This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3233392e3134392e302f32342d3234203d3e20313336373837.roa File: 3138352e3233392e3134392e302f32342d3234203d3e20313336373837.roa (raw, json) Hash identifier: 48LEHT72W7mFXyBMx1KS4WGjn9dHGZATd868GmPwnpw= Subject key identifier: B8:56:AB:4A:CD:EE:F1:1C:00:D6:14:B5:57:1F:E4:83:4E:9C:0A:48 Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Certificate serial: 6FF14A4D447E90954B7CD3B1D998A5139F9E47C6 Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3233392e3134392e302f32342d3234203d3e20313336373837.roa Signing time: Fri 28 Nov 2025 19:49:59 +0000 ROA not before: Fri 28 Nov 2025 19:44:59 +0000 ROA not after: Fri 27 Nov 2026 19:49:59 +0000 asID: 136787 IP address blocks: 185.239.149.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 05 Dec 2025 21:22:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:f1:4a:4d:44:7e:90:95:4b:7c:d3:b1:d9:98:a5:13:9f:9e:47:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Validity Not Before: Nov 28 19:44:59 2025 GMT Not After : Nov 27 19:49:59 2026 GMT Subject: CN=B856AB4ACDEEF11C00D614B5571FE4834E9C0A48 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:d5:62:d8:41:06:f6:84:5a:30:6b:8e:e5:50: df:65:c7:97:c6:34:32:cb:c2:87:21:cb:93:1d:74: 38:3e:fb:eb:34:70:f1:9e:a9:dc:d9:9e:d7:41:33: 71:5f:d7:dc:81:93:52:cc:2d:19:89:c3:63:fe:20: 29:a0:6b:7b:82:31:15:47:9c:59:cb:54:21:0f:ed: 4f:5a:bf:ee:a0:1a:27:4d:63:39:2f:72:7a:51:10: c4:cd:8e:95:29:43:4e:53:12:3c:33:5c:f2:9c:9b: 6b:b2:10:20:62:9d:3d:63:61:ec:a5:e5:77:c0:49: 60:fd:90:de:1c:6e:bd:66:8e:ad:f9:31:cb:0e:e4: ad:5a:88:9a:80:b4:36:4e:4a:cd:98:bd:e8:49:96: 38:12:3a:c2:67:ed:4e:cc:25:4f:89:f1:61:9d:0c: c0:00:64:d5:36:31:8a:e4:b5:43:ed:7b:7d:3d:d2: fe:5f:f2:9c:37:79:48:d6:90:fb:ad:53:1c:37:5f: 60:b9:2f:bf:1e:fc:10:25:f2:33:00:5a:59:85:01: ed:13:ab:3a:e5:ee:ab:86:29:f5:dd:43:67:6d:83: f4:04:84:e2:d5:e3:e3:13:4a:2f:b9:6f:c5:58:e4: 99:a2:9d:b0:ff:21:b8:ca:27:d5:6c:a8:d9:67:cd: 5e:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:56:AB:4A:CD:EE:F1:1C:00:D6:14:B5:57:1F:E4:83:4E:9C:0A:48 X509v3 Authority Key Identifier: keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3233392e3134392e302f32342d3234203d3e20313336373837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.239.149.0/24 Signature Algorithm: sha256WithRSAEncryption 8f:61:90:8a:86:cb:26:91:bf:c7:1a:8d:ef:e4:23:9c:89:0c: b3:f4:ef:ef:72:7e:b6:29:b0:fc:67:8f:66:c9:ee:82:bf:76: 8b:e6:53:b1:e4:e5:62:13:e4:b3:23:2a:63:b0:40:bc:3c:63: 93:f2:93:f1:50:92:35:45:5d:7e:ac:7a:18:d5:ca:aa:59:c4: 95:e4:12:2e:f8:c5:fd:e0:4f:ea:23:36:d2:c7:38:f0:06:6d: d7:a7:4e:c8:96:0e:c1:44:5c:d5:73:c4:de:5e:f5:f0:b8:c8: 4c:9c:96:43:14:70:d7:b8:83:eb:80:af:8a:70:98:08:5e:7f: 6f:0a:4d:1c:a1:63:f0:36:7b:95:66:53:2a:87:eb:0d:2a:16: 41:60:66:a7:b3:e8:a3:fc:85:bd:8b:32:9e:b6:51:13:cc:a6: fb:5d:98:b7:b0:a3:8b:48:4d:5e:01:09:19:8b:ba:7f:cd:db: 50:27:6f:f9:f9:59:8f:d8:db:22:07:14:97:46:b9:4f:da:7d: c2:5a:12:4a:ac:5c:5e:72:2c:60:ee:87:8f:1e:65:be:cb:ca: 0a:8d:67:25:6c:5a:db:93:dc:fa:72:b9:43:38:6e:f9:e4:fe: 1a:f6:77:73:a2:25:b5:f1:95:2b:e3:80:9d:bf:e5:13:2c:55: 8a:ea:79:86 -----BEGIN CERTIFICATE----- MIIFNzCCBB+gAwIBAgIUb/FKTUR+kJVLfNOx2ZilE5+eR8YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0 ZWE3Nzc5YzAeFw0yNTExMjgxOTQ0NTlaFw0yNjExMjcxOTQ5NTlaMDMxMTAvBgNV BAMTKEI4NTZBQjRBQ0RFRUYxMUMwMEQ2MTRCNTU3MUZFNDgzNEU5QzBBNDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCo1WLYQQb2hFowa47lUN9lx5fG NDLLwochy5MddDg+++s0cPGeqdzZntdBM3Ff19yBk1LMLRmJw2P+ICmga3uCMRVH nFnLVCEP7U9av+6gGidNYzkvcnpREMTNjpUpQ05TEjwzXPKcm2uyECBinT1jYeyl 5XfASWD9kN4cbr1mjq35McsO5K1aiJqAtDZOSs2YvehJljgSOsJn7U7MJU+J8WGd DMAAZNU2MYrktUPte3090v5f8pw3eUjWkPutUxw3X2C5L78e/BAl8jMAWlmFAe0T qzrl7quGKfXdQ2dtg/QEhOLV4+MTSi+5b8VY5JminbD/IbjKJ9VsqNlnzV51AgMB AAGjggJBMIICPTAdBgNVHQ4EFgQUuFarSs3u8RwA1hS1Vx/kg06cCkgwHwYDVR0j BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2 bmQ1dy5jZXIwgbEGCCsGAQUFBwELBIGkMIGhMIGeBggrBgEFBQcwC4aBkXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzEzODM1MmUzMjMzMzkyZTMx MzQzOTJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzMzNjM3MzgzNy5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEALnvlTANBgkqhkiG9w0BAQsFAAOCAQEAj2GQiobLJpG/xxqN7+QjnIkMs/Tv 73J+timw/GePZsnugr92i+ZTseTlYhPksyMqY7BAvDxjk/KT8VCSNUVdfqx6GNXK qlnEleQSLvjF/eBP6iM20sc48AZt16dOyJYOwURc1XPE3l718LjITJyWQxRw17iD 64CvinCYCF5/bwpNHKFj8DZ7lWZTKofrDSoWQWBmp7Poo/yFvYsynrZRE8ym+12Y t7Cji0hNXgEJGYu6f83bUCdv+flZj9jbIgcUl0a5T9p9wloSSqxcXnIsYO6Hjx5l vsvKCo1nJWxa25Pc+nK5Qzhu+eT+GvZ3c6IltfGVK+OAnb/lEyxViup5hg== -----END CERTIFICATE-----Generated at Fri Dec 5 05:40:19 2025 by rpki-client