This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3231332e3139392e33322e302f31392d3332203d3e203531313637.roa File: 3231332e3139392e33322e302f31392d3332203d3e203531313637.roa (raw, json) Hash identifier: 23w3Lq2Spowx7G7NY+YmnN84gNLfascoNu1jrUBInnw= Subject key identifier: 85:87:F9:97:ED:7D:BB:E5:ED:7C:33:35:C1:8F:E4:E8:70:AB:2B:0C Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Certificate serial: 3158611F68E647F350A13F31463CDD61A83DE65E Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3231332e3139392e33322e302f31392d3332203d3e203531313637.roa Signing time: Wed 07 Jan 2026 11:51:20 +0000 ROA not before: Wed 07 Jan 2026 11:46:20 +0000 ROA not after: Wed 06 Jan 2027 11:51:20 +0000 asID: 51167 IP address blocks: 213.199.32.0/19 maxlen: 32 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 01:05:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:58:61:1f:68:e6:47:f3:50:a1:3f:31:46:3c:dd:61:a8:3d:e6:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Validity Not Before: Jan 7 11:46:20 2026 GMT Not After : Jan 6 11:51:20 2027 GMT Subject: CN=8587F997ED7DBBE5ED7C3335C18FE4E870AB2B0C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:66:df:e4:6e:76:18:44:6b:10:2a:7b:8b:58: b0:aa:f5:68:5e:fb:63:80:04:aa:b7:ef:4a:7d:16: f3:f3:a0:f2:d1:bc:43:03:70:90:4a:98:de:47:66: 19:56:f2:c1:fc:29:9e:d7:41:e8:5f:3c:21:92:99: c6:02:c0:eb:df:29:5a:ad:a9:bd:f6:3e:10:a7:dd: 5e:c6:00:99:a2:5c:7b:2a:36:33:53:39:c2:e6:64: 44:37:2d:26:24:fa:71:9c:b0:85:4c:ca:ff:4d:ec: e5:46:fd:e2:37:a0:80:23:c7:6f:6e:60:7c:bb:0f: ca:b1:b0:e6:18:02:18:6e:5b:58:81:a9:39:dc:20: 05:d0:2c:11:5b:ec:a3:d7:d3:34:12:46:2e:0f:b4: 0e:22:c7:42:08:a2:3c:af:c6:1b:5e:5c:ab:aa:e1: d3:68:b6:10:e0:c5:4d:ff:4f:4b:1a:a1:57:2b:07: 59:61:c9:f4:be:07:bd:0d:5a:37:b4:b8:1e:c3:98: 78:3b:f0:27:b9:98:84:8a:4e:d9:ee:b7:1d:ae:59: 33:b3:04:aa:f5:9b:31:69:c9:76:c0:4a:39:e4:c0: d0:19:9a:5c:9d:19:25:3b:a2:4f:4b:53:35:73:08: f5:16:f5:64:d6:98:1b:72:bd:bb:4a:c3:20:86:af: ba:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:87:F9:97:ED:7D:BB:E5:ED:7C:33:35:C1:8F:E4:E8:70:AB:2B:0C X509v3 Authority Key Identifier: keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3231332e3139392e33322e302f31392d3332203d3e203531313637.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 213.199.32.0/19 Signature Algorithm: sha256WithRSAEncryption 5d:0d:2d:b3:35:2f:b9:91:2e:2e:bb:b4:48:a3:96:a8:9b:fa: 25:6d:cd:8f:63:0f:b4:53:d4:81:a1:60:51:d4:f7:a5:bd:8c: 10:ca:4c:38:5f:8d:af:72:55:64:3f:1d:cb:1d:b4:87:f8:7b: 54:05:ae:66:16:a4:be:4c:e2:7a:e1:ba:65:8d:de:ed:e8:e4: 8c:7e:4c:ab:7c:4a:b0:f8:cb:46:69:16:9f:8b:30:b6:e0:a0: 89:c6:41:ab:2d:76:6d:71:2c:6f:3f:d4:cf:6e:47:c1:9d:8b: 4d:9d:b4:97:04:1a:11:c8:6f:aa:53:0d:d9:11:5b:84:d1:f7: 4e:fa:1e:61:18:6a:bc:50:a1:8a:f9:4e:ad:dc:37:b0:72:70: f7:3b:ef:a8:67:a2:41:ad:1e:23:22:3f:8c:d9:23:05:9f:36: 3a:46:f7:a9:7b:d8:57:64:f2:e7:1f:4a:4d:5a:d4:2d:af:c8: da:52:1c:5c:6d:4b:68:b2:6a:ac:64:07:d4:97:9f:19:6f:ed: b8:68:94:33:97:8b:d1:8b:f7:a0:8c:be:03:43:34:ac:8f:3e: fb:a1:ca:a5:57:59:3b:03:89:e8:cb:97:d6:c4:f3:3e:a3:25: 0a:a9:b0:63:16:be:b5:77:26:aa:2f:a2:eb:e2:bf:c9:94:37: 0d:7f:17:f5 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUMVhhH2jmR/NQoT8xRjzdYag95l4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0 ZWE3Nzc5YzAeFw0yNjAxMDcxMTQ2MjBaFw0yNzAxMDYxMTUxMjBaMDMxMTAvBgNV BAMTKDg1ODdGOTk3RUQ3REJCRTVFRDdDMzMzNUMxOEZFNEU4NzBBQjJCMEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCZt/kbnYYRGsQKnuLWLCq9Whe +2OABKq370p9FvPzoPLRvEMDcJBKmN5HZhlW8sH8KZ7XQehfPCGSmcYCwOvfKVqt qb32PhCn3V7GAJmiXHsqNjNTOcLmZEQ3LSYk+nGcsIVMyv9N7OVG/eI3oIAjx29u YHy7D8qxsOYYAhhuW1iBqTncIAXQLBFb7KPX0zQSRi4PtA4ix0IIojyvxhteXKuq 4dNothDgxU3/T0saoVcrB1lhyfS+B70NWje0uB7DmHg78Ce5mISKTtnutx2uWTOz BKr1mzFpyXbASjnkwNAZmlydGSU7ok9LUzVzCPUW9WTWmBtyvbtKwyCGr7qNAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUhYf5l+19u+XtfDM1wY/k6HCrKwwwHwYDVR0j BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2 bmQ1dy5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzIzMTMzMmUzMTM5MzkyZTMz MzIyZTMwMmYzMTM5MmQzMzMyMjAzZDNlMjAzNTMxMzEzNjM3LnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQF 1ccgMA0GCSqGSIb3DQEBCwUAA4IBAQBdDS2zNS+5kS4uu7RIo5aom/olbc2PYw+0 U9SBoWBR1PelvYwQykw4X42vclVkPx3LHbSH+HtUBa5mFqS+TOJ64bpljd7t6OSM fkyrfEqw+MtGaRafizC24KCJxkGrLXZtcSxvP9TPbkfBnYtNnbSXBBoRyG+qUw3Z EVuE0fdO+h5hGGq8UKGK+U6t3DewcnD3O++oZ6JBrR4jIj+M2SMFnzY6Rvepe9hX ZPLnH0pNWtQtr8jaUhxcbUtosmqsZAfUl58Zb+24aJQzl4vRi/egjL4DQzSsjz77 ocqlV1k7A4noy5fWxPM+oyUKqbBjFr61dyaqL6Lr4r/JlDcNfxf1 -----END CERTIFICATE-----Generated at Mon Jan 19 14:27:20 2026 by rpki-client