8:BF:D4:3B:8D:F3:EE:57:28:43:FD:4E:4F Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Certificate serial: 4CDE99E1D5945EBFA7ED336E3C22F3133F08F30B Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3138372e3136382e302f32342d3234203d3e20313336373837.roa Signing time: Mon 29 Dec 2025 09:50:38 +0000 ROA not before: Mon 29 Dec 2025 09:45:38 +0000 ROA not after: Mon 28 Dec 2026 09:50:38 +0000 asID: 136787 IP address blocks: 185.187.168.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 01:05:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:de:99:e1:d5:94:5e:bf:a7:ed:33:6e:3c:22:f3:13:3f:08:f3:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Validity Not Before: Dec 29 09:45:38 2025 GMT Not After : Dec 28 09:50:38 2026 GMT Subject: CN=C3B26926921417D8BFD43B8DF3EE572843FD4E4F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:ea:63:8e:6c:3e:7d:6f:48:ec:80:9c:ca:dd: ab:90:3c:4d:c9:72:82:c2:27:27:65:33:4c:4c:c7: 51:80:0d:10:b3:f2:05:ad:f2:97:4e:e9:ae:b2:ce: 15:11:18:37:1c:f7:74:42:4f:8c:9f:97:18:b6:41: 80:2d:9f:f3:e6:b7:b4:8c:c4:4b:33:1c:7f:ab:11: 56:d4:8d:5d:26:fb:d7:5a:bb:18:b3:2d:47:17:62: da:ec:64:b8:43:c3:a2:98:8e:90:23:2c:03:11:7b: b0:ae:18:39:17:ac:84:6d:98:55:2f:ab:71:54:72: 85:ee:c0:68:7b:5f:00:c1:9f:9c:16:6b:fd:64:90: f7:32:a9:a5:47:70:72:b8:2e:6c:fa:f7:b5:90:44: ca:84:58:38:c8:b4:03:f6:00:6c:6f:37:85:d7:86: b3:67:c5:df:02:e7:93:fa:d1:7f:94:59:c3:19:9f: 62:da:b1:3a:be:91:d2:e5:b3:b1:e3:4f:15:fa:ff: ce:07:df:ee:86:71:00:b1:97:72:40:10:03:42:23: e4:12:28:c9:a6:19:ea:0b:5e:0e:43:92:e1:b2:0c: f8:35:e6:e5:fa:18:7f:73:d5:8d:0c:5d:f1:ab:47: f6:5a:c2:f1:51:1f:7e:14:05:54:12:b1:36:7f:fd: fc:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:B2:69:26:92:14:17:D8:BF:D4:3B:8D:F3:EE:57:28:43:FD:4E:4F X509v3 Authority Key Identifier: keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3138372e3136382e302f32342d3234203d3e20313336373837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.187.168.0/24 Signature Algorithm: sha256WithRSAEncryption 64:88:b8:f6:39:cb:95:e9:90:2a:44:78:9e:93:bb:cf:1d:3e: d9:2f:8f:5c:73:12:fa:9e:b4:cc:b8:28:fe:4c:04:68:6b:d7: 6a:2c:53:51:25:04:72:e8:91:29:8d:31:15:01:cf:0b:ce:5d: 27:a1:42:88:64:fa:0a:a4:99:6e:72:cc:62:b5:7b:d6:d0:03: 0c:57:44:b9:b3:33:e5:f8:d5:6e:a7:89:20:0b:03:c2:5e:38: 98:bb:07:76:d1:3a:b1:92:eb:54:de:80:79:b7:e8:d7:4c:ff: 75:75:91:fb:18:1c:44:97:06:fc:56:b5:df:3b:14:b1:13:02: cd:3f:f9:bf:7c:3f:61:cb:29:37:d0:17:92:20:70:2e:0b:10: bd:47:cc:b3:09:0e:43:b1:c8:37:0b:0f:86:e1:72:36:98:dc: 90:fb:0b:5c:85:63:a4:6d:11:6b:08:42:61:e8:55:19:7d:12: 24:5b:69:27:fb:e6:88:63:81:37:2e:79:e1:da:78:66:80:10: 5d:34:61:a2:76:88:d3:31:fd:ad:c8:4f:ac:98:31:c8:31:ea: c9:28:91:4f:09:e0:84:09:7a:70:a7:8c:0f:5a:26:0a:2c:87: 32:bf:31:ea:ac:47:d0:97:79:41:8a:6c:de:af:25:50:0a:eb: 0f:06:73:41 -----BEGIN CERTIFICATE----- MIIFNzCCBB+gAwIBAgIUTN6Z4dWUXr+n7TNuPCLzEz8I8wswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0 ZWE3Nzc5YzAeFw0yNTEyMjkwOTQ1MzhaFw0yNjEyMjgwOTUwMzhaMDMxMTAvBgNV BAMTKEMzQjI2OTI2OTIxNDE3RDhCRkQ0M0I4REYzRUU1NzI4NDNGRDRFNEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQ6mOObD59b0jsgJzK3auQPE3J coLCJydlM0xMx1GADRCz8gWt8pdO6a6yzhURGDcc93RCT4yflxi2QYAtn/Pmt7SM xEszHH+rEVbUjV0m+9dauxizLUcXYtrsZLhDw6KYjpAjLAMRe7CuGDkXrIRtmFUv q3FUcoXuwGh7XwDBn5wWa/1kkPcyqaVHcHK4Lmz697WQRMqEWDjItAP2AGxvN4XX hrNnxd8C55P60X+UWcMZn2LasTq+kdLls7HjTxX6/84H3+6GcQCxl3JAEANCI+QS KMmmGeoLXg5DkuGyDPg15uX6GH9z1Y0MXfGrR/ZawvFRH34UBVQSsTZ//fzdAgMB AAGjggJBMIICPTAdBgNVHQ4EFgQUw7JpJpIUF9i/1DuN8+5XKEP9Tk8wHwYDVR0j BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2 bmQ1dy5jZXIwgbEGCCsGAQUFBwELBIGkMIGhMIGeBggrBgEFBQcwC4aBkXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzEzODM1MmUzMTM4MzcyZTMx MzYzODJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzMzNjM3MzgzNy5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEALm7qDANBgkqhkiG9w0BAQsFAAOCAQEAZIi49jnLlemQKkR4npO7zx0+2S+P XHMS+p60zLgo/kwEaGvXaixTUSUEcuiRKY0xFQHPC85dJ6FCiGT6CqSZbnLMYrV7 1tADDFdEubMz5fjVbqeJIAsDwl44mLsHdtE6sZLrVN6Aebfo10z/dXWR+xgcRJcG /Fa13zsUsRMCzT/5v3w/YcspN9AXkiBwLgsQvUfMswkOQ7HINwsPhuFyNpjckPsL XIVjpG0RawhCYehVGX0SJFtpJ/vmiGOBNy554dp4ZoAQXTRhonaI0zH9rchPrJgx yDHqySiRTwnghAl6cKeMD1omCiyHMr8x6qxH0Jd5QYps3q8lUArrDwZzQQ== -----END CERTIFICATE-----Generated at Mon Jan 19 14:27:31 2026 by rpki-client