This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3139342e3139352e38352e302f32342d3332203d3e203531313637.roa File: 3139342e3139352e38352e302f32342d3332203d3e203531313637.roa (raw, json) Hash identifier: ThMPL5+2ivbNDIaj9fLbiPDvjg5e6k1QB86nYqJv3yE= Subject key identifier: DB:F8:AB:96:66:40:D3:FE:0B:A0:B8:74:81:2C:68:9E:69:A7:06:48 Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Certificate serial: 1F6D7598E5BE0691B42DFB950CBF853BEF479E2B Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3139342e3139352e38352e302f32342d3332203d3e203531313637.roa Signing time: Mon 29 Dec 2025 09:50:49 +0000 ROA not before: Mon 29 Dec 2025 09:45:49 +0000 ROA not after: Mon 28 Dec 2026 09:50:49 +0000 asID: 51167 IP address blocks: 194.195.85.0/24 maxlen: 32 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 01:05:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:6d:75:98:e5:be:06:91:b4:2d:fb:95:0c:bf:85:3b:ef:47:9e:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Validity Not Before: Dec 29 09:45:49 2025 GMT Not After : Dec 28 09:50:49 2026 GMT Subject: CN=DBF8AB966640D3FE0BA0B874812C689E69A70648 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:9f:95:7c:ae:3d:f1:fc:3f:27:10:b5:4c:fe: fe:86:66:f2:b5:84:48:34:34:41:80:7a:f5:60:c5: 73:d3:2a:25:ab:2b:8a:f1:dc:8e:66:97:7a:c3:b0: f8:d9:76:68:b0:94:e6:28:dc:64:9f:38:04:2c:75: 14:e3:6c:d3:f0:2b:5c:ff:99:4f:68:22:b8:d5:35: 12:76:78:d7:b5:6a:93:9c:b3:51:0a:6e:77:9b:97: fe:67:13:5c:61:0e:67:f4:5c:2c:b0:04:e2:fe:21: 73:4b:e4:85:bc:f2:a7:80:52:93:c8:5e:42:c4:51: 80:5d:99:49:b2:f8:c2:e6:ae:54:5b:f0:b3:65:eb: 99:0e:e2:a0:a8:e0:b9:67:27:df:34:cb:3f:b5:d9: d2:f3:81:27:9f:67:43:04:40:77:9d:35:96:6a:c1: 94:15:cf:c0:47:f5:58:3a:a5:d7:75:d7:c0:03:fd: 81:e7:5c:95:d5:00:c8:29:b2:e8:a6:a7:3d:f9:81: 5d:92:a9:30:21:71:58:8a:fb:f8:ec:03:76:74:a3: 64:58:f0:bd:d1:c6:6b:5e:2e:cf:53:62:fb:22:60: 8b:8c:f3:ae:97:d9:7a:b3:22:4b:42:e6:a5:b6:aa: 63:ce:c8:10:c7:a0:af:96:ae:f5:aa:27:38:23:b0: 3e:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:F8:AB:96:66:40:D3:FE:0B:A0:B8:74:81:2C:68:9E:69:A7:06:48 X509v3 Authority Key Identifier: keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3139342e3139352e38352e302f32342d3332203d3e203531313637.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.195.85.0/24 Signature Algorithm: sha256WithRSAEncryption 6b:25:63:b8:30:f8:da:9c:c3:d8:81:bd:1a:4c:ee:10:41:23: ee:59:67:bb:5d:81:6d:9f:30:ac:7f:41:73:97:c6:73:3d:62: 24:c5:99:8f:26:d7:8e:5f:65:74:87:24:eb:95:0c:0b:58:b8: 0a:98:64:c3:0d:60:48:7a:fa:49:38:63:c5:54:19:30:25:75: ba:a6:00:8b:0f:d0:dd:94:b4:b1:ba:07:8f:a7:db:3c:1b:66: 80:ff:f6:1e:2f:69:48:2c:2d:7b:fe:b9:84:82:9e:09:91:42: 3a:16:5a:09:3b:80:a4:4a:a6:c8:06:86:40:ff:1f:7e:a9:a1: 00:56:6c:85:48:38:58:98:03:92:c1:2c:16:5f:d7:72:92:ca: db:a5:78:e9:2b:c3:bb:53:ca:3a:52:2c:a9:4d:c0:d6:71:27: e3:ba:32:57:9b:65:ed:ae:da:e2:1f:70:ef:76:46:f2:fa:99: ed:ed:1a:03:4b:e7:28:43:df:76:07:c5:6c:fb:37:5e:0d:c4: ca:63:2a:74:4f:3d:de:03:ce:ed:25:4c:15:9c:65:d2:1e:b3: af:b0:ec:96:0c:0a:33:bb:1a:fd:a8:b8:59:b2:f1:5f:b9:38: 67:37:ec:a4:06:20:62:1c:5e:6d:2d:17:3a:8b:8c:9b:c0:d5: 05:63:27:03 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUH211mOW+BpG0LfuVDL+FO+9HniswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0 ZWE3Nzc5YzAeFw0yNTEyMjkwOTQ1NDlaFw0yNjEyMjgwOTUwNDlaMDMxMTAvBgNV BAMTKERCRjhBQjk2NjY0MEQzRkUwQkEwQjg3NDgxMkM2ODlFNjlBNzA2NDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvn5V8rj3x/D8nELVM/v6GZvK1 hEg0NEGAevVgxXPTKiWrK4rx3I5ml3rDsPjZdmiwlOYo3GSfOAQsdRTjbNPwK1z/ mU9oIrjVNRJ2eNe1apOcs1EKbnebl/5nE1xhDmf0XCywBOL+IXNL5IW88qeAUpPI XkLEUYBdmUmy+MLmrlRb8LNl65kO4qCo4LlnJ980yz+12dLzgSefZ0MEQHedNZZq wZQVz8BH9Vg6pdd118AD/YHnXJXVAMgpsuimpz35gV2SqTAhcViK+/jsA3Z0o2RY 8L3RxmteLs9TYvsiYIuM866X2XqzIktC5qW2qmPOyBDHoK+WrvWqJzgjsD7hAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU2/irlmZA0/4LoLh0gSxonmmnBkgwHwYDVR0j BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2 bmQ1dy5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzEzOTM0MmUzMTM5MzUyZTM4 MzUyZTMwMmYzMjM0MmQzMzMyMjAzZDNlMjAzNTMxMzEzNjM3LnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA wsNVMA0GCSqGSIb3DQEBCwUAA4IBAQBrJWO4MPjanMPYgb0aTO4QQSPuWWe7XYFt nzCsf0Fzl8ZzPWIkxZmPJteOX2V0hyTrlQwLWLgKmGTDDWBIevpJOGPFVBkwJXW6 pgCLD9DdlLSxugePp9s8G2aA//YeL2lILC17/rmEgp4JkUI6FloJO4CkSqbIBoZA /x9+qaEAVmyFSDhYmAOSwSwWX9dyksrbpXjpK8O7U8o6UiypTcDWcSfjujJXm2Xt rtriH3Dvdkby+pnt7RoDS+coQ992B8Vs+zdeDcTKYyp0Tz3eA87tJUwVnGXSHrOv sOyWDAozuxr9qLhZsvFfuThnN+ykBiBiHF5tLRc6i4ybwNUFYycD -----END CERTIFICATE-----Generated at Mon Jan 19 14:26:12 2026 by rpki-client