This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3139332e34322e3133372e302f32342d3234203d3e203437353833.roa File: 3139332e34322e3133372e302f32342d3234203d3e203437353833.roa (raw, json) Hash identifier: CRMggitlCzx9Ekv/8vgSNSs1AyxUHnmpVkVp8qVeiuQ= Subject key identifier: 46:71:AB:F6:50:0D:AF:C0:6A:A4:22:89:21:76:31:9C:E3:D6:C3:18 Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Certificate serial: 48AC92969F77DB87079FB9DE5B5824E8B963B471 Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3139332e34322e3133372e302f32342d3234203d3e203437353833.roa Signing time: Mon 29 Dec 2025 09:50:42 +0000 ROA not before: Mon 29 Dec 2025 09:45:42 +0000 ROA not after: Mon 28 Dec 2026 09:50:42 +0000 asID: 47583 IP address blocks: 193.42.137.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 01:05:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:ac:92:96:9f:77:db:87:07:9f:b9:de:5b:58:24:e8:b9:63:b4:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Validity Not Before: Dec 29 09:45:42 2025 GMT Not After : Dec 28 09:50:42 2026 GMT Subject: CN=4671ABF6500DAFC06AA422892176319CE3D6C318 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:7e:87:d6:30:55:f7:6b:19:14:f8:06:12:51: 08:43:53:51:a5:f1:80:45:1b:f0:76:2c:24:67:9f: 51:4c:9b:36:4d:12:58:5b:43:21:a6:37:5d:54:f3: b1:aa:ea:82:a9:2e:60:d6:5a:9d:56:87:0a:59:95: 23:8c:4a:3f:0f:62:cb:0d:77:61:e9:ec:74:31:68: ac:d0:6f:45:b3:c1:b0:ae:72:af:a9:4a:6e:c0:8d: 4f:6a:25:e7:d7:ea:67:90:9a:f9:72:a1:9b:62:ed: 16:33:a5:63:b5:bb:80:57:4e:60:66:f4:9e:7c:57: 39:a5:db:77:19:fd:14:4f:d6:ba:91:e5:9c:f3:74: d0:9b:b7:9a:3d:ed:ba:de:14:e0:e3:9a:78:60:92: cd:a1:11:69:3b:41:0a:b3:fc:10:43:49:80:e1:95: 0f:37:50:cf:70:6b:63:62:62:e7:e0:70:78:69:e5: 89:4e:eb:03:61:1b:cf:b1:5d:15:51:b4:d0:b4:55: b6:d2:49:bc:ec:cc:12:83:8e:83:ff:fe:39:fe:1b: 66:4e:2c:6f:84:8c:d1:81:d1:b9:cd:2a:f2:d3:d5: 7c:f9:88:27:b8:2f:c1:cb:0c:9f:8c:5d:6a:f8:cb: ab:4d:4a:04:11:6e:0f:5f:fe:fa:90:25:77:9f:de: e9:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:71:AB:F6:50:0D:AF:C0:6A:A4:22:89:21:76:31:9C:E3:D6:C3:18 X509v3 Authority Key Identifier: keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3139332e34322e3133372e302f32342d3234203d3e203437353833.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.42.137.0/24 Signature Algorithm: sha256WithRSAEncryption 7b:91:6c:65:ac:1d:ac:74:e7:91:e6:48:68:5a:73:ad:f8:5b: 33:ce:05:bb:d1:da:d5:98:59:56:cc:6c:9c:ec:d1:bb:f9:ec: 07:7f:64:03:47:b6:08:b0:51:db:d4:ef:30:dd:3f:69:21:1f: af:49:1c:a0:03:a9:e7:23:87:14:d6:5d:f1:4a:a7:75:6c:f6: ac:46:1b:8d:fc:0d:61:10:43:14:91:dc:b5:43:18:c2:b0:10: 10:63:59:c4:f9:d2:2c:db:bb:3c:5e:8e:e9:e9:bc:5f:9f:72: 8e:0b:6b:72:67:6a:40:4a:e6:c7:17:2a:02:2b:b0:d8:f1:2c: 2f:f1:76:de:5d:fb:22:4e:25:fe:19:be:05:ab:c2:e3:23:55: 78:64:80:b0:4e:6a:ca:f5:fd:7e:c1:da:6e:b1:e2:c0:6c:83: b1:36:33:18:cf:ac:c6:fe:ee:79:a3:79:ea:90:99:85:87:7f: 5c:57:07:a7:a0:2a:df:83:d5:1b:c2:dc:d1:71:6b:26:30:92: 19:90:b7:64:b0:1e:24:1b:11:cb:ee:00:5b:fe:4b:81:52:8e: f5:ca:6d:01:4d:63:58:c4:da:c9:d7:13:ab:55:6e:65:0c:6b: 0c:68:3d:73:6a:48:4d:e6:36:b2:43:22:cd:24:1b:72:e7:7f: 7a:de:74:25 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUSKySlp9324cHn7neW1gk6LljtHEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0 ZWE3Nzc5YzAeFw0yNTEyMjkwOTQ1NDJaFw0yNjEyMjgwOTUwNDJaMDMxMTAvBgNV BAMTKDQ2NzFBQkY2NTAwREFGQzA2QUE0MjI4OTIxNzYzMTlDRTNENkMzMTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGfofWMFX3axkU+AYSUQhDU1Gl 8YBFG/B2LCRnn1FMmzZNElhbQyGmN11U87Gq6oKpLmDWWp1WhwpZlSOMSj8PYssN d2Hp7HQxaKzQb0WzwbCucq+pSm7AjU9qJefX6meQmvlyoZti7RYzpWO1u4BXTmBm 9J58Vzml23cZ/RRP1rqR5ZzzdNCbt5o97breFODjmnhgks2hEWk7QQqz/BBDSYDh lQ83UM9wa2NiYufgcHhp5YlO6wNhG8+xXRVRtNC0VbbSSbzszBKDjoP//jn+G2ZO LG+EjNGB0bnNKvLT1Xz5iCe4L8HLDJ+MXWr4y6tNSgQRbg9f/vqQJXef3ukDAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQURnGr9lANr8BqpCKJIXYxnOPWwxgwHwYDVR0j BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2 bmQ1dy5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzEzOTMzMmUzNDMyMmUzMTMz MzcyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzNDM3MzUzODMzLnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA wSqJMA0GCSqGSIb3DQEBCwUAA4IBAQB7kWxlrB2sdOeR5khoWnOt+FszzgW70drV mFlWzGyc7NG7+ewHf2QDR7YIsFHb1O8w3T9pIR+vSRygA6nnI4cU1l3xSqd1bPas RhuN/A1hEEMUkdy1QxjCsBAQY1nE+dIs27s8Xo7p6bxfn3KOC2tyZ2pASubHFyoC K7DY8Swv8XbeXfsiTiX+Gb4Fq8LjI1V4ZICwTmrK9f1+wdpuseLAbIOxNjMYz6zG /u55o3nqkJmFh39cVwenoCrfg9UbwtzRcWsmMJIZkLdksB4kGxHL7gBb/kuBUo71 ym0BTWNYxNrJ1xOrVW5lDGsMaD1zakhN5jayQyLNJBty53963nQl -----END CERTIFICATE-----Generated at Mon Jan 19 14:24:56 2026 by rpki-client