This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3234312e3135302e302f32342d3234203d3e20323132323338.roa File: 3138352e3234312e3135302e302f32342d3234203d3e20323132323338.roa (raw, json) Hash identifier: Rnvup4DrIEkJEDaUL088uFIoQOrTMifq57mBF2n93iw= Subject key identifier: 18:75:75:7C:DE:6F:6F:2F:11:15:BC:EB:47:03:B6:B3:5C:37:D0:6A Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Certificate serial: 61E5DB2EF662B50A5D03741968C4306231EEE207 Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3234312e3135302e302f32342d3234203d3e20323132323338.roa Signing time: Fri 02 Jan 2026 16:51:11 +0000 ROA not before: Fri 02 Jan 2026 16:46:11 +0000 ROA not after: Fri 01 Jan 2027 16:51:11 +0000 asID: 212238 IP address blocks: 185.241.150.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 01:05:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:e5:db:2e:f6:62:b5:0a:5d:03:74:19:68:c4:30:62:31:ee:e2:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Validity Not Before: Jan 2 16:46:11 2026 GMT Not After : Jan 1 16:51:11 2027 GMT Subject: CN=1875757CDE6F6F2F1115BCEB4703B6B35C37D06A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:0d:98:d5:e5:16:cb:4b:7a:06:61:fc:1b:d1: aa:3d:53:e8:8b:03:59:fb:77:57:b3:45:c2:8c:64: 14:b3:c4:6f:47:dd:11:d9:4d:7a:4f:49:6d:2b:8c: 33:9b:cc:e0:de:36:43:38:60:15:e6:4c:1d:4b:08: 12:f2:3c:73:8d:72:63:97:ad:c5:bd:9a:f7:a1:07: 8e:7b:74:3c:75:56:9c:e0:e9:76:60:cb:e8:b9:71: 10:8d:85:4f:3a:1e:5f:1c:c6:9d:b9:e4:08:fa:76: 2a:63:3c:1e:46:53:82:32:82:bd:f5:58:9b:69:f2: 80:8b:81:7f:51:48:9c:d5:9b:4f:43:f8:a4:0c:20: 40:a9:78:e1:59:39:92:29:11:c0:d1:bb:5f:76:b9: d1:a3:b6:97:aa:11:6f:5a:29:36:61:2e:63:d4:3b: 0c:13:b9:e3:96:b3:fc:2f:60:56:11:44:70:0f:40: 70:1d:30:48:93:56:27:c6:61:b9:8b:67:a3:5a:df: 35:df:14:d4:82:2e:20:df:15:47:2a:97:17:ee:16: 35:cf:a0:e8:7b:a1:3d:be:84:01:96:19:0b:5c:d8: 1f:ed:ac:81:50:00:3a:f0:9c:b4:bc:61:66:95:f0: 88:59:45:c0:7f:36:54:c2:1c:e6:52:f1:7d:5f:d2: 0f:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:75:75:7C:DE:6F:6F:2F:11:15:BC:EB:47:03:B6:B3:5C:37:D0:6A X509v3 Authority Key Identifier: keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3234312e3135302e302f32342d3234203d3e20323132323338.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.241.150.0/24 Signature Algorithm: sha256WithRSAEncryption 5a:5d:cb:be:88:28:d5:89:da:18:32:e1:89:fa:9f:15:52:a6: 7f:98:cc:7d:f5:15:c8:84:82:9c:d5:49:0c:01:a4:6d:45:9d: 6e:30:79:63:d3:7a:43:8e:47:81:1f:67:c8:74:24:cf:eb:7b: 37:c9:a1:36:4b:4f:84:3b:48:82:e9:7f:dc:2f:64:22:25:76: b3:bf:8c:e2:91:2a:6d:30:5c:d7:a6:9f:43:5f:e5:aa:9f:a4: 87:24:aa:cf:85:f9:0f:66:a6:de:d8:05:5c:27:75:31:6d:48: c8:4e:4c:29:1b:91:80:39:74:f6:9b:11:5e:35:8b:8e:2a:2e: ee:f2:18:aa:5d:43:df:8c:7a:2e:d5:98:6a:ef:e0:a5:61:07: 20:13:bf:e8:8e:65:82:6a:c1:e2:5a:b7:4e:0a:9d:fb:09:73: 7b:9f:5d:5c:34:ae:40:fe:16:52:d1:6a:aa:4f:b9:bb:07:69: f9:75:24:c2:c1:48:1b:d0:60:e2:e6:87:a7:9c:ec:b4:60:d4: ee:0e:d6:4c:09:0c:ba:f2:b7:ec:22:45:ee:1d:66:83:95:39: 05:b0:59:79:84:b0:6d:62:35:1e:9b:ff:b3:ec:7a:05:33:b2: 72:2a:a0:92:bc:32:ba:59:10:d5:0f:c1:ce:38:3b:d6:11:73: 94:6b:0e:60 -----BEGIN CERTIFICATE----- MIIFNzCCBB+gAwIBAgIUYeXbLvZitQpdA3QZaMQwYjHu4gcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0 ZWE3Nzc5YzAeFw0yNjAxMDIxNjQ2MTFaFw0yNzAxMDExNjUxMTFaMDMxMTAvBgNV BAMTKDE4NzU3NTdDREU2RjZGMkYxMTE1QkNFQjQ3MDNCNkIzNUMzN0QwNkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRDZjV5RbLS3oGYfwb0ao9U+iL A1n7d1ezRcKMZBSzxG9H3RHZTXpPSW0rjDObzODeNkM4YBXmTB1LCBLyPHONcmOX rcW9mvehB457dDx1Vpzg6XZgy+i5cRCNhU86Hl8cxp255Aj6dipjPB5GU4Iygr31 WJtp8oCLgX9RSJzVm09D+KQMIECpeOFZOZIpEcDRu192udGjtpeqEW9aKTZhLmPU OwwTueOWs/wvYFYRRHAPQHAdMEiTVifGYbmLZ6Na3zXfFNSCLiDfFUcqlxfuFjXP oOh7oT2+hAGWGQtc2B/trIFQADrwnLS8YWaV8IhZRcB/NlTCHOZS8X1f0g8BAgMB AAGjggJBMIICPTAdBgNVHQ4EFgQUGHV1fN5vby8RFbzrRwO2s1w30GowHwYDVR0j BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2 bmQ1dy5jZXIwgbEGCCsGAQUFBwELBIGkMIGhMIGeBggrBgEFBQcwC4aBkXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzEzODM1MmUzMjM0MzEyZTMx MzUzMDJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMyMzEzMjMyMzMzOC5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEALnxljANBgkqhkiG9w0BAQsFAAOCAQEAWl3Lvogo1YnaGDLhifqfFVKmf5jM ffUVyISCnNVJDAGkbUWdbjB5Y9N6Q45HgR9nyHQkz+t7N8mhNktPhDtIgul/3C9k IiV2s7+M4pEqbTBc16afQ1/lqp+khySqz4X5D2am3tgFXCd1MW1IyE5MKRuRgDl0 9psRXjWLjiou7vIYql1D34x6LtWYau/gpWEHIBO/6I5lgmrB4lq3Tgqd+wlze59d XDSuQP4WUtFqqk+5uwdp+XUkwsFIG9Bg4uaHp5zstGDU7g7WTAkMuvK37CJF7h1m g5U5BbBZeYSwbWI1Hpv/s+x6BTOyciqgkrwyulkQ1Q/Bzjg71hFzlGsOYA== -----END CERTIFICATE-----Generated at Mon Jan 19 14:27:31 2026 by rpki-client