This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3230392e3232382e302f32332d3332203d3e203531313637.roa File: 3138352e3230392e3232382e302f32332d3332203d3e203531313637.roa (raw, json) Hash identifier: spFHTl6qogStqDAXwhKNsBKtD7+9E+g3fV39rZbQ9SA= Subject key identifier: F3:29:BF:64:41:58:B8:6C:70:4A:B9:22:CA:83:56:DF:C7:22:1D:DC Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Certificate serial: 1ABAF412C40AC5F82B0E1C3F26E72B173AE15431 Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3230392e3232382e302f32332d3332203d3e203531313637.roa Signing time: Mon 29 Dec 2025 09:50:38 +0000 ROA not before: Mon 29 Dec 2025 09:45:38 +0000 ROA not after: Mon 28 Dec 2026 09:50:38 +0000 asID: 51167 IP address blocks: 185.209.228.0/23 maxlen: 32 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 01:05:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:ba:f4:12:c4:0a:c5:f8:2b:0e:1c:3f:26:e7:2b:17:3a:e1:54:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Validity Not Before: Dec 29 09:45:38 2025 GMT Not After : Dec 28 09:50:38 2026 GMT Subject: CN=F329BF644158B86C704AB922CA8356DFC7221DDC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:fa:17:ed:2d:9e:2f:bf:c5:37:2d:5a:0d:54: f1:6d:19:d1:95:11:05:39:90:f0:e1:02:08:e7:2e: 82:d9:f3:4a:e1:d7:70:17:57:45:91:ee:5b:6c:fb: c5:bb:e7:2a:01:01:ea:30:72:13:95:8c:ff:d0:74: 9f:0c:97:03:ed:3f:34:27:8d:24:8a:25:ee:8c:2d: d2:83:3e:43:66:e5:71:ee:1d:a6:ee:5d:26:2d:f2: 2c:30:55:05:8e:d7:0a:2d:54:f9:53:14:7b:6a:8e: cf:e3:59:b5:3c:ce:15:3b:19:fc:c5:44:88:99:48: 93:0a:2f:3a:af:57:f2:38:9d:24:02:24:e4:a8:f6: d1:e8:71:25:0a:9c:30:29:1d:ce:5a:73:b0:24:eb: ea:c8:53:11:8e:4c:80:1b:3e:a3:77:45:f6:de:d9: aa:a3:bc:f8:72:97:15:d1:1e:c3:7a:d6:d2:d5:e1: 91:bb:07:9b:a3:a8:3f:dc:f6:e5:a4:8a:3c:a5:3c: ee:ee:ad:60:07:76:81:17:2b:ab:19:f0:a8:9a:ad: 2e:dd:40:62:44:e0:08:69:d8:35:fe:9d:6c:e8:60: 41:f0:fc:33:8b:24:4f:87:70:65:e7:2d:41:a3:00: 25:8f:87:56:f0:7a:ad:af:07:ac:dd:66:c2:27:05: 5a:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:29:BF:64:41:58:B8:6C:70:4A:B9:22:CA:83:56:DF:C7:22:1D:DC X509v3 Authority Key Identifier: keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3230392e3232382e302f32332d3332203d3e203531313637.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.209.228.0/23 Signature Algorithm: sha256WithRSAEncryption 2d:d3:8d:63:e9:14:6f:26:46:e6:59:6b:48:d6:a1:e1:9a:b4: 71:57:cc:2e:4b:92:e6:35:4e:08:01:a1:b0:b5:a9:34:00:ef: b5:28:45:d9:44:c9:3d:60:37:5d:f7:a1:3e:70:e6:fa:0a:a3: 4c:e7:02:83:a4:c8:a9:a2:e7:9f:2b:b1:1d:11:eb:1a:88:4b: 7a:33:ca:65:be:a5:98:a0:41:5a:ca:5a:da:4b:d0:ed:7a:27: 53:09:05:c4:e8:34:94:dd:a8:cf:52:39:a5:68:82:9a:10:9f: bd:20:f3:95:28:91:10:ca:5a:71:7b:50:c8:8c:5b:d0:97:89: b5:6a:fc:6b:fd:ac:7b:64:92:da:7d:0a:3c:ab:3e:7d:69:42: 12:3e:25:28:01:37:54:34:80:00:f1:8e:94:a5:f8:df:32:f9: f6:a6:f2:27:e5:94:4c:db:be:46:8d:8a:ab:f6:96:ad:10:bd: 28:0f:02:95:dc:40:07:b5:9b:b5:f6:a0:af:4d:0b:b8:3f:cb: 2c:84:d6:60:e2:3b:27:bc:3a:50:54:c7:50:12:ac:87:b6:4b: d3:6d:89:19:8c:8a:cc:34:2a:64:f6:1b:5e:be:a5:75:98:1c: 3f:b6:3e:c6:25:6d:4a:ac:1e:54:98:55:8b:16:24:00:aa:ae: b8:ca:dd:15 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUGrr0EsQKxfgrDhw/JucrFzrhVDEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0 ZWE3Nzc5YzAeFw0yNTEyMjkwOTQ1MzhaFw0yNjEyMjgwOTUwMzhaMDMxMTAvBgNV BAMTKEYzMjlCRjY0NDE1OEI4NkM3MDRBQjkyMkNBODM1NkRGQzcyMjFEREMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCy+hftLZ4vv8U3LVoNVPFtGdGV EQU5kPDhAgjnLoLZ80rh13AXV0WR7lts+8W75yoBAeowchOVjP/QdJ8MlwPtPzQn jSSKJe6MLdKDPkNm5XHuHabuXSYt8iwwVQWO1wotVPlTFHtqjs/jWbU8zhU7GfzF RIiZSJMKLzqvV/I4nSQCJOSo9tHocSUKnDApHc5ac7Ak6+rIUxGOTIAbPqN3Rfbe 2aqjvPhylxXRHsN61tLV4ZG7B5ujqD/c9uWkijylPO7urWAHdoEXK6sZ8KiarS7d QGJE4Ahp2DX+nWzoYEHw/DOLJE+HcGXnLUGjACWPh1bweq2vB6zdZsInBVoHAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQU8ym/ZEFYuGxwSrkiyoNW38ciHdwwHwYDVR0j BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2 bmQ1dy5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzEzODM1MmUzMjMwMzkyZTMy MzIzODJlMzAyZjMyMzMyZDMzMzIyMDNkM2UyMDM1MzEzMTM2Mzcucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAG50eQwDQYJKoZIhvcNAQELBQADggEBAC3TjWPpFG8mRuZZa0jWoeGatHFXzC5L kuY1TggBobC1qTQA77UoRdlEyT1gN133oT5w5voKo0znAoOkyKmi558rsR0R6xqI S3ozymW+pZigQVrKWtpL0O16J1MJBcToNJTdqM9SOaVogpoQn70g85UokRDKWnF7 UMiMW9CXibVq/Gv9rHtkktp9CjyrPn1pQhI+JSgBN1Q0gADxjpSl+N8y+fam8ifl lEzbvkaNiqv2lq0QvSgPApXcQAe1m7X2oK9NC7g/yyyE1mDiOye8OlBUx1ASrIe2 S9NtiRmMisw0KmT2G16+pXWYHD+2PsYlbUqsHlSYVYsWJACqrrjK3RU= -----END CERTIFICATE-----Generated at Mon Jan 19 14:26:15 2026 by rpki-client