This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3230392e3233302e302f32342d3332203d3e203531313637.roa File: 3138352e3230392e3233302e302f32342d3332203d3e203531313637.roa (raw, json) Hash identifier: Jmpf0q+C1Ww4YCYrCYwoev+gxfpc721mWoUPV+RVD8c= Subject key identifier: 07:0A:33:35:D1:A2:FF:56:B7:25:CE:FE:B9:40:A2:62:C6:F6:64:B3 Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Certificate serial: 49CB2F97C46EAEBCBCC9DDF469132784989D4EBC Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3230392e3233302e302f32342d3332203d3e203531313637.roa Signing time: Mon 29 Dec 2025 09:50:48 +0000 ROA not before: Mon 29 Dec 2025 09:45:48 +0000 ROA not after: Mon 28 Dec 2026 09:50:48 +0000 asID: 51167 IP address blocks: 185.209.230.0/24 maxlen: 32 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 01:05:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:cb:2f:97:c4:6e:ae:bc:bc:c9:dd:f4:69:13:27:84:98:9d:4e:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Validity Not Before: Dec 29 09:45:48 2025 GMT Not After : Dec 28 09:50:48 2026 GMT Subject: CN=070A3335D1A2FF56B725CEFEB940A262C6F664B3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:27:73:60:cd:ca:74:49:b3:c7:3b:96:b8:1d: 22:8d:63:81:6e:2c:da:50:9d:b2:b5:9b:b3:85:d6: 9a:7e:33:93:eb:69:45:08:6f:8c:6e:1a:2d:ce:61: 1d:9b:70:aa:41:2b:57:d6:fe:bd:98:65:59:fd:93: 1c:b7:23:fc:b7:84:4d:2d:63:c5:e2:09:89:fb:f0: e3:6e:de:20:be:c4:bc:0f:66:96:46:07:26:cc:53: 97:4c:60:2d:f2:33:49:2d:d6:aa:cc:dd:e1:35:1d: bb:40:db:41:47:53:0a:a4:9a:b2:6c:fd:56:da:b3: 98:04:0a:ac:d8:92:8a:78:50:02:8f:2e:f0:ec:36: ea:0f:bc:d6:89:1c:84:7a:cb:6c:8d:6c:cd:46:cc: 99:65:3a:f0:89:4c:69:8b:66:45:6f:0f:18:c5:13: c3:4a:2d:15:10:1b:b6:06:88:de:fc:b7:c9:79:9a: 09:e0:f7:16:f6:07:4f:7e:f7:bc:e8:5a:5b:e7:bf: 56:d4:af:4b:b7:06:6b:f2:1a:26:ca:32:c4:9b:96: a8:8d:16:4e:d5:69:50:c9:2f:d9:e6:ba:4c:c2:c4: 5e:ee:3c:05:11:d7:d0:e7:1b:81:3a:ba:c6:f5:bd: fe:2d:11:8b:75:a6:ec:d5:1e:1c:fd:f6:d2:1c:e9: fc:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:0A:33:35:D1:A2:FF:56:B7:25:CE:FE:B9:40:A2:62:C6:F6:64:B3 X509v3 Authority Key Identifier: keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3230392e3233302e302f32342d3332203d3e203531313637.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.209.230.0/24 Signature Algorithm: sha256WithRSAEncryption 14:05:bb:06:07:c3:73:4c:c7:0f:d5:7e:ef:f0:2b:93:e4:4a: 36:f8:25:f5:fb:50:1c:0f:85:df:45:1f:33:fc:88:82:6d:bb: 2d:5c:21:56:10:7e:9a:8b:b5:f9:cf:69:52:7f:ca:97:2c:b1: 42:95:fa:8d:91:4c:64:c2:23:fd:c0:54:1f:85:b9:25:b3:6b: 22:db:6b:7d:4b:6d:ab:d5:3f:cb:fa:68:b1:57:16:1d:ea:42: 22:9f:e9:2d:5c:d4:d3:e1:5e:53:7d:56:96:ff:8f:b3:5d:8a: 8e:0a:5d:fc:bb:f7:fa:ae:2d:e6:8b:d1:07:bb:7c:83:6c:1f: 74:23:19:6f:58:d3:48:b8:25:55:f6:d8:33:3a:1c:93:4e:28: 88:45:52:c8:cd:86:cc:76:92:8f:5d:41:96:48:23:dd:f8:25: 3b:77:33:0f:1e:bc:6b:77:92:69:af:37:0c:a9:24:49:37:c5: 88:3d:eb:1d:b0:c6:f1:b9:aa:67:df:46:60:9a:48:a9:4f:a2: 69:b4:02:d1:eb:d0:6d:26:61:72:30:85:3e:ce:3f:e3:70:00: b4:a0:ac:56:d0:f2:b2:79:07:1b:ae:d7:3e:21:cd:81:80:74: ff:9d:a9:4a:f1:33:e4:6e:e1:8d:14:a9:53:8b:54:e9:f9:5b: a6:7b:dd:09 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUScsvl8Rurry8yd30aRMnhJidTrwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0 ZWE3Nzc5YzAeFw0yNTEyMjkwOTQ1NDhaFw0yNjEyMjgwOTUwNDhaMDMxMTAvBgNV BAMTKDA3MEEzMzM1RDFBMkZGNTZCNzI1Q0VGRUI5NDBBMjYyQzZGNjY0QjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKJ3Ngzcp0SbPHO5a4HSKNY4Fu LNpQnbK1m7OF1pp+M5PraUUIb4xuGi3OYR2bcKpBK1fW/r2YZVn9kxy3I/y3hE0t Y8XiCYn78ONu3iC+xLwPZpZGBybMU5dMYC3yM0kt1qrM3eE1HbtA20FHUwqkmrJs /Vbas5gECqzYkop4UAKPLvDsNuoPvNaJHIR6y2yNbM1GzJllOvCJTGmLZkVvDxjF E8NKLRUQG7YGiN78t8l5mgng9xb2B09+97zoWlvnv1bUr0u3BmvyGibKMsSblqiN Fk7VaVDJL9nmukzCxF7uPAUR19DnG4E6usb1vf4tEYt1puzVHhz99tIc6fxPAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUBwozNdGi/1a3Jc7+uUCiYsb2ZLMwHwYDVR0j BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2 bmQ1dy5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzEzODM1MmUzMjMwMzkyZTMy MzMzMDJlMzAyZjMyMzQyZDMzMzIyMDNkM2UyMDM1MzEzMTM2Mzcucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAC50eYwDQYJKoZIhvcNAQELBQADggEBABQFuwYHw3NMxw/Vfu/wK5PkSjb4JfX7 UBwPhd9FHzP8iIJtuy1cIVYQfpqLtfnPaVJ/ypcssUKV+o2RTGTCI/3AVB+FuSWz ayLba31LbavVP8v6aLFXFh3qQiKf6S1c1NPhXlN9Vpb/j7Ndio4KXfy79/quLeaL 0Qe7fINsH3QjGW9Y00i4JVX22DM6HJNOKIhFUsjNhsx2ko9dQZZII934JTt3Mw8e vGt3kmmvNwypJEk3xYg96x2wxvG5qmffRmCaSKlPomm0AtHr0G0mYXIwhT7OP+Nw ALSgrFbQ8rJ5Bxuu1z4hzYGAdP+dqUrxM+Ru4Y0UqVOLVOn5W6Z73Qk= -----END CERTIFICATE-----Generated at Mon Jan 19 14:25:21 2026 by rpki-client