This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3139352e3231302e35392e302f32342d3234203d3e20313336373837.roa File: 3139352e3231302e35392e302f32342d3234203d3e20313336373837.roa (raw, json) Hash identifier: 3rWzLlbppN9htseiOfkWOMgYOPlv2zsFSedQck77pgk= Subject key identifier: 58:12:DC:48:B9:DA:9B:EC:1D:14:99:A0:A6:AF:87:50:03:41:E5:39 Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Certificate serial: 5D3EF8CD62ED8CAA5C081EB5D49B15ABF89E836A Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3139352e3231302e35392e302f32342d3234203d3e20313336373837.roa Signing time: Sat 03 Jan 2026 22:51:13 +0000 ROA not before: Sat 03 Jan 2026 22:46:13 +0000 ROA not after: Sat 02 Jan 2027 22:51:13 +0000 asID: 136787 IP address blocks: 195.210.59.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 01:05:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:3e:f8:cd:62:ed:8c:aa:5c:08:1e:b5:d4:9b:15:ab:f8:9e:83:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Validity Not Before: Jan 3 22:46:13 2026 GMT Not After : Jan 2 22:51:13 2027 GMT Subject: CN=5812DC48B9DA9BEC1D1499A0A6AF87500341E539 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:7a:e2:86:22:19:b4:10:c1:c6:22:2e:8d:b7: c8:e2:27:22:3b:2c:db:10:c7:29:dd:a2:ff:19:b2: 2d:07:b6:2b:22:ee:16:3b:d6:4e:ec:71:da:8d:89: e6:63:1c:9e:e5:9d:d0:d5:d8:ac:92:d2:0e:35:14: 86:ec:5a:89:fb:dc:26:83:02:27:20:03:ec:fd:93: c3:d4:d4:2a:fa:59:c7:d8:d8:7e:c7:00:50:6f:f6: ab:14:2f:33:e8:78:e5:a7:fe:d4:bb:1d:26:f6:03: 63:2b:b8:24:88:1e:a9:e0:90:ba:66:a3:e3:55:d0: cb:9a:13:89:eb:9e:57:19:dc:09:79:56:1a:12:ca: 26:c5:0d:09:a3:b0:90:62:38:5e:72:11:6e:3b:59: aa:5c:6a:d8:85:e5:f3:ed:a9:03:4a:6b:d4:03:a2: b7:27:af:c4:c4:df:56:7b:05:b8:84:43:16:41:c2: 34:c0:4b:44:01:82:b7:e7:56:4b:3a:cb:13:b5:8d: 6e:13:c7:b8:24:f7:ab:d4:b4:4d:8d:9f:f1:a9:29: 4d:42:fe:0a:3e:f6:b0:3f:5d:6e:2a:92:c0:10:15: 0a:4e:96:71:fd:73:5f:cc:99:a0:69:ed:13:e5:f2: d7:f3:07:45:42:c1:41:fa:d0:9f:2e:71:5d:09:fa: 57:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:12:DC:48:B9:DA:9B:EC:1D:14:99:A0:A6:AF:87:50:03:41:E5:39 X509v3 Authority Key Identifier: keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3139352e3231302e35392e302f32342d3234203d3e20313336373837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.210.59.0/24 Signature Algorithm: sha256WithRSAEncryption 9d:4b:9e:d5:14:ae:11:8a:63:77:df:05:b7:18:a5:df:a9:5d: 2a:32:2b:9b:6e:d8:11:bf:04:88:4f:03:f5:f9:16:92:1a:f7: c3:9c:4a:c0:3e:9b:2a:39:07:de:18:dc:a6:b7:f6:1a:a6:c2: 9c:b6:6f:af:cf:ac:de:53:32:22:2c:2a:e8:a1:f9:f9:5f:bf: 9c:bf:77:b2:33:07:5a:4f:fc:ee:fe:0a:66:0f:71:b9:51:a0: aa:b9:05:b6:77:4f:f0:8e:85:7e:ab:0f:03:7c:06:19:c9:8b: 63:ae:93:39:8b:75:1f:81:ff:91:1f:ec:57:52:ff:32:28:6e: c1:7c:17:6c:f2:30:ca:ef:a6:53:43:03:c0:a8:e7:9e:5f:08: 87:06:fc:60:f0:8b:ce:59:91:cf:f6:e3:72:31:23:77:43:1e: 6e:c0:b0:fe:9a:94:d5:99:9b:a9:8f:d6:12:aa:53:fb:e1:9a: 20:b6:fd:1a:e4:d3:06:c3:8e:b3:fa:23:20:01:de:ee:82:07: e1:6f:a2:20:18:e5:a7:34:50:95:a5:2c:cc:9b:12:d2:12:35: ea:66:3b:63:94:d0:79:81:ff:b0:0b:c5:2e:0e:71:17:e7:00: 1d:63:8d:90:a1:95:87:7a:74:64:39:61:62:19:76:8d:3d:65: e6:bd:7a:bf -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUXT74zWLtjKpcCB611JsVq/ieg2owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0 ZWE3Nzc5YzAeFw0yNjAxMDMyMjQ2MTNaFw0yNzAxMDIyMjUxMTNaMDMxMTAvBgNV BAMTKDU4MTJEQzQ4QjlEQTlCRUMxRDE0OTlBMEE2QUY4NzUwMDM0MUU1MzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNeuKGIhm0EMHGIi6Nt8jiJyI7 LNsQxyndov8Zsi0Htisi7hY71k7scdqNieZjHJ7lndDV2KyS0g41FIbsWon73CaD AicgA+z9k8PU1Cr6WcfY2H7HAFBv9qsULzPoeOWn/tS7HSb2A2MruCSIHqngkLpm o+NV0MuaE4nrnlcZ3Al5VhoSyibFDQmjsJBiOF5yEW47WapcatiF5fPtqQNKa9QD orcnr8TE31Z7BbiEQxZBwjTAS0QBgrfnVks6yxO1jW4Tx7gk96vUtE2Nn/GpKU1C /go+9rA/XW4qksAQFQpOlnH9c1/MmaBp7RPl8tfzB0VCwUH60J8ucV0J+lddAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUWBLcSLnam+wdFJmgpq+HUANB5TkwHwYDVR0j BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2 bmQ1dy5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzEzOTM1MmUzMjMxMzAyZTM1 MzkyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMTMzMzYzNzM4Mzcucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BADD0jswDQYJKoZIhvcNAQELBQADggEBAJ1LntUUrhGKY3ffBbcYpd+pXSoyK5tu 2BG/BIhPA/X5FpIa98OcSsA+myo5B94Y3Ka39hqmwpy2b6/PrN5TMiIsKuih+flf v5y/d7IzB1pP/O7+CmYPcblRoKq5BbZ3T/COhX6rDwN8BhnJi2OukzmLdR+B/5Ef 7FdS/zIobsF8F2zyMMrvplNDA8Co555fCIcG/GDwi85Zkc/243IxI3dDHm7AsP6a lNWZm6mP1hKqU/vhmiC2/Rrk0wbDjrP6IyAB3u6CB+FvoiAY5ac0UJWlLMybEtIS NepmO2OU0HmB/7ALxS4OcRfnAB1jjZChlYd6dGQ5YWIZdo09Zea9er8= -----END CERTIFICATE-----Generated at Mon Jan 19 14:25:20 2026 by rpki-client