This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3139342e3139352e38382e302f32342d3234203d3e20313336373837.roa File: 3139342e3139352e38382e302f32342d3234203d3e20313336373837.roa (raw, json) Hash identifier: b7gDW/qFNF5ddULV1qTXchiMp/8BgQHVidSaVan2qIg= Subject key identifier: 40:E9:32:8D:A5:32:B3:D2:4D:B6:78:73:06:E4:FF:DE:66:2C:FC:33 Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Certificate serial: 5F6ED953A51DD4EBCFEF6DC39B3CEE870850B7EB Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3139342e3139352e38382e302f32342d3234203d3e20313336373837.roa Signing time: Mon 29 Dec 2025 09:51:01 +0000 ROA not before: Mon 29 Dec 2025 09:46:01 +0000 ROA not after: Mon 28 Dec 2026 09:51:01 +0000 asID: 136787 IP address blocks: 194.195.88.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 01:05:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:6e:d9:53:a5:1d:d4:eb:cf:ef:6d:c3:9b:3c:ee:87:08:50:b7:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Validity Not Before: Dec 29 09:46:01 2025 GMT Not After : Dec 28 09:51:01 2026 GMT Subject: CN=40E9328DA532B3D24DB6787306E4FFDE662CFC33 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:a9:72:39:fa:55:c4:19:29:4e:06:b6:cd:02: 0d:4c:5f:68:5f:ce:79:ff:c3:88:d3:89:e9:5c:7d: a6:b9:d1:07:78:4d:90:72:05:06:c8:ba:cd:ea:33: fe:77:05:d5:a2:66:aa:ca:a5:ee:63:f0:90:3c:35: 85:f9:18:37:ae:82:93:a1:a1:ed:14:00:30:85:04: f7:11:83:b3:30:19:34:11:68:ee:7e:fd:d6:e8:00: e9:92:cf:1d:67:4f:05:01:bc:a6:82:9c:cf:18:b5: 44:70:9b:fd:85:29:8a:b1:5c:1b:14:d5:61:4e:4f: 6d:01:e1:d1:c2:43:73:30:76:e5:3e:ab:a4:cf:52: ef:db:54:bd:d5:cc:13:c8:1a:0e:33:e5:de:a6:81: d4:79:78:4d:58:4b:63:8f:11:d1:37:2d:3c:04:df: b2:75:ea:33:61:28:42:c4:e9:e1:5c:5d:e4:12:43: 20:04:97:2b:76:ed:ce:73:92:e9:46:f3:2e:11:1c: 69:15:2f:ad:13:cd:72:27:83:6a:d7:b3:5b:4b:b3: d1:25:33:e8:fa:95:99:9b:85:a2:9a:26:8c:cb:fb: 25:0b:7c:dc:23:41:57:f8:7e:4c:75:d6:fc:a0:45: 0f:92:36:62:6a:78:9e:e5:69:77:cc:9a:44:fa:d2: a2:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:E9:32:8D:A5:32:B3:D2:4D:B6:78:73:06:E4:FF:DE:66:2C:FC:33 X509v3 Authority Key Identifier: keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3139342e3139352e38382e302f32342d3234203d3e20313336373837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.195.88.0/24 Signature Algorithm: sha256WithRSAEncryption 32:52:d8:12:87:33:5a:a8:1b:68:6c:fe:73:67:43:b1:9c:d5: b1:f6:ac:e3:16:2a:38:60:16:46:25:22:44:95:11:0b:92:a2: f8:bb:48:5e:eb:3c:11:eb:b9:47:e9:6a:dd:4f:5d:17:1b:49: 6a:60:cb:c6:1b:68:91:97:0b:fa:25:07:1c:18:26:76:f7:ed: 8d:da:ec:26:c2:95:a7:5b:dd:96:fe:98:18:af:89:5c:f8:96: fe:1f:6d:d4:44:76:6c:1d:fe:7c:cc:23:6c:ff:ff:88:e1:17: c3:fa:a2:3e:56:d2:82:56:7a:9c:f1:48:f6:9b:15:9a:8c:ff: 0b:e9:78:55:79:df:55:f3:a3:6e:47:9c:b8:3f:51:9a:64:45: 40:20:67:07:d3:aa:5b:3e:63:5e:6a:2e:ba:a5:0d:bc:f7:fa: 0d:4e:9b:7d:d0:eb:09:1b:5c:22:82:2f:73:29:f1:de:f5:40: 43:dd:39:cd:11:89:1d:b6:c5:20:bb:bb:3b:ab:c7:78:91:a0: f3:f6:67:91:43:48:6f:60:97:20:9c:f1:ba:4e:72:28:69:85: cc:f5:dd:61:3e:ed:da:a9:54:fa:88:b2:6c:5f:f2:95:50:2d: b0:21:b9:ad:a2:23:47:ee:39:bb:27:9a:6f:c3:d0:1c:a9:09: b2:13:94:c9 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUX27ZU6Ud1OvP723DmzzuhwhQt+swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0 ZWE3Nzc5YzAeFw0yNTEyMjkwOTQ2MDFaFw0yNjEyMjgwOTUxMDFaMDMxMTAvBgNV BAMTKDQwRTkzMjhEQTUzMkIzRDI0REI2Nzg3MzA2RTRGRkRFNjYyQ0ZDMzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzqXI5+lXEGSlOBrbNAg1MX2hf znn/w4jTielcfaa50Qd4TZByBQbIus3qM/53BdWiZqrKpe5j8JA8NYX5GDeugpOh oe0UADCFBPcRg7MwGTQRaO5+/dboAOmSzx1nTwUBvKaCnM8YtURwm/2FKYqxXBsU 1WFOT20B4dHCQ3MwduU+q6TPUu/bVL3VzBPIGg4z5d6mgdR5eE1YS2OPEdE3LTwE 37J16jNhKELE6eFcXeQSQyAElyt27c5zkulG8y4RHGkVL60TzXIng2rXs1tLs9El M+j6lZmbhaKaJozL+yULfNwjQVf4fkx11vygRQ+SNmJqeJ7laXfMmkT60qJRAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUQOkyjaUys9JNtnhzBuT/3mYs/DMwHwYDVR0j BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2 bmQ1dy5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzEzOTM0MmUzMTM5MzUyZTM4 MzgyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMTMzMzYzNzM4Mzcucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BADCw1gwDQYJKoZIhvcNAQELBQADggEBADJS2BKHM1qoG2hs/nNnQ7Gc1bH2rOMW KjhgFkYlIkSVEQuSovi7SF7rPBHruUfpat1PXRcbSWpgy8YbaJGXC/olBxwYJnb3 7Y3a7CbCladb3Zb+mBiviVz4lv4fbdREdmwd/nzMI2z//4jhF8P6oj5W0oJWepzx SPabFZqM/wvpeFV531Xzo25HnLg/UZpkRUAgZwfTqls+Y15qLrqlDbz3+g1Om33Q 6wkbXCKCL3Mp8d71QEPdOc0RiR22xSC7uzurx3iRoPP2Z5FDSG9glyCc8bpOcihp hcz13WE+7dqpVPqIsmxf8pVQLbAhua2iI0fuObsnmm/D0BypCbITlMk= -----END CERTIFICATE-----Generated at Mon Jan 19 14:27:22 2026 by rpki-client