This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3139342e3139352e39322e302f32342d3234203d3e203437353833.roa File: 3139342e3139352e39322e302f32342d3234203d3e203437353833.roa (raw, json) Hash identifier: Kh0z3TG6PIDtWLCXLbzfJkyqYKtiaqRWdK7mT+NunE0= Subject key identifier: 7D:15:26:2A:0F:C5:1F:CF:DF:71:94:45:13:D0:A7:36:F4:52:66:C6 Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Certificate serial: 14CF5374FB4C6908549FC6183AE4A2C999C7549A Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3139342e3139352e39322e302f32342d3234203d3e203437353833.roa Signing time: Mon 29 Dec 2025 09:50:48 +0000 ROA not before: Mon 29 Dec 2025 09:45:48 +0000 ROA not after: Mon 28 Dec 2026 09:50:48 +0000 asID: 47583 IP address blocks: 194.195.92.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 01:05:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:cf:53:74:fb:4c:69:08:54:9f:c6:18:3a:e4:a2:c9:99:c7:54:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Validity Not Before: Dec 29 09:45:48 2025 GMT Not After : Dec 28 09:50:48 2026 GMT Subject: CN=7D15262A0FC51FCFDF71944513D0A736F45266C6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:40:86:03:98:ec:62:12:0d:84:fe:bb:77:8e: d6:2d:18:23:84:af:75:3b:41:d4:fd:c9:de:3c:9c: 0d:0c:04:04:80:89:d7:09:b7:6e:09:0c:6d:99:3e: 12:77:42:00:20:e7:26:24:25:af:d0:45:dc:4c:95: bd:1e:19:d3:52:6c:cf:e1:0e:f1:6c:b7:6a:dc:67: b6:f3:ef:22:86:44:26:95:9c:7b:73:be:63:51:c1: 86:36:30:34:0f:d6:6a:2a:06:c6:7f:83:62:88:68: ca:65:44:71:3f:64:fe:73:13:c7:ed:15:6e:2a:19: 09:91:1b:0a:29:f5:b9:33:31:68:9f:e0:b0:aa:0d: 94:97:28:87:98:c0:ab:f4:22:c0:b8:25:d9:34:b2: 5f:15:b0:78:4b:69:60:db:1b:aa:ca:c2:1c:50:82: d7:3b:10:f0:89:35:61:ff:4b:ac:10:ef:d0:00:43: 94:78:74:5b:ab:f2:05:95:e0:2f:d5:84:8a:bb:e9: 16:b6:22:ae:af:03:a9:23:52:39:ac:39:0b:d4:c0: fb:c7:86:77:0d:2c:5f:3a:52:95:da:7a:d1:a0:a5: b2:bc:40:b4:d2:f0:ab:29:3d:fb:0d:05:6f:65:bf: d2:4d:5a:ec:47:88:e4:7d:af:cf:1b:35:f1:75:6d: 21:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:15:26:2A:0F:C5:1F:CF:DF:71:94:45:13:D0:A7:36:F4:52:66:C6 X509v3 Authority Key Identifier: keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3139342e3139352e39322e302f32342d3234203d3e203437353833.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.195.92.0/24 Signature Algorithm: sha256WithRSAEncryption 0c:21:6e:1f:17:84:ec:9e:46:e7:12:95:84:68:ba:f7:eb:cf: a5:9a:62:57:8c:3f:97:af:e2:ce:d0:6f:7a:ed:20:67:4a:55: 03:b1:a6:7a:33:cf:ce:c7:06:f3:19:cd:49:b1:a8:f3:9e:86: 3b:b5:cd:78:19:c2:e6:71:d9:81:84:c2:17:ce:42:88:0c:40: 74:3e:87:e4:e9:35:06:17:34:f7:ba:eb:90:07:11:97:11:da: 7f:7b:62:6c:50:dd:73:cc:30:72:dd:45:9a:3c:2b:92:7d:da: b4:09:52:7d:8c:55:a3:fd:ea:b8:b8:0a:26:fc:f5:12:40:34: 84:16:47:5c:56:45:f2:24:81:be:7d:0a:ac:79:e7:f2:41:50: 76:d3:49:77:fe:b5:ef:b5:68:04:a4:0b:6f:a2:10:b0:5b:fb: 56:1c:44:0a:cc:94:e6:9a:0d:63:42:30:0d:2e:a4:45:65:1d: 26:5b:75:1c:b6:de:3c:3d:56:c2:f3:e1:88:07:45:dc:13:6e: 3e:53:43:9c:13:11:10:91:65:76:8e:db:d2:b4:cc:cb:77:34: 83:37:91:e4:74:b0:4e:2a:7b:98:a4:15:f3:8a:c9:6e:bc:e0: 65:88:b4:49:40:55:dd:61:0e:57:c8:83:3f:8b:58:87:46:b3: 84:57:b7:25 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUFM9TdPtMaQhUn8YYOuSiyZnHVJowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0 ZWE3Nzc5YzAeFw0yNTEyMjkwOTQ1NDhaFw0yNjEyMjgwOTUwNDhaMDMxMTAvBgNV BAMTKDdEMTUyNjJBMEZDNTFGQ0ZERjcxOTQ0NTEzRDBBNzM2RjQ1MjY2QzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCZQIYDmOxiEg2E/rt3jtYtGCOE r3U7QdT9yd48nA0MBASAidcJt24JDG2ZPhJ3QgAg5yYkJa/QRdxMlb0eGdNSbM/h DvFst2rcZ7bz7yKGRCaVnHtzvmNRwYY2MDQP1moqBsZ/g2KIaMplRHE/ZP5zE8ft FW4qGQmRGwop9bkzMWif4LCqDZSXKIeYwKv0IsC4Jdk0sl8VsHhLaWDbG6rKwhxQ gtc7EPCJNWH/S6wQ79AAQ5R4dFur8gWV4C/VhIq76Ra2Iq6vA6kjUjmsOQvUwPvH hncNLF86UpXaetGgpbK8QLTS8KspPfsNBW9lv9JNWuxHiOR9r88bNfF1bSGTAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUfRUmKg/FH8/fcZRFE9CnNvRSZsYwHwYDVR0j BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2 bmQ1dy5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzEzOTM0MmUzMTM5MzUyZTM5 MzIyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzNDM3MzUzODMzLnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA wsNcMA0GCSqGSIb3DQEBCwUAA4IBAQAMIW4fF4TsnkbnEpWEaLr368+lmmJXjD+X r+LO0G967SBnSlUDsaZ6M8/OxwbzGc1JsajznoY7tc14GcLmcdmBhMIXzkKIDEB0 Pofk6TUGFzT3uuuQBxGXEdp/e2JsUN1zzDBy3UWaPCuSfdq0CVJ9jFWj/eq4uAom /PUSQDSEFkdcVkXyJIG+fQqseefyQVB200l3/rXvtWgEpAtvohCwW/tWHEQKzJTm mg1jQjANLqRFZR0mW3Uctt48PVbC8+GIB0XcE24+U0OcExEQkWV2jtvStMzLdzSD N5HkdLBOKnuYpBXzisluvOBliLRJQFXdYQ5XyIM/i1iHRrOEV7cl -----END CERTIFICATE-----Generated at Mon Jan 19 14:25:21 2026 by rpki-client