This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3138382e3235312e302f32342d3234203d3e20313336373837.roa File: 3138352e3138382e3235312e302f32342d3234203d3e20313336373837.roa (raw, json) Hash identifier: UF7eRLw/mK3gHNhFuKLN32FlECgPtu1GN2JFq07P1C8= Subject key identifier: 12:5A:48:A1:70:52:00:79:A9:78:75:51:74:2A:6F:E4:DE:68:CD:B2 Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Certificate serial: 0C3A92F74A42F6DA7D90C627B344FA73AEA6DA9D Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3138382e3235312e302f32342d3234203d3e20313336373837.roa Signing time: Mon 29 Dec 2025 09:50:49 +0000 ROA not before: Mon 29 Dec 2025 09:45:49 +0000 ROA not after: Mon 28 Dec 2026 09:50:49 +0000 asID: 136787 IP address blocks: 185.188.251.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 01:05:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:3a:92:f7:4a:42:f6:da:7d:90:c6:27:b3:44:fa:73:ae:a6:da:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Validity Not Before: Dec 29 09:45:49 2025 GMT Not After : Dec 28 09:50:49 2026 GMT Subject: CN=125A48A170520079A9787551742A6FE4DE68CDB2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:c0:2a:1b:3a:59:70:07:8d:ad:95:35:88:99: 7d:a1:d6:29:9f:73:75:e9:de:68:b0:1a:1e:8a:b4: 7c:5e:7d:af:5e:c7:c7:3e:ff:f5:07:3e:87:e9:27: 21:79:2c:85:f9:76:13:ca:de:6b:e9:93:7c:e0:5a: e9:0e:2f:7a:bc:32:d5:41:0b:00:d3:d4:99:26:38: a3:b7:0f:e7:76:8b:76:c8:48:83:d6:13:54:4f:41: 7f:49:50:0d:71:c5:b2:bc:59:35:7f:00:ab:2d:2f: 58:cf:6b:78:81:8c:7a:d3:36:6e:24:8a:ea:4d:9e: c1:81:81:bf:32:e4:a4:49:e5:49:e0:bd:4e:e6:13: bf:89:da:b2:c2:ed:bf:ca:83:2f:fa:6e:70:02:99: 91:32:68:1c:09:42:19:8c:fe:e5:5d:a1:f4:47:38: 17:7f:c4:f4:54:95:f4:e5:38:39:2d:2a:73:06:6a: f7:52:e5:82:7f:6f:ae:9e:49:a4:9c:ed:3c:0d:18: 3e:e2:d7:f1:36:54:41:ef:21:8c:c8:bb:9a:56:25: a5:6d:64:1f:21:48:b8:cc:d4:b7:f1:30:28:d8:b3: f8:03:93:5b:d5:08:6f:59:82:6a:d0:41:45:2c:cc: 8b:77:56:e9:4b:30:5d:f5:51:30:68:a1:f6:5e:75: a8:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:5A:48:A1:70:52:00:79:A9:78:75:51:74:2A:6F:E4:DE:68:CD:B2 X509v3 Authority Key Identifier: keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3138382e3235312e302f32342d3234203d3e20313336373837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.188.251.0/24 Signature Algorithm: sha256WithRSAEncryption 53:a4:3d:27:48:01:ff:58:9c:81:6e:e1:f7:d1:01:f0:18:ee: 83:86:da:54:19:bc:5a:4a:8f:5a:85:e7:21:05:18:df:5f:56: fa:ed:55:d2:4e:a7:93:94:52:cc:fe:76:24:1b:86:0f:67:2b: 55:a5:b7:f0:c7:6c:e5:3c:ae:22:29:ba:ea:23:a4:3d:5a:98: 59:99:38:b4:c5:b2:58:a7:9a:10:6a:71:26:e5:df:e1:41:70: 95:92:03:99:8f:68:ef:99:d3:ae:f6:93:25:5a:f6:b8:f9:58: 49:03:d5:68:b9:63:e6:53:0a:47:53:25:e8:98:9f:f4:d7:ed: 59:a9:91:fa:5b:56:1b:a3:90:b4:d1:54:14:22:80:70:02:c8: c2:68:a9:2b:76:28:45:08:9b:89:25:51:7b:2c:f3:17:26:87: 1e:0f:61:75:0e:9e:fb:16:09:2a:2c:4f:e6:e2:37:bc:bd:eb: 16:72:a0:a9:04:51:2b:a1:c7:f9:3b:74:25:f3:c4:be:13:b6: 16:6f:76:58:a1:e8:f1:eb:85:2d:61:2c:5c:ec:3d:e7:0f:1f: 74:08:aa:0d:94:6a:76:b1:07:45:e4:b4:9b:63:fa:84:ca:f8: 91:0e:cb:cb:8b:de:cb:bf:79:49:00:ca:1c:76:65:38:ff:b3: 4e:6e:5c:62 -----BEGIN CERTIFICATE----- MIIFNzCCBB+gAwIBAgIUDDqS90pC9tp9kMYns0T6c66m2p0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0 ZWE3Nzc5YzAeFw0yNTEyMjkwOTQ1NDlaFw0yNjEyMjgwOTUwNDlaMDMxMTAvBgNV BAMTKDEyNUE0OEExNzA1MjAwNzlBOTc4NzU1MTc0MkE2RkU0REU2OENEQjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCUwCobOllwB42tlTWImX2h1imf c3Xp3miwGh6KtHxefa9ex8c+//UHPofpJyF5LIX5dhPK3mvpk3zgWukOL3q8MtVB CwDT1JkmOKO3D+d2i3bISIPWE1RPQX9JUA1xxbK8WTV/AKstL1jPa3iBjHrTNm4k iupNnsGBgb8y5KRJ5UngvU7mE7+J2rLC7b/Kgy/6bnACmZEyaBwJQhmM/uVdofRH OBd/xPRUlfTlODktKnMGavdS5YJ/b66eSaSc7TwNGD7i1/E2VEHvIYzIu5pWJaVt ZB8hSLjM1LfxMCjYs/gDk1vVCG9ZgmrQQUUszIt3VulLMF31UTBoofZedaitAgMB AAGjggJBMIICPTAdBgNVHQ4EFgQUElpIoXBSAHmpeHVRdCpv5N5ozbIwHwYDVR0j BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2 bmQ1dy5jZXIwgbEGCCsGAQUFBwELBIGkMIGhMIGeBggrBgEFBQcwC4aBkXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzEzODM1MmUzMTM4MzgyZTMy MzUzMTJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzMzNjM3MzgzNy5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEALm8+zANBgkqhkiG9w0BAQsFAAOCAQEAU6Q9J0gB/1icgW7h99EB8Bjug4ba VBm8WkqPWoXnIQUY319W+u1V0k6nk5RSzP52JBuGD2crVaW38Mds5TyuIim66iOk PVqYWZk4tMWyWKeaEGpxJuXf4UFwlZIDmY9o75nTrvaTJVr2uPlYSQPVaLlj5lMK R1Ml6Jif9NftWamR+ltWG6OQtNFUFCKAcALIwmipK3YoRQibiSVReyzzFyaHHg9h dQ6e+xYJKixP5uI3vL3rFnKgqQRRK6HH+Tt0JfPEvhO2Fm92WKHo8euFLWEsXOw9 5w8fdAiqDZRqdrEHReS0m2P6hMr4kQ7Ly4vey795SQDKHHZlOP+zTm5cYg== -----END CERTIFICATE-----Generated at Mon Jan 19 14:27:20 2026 by rpki-client