This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3139352e3137392e3139362e302f32322d3234203d3e20323034313730.roa File: 3139352e3137392e3139362e302f32322d3234203d3e20323034313730.roa (raw, json) Hash identifier: IrYSE7SP3P9+N4UgTDY8MZiJx6zg8fU8phrthC70IbU= Subject key identifier: 96:79:32:19:69:93:8F:6C:11:12:CC:99:78:A0:CA:BA:FE:DA:C7:7F Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Certificate serial: 1AF82939CF0F97FBC07C583F0381B224D3E3372D Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3139352e3137392e3139362e302f32322d3234203d3e20323034313730.roa Signing time: Mon 29 Dec 2025 09:50:38 +0000 ROA not before: Mon 29 Dec 2025 09:45:38 +0000 ROA not after: Mon 28 Dec 2026 09:50:38 +0000 asID: 204170 IP address blocks: 195.179.196.0/22 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 01:05:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:f8:29:39:cf:0f:97:fb:c0:7c:58:3f:03:81:b2:24:d3:e3:37:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Validity Not Before: Dec 29 09:45:38 2025 GMT Not After : Dec 28 09:50:38 2026 GMT Subject: CN=9679321969938F6C1112CC9978A0CABAFEDAC77F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:05:88:a9:af:cb:0a:cb:5a:07:03:e4:37:4d: 93:15:c3:1f:aa:9d:49:27:7f:c6:1a:1f:58:f8:61: cb:f0:24:4f:8f:3a:b9:45:7a:df:7c:60:e6:8a:fd: ec:12:87:2b:a8:4a:1d:30:f8:99:85:cd:41:60:a3: e3:b8:b1:2b:b4:41:50:bf:f6:e7:35:d7:10:98:9d: 35:ff:4e:89:89:a2:28:e9:fd:ba:ba:f4:04:43:fc: 9b:9c:ad:4c:7c:91:78:0d:3a:1a:33:93:a3:8d:67: 0a:09:60:35:79:9d:db:08:20:3c:e8:37:98:ff:d5: 78:a8:c0:d1:9e:b9:c2:3c:89:21:e6:58:d5:7a:54: 3d:30:ea:74:2d:6f:57:a3:5f:67:41:4f:fb:28:be: da:15:5b:a0:df:a8:8c:12:92:95:1b:4c:38:15:0c: 22:ae:d7:53:91:bf:b1:ea:3a:dc:45:7a:f5:54:00: 18:bb:0d:05:6b:f4:b9:8b:9c:a4:61:f2:e8:88:b1: 31:79:4b:1c:36:df:52:a7:13:be:44:6c:f8:b0:ef: 52:fd:c6:42:67:02:9e:b5:fd:e2:f2:b7:48:4b:09: 12:34:22:f7:27:4c:1b:af:cc:e6:4f:91:b2:b2:36: c2:de:38:40:69:22:1a:b8:03:45:15:3a:24:8f:6d: 89:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:79:32:19:69:93:8F:6C:11:12:CC:99:78:A0:CA:BA:FE:DA:C7:7F X509v3 Authority Key Identifier: keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3139352e3137392e3139362e302f32322d3234203d3e20323034313730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.179.196.0/22 Signature Algorithm: sha256WithRSAEncryption 60:d8:80:d3:a5:dc:34:31:7b:0d:6a:9d:94:9c:51:fa:f0:fe: 5d:a5:4a:a9:ab:02:7f:d1:79:44:a3:6a:36:6f:2e:68:71:a4: cf:3e:5a:3e:36:b4:5e:3f:aa:e6:76:79:b6:39:e3:48:6a:95: 50:62:cb:08:e4:26:98:ca:56:26:d7:4e:b5:d3:20:bf:21:1b: eb:ab:f5:5e:82:dc:4a:b1:12:98:45:74:c6:26:34:fb:71:df: 1f:50:df:66:ae:47:f3:8e:d1:59:ed:d5:5e:1f:25:a0:15:c8: ba:df:99:79:58:27:fa:c9:52:98:71:7e:e1:1e:cd:15:b1:46: 78:44:52:a3:cc:e4:d2:ed:04:14:d2:7d:35:e4:ac:71:7d:e2: 32:5a:e4:a3:1f:19:66:79:83:f6:38:49:04:c8:da:94:b8:bf: b9:1b:9e:f0:c3:d3:65:b7:4a:48:81:93:7e:c1:0b:a7:66:8b: a1:26:a7:65:b6:0c:5b:0e:fe:78:64:69:85:1e:42:ee:5f:13: cf:e1:97:96:c3:54:ed:83:83:55:38:5c:74:5d:7f:7d:dc:bc: 85:86:b7:aa:64:8d:04:9d:9d:ca:ab:cc:ac:51:5c:dc:c1:21: 38:33:0b:20:70:b6:2d:ec:10:8a:9c:dd:0b:84:7d:7e:6e:96: 45:bd:75:18 -----BEGIN CERTIFICATE----- MIIFNzCCBB+gAwIBAgIUGvgpOc8Pl/vAfFg/A4GyJNPjNy0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0 ZWE3Nzc5YzAeFw0yNTEyMjkwOTQ1MzhaFw0yNjEyMjgwOTUwMzhaMDMxMTAvBgNV BAMTKDk2NzkzMjE5Njk5MzhGNkMxMTEyQ0M5OTc4QTBDQUJBRkVEQUM3N0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8BYipr8sKy1oHA+Q3TZMVwx+q nUknf8YaH1j4YcvwJE+POrlFet98YOaK/ewShyuoSh0w+JmFzUFgo+O4sSu0QVC/ 9uc11xCYnTX/TomJoijp/bq69ARD/JucrUx8kXgNOhozk6ONZwoJYDV5ndsIIDzo N5j/1XiowNGeucI8iSHmWNV6VD0w6nQtb1ejX2dBT/sovtoVW6DfqIwSkpUbTDgV DCKu11ORv7HqOtxFevVUABi7DQVr9LmLnKRh8uiIsTF5Sxw231KnE75EbPiw71L9 xkJnAp61/eLyt0hLCRI0IvcnTBuvzOZPkbKyNsLeOEBpIhq4A0UVOiSPbYnxAgMB AAGjggJBMIICPTAdBgNVHQ4EFgQUlnkyGWmTj2wREsyZeKDKuv7ax38wHwYDVR0j BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2 bmQ1dy5jZXIwgbEGCCsGAQUFBwELBIGkMIGhMIGeBggrBgEFBQcwC4aBkXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzEzOTM1MmUzMTM3MzkyZTMx MzkzNjJlMzAyZjMyMzIyZDMyMzQyMDNkM2UyMDMyMzAzNDMxMzczMC5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAsOzxDANBgkqhkiG9w0BAQsFAAOCAQEAYNiA06XcNDF7DWqdlJxR+vD+XaVK qasCf9F5RKNqNm8uaHGkzz5aPja0Xj+q5nZ5tjnjSGqVUGLLCOQmmMpWJtdOtdMg vyEb66v1XoLcSrESmEV0xiY0+3HfH1DfZq5H847RWe3VXh8loBXIut+ZeVgn+slS mHF+4R7NFbFGeERSo8zk0u0EFNJ9NeSscX3iMlrkox8ZZnmD9jhJBMjalLi/uRue 8MPTZbdKSIGTfsELp2aLoSanZbYMWw7+eGRphR5C7l8Tz+GXlsNU7YODVThcdF1/ fdy8hYa3qmSNBJ2dyqvMrFFc3MEhODMLIHC2LewQipzdC4R9fm6WRb11GA== -----END CERTIFICATE-----Generated at Mon Jan 19 14:28:05 2026 by rpki-client