This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3231352e3138302e302f32342d3332203d3e203531313637.roa File: 3138352e3231352e3138302e302f32342d3332203d3e203531313637.roa (raw, json) Hash identifier: 90B5IcYH+oCdfwEmwSFBUEUfG5U1EbE5K32GXWImgOA= Subject key identifier: D6:53:0C:5C:45:88:6E:49:B7:9A:2D:01:86:B4:3B:D8:75:1B:A6:89 Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Certificate serial: 5579FC78F253BB1F59002AD1BA2D4E1430C81AA7 Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3231352e3138302e302f32342d3332203d3e203531313637.roa Signing time: Mon 29 Dec 2025 09:50:40 +0000 ROA not before: Mon 29 Dec 2025 09:45:40 +0000 ROA not after: Mon 28 Dec 2026 09:50:40 +0000 asID: 51167 IP address blocks: 185.215.180.0/24 maxlen: 32 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 01:05:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:79:fc:78:f2:53:bb:1f:59:00:2a:d1:ba:2d:4e:14:30:c8:1a:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Validity Not Before: Dec 29 09:45:40 2025 GMT Not After : Dec 28 09:50:40 2026 GMT Subject: CN=D6530C5C45886E49B79A2D0186B43BD8751BA689 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:02:8b:fd:f3:db:cb:62:c6:77:9a:50:0d:d8: 24:20:ac:39:f1:5c:b0:3d:da:ad:6a:21:9c:c7:b0: e1:ba:cd:9f:68:e5:eb:62:8b:bd:c6:31:dc:d7:bf: ac:4e:fa:6d:88:69:33:3a:a1:73:a3:2e:9f:1c:69: 94:95:cb:45:ca:b7:fc:d4:f5:be:a8:b2:b7:70:5d: 69:0f:22:59:b7:15:ee:66:4b:db:ef:7e:69:79:65: 02:ed:f7:6a:81:fd:c1:fb:34:8f:4c:f6:ca:db:4c: cb:db:ca:16:b2:b1:cb:5c:38:89:16:f3:ab:09:ed: bb:50:5a:71:77:c2:42:d2:81:07:27:a8:d4:54:37: 2a:01:a9:20:69:fb:84:69:4b:34:ef:9b:e3:19:21: 2e:99:2f:d7:d7:4b:8e:e1:a7:97:f4:1f:40:c3:cc: 7f:12:f2:b3:a5:79:4a:3c:eb:36:ba:22:ad:25:ee: d1:c6:c6:86:07:86:8c:95:31:52:22:12:df:bf:5d: f5:70:11:30:c6:94:76:f8:dc:5d:d6:8b:7c:5a:77: c1:9c:01:21:cb:2c:6e:c9:78:3e:1e:24:77:d7:9d: 1a:29:72:00:1f:2d:b9:a4:4f:13:1a:06:ce:3a:ce: 2e:ba:73:3e:cd:7f:88:58:8b:c6:a6:e0:bd:56:c7: fe:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:53:0C:5C:45:88:6E:49:B7:9A:2D:01:86:B4:3B:D8:75:1B:A6:89 X509v3 Authority Key Identifier: keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3231352e3138302e302f32342d3332203d3e203531313637.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.215.180.0/24 Signature Algorithm: sha256WithRSAEncryption 9e:7b:30:09:a8:b4:ba:cf:1a:a2:c5:af:02:2a:6b:67:de:d2: 21:fb:5c:24:ea:1e:30:c0:15:08:16:0f:6f:40:c1:87:7d:85: 7d:03:d5:7c:58:ac:14:f0:bf:84:92:39:00:4e:22:06:b9:21: d9:60:7f:b0:0a:2d:91:6e:b5:cd:f2:21:ba:5c:de:d6:75:0e: 79:71:81:2f:12:33:f5:4d:26:3d:5a:21:4c:1e:5f:9b:2f:37: 5c:09:cb:00:a0:22:89:cc:09:d0:87:44:9f:09:73:54:64:8f: 02:59:f1:8d:9e:89:95:be:97:df:9f:85:67:82:ea:fe:5a:b0: 80:ef:cc:9e:b4:d4:21:f8:70:b4:35:72:16:14:cb:fb:f6:d3: 0e:f0:13:e3:a1:04:90:ec:f6:58:40:e4:d2:50:0d:2c:e5:a2: ac:2d:c3:fc:a8:66:86:2d:59:11:be:61:95:7a:1b:11:f1:e1: c5:af:fa:9b:ce:b4:62:39:d0:b9:0a:34:61:12:64:14:7a:a0: 7a:46:69:da:3c:c0:b2:31:b0:17:df:48:1d:18:86:fb:2e:f4: 43:a6:78:e8:d1:eb:0f:51:42:51:14:fa:a2:93:37:28:09:98: e1:57:f6:cd:75:da:c7:0e:c2:b9:61:ad:37:f9:6c:22:ab:aa: f9:ae:81:77 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUVXn8ePJTux9ZACrRui1OFDDIGqcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0 ZWE3Nzc5YzAeFw0yNTEyMjkwOTQ1NDBaFw0yNjEyMjgwOTUwNDBaMDMxMTAvBgNV BAMTKEQ2NTMwQzVDNDU4ODZFNDlCNzlBMkQwMTg2QjQzQkQ4NzUxQkE2ODkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCAov989vLYsZ3mlAN2CQgrDnx XLA92q1qIZzHsOG6zZ9o5etii73GMdzXv6xO+m2IaTM6oXOjLp8caZSVy0XKt/zU 9b6osrdwXWkPIlm3Fe5mS9vvfml5ZQLt92qB/cH7NI9M9srbTMvbyhaysctcOIkW 86sJ7btQWnF3wkLSgQcnqNRUNyoBqSBp+4RpSzTvm+MZIS6ZL9fXS47hp5f0H0DD zH8S8rOleUo86za6Iq0l7tHGxoYHhoyVMVIiEt+/XfVwETDGlHb43F3Wi3xad8Gc ASHLLG7JeD4eJHfXnRopcgAfLbmkTxMaBs46zi66cz7Nf4hYi8am4L1Wx/4LAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQU1lMMXEWIbkm3mi0BhrQ72HUbpokwHwYDVR0j BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2 bmQ1dy5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzEzODM1MmUzMjMxMzUyZTMx MzgzMDJlMzAyZjMyMzQyZDMzMzIyMDNkM2UyMDM1MzEzMTM2Mzcucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAC517QwDQYJKoZIhvcNAQELBQADggEBAJ57MAmotLrPGqLFrwIqa2fe0iH7XCTq HjDAFQgWD29AwYd9hX0D1XxYrBTwv4SSOQBOIga5Idlgf7AKLZFutc3yIbpc3tZ1 DnlxgS8SM/VNJj1aIUweX5svN1wJywCgIonMCdCHRJ8Jc1RkjwJZ8Y2eiZW+l9+f hWeC6v5asIDvzJ601CH4cLQ1chYUy/v20w7wE+OhBJDs9lhA5NJQDSzloqwtw/yo ZoYtWRG+YZV6GxHx4cWv+pvOtGI50LkKNGESZBR6oHpGado8wLIxsBffSB0Yhvsu 9EOmeOjR6w9RQlEU+qKTNygJmOFX9s112scOwrlhrTf5bCKrqvmugXc= -----END CERTIFICATE-----Generated at Mon Jan 19 14:27:18 2026 by rpki-client