This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3230382e3230372e302f32342d3332203d3e203531313637.roa File: 3138352e3230382e3230372e302f32342d3332203d3e203531313637.roa (raw, json) Hash identifier: G3O7qrL6KF1OcNDasPpW/cVHjA8UAUR8UxU5thY5z2k= Subject key identifier: CD:9B:66:0E:E4:F1:A2:F4:86:D2:AD:CC:4D:7A:27:69:73:4D:2A:AE Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Certificate serial: 77C4283784DF5E204B6B090B75B9CF352B126A5C Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3230382e3230372e302f32342d3332203d3e203531313637.roa Signing time: Mon 29 Dec 2025 09:50:39 +0000 ROA not before: Mon 29 Dec 2025 09:45:39 +0000 ROA not after: Mon 28 Dec 2026 09:50:39 +0000 asID: 51167 IP address blocks: 185.208.207.0/24 maxlen: 32 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 01:05:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:c4:28:37:84:df:5e:20:4b:6b:09:0b:75:b9:cf:35:2b:12:6a:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Validity Not Before: Dec 29 09:45:39 2025 GMT Not After : Dec 28 09:50:39 2026 GMT Subject: CN=CD9B660EE4F1A2F486D2ADCC4D7A2769734D2AAE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:52:d1:29:24:ee:c5:32:64:9d:d9:48:21:68: 78:b8:82:cf:a6:44:2c:10:d5:31:41:db:93:06:11: 19:4c:f5:6e:8f:73:5f:8d:63:2b:4a:2c:3e:cf:50: 4e:49:f6:6d:0d:30:e1:c0:89:20:c0:5b:f9:ef:16: f3:22:3e:13:a7:94:dc:24:4d:1e:7e:a3:5d:4c:03: b9:1a:89:8c:e1:c1:9b:c7:47:63:79:cb:17:72:23: 53:f6:97:5a:43:0f:c8:eb:1c:19:48:b1:e9:94:6d: 7e:4b:8a:b8:46:93:65:c7:4a:8d:fc:84:a5:ed:4a: 57:82:66:4d:ec:a4:30:c5:93:62:85:82:37:1b:a5: 64:25:31:42:71:49:82:68:b1:3c:0f:51:73:23:6b: 4f:b4:13:0a:07:aa:07:d2:96:14:12:39:65:c6:af: 40:d6:a6:a9:c3:4b:32:7f:5b:09:36:3a:11:15:a7: cc:f2:85:ce:9e:f2:fc:9d:c0:84:04:71:44:27:cf: 77:15:28:45:8a:78:cb:10:46:b1:08:8e:c8:c0:a2: 02:7a:e4:77:1d:69:6f:e6:e7:13:14:f2:f7:8e:14: 7a:a3:a6:87:c5:b4:e5:16:d3:e2:d2:89:ee:75:20: 33:dd:a8:f2:7c:a5:97:d8:60:ce:5f:81:44:eb:9a: b3:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:9B:66:0E:E4:F1:A2:F4:86:D2:AD:CC:4D:7A:27:69:73:4D:2A:AE X509v3 Authority Key Identifier: keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3230382e3230372e302f32342d3332203d3e203531313637.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.208.207.0/24 Signature Algorithm: sha256WithRSAEncryption 96:23:fa:4f:63:49:96:89:b0:ac:9d:b8:1b:b4:fb:8e:17:52: 62:24:9b:28:ee:c9:66:ce:af:30:0f:59:1c:de:42:ca:3f:ba: 51:91:93:4c:a4:fa:26:bc:4f:c7:fc:8b:a3:98:77:e8:8f:73: a7:51:07:b8:05:0d:3b:53:29:0e:fd:6a:30:63:83:f4:8d:2c: 90:e7:8a:db:c8:ec:87:fc:ef:e0:cd:df:c0:13:e6:01:8f:59: 37:b5:11:6e:cc:01:98:d8:a9:1f:6d:e3:d4:89:1b:a8:17:cd: af:00:b4:4f:fe:9a:ed:56:36:73:1c:27:aa:06:5f:8f:46:44: 73:ee:31:76:33:98:9a:81:d5:29:ba:4b:8b:26:22:ce:7a:c0: 13:c3:0e:5e:8e:fe:72:a7:bf:bc:1f:25:81:dc:20:91:32:3d: 13:fe:86:45:82:c4:a3:05:43:6f:23:e2:50:60:5d:ee:2a:68: 8b:67:72:f9:ba:53:d8:17:3e:4e:be:25:db:1c:2d:32:7d:33: 78:d6:b3:2b:1a:11:31:9a:9c:5e:87:f9:2e:d7:9e:02:4e:f4: ca:7b:2c:19:70:64:fd:1f:dd:25:35:09:9f:66:86:47:70:f9: bc:7e:45:ff:5b:88:e6:c8:28:c6:8b:92:f7:d3:cb:3a:b8:b8: 7b:b7:e7:f7 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUd8QoN4TfXiBLawkLdbnPNSsSalwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0 ZWE3Nzc5YzAeFw0yNTEyMjkwOTQ1MzlaFw0yNjEyMjgwOTUwMzlaMDMxMTAvBgNV BAMTKENEOUI2NjBFRTRGMUEyRjQ4NkQyQURDQzREN0EyNzY5NzM0RDJBQUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCkUtEpJO7FMmSd2UghaHi4gs+m RCwQ1TFB25MGERlM9W6Pc1+NYytKLD7PUE5J9m0NMOHAiSDAW/nvFvMiPhOnlNwk TR5+o11MA7kaiYzhwZvHR2N5yxdyI1P2l1pDD8jrHBlIsemUbX5LirhGk2XHSo38 hKXtSleCZk3spDDFk2KFgjcbpWQlMUJxSYJosTwPUXMja0+0EwoHqgfSlhQSOWXG r0DWpqnDSzJ/Wwk2OhEVp8zyhc6e8vydwIQEcUQnz3cVKEWKeMsQRrEIjsjAogJ6 5HcdaW/m5xMU8veOFHqjpofFtOUW0+LSie51IDPdqPJ8pZfYYM5fgUTrmrPxAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUzZtmDuTxovSG0q3MTXonaXNNKq4wHwYDVR0j BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2 bmQ1dy5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzEzODM1MmUzMjMwMzgyZTMy MzAzNzJlMzAyZjMyMzQyZDMzMzIyMDNkM2UyMDM1MzEzMTM2Mzcucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAC50M8wDQYJKoZIhvcNAQELBQADggEBAJYj+k9jSZaJsKyduBu0+44XUmIkmyju yWbOrzAPWRzeQso/ulGRk0yk+ia8T8f8i6OYd+iPc6dRB7gFDTtTKQ79ajBjg/SN LJDnitvI7If87+DN38AT5gGPWTe1EW7MAZjYqR9t49SJG6gXza8AtE/+mu1WNnMc J6oGX49GRHPuMXYzmJqB1Sm6S4smIs56wBPDDl6O/nKnv7wfJYHcIJEyPRP+hkWC xKMFQ28j4lBgXe4qaItncvm6U9gXPk6+JdscLTJ9M3jWsysaETGanF6H+S7XngJO 9Mp7LBlwZP0f3SU1CZ9mhkdw+bx+Rf9biObIKMaLkvfTyzq4uHu35/c= -----END CERTIFICATE-----Generated at Mon Jan 19 14:28:31 2026 by rpki-client