This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3139342e3139352e39312e302f32342d3234203d3e20323036303932.roa File: 3139342e3139352e39312e302f32342d3234203d3e20323036303932.roa (raw, json) Hash identifier: LVpKccGfU3uCiCMaTns5kDKJdaAO8j+c1cBHdyATR9k= Subject key identifier: E4:2D:49:84:99:0C:00:A9:6B:89:0D:3B:68:D6:85:29:3F:85:D1:62 Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Certificate serial: 09ECACD12F8430EC6511C35724115B3D133ABCE2 Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3139342e3139352e39312e302f32342d3234203d3e20323036303932.roa Signing time: Mon 29 Dec 2025 09:51:03 +0000 ROA not before: Mon 29 Dec 2025 09:46:03 +0000 ROA not after: Mon 28 Dec 2026 09:51:03 +0000 asID: 206092 IP address blocks: 194.195.91.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 01:05:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:ec:ac:d1:2f:84:30:ec:65:11:c3:57:24:11:5b:3d:13:3a:bc:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Validity Not Before: Dec 29 09:46:03 2025 GMT Not After : Dec 28 09:51:03 2026 GMT Subject: CN=E42D4984990C00A96B890D3B68D685293F85D162 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:3b:19:29:0b:99:5e:89:93:d3:01:25:63:f5: 50:4e:ac:d9:a9:ec:37:3e:74:79:25:ab:ae:d6:73: 17:b9:0f:86:3b:2f:a4:7b:6d:41:ee:f5:58:62:50: 1e:a5:bf:a6:cb:1d:0f:5e:8b:07:d8:d4:f3:9f:1c: a8:6c:92:e9:fd:8d:98:78:b4:68:7d:80:2a:21:5d: d0:91:f7:02:18:e4:00:3e:2e:bd:3b:82:32:c2:90: 7e:c1:15:a8:05:96:02:43:b4:01:ba:c7:03:19:58: 5e:bb:56:85:a3:5d:6a:9e:60:3e:c6:59:37:cb:7f: 6d:d9:1d:51:75:6d:94:2b:7f:db:53:1e:ed:57:74: ac:13:b6:f9:f5:54:5a:b7:7d:49:85:e8:ff:7d:78: 88:b0:9c:ff:56:cc:1b:cb:60:bf:b0:f3:f9:ef:1e: b3:6f:25:11:7a:39:72:83:e4:a6:36:12:c7:f4:a1: a1:41:c7:75:6c:9a:67:e5:b9:af:d5:e8:28:d8:86: 2c:96:d2:bb:60:33:9a:6f:36:be:fd:6a:09:86:67: 8b:36:45:62:9b:22:17:6b:f3:3d:50:5b:ad:a6:e7: fd:1c:4b:8a:b8:32:e1:6a:cb:c5:fd:93:92:8c:de: 50:76:5c:66:e5:40:c5:f3:c2:9d:ca:6b:4c:d4:d3: 30:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:2D:49:84:99:0C:00:A9:6B:89:0D:3B:68:D6:85:29:3F:85:D1:62 X509v3 Authority Key Identifier: keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3139342e3139352e39312e302f32342d3234203d3e20323036303932.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.195.91.0/24 Signature Algorithm: sha256WithRSAEncryption 48:b3:79:3a:56:f5:7a:c0:94:86:bd:b9:6e:ca:80:0a:01:aa: ea:1e:9e:ca:a5:64:1d:a5:7c:88:49:7f:a4:ee:3b:13:58:cc: 5b:df:b2:a0:56:33:39:4f:11:41:18:e0:ed:2b:f6:42:d8:fe: c9:56:16:57:9f:40:d3:11:77:9e:bc:44:1f:16:19:61:00:7d: 3b:3f:1b:57:2e:d7:b7:11:7f:90:e4:6b:08:6c:db:68:d5:73: 29:94:27:bb:21:84:37:86:34:12:0f:7b:93:ec:ad:92:e7:23: 5f:21:e0:97:67:5c:3b:51:9e:b5:92:3d:c8:d2:d5:00:3c:c7: 06:9d:37:5c:73:06:56:cb:25:49:41:16:4c:8c:c9:4b:81:e8: fd:18:97:7c:1d:13:cc:b0:22:8b:7e:e8:b9:c0:de:f1:6a:16: 95:73:d2:74:52:2a:ad:07:f6:23:1c:f3:74:eb:d0:7c:6f:61: e1:4d:8d:ce:01:3f:2d:b2:73:5b:15:77:9d:b4:93:82:9d:c3: 14:41:7a:ce:16:f6:ab:e6:fe:d4:50:31:74:e0:ad:89:48:77: 79:1b:8b:d8:60:fe:8a:f3:08:35:67:86:27:e9:ed:32:2c:ee: 69:40:8c:6c:96:51:36:27:45:68:4c:d2:44:31:50:75:d9:a2: f8:cd:44:72 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUCeys0S+EMOxlEcNXJBFbPRM6vOIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0 ZWE3Nzc5YzAeFw0yNTEyMjkwOTQ2MDNaFw0yNjEyMjgwOTUxMDNaMDMxMTAvBgNV BAMTKEU0MkQ0OTg0OTkwQzAwQTk2Qjg5MEQzQjY4RDY4NTI5M0Y4NUQxNjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3OxkpC5leiZPTASVj9VBOrNmp 7Dc+dHklq67Wcxe5D4Y7L6R7bUHu9VhiUB6lv6bLHQ9eiwfY1POfHKhskun9jZh4 tGh9gCohXdCR9wIY5AA+Lr07gjLCkH7BFagFlgJDtAG6xwMZWF67VoWjXWqeYD7G WTfLf23ZHVF1bZQrf9tTHu1XdKwTtvn1VFq3fUmF6P99eIiwnP9WzBvLYL+w8/nv HrNvJRF6OXKD5KY2Esf0oaFBx3Vsmmflua/V6CjYhiyW0rtgM5pvNr79agmGZ4s2 RWKbIhdr8z1QW62m5/0cS4q4MuFqy8X9k5KM3lB2XGblQMXzwp3Ka0zU0zC3AgMB AAGjggI/MIICOzAdBgNVHQ4EFgQU5C1JhJkMAKlriQ07aNaFKT+F0WIwHwYDVR0j BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2 bmQ1dy5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzEzOTM0MmUzMTM5MzUyZTM5 MzEyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMjMwMzYzMDM5MzIucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BADCw1swDQYJKoZIhvcNAQELBQADggEBAEizeTpW9XrAlIa9uW7KgAoBquoensql ZB2lfIhJf6TuOxNYzFvfsqBWMzlPEUEY4O0r9kLY/slWFlefQNMRd568RB8WGWEA fTs/G1cu17cRf5Dkawhs22jVcymUJ7shhDeGNBIPe5PsrZLnI18h4JdnXDtRnrWS PcjS1QA8xwadN1xzBlbLJUlBFkyMyUuB6P0Yl3wdE8ywIot+6LnA3vFqFpVz0nRS Kq0H9iMc83Tr0HxvYeFNjc4BPy2yc1sVd520k4KdwxRBes4W9qvm/tRQMXTgrYlI d3kbi9hg/orzCDVnhifp7TIs7mlAjGyWUTYnRWhM0kQxUHXZovjNRHI= -----END CERTIFICATE-----Generated at Mon Jan 19 14:24:56 2026 by rpki-client