This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3139342e3233332e3130312e302f32342d3234203d3e20313337343039.roa File: 3139342e3233332e3130312e302f32342d3234203d3e20313337343039.roa (raw, json) Hash identifier: GTIG6chaKYH8ZuLOPB3GCjQL51JhHrTaAuzysfOirj4= Subject key identifier: 8C:51:06:E4:AD:B8:DA:F1:02:9F:6B:5B:F9:2A:7B:61:2B:6F:14:FC Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Certificate serial: 18194992D1E49CCF8C83CD8FEBC8B8146D8631DB Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3139342e3233332e3130312e302f32342d3234203d3e20313337343039.roa Signing time: Thu 01 Jan 2026 19:51:09 +0000 ROA not before: Thu 01 Jan 2026 19:46:09 +0000 ROA not after: Thu 31 Dec 2026 19:51:09 +0000 asID: 137409 IP address blocks: 194.233.101.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 01:05:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:19:49:92:d1:e4:9c:cf:8c:83:cd:8f:eb:c8:b8:14:6d:86:31:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Validity Not Before: Jan 1 19:46:09 2026 GMT Not After : Dec 31 19:51:09 2026 GMT Subject: CN=8C5106E4ADB8DAF1029F6B5BF92A7B612B6F14FC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:b2:4e:d4:d6:27:50:c2:ec:10:cc:cd:80:fe: 6a:24:63:4d:14:55:be:f7:e0:ef:7e:61:48:2e:02: e5:dd:62:3d:66:00:65:af:fa:8a:f4:55:bc:c3:5b: 0f:bb:50:a1:11:81:be:ee:9f:df:e4:57:91:ed:6a: 3a:0a:ef:f5:4a:07:86:74:30:12:ff:20:95:83:e8: 5b:a4:1b:66:41:04:b7:b6:f6:93:54:d2:35:ee:e9: b7:f3:da:2c:ad:ec:44:1a:12:6d:fe:b3:78:8a:7e: 75:f0:a2:52:04:45:b4:21:05:d6:eb:f8:63:ae:a7: 04:2b:ca:51:75:4d:91:54:cd:7e:74:d3:9b:35:36: 37:fc:68:ec:72:03:d2:f1:b0:27:ec:9c:87:a1:b7: 46:ca:55:67:c3:af:85:34:c0:65:56:be:d8:41:41: 92:55:e1:ab:af:8c:3f:ab:5b:db:a6:b9:fd:8c:c0: cb:f8:94:67:43:68:52:3a:85:a3:6b:51:a0:91:e4: 8c:8d:ed:5f:ab:00:f8:bb:e9:b0:65:0a:d4:22:f7: e1:ac:5d:f9:57:0f:01:87:51:2c:4d:e1:f3:3a:a3: fb:fb:76:d8:5a:16:ee:54:f0:2c:dc:18:9a:9b:c5: ca:17:2b:11:a1:e6:36:58:7f:b2:6b:82:c9:46:25: fa:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:51:06:E4:AD:B8:DA:F1:02:9F:6B:5B:F9:2A:7B:61:2B:6F:14:FC X509v3 Authority Key Identifier: keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3139342e3233332e3130312e302f32342d3234203d3e20313337343039.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.233.101.0/24 Signature Algorithm: sha256WithRSAEncryption 8e:4a:03:98:dc:3f:6f:45:6f:4a:06:2c:81:7e:84:cf:71:7e: 2f:52:f7:35:87:52:eb:19:7d:44:57:b1:2d:ce:40:7c:ab:03: 33:33:0e:c2:b0:ea:6c:21:ef:e4:fe:9e:56:2e:c8:fb:ed:f8: 7a:e5:4a:60:53:c3:fb:f6:2f:94:82:8c:8f:46:be:c7:4c:e1: fb:5a:b5:b9:8f:40:55:03:8d:ee:af:4c:e4:3a:62:a2:26:91: eb:58:76:48:7a:98:d0:30:a7:3d:ec:44:25:9e:11:4f:05:13: 2e:3c:16:10:a5:a4:b6:28:7a:89:25:5f:74:dd:16:b2:d3:d2: dd:1d:15:0e:ad:c7:bf:d5:a9:53:29:f4:ff:ee:66:cb:3c:19: 76:67:40:ac:a8:e5:14:e9:a4:6f:5d:24:2a:14:0d:a2:43:ec: f8:80:9b:23:02:2a:6b:df:77:82:e3:a7:11:29:70:29:30:ff: 55:34:fc:1a:1e:ec:2b:9a:f5:da:8c:0d:78:5b:9d:38:4a:48: 61:ee:99:74:27:71:86:2f:c9:b8:17:3a:7c:00:1a:fa:3b:41: 54:80:a3:f3:d4:e9:30:04:86:11:ab:73:25:70:13:2c:75:1f: 3f:d7:cb:57:28:68:c3:c3:11:1e:a2:3b:63:54:7a:dc:bc:9a: 99:c7:71:73 -----BEGIN CERTIFICATE----- MIIFNzCCBB+gAwIBAgIUGBlJktHknM+Mg82P68i4FG2GMdswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0 ZWE3Nzc5YzAeFw0yNjAxMDExOTQ2MDlaFw0yNjEyMzExOTUxMDlaMDMxMTAvBgNV BAMTKDhDNTEwNkU0QURCOERBRjEwMjlGNkI1QkY5MkE3QjYxMkI2RjE0RkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDesk7U1idQwuwQzM2A/mokY00U Vb734O9+YUguAuXdYj1mAGWv+or0VbzDWw+7UKERgb7un9/kV5HtajoK7/VKB4Z0 MBL/IJWD6FukG2ZBBLe29pNU0jXu6bfz2iyt7EQaEm3+s3iKfnXwolIERbQhBdbr +GOupwQrylF1TZFUzX5005s1Njf8aOxyA9LxsCfsnIeht0bKVWfDr4U0wGVWvthB QZJV4auvjD+rW9umuf2MwMv4lGdDaFI6haNrUaCR5IyN7V+rAPi76bBlCtQi9+Gs XflXDwGHUSxN4fM6o/v7dthaFu5U8CzcGJqbxcoXKxGh5jZYf7JrgslGJfqtAgMB AAGjggJBMIICPTAdBgNVHQ4EFgQUjFEG5K242vECn2tb+Sp7YStvFPwwHwYDVR0j BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2 bmQ1dy5jZXIwgbEGCCsGAQUFBwELBIGkMIGhMIGeBggrBgEFBQcwC4aBkXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzEzOTM0MmUzMjMzMzMyZTMx MzAzMTJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzMzNzM0MzAzOS5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAMLpZTANBgkqhkiG9w0BAQsFAAOCAQEAjkoDmNw/b0VvSgYsgX6Ez3F+L1L3 NYdS6xl9RFexLc5AfKsDMzMOwrDqbCHv5P6eVi7I++34euVKYFPD+/YvlIKMj0a+ x0zh+1q1uY9AVQON7q9M5DpioiaR61h2SHqY0DCnPexEJZ4RTwUTLjwWEKWktih6 iSVfdN0WstPS3R0VDq3Hv9WpUyn0/+5myzwZdmdArKjlFOmkb10kKhQNokPs+ICb IwIqa993guOnESlwKTD/VTT8Gh7sK5r12owNeFudOEpIYe6ZdCdxhi/JuBc6fAAa +jtBVICj89TpMASGEatzJXATLHUfP9fLVyhow8MRHqI7Y1R63Lyamcdxcw== -----END CERTIFICATE-----Generated at Mon Jan 19 14:28:02 2026 by rpki-client