This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3139342e3136332e302e302f32302d3234203d3e20323034313730.roa File: 3139342e3136332e302e302f32302d3234203d3e20323034313730.roa (raw, json) Hash identifier: ciRU78KyTUMkrO5v0HcrlxP+dxHyo+SUuaGCQgP5FrA= Subject key identifier: 77:5C:C1:84:28:35:E2:49:B3:C4:16:D6:CB:EC:C1:0D:F1:5D:18:4B Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Certificate serial: 08BE1D185C5DE10D457255989F1334EB3D627C76 Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3139342e3136332e302e302f32302d3234203d3e20323034313730.roa Signing time: Mon 29 Dec 2025 09:50:41 +0000 ROA not before: Mon 29 Dec 2025 09:45:41 +0000 ROA not after: Mon 28 Dec 2026 09:50:41 +0000 asID: 204170 IP address blocks: 194.163.0.0/20 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 01:05:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:be:1d:18:5c:5d:e1:0d:45:72:55:98:9f:13:34:eb:3d:62:7c:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Validity Not Before: Dec 29 09:45:41 2025 GMT Not After : Dec 28 09:50:41 2026 GMT Subject: CN=775CC1842835E249B3C416D6CBECC10DF15D184B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:43:b7:5f:35:e9:ba:74:aa:4d:8c:a4:8b:1b: 55:6b:7e:d5:04:5f:cb:d6:8a:7d:a7:84:df:75:5f: b9:18:3b:78:8a:68:c8:2a:23:8a:ca:73:a4:e2:ba: 9c:ec:58:70:9b:b4:00:fb:05:f7:91:43:71:28:f2: f0:f2:67:a2:a8:19:16:ee:b9:eb:9a:29:5a:14:e9: 25:2b:23:d7:a4:2d:77:24:ef:d6:63:94:d9:8f:03: c1:fb:58:2c:e3:73:a0:a5:67:8f:97:db:1a:4c:8f: 91:17:e6:95:90:75:24:fc:e7:cf:64:ae:5d:cb:da: c6:54:fb:46:69:4e:bb:8f:2d:0a:6d:c3:1b:d5:7f: 11:c2:29:8b:9a:f5:96:20:20:60:84:da:e5:0e:e1: 39:cf:fa:ff:e6:df:b0:47:d6:42:02:1b:cd:9a:03: 86:0b:35:f9:2d:65:0a:be:d8:b8:4a:66:d1:08:ce: 84:73:e1:9b:e2:92:34:29:4d:f2:a3:e6:94:2e:37: c5:74:60:c4:53:74:51:c1:3d:51:e2:b1:66:b4:6a: fc:64:ad:f7:6d:d5:60:80:76:92:b9:44:6e:2e:fd: 57:fd:61:0e:7a:dc:68:b3:f8:7d:50:c2:7f:ad:d2: 85:e9:70:85:9b:77:bc:ff:27:f2:d3:a8:99:e3:0e: e6:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:5C:C1:84:28:35:E2:49:B3:C4:16:D6:CB:EC:C1:0D:F1:5D:18:4B X509v3 Authority Key Identifier: keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3139342e3136332e302e302f32302d3234203d3e20323034313730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.163.0.0/20 Signature Algorithm: sha256WithRSAEncryption 8d:dc:d9:6b:a7:7c:45:6e:e3:6e:ac:9b:80:d6:05:7c:57:c1: f3:ec:e3:a7:ca:88:6d:28:50:bc:01:ea:5d:4d:37:e2:3d:7b: 04:44:c9:4e:53:69:9a:f5:f0:6a:72:a6:14:46:eb:14:a6:43: f6:4c:93:3c:19:fc:13:01:90:2f:ff:37:e4:0f:5c:7c:42:7e: 3f:13:4e:11:4f:0a:7c:37:9f:7e:52:1a:a9:92:5f:8f:ac:d5: 9e:28:e8:29:ac:58:e0:46:0a:77:45:67:93:18:8d:e9:ba:a0: 1d:cc:9f:5d:92:eb:7f:54:9c:78:76:2e:c9:72:3f:40:3e:d1: 65:91:7d:17:bc:82:b2:cb:9c:57:7e:25:3d:3a:0a:11:06:b6: 0f:13:4d:ea:fb:91:3f:3c:63:5e:03:25:a4:c9:a5:b3:76:b7: 24:fd:de:af:03:c0:a0:9e:4d:c2:0e:d9:71:15:73:66:0d:ba: 7e:e4:93:26:34:34:19:87:6d:a8:79:3d:ac:d6:63:a7:7f:60: 05:2f:3d:63:c4:af:e8:ff:28:6a:a8:ad:e6:75:e4:03:87:ad: ef:1b:64:49:0b:d5:74:2a:d2:a3:30:80:ca:56:95:09:7c:a5: db:0c:db:fd:f2:ac:c3:36:e7:20:1f:c4:59:ab:23:7b:4f:aa: 12:af:da:c9 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUCL4dGFxd4Q1FclWYnxM06z1ifHYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0 ZWE3Nzc5YzAeFw0yNTEyMjkwOTQ1NDFaFw0yNjEyMjgwOTUwNDFaMDMxMTAvBgNV BAMTKDc3NUNDMTg0MjgzNUUyNDlCM0M0MTZENkNCRUNDMTBERjE1RDE4NEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDmQ7dfNem6dKpNjKSLG1VrftUE X8vWin2nhN91X7kYO3iKaMgqI4rKc6TiupzsWHCbtAD7BfeRQ3Eo8vDyZ6KoGRbu ueuaKVoU6SUrI9ekLXck79ZjlNmPA8H7WCzjc6ClZ4+X2xpMj5EX5pWQdST8589k rl3L2sZU+0ZpTruPLQptwxvVfxHCKYua9ZYgIGCE2uUO4TnP+v/m37BH1kICG82a A4YLNfktZQq+2LhKZtEIzoRz4ZvikjQpTfKj5pQuN8V0YMRTdFHBPVHisWa0avxk rfdt1WCAdpK5RG4u/Vf9YQ563Giz+H1Qwn+t0oXpcIWbd7z/J/LTqJnjDuanAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUd1zBhCg14kmzxBbWy+zBDfFdGEswHwYDVR0j BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2 bmQ1dy5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzEzOTM0MmUzMTM2MzMyZTMw MmUzMDJmMzIzMDJkMzIzNDIwM2QzZTIwMzIzMDM0MzEzNzMwLnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQE wqMAMA0GCSqGSIb3DQEBCwUAA4IBAQCN3Nlrp3xFbuNurJuA1gV8V8Hz7OOnyoht KFC8AepdTTfiPXsERMlOU2ma9fBqcqYURusUpkP2TJM8GfwTAZAv/zfkD1x8Qn4/ E04RTwp8N59+Uhqpkl+PrNWeKOgprFjgRgp3RWeTGI3puqAdzJ9dkut/VJx4di7J cj9APtFlkX0XvIKyy5xXfiU9OgoRBrYPE03q+5E/PGNeAyWkyaWzdrck/d6vA8Cg nk3CDtlxFXNmDbp+5JMmNDQZh22oeT2s1mOnf2AFLz1jxK/o/yhqqK3mdeQDh63v G2RJC9V0KtKjMIDKVpUJfKXbDNv98qzDNucgH8RZqyN7T6oSr9rJ -----END CERTIFICATE-----Generated at Mon Jan 19 14:24:12 2026 by rpki-client