This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3231352e3136372e302f32342d3332203d3e203531313637.roa File: 3138352e3231352e3136372e302f32342d3332203d3e203531313637.roa (raw, json) Hash identifier: QQYCQX3W2zM9q1ZpsmYBGyWPwSu8Zkp+gYKQQP1K0iE= Subject key identifier: C4:AF:0C:E0:01:B0:EF:EF:63:7D:FC:49:24:5F:05:A0:9C:0E:71:A5 Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Certificate serial: 7C17C3F92024677D54F563C8378177917FFF1E50 Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3231352e3136372e302f32342d3332203d3e203531313637.roa Signing time: Mon 29 Dec 2025 09:50:42 +0000 ROA not before: Mon 29 Dec 2025 09:45:42 +0000 ROA not after: Mon 28 Dec 2026 09:50:42 +0000 asID: 51167 IP address blocks: 185.215.167.0/24 maxlen: 32 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 01:05:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:17:c3:f9:20:24:67:7d:54:f5:63:c8:37:81:77:91:7f:ff:1e:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Validity Not Before: Dec 29 09:45:42 2025 GMT Not After : Dec 28 09:50:42 2026 GMT Subject: CN=C4AF0CE001B0EFEF637DFC49245F05A09C0E71A5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:2b:3d:cf:93:54:77:a6:5e:bf:70:1c:e9:c5: 1a:32:61:46:17:d7:12:41:78:a0:82:a1:3f:18:3f: 7c:1e:e0:a9:e0:a0:13:db:77:66:bb:df:f1:14:9a: 7a:b4:fa:f6:f7:2a:9b:2b:e5:c6:cb:1a:78:d4:f3: 7c:db:aa:2e:c5:99:e7:f2:e4:03:ef:34:ca:ce:f3: 8e:16:36:88:4f:88:3f:c4:05:92:ff:da:98:0c:3e: 18:09:fc:54:3c:1d:26:0c:5e:fa:36:ca:27:72:b0: 1c:45:05:03:cf:5a:9a:07:13:24:8f:f5:64:e1:5e: cd:d2:90:5a:82:05:71:23:08:f1:d6:80:ec:bb:d2: 63:93:ca:2e:88:b3:f7:4c:d5:ee:3f:18:c4:18:37: 37:99:c2:d7:ec:27:0e:d3:ab:0e:b2:88:28:00:15: fc:cb:01:e2:d3:1b:6f:d2:45:cd:26:8b:4b:de:34: be:d5:dd:9d:74:e4:b3:82:14:4d:0c:56:b4:cb:1c: d3:1c:0c:63:c9:b2:e8:40:12:05:80:a7:cc:73:ef: 16:bc:ea:bb:c1:5b:ae:c4:6d:22:55:a2:1e:e7:b8: 43:ab:e4:23:6f:ed:b6:c9:d6:94:50:53:19:9f:8f: 96:ea:60:0f:8d:6d:34:d8:2f:76:49:b7:cf:b3:7f: 52:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:AF:0C:E0:01:B0:EF:EF:63:7D:FC:49:24:5F:05:A0:9C:0E:71:A5 X509v3 Authority Key Identifier: keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3231352e3136372e302f32342d3332203d3e203531313637.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.215.167.0/24 Signature Algorithm: sha256WithRSAEncryption 81:f0:81:ea:30:56:a0:a8:7a:54:25:1f:4f:e1:de:66:34:c7: 63:26:a7:b7:ef:31:16:da:25:81:e3:15:ed:0a:45:77:ce:a6: 51:44:d4:f7:f2:5f:33:a0:79:95:f6:ad:8e:32:80:32:54:39: aa:3f:a9:e4:04:9f:85:fe:e9:7a:b3:02:99:c9:8b:c3:22:66: bf:78:e2:5d:44:ff:ac:62:18:b7:a7:8a:70:ec:09:7f:df:9a: 7d:91:e0:5d:47:97:86:21:6e:f8:8b:50:1a:45:4d:6f:15:c7: 7c:9b:f8:25:83:f1:4f:5d:d5:35:2c:01:2d:d0:70:d3:1d:45: 11:6b:6c:fa:24:e4:78:0e:13:19:5f:b4:76:0b:ef:7f:e0:8d: 14:0a:5d:26:ea:e2:a1:4b:e3:a3:c5:0f:0a:cf:28:35:d6:92: b8:ae:f9:d7:57:ef:29:8d:67:22:af:2a:17:f7:91:f6:16:97: c3:03:2e:c8:39:48:e9:ce:fd:73:72:f1:a7:d3:8a:fb:61:ce: 59:38:8c:93:4f:6e:6c:a6:ec:46:b8:03:db:49:31:b9:1a:96: bf:59:1a:f3:a1:22:4e:10:50:e2:4e:6f:96:2d:a0:02:92:e3: 22:b7:6c:cf:07:3c:87:38:72:ec:6b:92:45:6e:1d:21:c5:0e: f2:0c:11:45 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUfBfD+SAkZ31U9WPIN4F3kX//HlAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0 ZWE3Nzc5YzAeFw0yNTEyMjkwOTQ1NDJaFw0yNjEyMjgwOTUwNDJaMDMxMTAvBgNV BAMTKEM0QUYwQ0UwMDFCMEVGRUY2MzdERkM0OTI0NUYwNUEwOUMwRTcxQTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyKz3Pk1R3pl6/cBzpxRoyYUYX 1xJBeKCCoT8YP3we4KngoBPbd2a73/EUmnq0+vb3Kpsr5cbLGnjU83zbqi7Fmefy 5APvNMrO844WNohPiD/EBZL/2pgMPhgJ/FQ8HSYMXvo2yidysBxFBQPPWpoHEySP 9WThXs3SkFqCBXEjCPHWgOy70mOTyi6Is/dM1e4/GMQYNzeZwtfsJw7Tqw6yiCgA FfzLAeLTG2/SRc0mi0veNL7V3Z105LOCFE0MVrTLHNMcDGPJsuhAEgWAp8xz7xa8 6rvBW67EbSJVoh7nuEOr5CNv7bbJ1pRQUxmfj5bqYA+NbTTYL3ZJt8+zf1KnAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUxK8M4AGw7+9jffxJJF8FoJwOcaUwHwYDVR0j BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2 bmQ1dy5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzEzODM1MmUzMjMxMzUyZTMx MzYzNzJlMzAyZjMyMzQyZDMzMzIyMDNkM2UyMDM1MzEzMTM2Mzcucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAC516cwDQYJKoZIhvcNAQELBQADggEBAIHwgeowVqCoelQlH0/h3mY0x2Mmp7fv MRbaJYHjFe0KRXfOplFE1PfyXzOgeZX2rY4ygDJUOao/qeQEn4X+6XqzApnJi8Mi Zr944l1E/6xiGLeninDsCX/fmn2R4F1Hl4YhbviLUBpFTW8Vx3yb+CWD8U9d1TUs AS3QcNMdRRFrbPok5HgOExlftHYL73/gjRQKXSbq4qFL46PFDwrPKDXWkriu+ddX 7ymNZyKvKhf3kfYWl8MDLsg5SOnO/XNy8afTivthzlk4jJNPbmym7Ea4A9tJMbka lr9ZGvOhIk4QUOJOb5YtoAKS4yK3bM8HPIc4cuxrkkVuHSHFDvIMEUU= -----END CERTIFICATE-----Generated at Mon Jan 19 14:26:22 2026 by rpki-client