This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3138372e3136392e302f32342d3332203d3e203531313637.roa File: 3138352e3138372e3136392e302f32342d3332203d3e203531313637.roa (raw, json) Hash identifier: Gc/77ISIh2Ij0/u5LO4p8PahW7jIgtLYhmtUT21Qc1M= Subject key identifier: 10:4D:0E:1F:18:B8:16:51:33:84:EB:6C:91:80:DD:96:1F:21:F0:E1 Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Certificate serial: 4226FB410B9FE4771A927EBD91CEC33FA5DDA3A1 Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3138372e3136392e302f32342d3332203d3e203531313637.roa Signing time: Mon 29 Dec 2025 09:50:51 +0000 ROA not before: Mon 29 Dec 2025 09:45:51 +0000 ROA not after: Mon 28 Dec 2026 09:50:51 +0000 asID: 51167 IP address blocks: 185.187.169.0/24 maxlen: 32 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 01:05:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:26:fb:41:0b:9f:e4:77:1a:92:7e:bd:91:ce:c3:3f:a5:dd:a3:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Validity Not Before: Dec 29 09:45:51 2025 GMT Not After : Dec 28 09:50:51 2026 GMT Subject: CN=104D0E1F18B816513384EB6C9180DD961F21F0E1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:1c:8a:9f:ee:23:4d:4b:96:52:03:82:54:8c: 5b:4b:a0:94:07:49:90:db:78:de:b2:3c:1a:2a:2e: 07:f1:5d:4f:bb:09:89:e5:7c:6d:4c:3f:24:ce:ca: 0c:65:15:93:4c:58:45:10:b6:7d:00:56:4c:d0:55: cb:bd:ca:4a:c6:01:c4:80:86:14:ca:d0:44:38:14: 34:54:65:e5:ca:8f:76:87:ff:04:d0:37:a1:e2:ae: e9:9b:56:4e:7f:b2:94:02:69:33:fe:bb:17:37:b1: 06:38:60:51:6c:d6:42:bd:87:54:5e:36:2b:fe:65: 69:d1:89:07:4d:f9:11:2f:f7:a1:9b:24:1c:04:95: 30:09:82:a1:64:f2:2b:a3:f7:03:e4:5a:82:26:02: c3:64:37:9f:d5:c1:55:94:e7:5d:47:84:61:16:b9: 8e:08:96:1e:86:79:fc:78:47:72:a5:66:8b:3d:17: e2:12:dc:fe:0d:fe:e7:f1:cf:7f:b0:61:b1:fb:fe: 5d:87:a0:10:b7:97:7b:53:99:d7:66:a6:a6:4e:db: 03:41:20:65:4e:04:23:af:be:00:d0:87:7d:a2:44: c5:12:8d:60:6e:63:de:27:21:5a:05:c0:cb:6d:2f: 9b:e2:be:57:5f:02:76:97:2c:58:25:4d:09:bc:40: 6e:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:4D:0E:1F:18:B8:16:51:33:84:EB:6C:91:80:DD:96:1F:21:F0:E1 X509v3 Authority Key Identifier: keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3138372e3136392e302f32342d3332203d3e203531313637.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.187.169.0/24 Signature Algorithm: sha256WithRSAEncryption 80:08:25:7a:78:eb:a1:a9:f9:f8:26:22:63:51:f4:54:7f:3c: ba:01:0f:5c:dc:46:37:12:02:19:da:5a:a2:20:87:df:31:83: e8:68:7f:cb:60:99:6a:1f:ce:03:82:fe:41:a1:f4:a3:ce:57: 7d:99:ce:69:42:95:e4:f6:b8:c5:c0:ae:0e:e4:77:90:6d:1e: c8:0d:42:96:fd:22:e7:3e:e9:21:f4:7a:c0:05:cc:93:f0:bd: 1e:3d:ea:38:0f:27:85:25:8a:e6:3d:fd:4c:20:9b:10:ce:26: bf:cf:1d:71:8b:90:56:8d:d4:7d:24:f1:23:e5:32:a9:54:b5: c8:2b:e3:30:e6:10:bd:c1:09:7f:a8:be:78:5e:3d:65:88:7e: ad:5c:4b:03:a3:e6:8b:cf:30:90:02:c8:48:3c:99:32:f0:e9: 0c:9f:67:ef:7e:00:7c:05:97:28:9c:67:a9:3f:64:b5:b3:c1: 89:22:f2:9c:76:2f:a1:c1:af:79:90:88:78:68:1d:0b:2e:38: 87:cd:16:c8:38:ec:57:ed:97:ca:21:e9:a9:75:29:3f:58:f9: 81:64:0d:ac:94:52:fb:02:38:af:96:32:f0:fe:84:b0:ce:58: 1d:a3:98:32:6e:5c:51:70:2b:de:40:91:6b:ea:01:4d:8b:0e: 54:fb:77:db -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUQib7QQuf5Hcakn69kc7DP6Xdo6EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0 ZWE3Nzc5YzAeFw0yNTEyMjkwOTQ1NTFaFw0yNjEyMjgwOTUwNTFaMDMxMTAvBgNV BAMTKDEwNEQwRTFGMThCODE2NTEzMzg0RUI2QzkxODBERDk2MUYyMUYwRTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZHIqf7iNNS5ZSA4JUjFtLoJQH SZDbeN6yPBoqLgfxXU+7CYnlfG1MPyTOygxlFZNMWEUQtn0AVkzQVcu9ykrGAcSA hhTK0EQ4FDRUZeXKj3aH/wTQN6HirumbVk5/spQCaTP+uxc3sQY4YFFs1kK9h1Re Niv+ZWnRiQdN+REv96GbJBwElTAJgqFk8iuj9wPkWoImAsNkN5/VwVWU511HhGEW uY4Ilh6Gefx4R3KlZos9F+IS3P4N/ufxz3+wYbH7/l2HoBC3l3tTmddmpqZO2wNB IGVOBCOvvgDQh32iRMUSjWBuY94nIVoFwMttL5vivldfAnaXLFglTQm8QG7hAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUEE0OHxi4FlEzhOtskYDdlh8h8OEwHwYDVR0j BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2 bmQ1dy5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzEzODM1MmUzMTM4MzcyZTMx MzYzOTJlMzAyZjMyMzQyZDMzMzIyMDNkM2UyMDM1MzEzMTM2Mzcucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAC5u6kwDQYJKoZIhvcNAQELBQADggEBAIAIJXp466Gp+fgmImNR9FR/PLoBD1zc RjcSAhnaWqIgh98xg+hof8tgmWofzgOC/kGh9KPOV32ZzmlCleT2uMXArg7kd5Bt HsgNQpb9Iuc+6SH0esAFzJPwvR496jgPJ4UliuY9/UwgmxDOJr/PHXGLkFaN1H0k 8SPlMqlUtcgr4zDmEL3BCX+ovnhePWWIfq1cSwOj5ovPMJACyEg8mTLw6QyfZ+9+ AHwFlyicZ6k/ZLWzwYki8px2L6HBr3mQiHhoHQsuOIfNFsg47Fftl8oh6al1KT9Y +YFkDayUUvsCOK+WMvD+hLDOWB2jmDJuXFFwK95AkWvqAU2LDlT7d9s= -----END CERTIFICATE-----Generated at Mon Jan 19 14:27:29 2026 by rpki-client