This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3231352e3136342e302f32332d3332203d3e203531313637.roa File: 3138352e3231352e3136342e302f32332d3332203d3e203531313637.roa (raw, json) Hash identifier: Z1LG1rQMZWBPE1PYhfDswUZ4N+sVKZ4hiaMiaEwg7F0= Subject key identifier: 3C:6E:8C:0E:A2:5B:1C:3A:93:C8:BC:CF:96:88:0C:2E:91:52:D2:7F Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Certificate serial: 3E913A0841646B11D1AAC54836D9BCFF212E45B6 Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3231352e3136342e302f32332d3332203d3e203531313637.roa Signing time: Mon 29 Dec 2025 09:51:03 +0000 ROA not before: Mon 29 Dec 2025 09:46:03 +0000 ROA not after: Mon 28 Dec 2026 09:51:03 +0000 asID: 51167 IP address blocks: 185.215.164.0/23 maxlen: 32 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 01:05:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:91:3a:08:41:64:6b:11:d1:aa:c5:48:36:d9:bc:ff:21:2e:45:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Validity Not Before: Dec 29 09:46:03 2025 GMT Not After : Dec 28 09:51:03 2026 GMT Subject: CN=3C6E8C0EA25B1C3A93C8BCCF96880C2E9152D27F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:b6:3e:f8:02:1a:e5:fd:15:22:7f:f8:0d:b9: 18:90:87:ff:f6:3d:7f:12:7a:6c:dd:4c:ef:90:ed: 53:60:26:7c:5a:de:45:7b:58:12:14:8d:6b:b4:e7: 9d:d4:f3:ed:72:fe:8d:bd:30:a8:11:8e:2f:ee:8e: ee:2e:65:5c:9d:4e:bb:f5:b2:69:ae:71:ae:d8:86: 27:5b:7c:86:f6:87:8e:65:9a:6f:32:cb:41:05:26: 33:b2:63:dd:c5:66:4a:7b:d3:ae:78:5a:ce:05:ae: bd:57:d7:a5:58:58:85:73:08:a0:0d:8d:35:c8:65: 2c:c7:2d:5b:e0:cf:f4:61:93:8f:33:67:7b:37:6c: 2f:49:63:73:7e:50:86:46:7c:42:ec:33:1e:37:7a: 19:51:de:12:01:4a:9a:a6:3e:a8:ec:eb:04:ca:e0: 09:86:f8:0d:36:3a:30:cc:8c:9c:c2:74:67:6c:99: 80:02:72:9b:1b:86:26:6c:fc:31:72:d7:95:af:c4: 6f:de:98:40:11:c5:81:bd:54:4c:59:77:ee:07:55: 7c:b8:3f:a7:c3:16:5c:aa:3a:50:8a:e6:ed:1a:12: 1c:8c:dc:74:73:b1:b5:89:20:22:53:4e:57:d4:69: be:7e:89:7a:6e:e7:fb:8d:d1:29:dd:1e:04:e9:84: 67:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:6E:8C:0E:A2:5B:1C:3A:93:C8:BC:CF:96:88:0C:2E:91:52:D2:7F X509v3 Authority Key Identifier: keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3231352e3136342e302f32332d3332203d3e203531313637.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.215.164.0/23 Signature Algorithm: sha256WithRSAEncryption 70:62:a2:dc:da:4a:7f:21:dd:89:a3:ba:ac:1c:dd:de:f1:f6: cf:28:47:eb:17:63:6a:b4:86:44:36:dd:99:df:30:93:a9:7d: f4:b1:42:a0:5c:2b:3b:6e:b3:5c:a0:e4:92:1f:95:3b:f7:a3: cb:12:98:21:20:c2:e6:62:07:2d:43:77:19:41:32:b3:cf:03: 31:22:3c:e2:59:fd:07:3f:d6:1e:27:ea:39:75:b6:6f:69:fd: 59:66:c2:60:cb:29:e0:ca:ee:34:27:35:4e:78:b2:c4:51:b5: 4b:b0:d1:57:33:e9:23:fd:bd:bb:3b:5b:a1:97:b3:4b:c3:37: df:b0:6e:55:3f:48:b1:0f:94:91:b7:7b:f3:a4:b2:bb:5c:cd: 6e:9b:98:68:19:3b:bf:47:07:c4:cb:2f:05:27:8f:70:79:81: 45:ee:d1:77:2f:50:8b:a4:0b:77:a4:5f:e8:40:67:48:71:54: 30:5b:12:79:26:f0:d4:21:80:e0:e5:e7:9b:5a:91:ca:0e:37: 0b:0c:82:37:76:c4:b5:5f:86:03:54:bb:c0:c6:eb:e7:a6:d2: 38:fd:94:02:dd:e0:23:02:c8:68:11:eb:42:50:2b:bf:6f:ca: 44:b8:9e:b2:47:fe:c5:91:59:20:15:6f:25:ca:c4:b7:4e:27: 4a:91:fc:ad -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUPpE6CEFkaxHRqsVINtm8/yEuRbYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0 ZWE3Nzc5YzAeFw0yNTEyMjkwOTQ2MDNaFw0yNjEyMjgwOTUxMDNaMDMxMTAvBgNV BAMTKDNDNkU4QzBFQTI1QjFDM0E5M0M4QkNDRjk2ODgwQzJFOTE1MkQyN0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWtj74Ahrl/RUif/gNuRiQh//2 PX8SemzdTO+Q7VNgJnxa3kV7WBIUjWu0553U8+1y/o29MKgRji/uju4uZVydTrv1 smmuca7YhidbfIb2h45lmm8yy0EFJjOyY93FZkp70654Ws4Frr1X16VYWIVzCKAN jTXIZSzHLVvgz/Rhk48zZ3s3bC9JY3N+UIZGfELsMx43ehlR3hIBSpqmPqjs6wTK 4AmG+A02OjDMjJzCdGdsmYACcpsbhiZs/DFy15WvxG/emEARxYG9VExZd+4HVXy4 P6fDFlyqOlCK5u0aEhyM3HRzsbWJICJTTlfUab5+iXpu5/uN0SndHgTphGe/AgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUPG6MDqJbHDqTyLzPlogMLpFS0n8wHwYDVR0j BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2 bmQ1dy5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzEzODM1MmUzMjMxMzUyZTMx MzYzNDJlMzAyZjMyMzMyZDMzMzIyMDNkM2UyMDM1MzEzMTM2Mzcucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAG516QwDQYJKoZIhvcNAQELBQADggEBAHBiotzaSn8h3Ymjuqwc3d7x9s8oR+sX Y2q0hkQ23ZnfMJOpffSxQqBcKztus1yg5JIflTv3o8sSmCEgwuZiBy1DdxlBMrPP AzEiPOJZ/Qc/1h4n6jl1tm9p/VlmwmDLKeDK7jQnNU54ssRRtUuw0Vcz6SP9vbs7 W6GXs0vDN9+wblU/SLEPlJG3e/OksrtczW6bmGgZO79HB8TLLwUnj3B5gUXu0Xcv UIukC3ekX+hAZ0hxVDBbEnkm8NQhgODl55takcoONwsMgjd2xLVfhgNUu8DG6+em 0jj9lALd4CMCyGgR60JQK79vykS4nrJH/sWRWSAVbyXKxLdOJ0qR/K0= -----END CERTIFICATE-----Generated at Mon Jan 19 14:26:23 2026 by rpki-client