This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3139332e3138392e3130372e302f32342d3234203d3e20313336373837.roa File: 3139332e3138392e3130372e302f32342d3234203d3e20313336373837.roa (raw, json) Hash identifier: AA3yccrXTfn4xBPKC1eOvqiqcxxIjcLDImKDxVkpA+U= Subject key identifier: 2D:4B:00:AE:80:29:F2:98:2E:30:33:F5:BD:E4:A2:7C:62:29:2E:D7 Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Certificate serial: 339E981CD292B9B40CB7D6F745C7FA8209683497 Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3139332e3138392e3130372e302f32342d3234203d3e20313336373837.roa Signing time: Sat 03 Jan 2026 22:51:13 +0000 ROA not before: Sat 03 Jan 2026 22:46:13 +0000 ROA not after: Sat 02 Jan 2027 22:51:13 +0000 asID: 136787 IP address blocks: 193.189.107.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 01:05:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:9e:98:1c:d2:92:b9:b4:0c:b7:d6:f7:45:c7:fa:82:09:68:34:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Validity Not Before: Jan 3 22:46:13 2026 GMT Not After : Jan 2 22:51:13 2027 GMT Subject: CN=2D4B00AE8029F2982E3033F5BDE4A27C62292ED7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:6c:cc:5d:d4:23:1c:90:ee:d3:83:ab:27:8b: 30:b8:32:58:91:81:e3:b4:15:18:a9:38:99:6b:49: 3f:c0:da:a8:14:38:b2:0d:52:05:a4:6d:de:c4:49: cc:0c:03:ed:3a:6f:cf:9d:65:11:08:de:d3:da:fd: 79:53:12:a7:98:f6:9f:e2:1d:77:be:4e:a3:65:5c: a6:1e:7f:c9:9d:62:26:5b:f0:bc:df:a1:be:e9:d8: 11:ed:0a:4a:5a:f2:7c:df:d7:f5:a4:c3:e7:5d:a8: 1c:21:57:18:ab:b1:4a:29:15:4d:e6:81:f7:f7:27: 6c:04:71:4c:4f:7b:2a:fd:21:f5:bd:3b:b4:2c:b8: 22:f7:04:b6:b8:68:1e:80:ce:39:4d:90:02:80:84: f5:f0:bf:74:d3:ba:14:13:bd:6e:e5:ae:8b:83:6f: 9b:8e:4e:77:a3:30:93:2c:1a:8c:ca:ea:b2:c3:7b: 04:85:30:5d:9d:2f:b1:8c:0f:13:f9:a6:79:35:ca: 8b:62:ad:c5:ef:a3:38:97:3d:7f:ba:fc:10:92:d6: 02:4d:7a:01:6b:f1:60:98:01:00:d3:f9:a1:1c:0b: e2:3e:69:c8:b7:e6:ab:c5:a7:51:a5:70:94:89:ee: 6e:66:55:e3:c7:05:89:b3:74:d7:59:8c:6d:1a:f7: 90:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:4B:00:AE:80:29:F2:98:2E:30:33:F5:BD:E4:A2:7C:62:29:2E:D7 X509v3 Authority Key Identifier: keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3139332e3138392e3130372e302f32342d3234203d3e20313336373837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.189.107.0/24 Signature Algorithm: sha256WithRSAEncryption 8c:68:5d:fc:86:64:da:fa:ef:d2:3d:bf:d7:45:c6:c7:83:11: 95:06:da:63:d0:dd:67:5b:ce:c9:d8:a0:b1:f9:c6:ec:5a:0d: d1:ac:a5:1f:db:26:65:05:3d:0c:41:19:5f:8f:15:0a:16:b0: 36:fe:0e:49:6f:24:4e:2b:e0:6b:ec:1e:e5:42:9e:10:bd:ed: c9:1f:70:12:0d:e6:07:6e:3a:c2:e7:a5:4d:47:e1:f0:73:03: 8a:ad:3e:8c:11:0d:e7:d6:a0:89:00:4d:05:ac:a1:b2:ad:8a: 9a:72:4b:be:99:ed:5f:0c:98:38:7a:0f:fe:df:67:0a:b5:c9: 52:07:b8:8f:44:a3:de:f3:bf:37:11:bb:9c:5f:45:bb:84:bc: 43:77:d8:6f:5c:95:56:d1:95:45:1d:40:66:36:42:43:7f:93: 21:60:4a:1f:1f:f3:d3:ef:60:dd:41:c6:7f:89:21:e9:be:16: f0:f3:60:29:25:ba:3a:ab:a0:08:95:df:31:fa:c8:18:da:33: 17:d4:69:ef:db:89:b0:bf:7c:44:c0:b4:ac:de:d2:4e:77:bd: ca:f1:0b:d8:e0:ac:a8:aa:97:17:cf:e3:18:f6:73:e7:3a:94: bf:76:3c:aa:f1:fe:1b:89:e3:20:86:d7:10:81:06:5e:ee:38: 7f:e2:24:65 -----BEGIN CERTIFICATE----- MIIFNzCCBB+gAwIBAgIUM56YHNKSubQMt9b3Rcf6ggloNJcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0 ZWE3Nzc5YzAeFw0yNjAxMDMyMjQ2MTNaFw0yNzAxMDIyMjUxMTNaMDMxMTAvBgNV BAMTKDJENEIwMEFFODAyOUYyOTgyRTMwMzNGNUJERTRBMjdDNjIyOTJFRDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDgbMxd1CMckO7Tg6snizC4MliR geO0FRipOJlrST/A2qgUOLINUgWkbd7EScwMA+06b8+dZREI3tPa/XlTEqeY9p/i HXe+TqNlXKYef8mdYiZb8Lzfob7p2BHtCkpa8nzf1/Wkw+ddqBwhVxirsUopFU3m gff3J2wEcUxPeyr9IfW9O7QsuCL3BLa4aB6AzjlNkAKAhPXwv3TTuhQTvW7lrouD b5uOTnejMJMsGozK6rLDewSFMF2dL7GMDxP5pnk1yotircXvoziXPX+6/BCS1gJN egFr8WCYAQDT+aEcC+I+aci35qvFp1GlcJSJ7m5mVePHBYmzdNdZjG0a95DlAgMB AAGjggJBMIICPTAdBgNVHQ4EFgQULUsAroAp8pguMDP1veSifGIpLtcwHwYDVR0j BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2 bmQ1dy5jZXIwgbEGCCsGAQUFBwELBIGkMIGhMIGeBggrBgEFBQcwC4aBkXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzEzOTMzMmUzMTM4MzkyZTMx MzAzNzJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzMzNjM3MzgzNy5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAMG9azANBgkqhkiG9w0BAQsFAAOCAQEAjGhd/IZk2vrv0j2/10XGx4MRlQba Y9DdZ1vOydigsfnG7FoN0aylH9smZQU9DEEZX48VChawNv4OSW8kTivga+we5UKe EL3tyR9wEg3mB246wuelTUfh8HMDiq0+jBEN59agiQBNBayhsq2KmnJLvpntXwyY OHoP/t9nCrXJUge4j0Sj3vO/NxG7nF9Fu4S8Q3fYb1yVVtGVRR1AZjZCQ3+TIWBK Hx/z0+9g3UHGf4kh6b4W8PNgKSW6OqugCJXfMfrIGNozF9Rp79uJsL98RMC0rN7S Tne9yvEL2OCsqKqXF8/jGPZz5zqUv3Y8qvH+G4njIIbXEIEGXu44f+IkZQ== -----END CERTIFICATE-----Generated at Mon Jan 19 14:27:29 2026 by rpki-client