This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3231362e3230332e302f32342d3332203d3e203531313637.roa File: 3138352e3231362e3230332e302f32342d3332203d3e203531313637.roa (raw, json) Hash identifier: duE1CqFNQvBoDQZ/pR302nDsLIWkMNio/7VKPul+PAk= Subject key identifier: 49:6C:54:D4:5E:AE:C3:49:11:E0:D6:6A:64:C8:70:9A:95:DC:D7:D9 Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Certificate serial: 15936031748FD28D3E5F4AF802542AE73523304E Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3231362e3230332e302f32342d3332203d3e203531313637.roa Signing time: Mon 29 Dec 2025 09:50:39 +0000 ROA not before: Mon 29 Dec 2025 09:45:39 +0000 ROA not after: Mon 28 Dec 2026 09:50:39 +0000 asID: 51167 IP address blocks: 185.216.203.0/24 maxlen: 32 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 01:05:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:93:60:31:74:8f:d2:8d:3e:5f:4a:f8:02:54:2a:e7:35:23:30:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Validity Not Before: Dec 29 09:45:39 2025 GMT Not After : Dec 28 09:50:39 2026 GMT Subject: CN=496C54D45EAEC34911E0D66A64C8709A95DCD7D9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f9:be:30:a0:ec:0a:26:7c:f1:4c:4c:34:44:ab: da:3e:fc:42:0e:3f:9c:f7:2a:15:ad:3d:d6:65:77: 79:08:99:5f:18:d0:2c:31:d4:a7:4b:06:12:85:51: 10:30:49:5a:ac:09:81:31:8d:2f:b0:28:39:e2:c1: c9:cd:2c:67:43:fd:7e:52:74:0e:e5:a9:bb:ad:98: d0:31:62:0a:e7:c8:da:68:3a:14:3e:2d:a9:15:91: 49:43:60:1c:79:3b:eb:7d:85:c1:59:58:7b:57:e6: b8:85:16:58:ac:31:d5:16:cb:da:a2:4b:b6:a6:06: 04:ca:07:01:41:25:16:42:d2:86:58:c8:f5:c5:e8: 90:39:6b:b7:ac:da:ad:70:51:f9:26:bc:dc:38:02: 77:e6:76:65:d2:f8:48:59:b7:fe:64:d1:fc:0e:c1: 7c:09:fa:6a:2e:3c:8e:5f:77:82:20:72:52:f8:08: da:76:22:99:5f:93:3c:83:3f:da:9e:fa:63:fa:68: 05:6e:41:2d:c6:2f:8c:c9:38:f5:2f:55:eb:af:a8: d9:a5:57:1b:90:00:94:35:ae:eb:5c:e5:78:89:87: 9e:c2:4f:00:2d:5c:5b:01:69:08:d7:a8:b8:c8:dc: 52:6e:25:3d:1b:ed:58:0d:e6:b3:88:8b:7e:2d:3a: 08:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:6C:54:D4:5E:AE:C3:49:11:E0:D6:6A:64:C8:70:9A:95:DC:D7:D9 X509v3 Authority Key Identifier: keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3231362e3230332e302f32342d3332203d3e203531313637.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.216.203.0/24 Signature Algorithm: sha256WithRSAEncryption 57:16:b0:78:3a:83:43:0b:97:ef:a4:0f:ee:a7:86:93:3b:f5: 72:98:84:7a:3d:d2:be:53:56:e4:79:7b:85:5a:3f:26:da:58: 2c:7c:7d:61:51:f0:35:fa:f2:23:af:9d:69:2e:16:9b:03:94: 7f:e2:0c:7b:85:da:0c:cc:75:eb:5e:82:57:0e:dc:b1:d9:c9: f1:91:a1:83:da:9e:99:e9:e8:ff:76:86:84:85:8d:ab:75:ee: 35:9d:af:64:93:f9:62:c9:28:eb:86:b1:c8:46:5e:85:e2:04: 36:d5:45:d8:d3:60:c2:37:aa:d4:be:6f:e0:de:70:7e:9e:7f: 0a:81:cf:cd:05:fd:ab:27:67:1b:ec:9b:6d:f0:85:53:c8:b6: 17:6b:98:4e:30:d2:bd:57:5a:1c:f8:00:22:96:d7:ee:96:27: 84:e8:31:35:d5:68:41:ee:d2:b7:32:df:51:85:30:34:3e:36: 34:9a:29:ea:b5:4d:48:e3:65:f0:24:57:4b:cb:bc:a8:9d:95: 39:74:c2:aa:41:f4:e0:df:d2:f9:b7:3b:de:cb:0f:96:80:23: 0c:05:e6:dd:79:1d:98:e6:eb:41:68:22:b5:80:74:38:bd:0a: 81:e4:4b:3c:d8:fd:4d:05:ee:75:79:9c:33:5e:f2:23:e4:93: 66:ce:83:3f -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUFZNgMXSP0o0+X0r4AlQq5zUjME4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0 ZWE3Nzc5YzAeFw0yNTEyMjkwOTQ1MzlaFw0yNjEyMjgwOTUwMzlaMDMxMTAvBgNV BAMTKDQ5NkM1NEQ0NUVBRUMzNDkxMUUwRDY2QTY0Qzg3MDlBOTVEQ0Q3RDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD5vjCg7AomfPFMTDREq9o+/EIO P5z3KhWtPdZld3kImV8Y0Cwx1KdLBhKFURAwSVqsCYExjS+wKDniwcnNLGdD/X5S dA7lqbutmNAxYgrnyNpoOhQ+LakVkUlDYBx5O+t9hcFZWHtX5riFFlisMdUWy9qi S7amBgTKBwFBJRZC0oZYyPXF6JA5a7es2q1wUfkmvNw4AnfmdmXS+EhZt/5k0fwO wXwJ+mouPI5fd4IgclL4CNp2IplfkzyDP9qe+mP6aAVuQS3GL4zJOPUvVeuvqNml VxuQAJQ1rutc5XiJh57CTwAtXFsBaQjXqLjI3FJuJT0b7VgN5rOIi34tOghXAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUSWxU1F6uw0kR4NZqZMhwmpXc19kwHwYDVR0j BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2 bmQ1dy5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzEzODM1MmUzMjMxMzYyZTMy MzAzMzJlMzAyZjMyMzQyZDMzMzIyMDNkM2UyMDM1MzEzMTM2Mzcucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAC52MswDQYJKoZIhvcNAQELBQADggEBAFcWsHg6g0MLl++kD+6nhpM79XKYhHo9 0r5TVuR5e4VaPybaWCx8fWFR8DX68iOvnWkuFpsDlH/iDHuF2gzMdeteglcO3LHZ yfGRoYPanpnp6P92hoSFjat17jWdr2ST+WLJKOuGschGXoXiBDbVRdjTYMI3qtS+ b+DecH6efwqBz80F/asnZxvsm23whVPIthdrmE4w0r1XWhz4ACKW1+6WJ4ToMTXV aEHu0rcy31GFMDQ+NjSaKeq1TUjjZfAkV0vLvKidlTl0wqpB9ODf0vm3O97LD5aA IwwF5t15HZjm60FoIrWAdDi9CoHkSzzY/U0F7nV5nDNe8iPkk2bOgz8= -----END CERTIFICATE-----Generated at Mon Jan 19 14:26:16 2026 by rpki-client