This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3139342e3136332e34342e302f32322d3234203d3e203437353833.roa File: 3139342e3136332e34342e302f32322d3234203d3e203437353833.roa (raw, json) Hash identifier: H+AM+gve9lIWouA9hFh0CqgCNcxdWpOEepPRvlXV2EI= Subject key identifier: E7:A5:DC:DB:3F:85:E8:AD:D6:B8:CB:83:83:EA:F0:0C:71:B2:47:B0 Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Certificate serial: 065E08A9E75E97D52DB0DC3EA6D683ECE0FA84D1 Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3139342e3136332e34342e302f32322d3234203d3e203437353833.roa Signing time: Mon 29 Dec 2025 09:50:47 +0000 ROA not before: Mon 29 Dec 2025 09:45:47 +0000 ROA not after: Mon 28 Dec 2026 09:50:47 +0000 asID: 47583 IP address blocks: 194.163.44.0/22 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:5e:08:a9:e7:5e:97:d5:2d:b0:dc:3e:a6:d6:83:ec:e0:fa:84:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Validity Not Before: Dec 29 09:45:47 2025 GMT Not After : Dec 28 09:50:47 2026 GMT Subject: CN=E7A5DCDB3F85E8ADD6B8CB8383EAF00C71B247B0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:f5:be:99:4b:e7:7d:f5:ea:4f:93:a8:b3:7d: 15:60:ac:76:c9:08:53:b9:af:dc:09:d1:4d:80:79: 3a:5f:13:7b:7e:18:a8:20:eb:93:84:bb:22:96:1c: c9:1f:bc:55:40:f1:95:d4:f1:76:ac:8f:a8:84:7d: 91:50:e2:66:d9:68:2d:d7:be:ea:bd:dd:47:1c:3e: ff:8f:3e:08:78:ce:c6:46:b9:6a:59:1a:a9:9c:fb: d7:0b:2b:29:0f:55:72:46:94:92:e8:27:11:6e:be: 95:55:e0:b6:d6:9c:82:51:15:67:6f:fb:54:7a:31: 86:1c:19:64:4a:ce:48:6d:5e:95:59:83:47:33:74: 0f:30:7a:78:e2:a1:e1:65:20:71:c6:ca:f7:a9:b8: c7:4e:99:1a:9b:2b:4d:90:2b:2f:48:bc:a7:34:a1: ae:51:fd:3f:73:08:0c:5a:8c:d7:28:9a:11:2d:0e: bc:5c:11:f5:f3:f0:7a:e7:f8:a9:d7:6f:8f:f4:4a: 82:ba:ab:f5:d1:c9:79:be:04:33:c2:60:ba:9a:61: a7:86:74:aa:fb:8b:4b:ad:f0:f9:ca:e5:74:61:87: 44:d0:45:5c:ad:50:b7:04:41:31:5f:67:b7:27:77: e8:2e:b1:5d:43:81:7d:f5:15:74:ae:de:4a:e4:31: 01:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:A5:DC:DB:3F:85:E8:AD:D6:B8:CB:83:83:EA:F0:0C:71:B2:47:B0 X509v3 Authority Key Identifier: keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3139342e3136332e34342e302f32322d3234203d3e203437353833.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.163.44.0/22 Signature Algorithm: sha256WithRSAEncryption 80:d6:6d:99:4a:77:30:14:c9:f7:4e:a0:2f:e1:be:b3:8b:a7: df:fd:75:22:c3:e2:37:39:17:cc:5a:c7:e0:75:91:65:c4:9a: 50:dd:7b:07:38:d3:32:3a:02:b5:2b:23:2a:da:9c:26:f4:3b: b7:56:1b:65:a3:05:8e:aa:cd:89:bc:87:ad:4e:6f:de:f2:36: f6:b1:14:92:bd:5a:7a:20:32:bd:13:b2:3c:d2:ab:53:4e:57: b6:dc:f5:6b:1f:f7:61:06:5b:31:c5:90:58:c3:f7:70:f3:ec: 9f:71:61:f8:ae:a3:ab:a9:97:c0:96:51:20:d7:e0:53:ff:77: 57:6e:a0:50:bd:70:4c:cb:b0:41:a2:d4:d5:37:91:23:cf:2b: 2b:a5:4d:91:57:60:42:b0:1d:09:5b:fe:35:15:8f:9f:ec:84: 2c:9b:42:e2:7b:71:16:4c:6c:d0:da:f0:9f:08:6c:cf:d6:2a: f5:13:87:f8:22:ec:b4:a3:5a:2c:fa:5e:17:f5:86:3b:e4:55: cb:14:92:5a:22:68:28:ba:d9:2b:26:38:a3:98:63:bd:0d:6e: 44:e3:38:4b:25:6e:b8:e8:86:71:07:ea:6c:8c:04:f1:15:7e: d3:bd:7d:88:21:c4:87:d5:d9:9b:a9:bf:0e:42:cb:50:80:82: ca:67:5b:d4 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUBl4Iqedel9UtsNw+ptaD7OD6hNEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0 ZWE3Nzc5YzAeFw0yNTEyMjkwOTQ1NDdaFw0yNjEyMjgwOTUwNDdaMDMxMTAvBgNV BAMTKEU3QTVEQ0RCM0Y4NUU4QURENkI4Q0I4MzgzRUFGMDBDNzFCMjQ3QjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCY9b6ZS+d99epPk6izfRVgrHbJ CFO5r9wJ0U2AeTpfE3t+GKgg65OEuyKWHMkfvFVA8ZXU8Xasj6iEfZFQ4mbZaC3X vuq93UccPv+PPgh4zsZGuWpZGqmc+9cLKykPVXJGlJLoJxFuvpVV4LbWnIJRFWdv +1R6MYYcGWRKzkhtXpVZg0czdA8wenjioeFlIHHGyvepuMdOmRqbK02QKy9IvKc0 oa5R/T9zCAxajNcomhEtDrxcEfXz8Hrn+KnXb4/0SoK6q/XRyXm+BDPCYLqaYaeG dKr7i0ut8PnK5XRhh0TQRVytULcEQTFfZ7cnd+gusV1DgX31FXSu3krkMQHjAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU56Xc2z+F6K3WuMuDg+rwDHGyR7AwHwYDVR0j BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2 bmQ1dy5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzEzOTM0MmUzMTM2MzMyZTM0 MzQyZTMwMmYzMjMyMmQzMjM0MjAzZDNlMjAzNDM3MzUzODMzLnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQC wqMsMA0GCSqGSIb3DQEBCwUAA4IBAQCA1m2ZSncwFMn3TqAv4b6zi6ff/XUiw+I3 ORfMWsfgdZFlxJpQ3XsHONMyOgK1KyMq2pwm9Du3VhtlowWOqs2JvIetTm/e8jb2 sRSSvVp6IDK9E7I80qtTTle23PVrH/dhBlsxxZBYw/dw8+yfcWH4rqOrqZfAllEg 1+BT/3dXbqBQvXBMy7BBotTVN5EjzysrpU2RV2BCsB0JW/41FY+f7IQsm0Lie3EW TGzQ2vCfCGzP1ir1E4f4Iuy0o1os+l4X9YY75FXLFJJaImgoutkrJjijmGO9DW5E 4zhLJW646IZxB+psjATxFX7TvX2IIcSH1dmbqb8OQstQgILKZ1vU -----END CERTIFICATE-----Generated at Mon Jan 19 23:24:20 2026 by rpki-client