This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3233302e3133392e302f32342d3234203d3e20313336373837.roa File: 3138352e3233302e3133392e302f32342d3234203d3e20313336373837.roa (raw, json) Hash identifier: MYlrrkeQwFt5usa0mpJPmOeIkuB7olgpgDZlVvyynBA= Subject key identifier: 89:03:05:05:EB:8B:37:E7:1D:0E:3B:02:86:09:CF:F2:AA:29:B3:E8 Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Certificate serial: 0DC8A5D2A9F7C8A8DC13E278A7F689772BFF96C9 Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3233302e3133392e302f32342d3234203d3e20313336373837.roa Signing time: Mon 29 Dec 2025 09:50:43 +0000 ROA not before: Mon 29 Dec 2025 09:45:43 +0000 ROA not after: Mon 28 Dec 2026 09:50:43 +0000 asID: 136787 IP address blocks: 185.230.139.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 01:05:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:c8:a5:d2:a9:f7:c8:a8:dc:13:e2:78:a7:f6:89:77:2b:ff:96:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Validity Not Before: Dec 29 09:45:43 2025 GMT Not After : Dec 28 09:50:43 2026 GMT Subject: CN=89030505EB8B37E71D0E3B028609CFF2AA29B3E8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:75:0a:7f:d4:80:91:98:e4:b3:b7:0a:31:93: 72:1a:a5:c3:45:e8:55:59:ed:9d:71:e1:85:b0:40: 84:50:8c:e8:49:00:52:d6:ea:a8:eb:ee:09:54:31: a2:b3:37:11:b1:6e:90:36:85:f5:e9:fb:13:47:37: 6a:0e:75:56:60:35:2f:80:20:62:ce:16:66:38:48: a0:91:e4:81:64:e0:fb:83:f4:c8:7f:40:53:82:65: bb:22:60:48:d8:79:00:5c:c9:65:40:a7:c4:ff:77: d3:02:50:d3:06:7c:5d:5d:61:86:a7:8b:11:38:3c: 72:f2:0d:f8:d1:59:9e:82:2d:06:f0:c5:59:c2:1f: 3f:e7:80:a0:03:72:4f:9c:4a:1a:48:31:bb:4b:bd: b3:3c:37:e2:90:92:43:9d:12:d9:9a:f6:2a:a2:71: dc:33:20:e5:06:1e:87:45:90:23:a0:4b:4d:a7:24: c7:68:7d:c1:56:0e:8c:6e:50:66:c7:e6:61:9b:21: b4:8d:b4:a9:36:b0:ae:26:a2:74:e5:17:74:f2:1c: 19:f4:fc:2c:2c:15:f5:dc:91:c4:06:06:32:6c:de: 0d:7c:d9:67:b8:57:4d:0f:80:c7:a8:0e:2f:3b:5b: a1:ed:2e:a7:d0:19:8a:98:bf:83:ed:b9:91:71:a7: 92:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:03:05:05:EB:8B:37:E7:1D:0E:3B:02:86:09:CF:F2:AA:29:B3:E8 X509v3 Authority Key Identifier: keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3233302e3133392e302f32342d3234203d3e20313336373837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.230.139.0/24 Signature Algorithm: sha256WithRSAEncryption 77:76:b4:4b:01:d5:97:49:21:46:d4:eb:aa:6e:32:2b:73:4b: 52:c7:1e:51:77:8e:65:60:d1:b5:bf:10:64:ee:cc:96:7a:86: 72:85:44:69:77:27:2f:88:b6:53:12:41:48:60:40:ec:7a:6d: e1:df:ce:b5:59:6a:84:2d:e3:2d:3d:d3:25:f5:07:14:33:39: 65:fe:00:3a:c4:f9:dd:25:5b:c7:a2:51:4f:46:3b:7c:17:06: 25:25:30:ed:dd:fd:ed:bb:38:66:f5:ec:e9:90:37:2e:dd:a2: 8f:8a:07:63:0e:e7:93:5e:53:17:6d:77:27:94:65:ba:e4:92: d0:cf:a9:4a:11:b8:38:64:07:c0:46:c4:72:f0:49:f1:b7:17: 54:1e:06:dc:4c:4b:b7:2f:c1:95:92:1d:26:c9:20:de:f9:6f: a4:fe:2c:b3:41:94:58:3e:16:c6:61:d0:57:59:35:92:48:6b: 2b:82:e2:47:85:ac:61:1b:89:ee:58:15:b7:1e:c7:5d:f5:a2: 27:5e:0c:d0:1a:c4:b9:3f:63:51:dc:2e:12:64:ab:79:6b:3c: db:cc:9c:28:50:c5:0a:75:43:3b:1b:1c:71:14:a4:bb:9f:72: 0d:5f:1b:86:2e:4e:9c:ca:2c:12:93:23:39:bb:5d:9d:07:e1: ac:46:cc:83 -----BEGIN CERTIFICATE----- MIIFNzCCBB+gAwIBAgIUDcil0qn3yKjcE+J4p/aJdyv/lskwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0 ZWE3Nzc5YzAeFw0yNTEyMjkwOTQ1NDNaFw0yNjEyMjgwOTUwNDNaMDMxMTAvBgNV BAMTKDg5MDMwNTA1RUI4QjM3RTcxRDBFM0IwMjg2MDlDRkYyQUEyOUIzRTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPdQp/1ICRmOSztwoxk3IapcNF 6FVZ7Z1x4YWwQIRQjOhJAFLW6qjr7glUMaKzNxGxbpA2hfXp+xNHN2oOdVZgNS+A IGLOFmY4SKCR5IFk4PuD9Mh/QFOCZbsiYEjYeQBcyWVAp8T/d9MCUNMGfF1dYYan ixE4PHLyDfjRWZ6CLQbwxVnCHz/ngKADck+cShpIMbtLvbM8N+KQkkOdEtma9iqi cdwzIOUGHodFkCOgS02nJMdofcFWDoxuUGbH5mGbIbSNtKk2sK4monTlF3TyHBn0 /CwsFfXckcQGBjJs3g182We4V00PgMeoDi87W6HtLqfQGYqYv4PtuZFxp5KZAgMB AAGjggJBMIICPTAdBgNVHQ4EFgQUiQMFBeuLN+cdDjsChgnP8qops+gwHwYDVR0j BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2 bmQ1dy5jZXIwgbEGCCsGAQUFBwELBIGkMIGhMIGeBggrBgEFBQcwC4aBkXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzEzODM1MmUzMjMzMzAyZTMx MzMzOTJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzMzNjM3MzgzNy5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEALnmizANBgkqhkiG9w0BAQsFAAOCAQEAd3a0SwHVl0khRtTrqm4yK3NLUsce UXeOZWDRtb8QZO7MlnqGcoVEaXcnL4i2UxJBSGBA7Hpt4d/OtVlqhC3jLT3TJfUH FDM5Zf4AOsT53SVbx6JRT0Y7fBcGJSUw7d397bs4ZvXs6ZA3Lt2ij4oHYw7nk15T F213J5RluuSS0M+pShG4OGQHwEbEcvBJ8bcXVB4G3ExLty/BlZIdJskg3vlvpP4s s0GUWD4WxmHQV1k1kkhrK4LiR4WsYRuJ7lgVtx7HXfWiJ14M0BrEuT9jUdwuEmSr eWs828ycKFDFCnVDOxsccRSku59yDV8bhi5OnMosEpMjObtdnQfhrEbMgw== -----END CERTIFICATE-----Generated at Mon Jan 19 14:25:20 2026 by rpki-client