This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3230382e3230362e302f32342d3332203d3e203531313637.roa File: 3138352e3230382e3230362e302f32342d3332203d3e203531313637.roa (raw, json) Hash identifier: 3ZhTTMWJLG1md2/r7RkL1brJdsweKKCOUDRDLjX1BsI= Subject key identifier: C3:1A:59:6A:04:A0:FB:B7:1A:FD:A6:A2:4C:6E:37:41:50:1D:38:18 Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Certificate serial: 1FC6BF344133C13F4449E4ABFE4759A63026512E Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3230382e3230362e302f32342d3332203d3e203531313637.roa Signing time: Mon 29 Dec 2025 09:50:42 +0000 ROA not before: Mon 29 Dec 2025 09:45:42 +0000 ROA not after: Mon 28 Dec 2026 09:50:42 +0000 asID: 51167 IP address blocks: 185.208.206.0/24 maxlen: 32 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 01:05:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:c6:bf:34:41:33:c1:3f:44:49:e4:ab:fe:47:59:a6:30:26:51:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Validity Not Before: Dec 29 09:45:42 2025 GMT Not After : Dec 28 09:50:42 2026 GMT Subject: CN=C31A596A04A0FBB71AFDA6A24C6E3741501D3818 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:bf:8f:d7:e2:bd:21:1c:74:a0:bc:87:4e:1a: 79:52:32:57:12:e0:e5:21:6a:7e:cb:14:b1:95:b7: ed:fd:95:7e:22:bf:11:de:13:a5:d9:52:14:b4:d8: a5:33:82:8b:7d:72:18:7a:a9:bd:c4:94:7e:20:67: 61:b2:2f:50:31:21:0a:f1:f9:22:20:06:80:16:74: 94:fc:ff:4d:63:e6:d2:69:f4:2f:87:ba:03:f8:6c: 43:59:86:28:b3:2b:9a:e9:ba:0e:42:9b:ce:5f:b1: 0a:93:8a:1a:e5:2b:29:c7:62:33:59:4d:68:cd:a9: e6:65:85:18:f2:7a:fe:4c:f8:8d:c1:81:c7:ff:43: b5:fa:55:fd:6c:06:71:90:9b:c4:82:4c:a2:74:6d: c7:24:a4:57:bf:2a:f3:31:db:50:0d:6f:a9:2a:22: dc:d2:1b:e0:a5:c3:e8:72:fd:e0:04:94:51:88:b8: 54:17:4b:40:99:05:a4:a4:b0:fa:2b:94:ab:83:b4: c7:21:78:92:4a:c1:56:93:1a:34:2c:2d:ae:28:e5: 44:f1:68:d7:f5:20:87:2d:be:c2:01:9b:b1:6e:1a: 1b:9a:d4:d5:0c:a5:2e:71:ee:00:64:1f:b8:f9:3a: 13:d3:60:60:40:de:60:ce:14:6e:15:90:84:52:38: 3a:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:1A:59:6A:04:A0:FB:B7:1A:FD:A6:A2:4C:6E:37:41:50:1D:38:18 X509v3 Authority Key Identifier: keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3230382e3230362e302f32342d3332203d3e203531313637.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.208.206.0/24 Signature Algorithm: sha256WithRSAEncryption 5b:fb:a5:2d:6a:46:70:83:7d:3d:85:f4:88:ed:f4:17:9a:0e: 3d:20:51:f3:d7:2d:c3:b7:33:c6:cb:75:f3:f2:9c:6e:1e:4b: c8:8d:95:18:c4:f7:ac:c8:74:bb:ba:ab:50:fe:45:bd:ac:60: 8b:2c:72:64:ee:7c:03:b1:9e:0a:46:aa:ce:91:a3:fd:3e:a6: 83:80:3b:5e:29:75:a2:b5:f6:00:e9:bd:95:54:6e:85:3d:ea: a9:58:a0:c9:f5:bb:99:71:b9:d9:c6:5f:74:c6:fb:93:90:ba: f8:d2:67:a7:59:03:91:ee:f9:3c:16:70:a5:19:c8:2a:a8:12: 04:4f:1b:e0:97:49:18:17:55:e2:b7:64:a2:ad:46:28:8b:bb: 68:24:c3:48:60:e7:05:56:da:fe:f1:74:8e:1e:fe:df:57:a9: 44:fa:98:3e:54:18:94:6b:7e:17:28:63:e2:2a:3d:f4:13:9c: 33:31:83:e3:36:51:13:f4:ac:d8:db:ed:17:a9:5d:c6:26:cc: 4d:df:7b:ee:8a:3a:1f:5a:f4:ab:5f:8f:2f:8f:4f:6c:cf:72: 24:64:49:3a:33:a5:d0:36:de:b8:e7:10:c0:ab:30:d2:3d:7b: 39:5c:c0:57:a7:3a:c1:00:f3:5d:9e:a8:88:32:4d:57:d7:95: 6d:df:c5:86 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUH8a/NEEzwT9ESeSr/kdZpjAmUS4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0 ZWE3Nzc5YzAeFw0yNTEyMjkwOTQ1NDJaFw0yNjEyMjgwOTUwNDJaMDMxMTAvBgNV BAMTKEMzMUE1OTZBMDRBMEZCQjcxQUZEQTZBMjRDNkUzNzQxNTAxRDM4MTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdv4/X4r0hHHSgvIdOGnlSMlcS 4OUhan7LFLGVt+39lX4ivxHeE6XZUhS02KUzgot9chh6qb3ElH4gZ2GyL1AxIQrx +SIgBoAWdJT8/01j5tJp9C+HugP4bENZhiizK5rpug5Cm85fsQqTihrlKynHYjNZ TWjNqeZlhRjyev5M+I3Bgcf/Q7X6Vf1sBnGQm8SCTKJ0bcckpFe/KvMx21ANb6kq ItzSG+Clw+hy/eAElFGIuFQXS0CZBaSksPorlKuDtMcheJJKwVaTGjQsLa4o5UTx aNf1IIctvsIBm7FuGhua1NUMpS5x7gBkH7j5OhPTYGBA3mDOFG4VkIRSODqdAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUwxpZagSg+7ca/aaiTG43QVAdOBgwHwYDVR0j BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2 bmQ1dy5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzEzODM1MmUzMjMwMzgyZTMy MzAzNjJlMzAyZjMyMzQyZDMzMzIyMDNkM2UyMDM1MzEzMTM2Mzcucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAC50M4wDQYJKoZIhvcNAQELBQADggEBAFv7pS1qRnCDfT2F9Ijt9BeaDj0gUfPX LcO3M8bLdfPynG4eS8iNlRjE96zIdLu6q1D+Rb2sYIsscmTufAOxngpGqs6Ro/0+ poOAO14pdaK19gDpvZVUboU96qlYoMn1u5lxudnGX3TG+5OQuvjSZ6dZA5Hu+TwW cKUZyCqoEgRPG+CXSRgXVeK3ZKKtRiiLu2gkw0hg5wVW2v7xdI4e/t9XqUT6mD5U GJRrfhcoY+IqPfQTnDMxg+M2URP0rNjb7RepXcYmzE3fe+6KOh9a9Ktfjy+PT2zP ciRkSTozpdA23rjnEMCrMNI9ezlcwFenOsEA812eqIgyTVfXlW3fxYY= -----END CERTIFICATE-----Generated at Mon Jan 19 14:25:24 2026 by rpki-client