This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3231362e3230312e302f32342d3234203d3e203632323430.roa File: 3138352e3231362e3230312e302f32342d3234203d3e203632323430.roa (raw, json) Hash identifier: mfRwbvSuqUibDRbe5eqpnLMpdUz3v4OZ3aBsTe1BMKA= Subject key identifier: C3:32:BB:DE:5F:D4:89:C7:D6:4F:A4:64:72:A3:08:1C:BA:C0:AB:77 Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Certificate serial: 28EC6FA38A40F8A3D6462B536D8EDB20937FFDB5 Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3231362e3230312e302f32342d3234203d3e203632323430.roa Signing time: Mon 29 Dec 2025 09:50:37 +0000 ROA not before: Mon 29 Dec 2025 09:45:37 +0000 ROA not after: Mon 28 Dec 2026 09:50:37 +0000 asID: 62240 IP address blocks: 185.216.201.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 01:05:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:ec:6f:a3:8a:40:f8:a3:d6:46:2b:53:6d:8e:db:20:93:7f:fd:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Validity Not Before: Dec 29 09:45:37 2025 GMT Not After : Dec 28 09:50:37 2026 GMT Subject: CN=C332BBDE5FD489C7D64FA46472A3081CBAC0AB77 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:74:79:4b:05:26:36:76:ed:38:49:6b:f3:af: ab:fa:87:93:d1:58:09:83:3e:b8:d8:97:2c:f2:b9: 45:57:41:8b:68:50:9a:7c:3a:ad:19:77:c6:98:c1: 38:9a:40:d3:1e:a5:73:ab:d0:be:e2:58:23:28:08: 70:34:fa:c5:08:20:a8:1a:fa:4a:7a:e0:c1:d5:55: 2a:b3:1b:ab:26:1e:63:a1:0f:0e:0e:3f:43:eb:c6: d2:a0:4f:ed:c1:4c:9f:06:c5:ac:37:09:9d:2c:9f: 94:14:b4:98:78:40:08:42:e0:e6:ff:53:94:b8:ae: 8a:bf:e2:ff:c2:bd:c3:8d:69:2f:f1:a9:fc:ec:b9: 61:14:b6:90:2f:a4:4e:f1:57:08:c4:9e:52:ce:a3: d8:8c:82:f3:4a:e5:b7:5c:af:fc:b2:ec:74:06:38: 38:89:40:c6:e8:33:c1:fe:b6:72:94:08:d3:ea:39: ea:4c:fa:2c:ec:3f:2e:a9:2d:53:8a:79:72:06:17: 9a:01:cb:c9:f0:c7:e5:55:d6:3f:e3:dc:3a:45:46: 73:8a:8a:cc:9a:ab:72:21:82:1d:ea:20:06:3b:ba: 92:a0:28:2b:89:68:6c:34:f4:1e:15:4e:5e:2e:98: 03:a0:82:e3:46:5a:b0:5e:df:88:10:38:da:b8:c3: 0e:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:32:BB:DE:5F:D4:89:C7:D6:4F:A4:64:72:A3:08:1C:BA:C0:AB:77 X509v3 Authority Key Identifier: keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3231362e3230312e302f32342d3234203d3e203632323430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.216.201.0/24 Signature Algorithm: sha256WithRSAEncryption 0b:29:42:59:ad:44:9c:e9:52:65:17:2f:d5:82:cd:f2:89:8e: 62:c2:7f:71:0b:0a:ce:0b:7a:ad:1c:5c:f1:01:09:20:c3:2f: bf:42:72:9f:16:e7:9d:83:5e:6e:d2:33:e9:1f:16:16:21:5c: 00:51:44:0c:80:6e:a5:e3:df:2d:05:1c:78:6e:af:6b:60:a7: 21:7c:fb:cd:73:0c:7f:49:56:2f:88:f5:07:e3:78:f7:c0:56: 90:4b:35:c6:a3:d5:b2:80:cb:05:91:a2:b6:6f:3c:36:d0:45: 2e:b0:ca:8e:97:af:19:c4:8e:a4:46:a7:56:91:ca:29:92:ab: 89:ae:ab:b6:57:25:b3:b3:f0:ac:e5:1f:98:f1:4e:37:c0:82: 00:b2:e5:fa:07:15:10:99:d9:c2:88:e3:6b:40:a6:15:2d:c2: b6:5c:b1:00:27:7f:87:6d:32:9e:e6:67:04:92:5a:c7:e7:f4: da:fd:31:0e:5b:a1:cd:a2:07:55:ea:da:83:2b:f5:77:a5:d4: 73:cb:51:86:f1:62:29:15:ec:42:ae:f2:69:f8:13:c4:a0:a6: 49:98:bd:24:e5:4a:e8:72:21:af:71:0a:c3:e1:6c:c3:32:15: f8:26:93:1d:81:c4:cc:32:3b:01:92:88:d5:f6:fe:e6:60:2a: 66:ad:c0:45 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUKOxvo4pA+KPWRitTbY7bIJN//bUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0 ZWE3Nzc5YzAeFw0yNTEyMjkwOTQ1MzdaFw0yNjEyMjgwOTUwMzdaMDMxMTAvBgNV BAMTKEMzMzJCQkRFNUZENDg5QzdENjRGQTQ2NDcyQTMwODFDQkFDMEFCNzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCkdHlLBSY2du04SWvzr6v6h5PR WAmDPrjYlyzyuUVXQYtoUJp8Oq0Zd8aYwTiaQNMepXOr0L7iWCMoCHA0+sUIIKga +kp64MHVVSqzG6smHmOhDw4OP0PrxtKgT+3BTJ8Gxaw3CZ0sn5QUtJh4QAhC4Ob/ U5S4roq/4v/CvcONaS/xqfzsuWEUtpAvpE7xVwjEnlLOo9iMgvNK5bdcr/yy7HQG ODiJQMboM8H+tnKUCNPqOepM+izsPy6pLVOKeXIGF5oBy8nwx+VV1j/j3DpFRnOK isyaq3Ihgh3qIAY7upKgKCuJaGw09B4VTl4umAOgguNGWrBe34gQONq4ww7rAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUwzK73l/UicfWT6RkcqMIHLrAq3cwHwYDVR0j BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2 bmQ1dy5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzEzODM1MmUzMjMxMzYyZTMy MzAzMTJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDM2MzIzMjM0MzAucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAC52MkwDQYJKoZIhvcNAQELBQADggEBAAspQlmtRJzpUmUXL9WCzfKJjmLCf3EL Cs4Leq0cXPEBCSDDL79Ccp8W552DXm7SM+kfFhYhXABRRAyAbqXj3y0FHHhur2tg pyF8+81zDH9JVi+I9QfjePfAVpBLNcaj1bKAywWRorZvPDbQRS6wyo6XrxnEjqRG p1aRyimSq4muq7ZXJbOz8KzlH5jxTjfAggCy5foHFRCZ2cKI42tAphUtwrZcsQAn f4dtMp7mZwSSWsfn9Nr9MQ5boc2iB1Xq2oMr9Xel1HPLUYbxYikV7EKu8mn4E8Sg pkmYvSTlSuhyIa9xCsPhbMMyFfgmkx2BxMwyOwGSiNX2/uZgKmatwEU= -----END CERTIFICATE-----Generated at Mon Jan 19 14:26:12 2026 by rpki-client