This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3232342e3133362e302f32322d3234203d3e203437353833.roa File: 3138352e3232342e3133362e302f32322d3234203d3e203437353833.roa (raw, json) Hash identifier: 6ZaYxBG6h5yUcsuhu0F9kxo9R8larpsw0WikPsCnvgA= Subject key identifier: 87:3F:F0:C5:68:08:F7:FE:7E:CB:58:B0:85:09:28:5C:BB:05:A4:BC Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Certificate serial: 48DB1CEBF32BCB9214333D35B3129A5BA7801213 Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3232342e3133362e302f32322d3234203d3e203437353833.roa Signing time: Mon 29 Dec 2025 09:50:50 +0000 ROA not before: Mon 29 Dec 2025 09:45:50 +0000 ROA not after: Mon 28 Dec 2026 09:50:50 +0000 asID: 47583 IP address blocks: 185.224.136.0/22 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 01:05:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:db:1c:eb:f3:2b:cb:92:14:33:3d:35:b3:12:9a:5b:a7:80:12:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Validity Not Before: Dec 29 09:45:50 2025 GMT Not After : Dec 28 09:50:50 2026 GMT Subject: CN=873FF0C56808F7FE7ECB58B08509285CBB05A4BC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:2f:b6:4d:97:c2:cc:96:ae:79:6e:dd:1d:e2: be:04:1f:b7:cd:3b:81:df:b6:8a:95:5a:f8:9b:c1: 32:0d:83:b5:72:71:92:e2:54:00:3c:f4:31:c4:8b: b3:60:79:f3:1d:c6:83:e5:e5:a9:b2:bd:6b:52:51: 1d:7d:f3:1d:f1:3b:91:23:fb:6a:fe:1e:1b:75:c7: 49:b8:ba:e6:56:44:27:fa:64:9a:70:87:02:65:55: 9b:d4:c1:9d:b7:da:36:f9:55:a4:44:24:04:20:f6: cd:17:12:6e:20:f5:cd:45:b7:1f:ee:43:e4:04:47: f7:9a:04:d7:f1:ad:4b:11:a7:d0:22:6e:63:f7:bd: 7b:53:b0:5b:ba:5a:07:c6:61:65:4d:d1:64:e3:52: 7e:42:f5:93:89:d5:94:08:54:29:af:6d:5e:d5:98: 57:85:e8:99:c7:66:13:ae:63:9b:bb:c8:fc:09:2e: 9e:ac:64:bc:4d:4a:e0:f7:f3:ac:0a:ce:39:93:70: 99:0b:ac:76:84:98:63:70:db:63:7d:3e:73:8b:31: 71:41:7b:fc:7c:55:a8:c5:0a:a9:7a:3d:8e:01:ce: da:04:92:05:51:e6:7c:62:8d:da:c3:13:22:62:19: fe:d6:7a:b9:8b:23:a6:0e:04:cd:f0:c3:52:54:e3: 6f:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:3F:F0:C5:68:08:F7:FE:7E:CB:58:B0:85:09:28:5C:BB:05:A4:BC X509v3 Authority Key Identifier: keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3232342e3133362e302f32322d3234203d3e203437353833.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.224.136.0/22 Signature Algorithm: sha256WithRSAEncryption 81:f5:da:a2:5f:41:1e:c9:bf:69:84:24:ea:79:2b:0b:7e:6d: 34:bb:8d:55:4c:87:be:21:21:79:e2:4f:f6:a8:fe:c8:a6:17: 7b:01:e5:d4:e1:76:cb:6a:4a:1b:71:ae:1d:0c:d5:0c:5b:8e: 79:0e:b5:d7:3d:5d:97:2d:92:df:bc:75:12:0d:8c:cb:81:07: 45:52:1f:78:ca:6b:db:dd:f4:de:7e:89:75:c7:62:bb:e4:ae: 4d:89:a7:68:9e:0a:55:b8:8f:40:72:e9:80:fa:fb:c8:0a:55: a7:8e:3d:2a:d8:78:2b:69:72:47:9d:04:e7:ce:13:b1:b0:03: cb:4a:24:1c:16:c6:b2:20:d5:63:12:8e:bc:16:93:a3:84:9f: f2:1f:33:92:4f:bc:fb:cb:19:f5:7f:6f:f8:af:38:7b:d2:16: 3d:3a:54:ec:b7:70:13:55:1c:8a:93:40:4c:51:0a:75:83:10: ce:c6:84:09:b2:7e:e0:5c:68:68:dd:d6:76:d3:3c:98:e1:01: cb:b1:4d:28:e4:f5:b8:ba:57:23:b7:00:92:e7:42:53:00:2b: ed:8e:95:f3:e3:2f:a8:11:f7:02:26:05:f8:b4:2b:8b:99:c9: 82:39:65:a4:f9:58:d0:ee:cd:0a:bd:d3:b1:ad:59:b0:fc:37: 8b:b0:da:96 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUSNsc6/Mry5IUMz01sxKaW6eAEhMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0 ZWE3Nzc5YzAeFw0yNTEyMjkwOTQ1NTBaFw0yNjEyMjgwOTUwNTBaMDMxMTAvBgNV BAMTKDg3M0ZGMEM1NjgwOEY3RkU3RUNCNThCMDg1MDkyODVDQkIwNUE0QkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8L7ZNl8LMlq55bt0d4r4EH7fN O4HftoqVWvibwTINg7VycZLiVAA89DHEi7NgefMdxoPl5amyvWtSUR198x3xO5Ej +2r+Hht1x0m4uuZWRCf6ZJpwhwJlVZvUwZ232jb5VaREJAQg9s0XEm4g9c1Ftx/u Q+QER/eaBNfxrUsRp9AibmP3vXtTsFu6WgfGYWVN0WTjUn5C9ZOJ1ZQIVCmvbV7V mFeF6JnHZhOuY5u7yPwJLp6sZLxNSuD386wKzjmTcJkLrHaEmGNw22N9PnOLMXFB e/x8VajFCql6PY4BztoEkgVR5nxijdrDEyJiGf7WermLI6YOBM3ww1JU42+9AgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUhz/wxWgI9/5+y1iwhQkoXLsFpLwwHwYDVR0j BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2 bmQ1dy5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzEzODM1MmUzMjMyMzQyZTMx MzMzNjJlMzAyZjMyMzIyZDMyMzQyMDNkM2UyMDM0MzczNTM4MzMucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAK54IgwDQYJKoZIhvcNAQELBQADggEBAIH12qJfQR7Jv2mEJOp5Kwt+bTS7jVVM h74hIXniT/ao/simF3sB5dThdstqShtxrh0M1QxbjnkOtdc9XZctkt+8dRINjMuB B0VSH3jKa9vd9N5+iXXHYrvkrk2Jp2ieClW4j0By6YD6+8gKVaeOPSrYeCtpcked BOfOE7GwA8tKJBwWxrIg1WMSjrwWk6OEn/IfM5JPvPvLGfV/b/ivOHvSFj06VOy3 cBNVHIqTQExRCnWDEM7GhAmyfuBcaGjd1nbTPJjhAcuxTSjk9bi6VyO3AJLnQlMA K+2OlfPjL6gR9wImBfi0K4uZyYI5ZaT5WNDuzQq907GtWbD8N4uw2pY= -----END CERTIFICATE-----Generated at Mon Jan 19 14:23:24 2026 by rpki-client