This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3139352e38382e38362e302f32342d3234203d3e20313336373837.roa File: 3139352e38382e38362e302f32342d3234203d3e20313336373837.roa (raw, json) Hash identifier: i8Gu50d8gAtL1scWcHAX0M5wavsES395sG7oKsG/sQ8= Subject key identifier: 2A:80:D5:89:C7:FF:72:04:7F:96:76:84:08:51:EB:FC:BD:4E:0D:8C Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Certificate serial: 76DBBC05AD9EBE268D478003AC6AB60FD23E5ED0 Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3139352e38382e38362e302f32342d3234203d3e20313336373837.roa Signing time: Mon 29 Dec 2025 09:50:50 +0000 ROA not before: Mon 29 Dec 2025 09:45:50 +0000 ROA not after: Mon 28 Dec 2026 09:50:50 +0000 asID: 136787 IP address blocks: 195.88.86.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 01:05:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:db:bc:05:ad:9e:be:26:8d:47:80:03:ac:6a:b6:0f:d2:3e:5e:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Validity Not Before: Dec 29 09:45:50 2025 GMT Not After : Dec 28 09:50:50 2026 GMT Subject: CN=2A80D589C7FF72047F9676840851EBFCBD4E0D8C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:ab:9a:51:69:21:66:73:97:3b:d0:9a:88:a2: ed:30:f2:13:5c:9d:0d:f6:24:b4:f9:bd:c8:56:74: a2:77:65:c7:87:6a:73:87:fd:a4:bd:74:28:65:e2: 50:34:da:29:61:a7:11:49:6e:6e:05:4b:bd:6a:ba: 30:5f:04:28:f2:09:b7:a6:8c:d7:01:ad:ac:26:a0: 0d:39:b3:55:1f:4d:9c:a4:a1:fc:4e:f4:8c:e0:a4: ef:7c:19:e8:6a:fe:38:59:a9:ae:06:25:a0:db:f9: 98:e0:fb:83:80:50:c3:0c:79:2e:aa:ec:5f:08:db: fd:b0:46:e3:84:83:d0:e3:fb:1c:1f:02:02:8a:28: b8:d1:98:19:5c:e9:b3:d3:77:26:7f:11:03:cd:bf: 9e:a4:39:22:40:a7:e2:a4:03:15:ef:4e:36:39:2f: b7:a6:d1:a6:d0:8e:12:c2:08:83:64:58:db:ef:1d: ef:41:25:62:15:a1:42:33:3d:64:85:42:c9:49:04: a2:8f:ac:60:60:ea:3e:c1:37:1b:ed:65:42:94:d1: b2:73:cb:bb:28:a3:9b:a0:75:a6:12:87:60:2a:93: a8:1d:72:ec:e1:fc:fa:aa:1b:40:87:72:ed:10:28: 56:a3:a0:f2:b3:17:4e:fd:3f:10:d2:79:7a:fa:e0: ee:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:80:D5:89:C7:FF:72:04:7F:96:76:84:08:51:EB:FC:BD:4E:0D:8C X509v3 Authority Key Identifier: keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3139352e38382e38362e302f32342d3234203d3e20313336373837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.88.86.0/24 Signature Algorithm: sha256WithRSAEncryption 9b:be:c5:59:cc:c8:a4:1e:65:c9:12:78:e4:41:5e:b0:86:2f: 09:e4:48:1d:f2:d8:2f:ea:2f:9d:c7:81:5b:78:46:89:62:40: de:d2:1e:98:41:05:ae:d1:ba:07:41:eb:01:bc:5a:3a:84:03: e9:29:f8:ba:1d:57:0c:1b:dd:5f:f7:36:c1:bb:e1:c9:be:db: 77:47:2e:3c:10:f8:b7:98:5f:79:ac:cd:cf:6c:8b:4f:2c:3d: f2:d1:71:2d:e2:08:ae:bb:1c:f2:a0:32:77:88:d8:21:33:e0: 48:ce:23:55:12:b0:4e:1e:82:99:2d:60:5b:e3:02:51:eb:91: cb:e2:d0:c9:d5:bd:ab:c3:fc:2c:88:1c:81:61:dd:bd:b9:e9: dc:d7:93:81:7a:07:e4:7f:f8:6b:fd:58:3d:8e:54:d0:94:77: c2:ac:0b:da:79:55:e7:6e:ab:6d:99:1e:d0:f7:27:d7:1d:ac: 42:ad:2b:c9:94:b1:d2:ff:b2:89:4b:ba:51:de:6f:b6:1a:ca: 54:ed:11:e9:a4:d4:8c:9f:65:2c:fe:aa:8d:8e:dc:aa:49:19: c9:6f:0d:5a:be:ed:bf:14:df:10:b9:8c:e0:e9:c5:3a:f9:21: 7a:f2:e0:dc:f9:d0:ce:80:a1:ac:89:b9:e5:1a:f0:cc:05:49: bc:a6:72:af -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUdtu8Ba2eviaNR4ADrGq2D9I+XtAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0 ZWE3Nzc5YzAeFw0yNTEyMjkwOTQ1NTBaFw0yNjEyMjgwOTUwNTBaMDMxMTAvBgNV BAMTKDJBODBENTg5QzdGRjcyMDQ3Rjk2NzY4NDA4NTFFQkZDQkQ0RTBEOEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDaq5pRaSFmc5c70JqIou0w8hNc nQ32JLT5vchWdKJ3ZceHanOH/aS9dChl4lA02ilhpxFJbm4FS71qujBfBCjyCbem jNcBrawmoA05s1UfTZykofxO9IzgpO98Gehq/jhZqa4GJaDb+Zjg+4OAUMMMeS6q 7F8I2/2wRuOEg9Dj+xwfAgKKKLjRmBlc6bPTdyZ/EQPNv56kOSJAp+KkAxXvTjY5 L7em0abQjhLCCINkWNvvHe9BJWIVoUIzPWSFQslJBKKPrGBg6j7BNxvtZUKU0bJz y7soo5ugdaYSh2Aqk6gdcuzh/PqqG0CHcu0QKFajoPKzF079PxDSeXr64O7ZAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUKoDVicf/cgR/lnaECFHr/L1ODYwwHwYDVR0j BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2 bmQ1dy5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzEzOTM1MmUzODM4MmUzODM2 MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzEzMzM2MzczODM3LnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA w1hWMA0GCSqGSIb3DQEBCwUAA4IBAQCbvsVZzMikHmXJEnjkQV6whi8J5Egd8tgv 6i+dx4FbeEaJYkDe0h6YQQWu0boHQesBvFo6hAPpKfi6HVcMG91f9zbBu+HJvtt3 Ry48EPi3mF95rM3PbItPLD3y0XEt4giuuxzyoDJ3iNghM+BIziNVErBOHoKZLWBb 4wJR65HL4tDJ1b2rw/wsiByBYd29uenc15OBegfkf/hr/Vg9jlTQlHfCrAvaeVXn bqttmR7Q9yfXHaxCrSvJlLHS/7KJS7pR3m+2GspU7RHppNSMn2Us/qqNjtyqSRnJ bw1avu2/FN8QuYzg6cU6+SF68uDc+dDOgKGsibnlGvDMBUm8pnKv -----END CERTIFICATE-----Generated at Mon Jan 19 14:25:25 2026 by rpki-client