This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3233302e3133362e302f32332d3233203d3e203239303636.roa File: 3138352e3233302e3133362e302f32332d3233203d3e203239303636.roa (raw, json) Hash identifier: 36RNk+gnduhqrxvBlkMLvMbdHrCXQhEkt7boxQ7mt2c= Subject key identifier: A6:86:5D:57:8E:2B:18:AE:41:54:59:3E:6E:D6:B3:39:2A:2B:D1:63 Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Certificate serial: 2D6FE17A0ED12ECECC1DA42E80A942DF376D4BB2 Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3233302e3133362e302f32332d3233203d3e203239303636.roa Signing time: Fri 02 Jan 2026 16:51:11 +0000 ROA not before: Fri 02 Jan 2026 16:46:11 +0000 ROA not after: Fri 01 Jan 2027 16:51:11 +0000 asID: 29066 IP address blocks: 185.230.136.0/23 maxlen: 23 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 01:05:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:6f:e1:7a:0e:d1:2e:ce:cc:1d:a4:2e:80:a9:42:df:37:6d:4b:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Validity Not Before: Jan 2 16:46:11 2026 GMT Not After : Jan 1 16:51:11 2027 GMT Subject: CN=A6865D578E2B18AE4154593E6ED6B3392A2BD163 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:1f:03:30:63:cf:e4:ec:8f:7e:e4:70:dd:a1: 0a:a1:5a:71:a3:14:aa:15:c3:ee:92:47:0e:32:3d: 25:14:2e:db:a5:01:32:ab:bf:ff:92:0c:8c:c0:98: 62:ec:98:4d:2b:ad:ba:14:49:81:23:ae:14:0e:1b: af:a9:4d:14:bc:08:01:5a:a3:25:ed:fb:2c:34:c8: 8b:cf:ea:be:9e:04:a1:ac:3b:66:4c:66:4d:6e:5b: 01:84:b5:7c:bc:e2:a8:c1:20:92:1b:f9:83:bb:44: 83:0f:6d:6c:aa:47:f3:7d:e5:17:f9:98:3c:ac:a6: a2:a8:2a:7c:44:44:80:78:81:00:d1:77:f3:22:d5: 2d:14:66:a7:62:9c:dd:e6:2e:dc:d3:c6:db:a3:99: 95:87:11:5f:55:ef:68:d4:21:88:a7:9b:e2:a6:ad: 6f:f2:44:5d:b6:72:7d:42:d9:56:b3:07:7b:d4:66: 48:4c:ed:74:76:2c:69:58:4f:4f:c9:a3:9e:ad:17: 9b:b8:1a:7c:3f:db:a9:4f:a5:05:a6:84:20:df:9e: a3:a8:9b:1a:65:84:62:8a:ea:21:30:02:43:6b:b8: 16:50:05:a5:32:8e:18:fa:68:77:55:94:d8:22:4c: 49:24:64:bc:9f:31:b3:c2:22:59:6e:11:50:07:c9: 5a:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:86:5D:57:8E:2B:18:AE:41:54:59:3E:6E:D6:B3:39:2A:2B:D1:63 X509v3 Authority Key Identifier: keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3233302e3133362e302f32332d3233203d3e203239303636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.230.136.0/23 Signature Algorithm: sha256WithRSAEncryption 49:d7:ca:82:aa:1e:1c:d1:a8:8b:88:7c:c5:54:d9:b9:15:5d: ee:6e:d8:0e:98:4b:6c:3d:25:6e:aa:1a:3e:7f:4e:39:99:6a: a6:ce:70:e8:da:a3:59:91:17:a7:5c:0b:f5:37:88:ea:fe:9d: 7f:f2:2e:5f:b3:5b:68:a4:de:cd:b0:07:fd:6d:72:48:7b:63: 33:39:b1:e7:b2:0e:23:3b:f7:ce:ff:0e:91:12:b6:a4:95:f5: 3b:9d:c1:80:93:ab:73:c9:2d:cc:13:17:b3:32:5d:fd:0f:fe: 5d:33:c3:23:b5:58:a0:3c:66:16:07:00:fb:5c:1c:df:a7:c7: 4d:9c:37:1b:6b:30:0d:7d:4d:55:4d:d5:ed:4c:a4:4f:c6:ac: 56:9d:f6:4e:f5:d8:f7:f5:70:bd:f7:f3:d0:32:51:d1:d2:e2: 37:6c:34:8a:77:ec:a1:37:15:68:a0:d2:c0:f0:2d:be:e8:6c: 83:ca:3c:8f:ca:12:be:20:7f:ee:4f:88:9f:cd:47:dd:3f:33: 38:66:b2:59:09:3b:d5:5e:f9:9b:74:01:29:7d:0f:46:e2:87: c4:f3:8d:a7:03:26:02:4c:7b:cc:c6:21:38:38:88:2b:5d:ac: c9:34:07:82:31:32:77:a5:2f:f1:cd:82:bc:79:71:ca:66:21: f7:7a:03:ca -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIULW/heg7RLs7MHaQugKlC3zdtS7IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0 ZWE3Nzc5YzAeFw0yNjAxMDIxNjQ2MTFaFw0yNzAxMDExNjUxMTFaMDMxMTAvBgNV BAMTKEE2ODY1RDU3OEUyQjE4QUU0MTU0NTkzRTZFRDZCMzM5MkEyQkQxNjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIHwMwY8/k7I9+5HDdoQqhWnGj FKoVw+6SRw4yPSUULtulATKrv/+SDIzAmGLsmE0rrboUSYEjrhQOG6+pTRS8CAFa oyXt+yw0yIvP6r6eBKGsO2ZMZk1uWwGEtXy84qjBIJIb+YO7RIMPbWyqR/N95Rf5 mDyspqKoKnxERIB4gQDRd/Mi1S0UZqdinN3mLtzTxtujmZWHEV9V72jUIYinm+Km rW/yRF22cn1C2VazB3vUZkhM7XR2LGlYT0/Jo56tF5u4Gnw/26lPpQWmhCDfnqOo mxplhGKK6iEwAkNruBZQBaUyjhj6aHdVlNgiTEkkZLyfMbPCIlluEVAHyVq7AgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUpoZdV44rGK5BVFk+btazOSor0WMwHwYDVR0j BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2 bmQ1dy5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzEzODM1MmUzMjMzMzAyZTMx MzMzNjJlMzAyZjMyMzMyZDMyMzMyMDNkM2UyMDMyMzkzMDM2MzYucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAG55ogwDQYJKoZIhvcNAQELBQADggEBAEnXyoKqHhzRqIuIfMVU2bkVXe5u2A6Y S2w9JW6qGj5/TjmZaqbOcOjao1mRF6dcC/U3iOr+nX/yLl+zW2ik3s2wB/1tckh7 YzM5seeyDiM7987/DpEStqSV9TudwYCTq3PJLcwTF7MyXf0P/l0zwyO1WKA8ZhYH APtcHN+nx02cNxtrMA19TVVN1e1MpE/GrFad9k712Pf1cL3389AyUdHS4jdsNIp3 7KE3FWig0sDwLb7obIPKPI/KEr4gf+5PiJ/NR90/MzhmslkJO9Ve+Zt0ASl9D0bi h8TzjacDJgJMe8zGITg4iCtdrMk0B4IxMnelL/HNgrx5ccpmIfd6A8o= -----END CERTIFICATE-----Generated at Mon Jan 19 14:23:09 2026 by rpki-client