This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3230312e31302e302f32332d3234203d3e203437353833.roa File: 3138352e3230312e31302e302f32332d3234203d3e203437353833.roa (raw, json) Hash identifier: z3vZSAqrpOqHSSjVaLGhxb2OjA1x724k9/bR89C5/Ow= Subject key identifier: 25:7F:A6:72:4A:55:60:08:2D:9B:71:79:84:37:8F:C5:DE:19:FC:36 Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Certificate serial: 4671CAB3B73563F0C4CE7FCF20378652A9605D8A Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3230312e31302e302f32332d3234203d3e203437353833.roa Signing time: Mon 29 Dec 2025 09:50:54 +0000 ROA not before: Mon 29 Dec 2025 09:45:54 +0000 ROA not after: Mon 28 Dec 2026 09:50:54 +0000 asID: 47583 IP address blocks: 185.201.10.0/23 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 01:05:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:71:ca:b3:b7:35:63:f0:c4:ce:7f:cf:20:37:86:52:a9:60:5d:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Validity Not Before: Dec 29 09:45:54 2025 GMT Not After : Dec 28 09:50:54 2026 GMT Subject: CN=257FA6724A5560082D9B717984378FC5DE19FC36 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:69:93:ab:c3:b7:f5:21:35:f9:fe:3a:f2:bc: 45:ba:c3:1a:a3:7e:fe:d3:8d:6a:d1:7d:c4:ae:0f: b7:be:98:7b:93:0b:25:77:70:25:78:cf:cd:7b:ad: f7:74:13:ba:49:93:31:8b:3d:00:08:cb:9f:cc:ac: b2:b2:44:9b:06:b3:b1:4c:79:0b:5f:0e:6b:61:e6: e5:f3:2c:ad:c6:6c:e6:4b:44:97:ec:a3:89:cf:39: 0c:72:d5:b5:da:44:9f:c5:ce:54:ac:4f:f2:3e:bd: 76:e1:55:79:b5:b9:52:32:fc:77:fb:1a:b4:0f:fa: 08:46:bc:d8:bb:9e:92:4d:89:db:dc:be:69:e7:6b: 35:04:40:9d:9f:c0:a1:96:e4:ae:d8:b7:62:ea:84: 58:10:d8:9a:e9:e1:d4:bf:f8:d7:1c:78:5a:3e:37: fd:d0:31:0a:d6:d2:ef:e6:48:bf:45:cf:ea:ab:f4: 7c:bd:d1:1e:c7:cf:14:e0:e1:3f:0a:91:61:ec:e2: 79:43:a5:da:66:2c:ec:6a:c8:92:c7:04:17:7f:6d: c3:7a:b6:19:42:67:21:71:10:03:f0:2c:ce:88:4b: a6:01:64:ad:75:fe:2f:21:88:4f:78:8d:56:fd:7c: 74:a4:a8:3f:3f:36:d0:23:50:be:63:de:26:4d:1c: e1:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:7F:A6:72:4A:55:60:08:2D:9B:71:79:84:37:8F:C5:DE:19:FC:36 X509v3 Authority Key Identifier: keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3230312e31302e302f32332d3234203d3e203437353833.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.201.10.0/23 Signature Algorithm: sha256WithRSAEncryption 17:69:ed:d9:ea:91:d6:56:63:f0:f5:76:67:99:0d:39:a5:a5: 94:ca:d7:28:ff:f2:75:e5:35:fa:56:37:e8:4d:42:b9:33:78: b5:7c:79:41:a1:86:1e:f6:5a:62:fc:f3:2e:3c:29:b8:c8:f2: 8b:18:a8:b5:55:14:7f:2a:09:cf:3b:19:23:c0:69:86:e6:1e: 06:a4:1b:4d:5d:c5:db:4d:6a:a6:7b:cf:2f:c1:c0:4f:4c:8b: 3c:97:6d:e1:23:56:f5:b9:fe:20:88:4d:02:f8:63:6c:bf:6d: 72:30:77:9c:1a:f1:a3:3f:8b:e2:7a:32:9c:b1:b9:5b:97:66: 35:ad:4d:e9:dd:0c:58:d1:bf:47:90:51:cb:e4:39:e8:eb:8e: 45:22:68:80:da:18:73:69:a9:b5:f4:22:3c:ae:8a:e2:32:c8: 9a:9f:59:af:15:61:cd:d6:0a:5f:9b:2c:bc:05:02:05:de:a7: b1:06:3f:08:ff:96:6b:e9:54:5b:e0:eb:44:50:93:25:0c:63: e1:1e:07:3f:37:ea:96:57:67:65:c5:ee:35:4c:89:d0:50:7f: d4:71:e0:1d:b4:a4:5a:0f:64:6f:e9:ef:ae:5d:6d:c8:99:79: bd:2f:b7:c3:c1:59:bd:6d:97:fa:82:73:81:05:2a:d6:06:71: c5:e4:72:b1 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIURnHKs7c1Y/DEzn/PIDeGUqlgXYowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0 ZWE3Nzc5YzAeFw0yNTEyMjkwOTQ1NTRaFw0yNjEyMjgwOTUwNTRaMDMxMTAvBgNV BAMTKDI1N0ZBNjcyNEE1NTYwMDgyRDlCNzE3OTg0Mzc4RkM1REUxOUZDMzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvaZOrw7f1ITX5/jryvEW6wxqj fv7TjWrRfcSuD7e+mHuTCyV3cCV4z817rfd0E7pJkzGLPQAIy5/MrLKyRJsGs7FM eQtfDmth5uXzLK3GbOZLRJfso4nPOQxy1bXaRJ/FzlSsT/I+vXbhVXm1uVIy/Hf7 GrQP+ghGvNi7npJNidvcvmnnazUEQJ2fwKGW5K7Yt2LqhFgQ2Jrp4dS/+NcceFo+ N/3QMQrW0u/mSL9Fz+qr9Hy90R7HzxTg4T8KkWHs4nlDpdpmLOxqyJLHBBd/bcN6 thlCZyFxEAPwLM6IS6YBZK11/i8hiE94jVb9fHSkqD8/NtAjUL5j3iZNHOFdAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUJX+mckpVYAgtm3F5hDePxd4Z/DYwHwYDVR0j BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2 bmQ1dy5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzEzODM1MmUzMjMwMzEyZTMx MzAyZTMwMmYzMjMzMmQzMjM0MjAzZDNlMjAzNDM3MzUzODMzLnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQB uckKMA0GCSqGSIb3DQEBCwUAA4IBAQAXae3Z6pHWVmPw9XZnmQ05paWUytco//J1 5TX6VjfoTUK5M3i1fHlBoYYe9lpi/PMuPCm4yPKLGKi1VRR/KgnPOxkjwGmG5h4G pBtNXcXbTWqme88vwcBPTIs8l23hI1b1uf4giE0C+GNsv21yMHecGvGjP4viejKc sblbl2Y1rU3p3QxY0b9HkFHL5Dno645FImiA2hhzaam19CI8roriMsian1mvFWHN 1gpfmyy8BQIF3qexBj8I/5Zr6VRb4OtEUJMlDGPhHgc/N+qWV2dlxe41TInQUH/U ceAdtKRaD2Rv6e+uXW3ImXm9L7fDwVm9bZf6gnOBBSrWBnHF5HKx -----END CERTIFICATE-----Generated at Mon Jan 19 14:24:14 2026 by rpki-client