This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/33312e3138372e36342e302f32342d3234203d3e203530363733.roa File: 33312e3138372e36342e302f32342d3234203d3e203530363733.roa (raw, json) Hash identifier: qDw79NTSYLTzekqaWIJgALGbfdmX20RbLrfhA4BeEXA= Subject key identifier: 38:B9:4C:31:8B:49:F7:CA:24:BE:82:9D:2A:D3:A5:8D:C6:36:E6:D6 Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Certificate serial: 79841563C3C3EAFD4D42F90E5F808F21690B806B Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/33312e3138372e36342e302f32342d3234203d3e203530363733.roa Signing time: Mon 29 Dec 2025 09:50:43 +0000 ROA not before: Mon 29 Dec 2025 09:45:43 +0000 ROA not after: Mon 28 Dec 2026 09:50:43 +0000 asID: 50673 IP address blocks: 31.187.64.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 12 Jan 2026 07:52:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:84:15:63:c3:c3:ea:fd:4d:42:f9:0e:5f:80:8f:21:69:0b:80:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Validity Not Before: Dec 29 09:45:43 2025 GMT Not After : Dec 28 09:50:43 2026 GMT Subject: CN=38B94C318B49F7CA24BE829D2AD3A58DC636E6D6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:b4:a0:f4:61:85:b2:6c:46:04:42:8c:e1:48: 86:ba:b0:d0:08:e8:c3:f5:5c:3c:3b:c4:a0:60:5a: 12:61:41:18:17:a4:7d:7f:51:6e:67:11:b5:3e:20: 62:98:34:6c:3f:7f:21:c0:37:ac:35:d8:b4:53:bc: a0:5d:f9:6c:17:95:54:c9:6f:4f:44:35:1d:bb:1b: 38:82:92:79:3b:34:e9:11:2b:2b:07:18:9f:25:3f: 95:cc:40:32:49:c7:37:72:49:25:75:74:ed:be:81: 8f:5a:c0:f1:d9:5a:31:7c:9b:63:7d:36:97:01:28: 0a:c6:1d:15:67:aa:3f:a8:0d:9c:d4:94:8c:e7:23: e2:ae:23:f6:27:0b:61:ff:cb:ca:4d:1d:69:0d:06: 7b:ae:3b:80:7f:4a:48:69:f8:84:f3:76:1e:1b:0f: 3e:10:a3:19:c6:79:8b:23:48:8e:39:e2:a3:b1:4b: c9:21:0d:98:02:cb:25:67:68:92:d5:0c:25:08:a3: 40:69:db:04:36:35:75:17:a3:1d:a7:ec:c1:d3:9d: fb:dd:f2:af:a6:bb:3d:b4:8d:df:5b:9c:2c:d1:fd: c0:a5:74:a3:48:2a:64:39:72:1c:73:7a:7e:a8:7f: 09:5a:08:41:00:34:36:2f:5b:72:d8:f2:b3:4f:c4: f8:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:B9:4C:31:8B:49:F7:CA:24:BE:82:9D:2A:D3:A5:8D:C6:36:E6:D6 X509v3 Authority Key Identifier: keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/33312e3138372e36342e302f32342d3234203d3e203530363733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.187.64.0/24 Signature Algorithm: sha256WithRSAEncryption 48:68:5f:29:84:a7:ba:5e:34:8d:be:ae:63:ea:64:22:65:09: 11:5e:92:c9:c2:90:bd:2f:ba:c6:38:0c:33:de:83:e8:ed:2b: 5b:a3:27:bd:0e:ba:45:ff:78:79:3d:fe:76:5d:42:ed:5c:a3: ed:05:f7:4a:f6:43:a4:65:47:f5:66:83:ad:7e:d6:f3:fe:83: 8b:da:6b:8b:1b:9c:10:d6:60:73:b0:af:94:74:e1:28:fd:21: 98:f2:27:22:d5:07:f7:da:84:fe:d7:b3:91:8d:ab:b1:61:dc: b8:fb:9a:a3:fd:42:c3:ae:d5:20:2c:70:9c:97:29:60:1f:bb: 55:06:3a:cb:14:ef:be:05:fc:8e:01:ea:f1:b6:11:ef:19:7d: b8:ab:2d:02:bb:07:b3:51:18:f6:c8:19:17:4f:82:0e:22:fc: 85:5a:c6:66:6d:8a:3e:9b:d7:2d:6e:64:ac:62:3e:8c:58:8e: 35:cf:be:a6:85:b8:7c:ba:a7:57:27:73:10:3a:70:82:30:de: ae:bb:e8:8c:d2:0b:7d:7a:3f:49:dd:a9:0c:ad:9e:7f:c0:6c: 9c:a4:5f:ff:7b:80:df:2f:ac:88:6c:70:33:a9:5d:93:bb:82: fd:87:56:bd:6c:4c:34:14:9f:b1:1c:b4:c3:7f:07:e6:4b:bd: 50:45:13:67 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUeYQVY8PD6v1NQvkOX4CPIWkLgGswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0 ZWE3Nzc5YzAeFw0yNTEyMjkwOTQ1NDNaFw0yNjEyMjgwOTUwNDNaMDMxMTAvBgNV BAMTKDM4Qjk0QzMxOEI0OUY3Q0EyNEJFODI5RDJBRDNBNThEQzYzNkU2RDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOtKD0YYWybEYEQozhSIa6sNAI 6MP1XDw7xKBgWhJhQRgXpH1/UW5nEbU+IGKYNGw/fyHAN6w12LRTvKBd+WwXlVTJ b09ENR27GziCknk7NOkRKysHGJ8lP5XMQDJJxzdySSV1dO2+gY9awPHZWjF8m2N9 NpcBKArGHRVnqj+oDZzUlIznI+KuI/YnC2H/y8pNHWkNBnuuO4B/Skhp+ITzdh4b Dz4QoxnGeYsjSI454qOxS8khDZgCyyVnaJLVDCUIo0Bp2wQ2NXUXox2n7MHTnfvd 8q+muz20jd9bnCzR/cCldKNIKmQ5chxzen6ofwlaCEEANDYvW3LY8rNPxPg5AgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUOLlMMYtJ98okvoKdKtOljcY25tYwHwYDVR0j BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2 bmQ1dy5jZXIwgasGCCsGAQUFBwELBIGeMIGbMIGYBggrBgEFBQcwC4aBi3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzMzMTJlMzEzODM3MmUzNjM0 MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzUzMDM2MzczMy5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAB+7 QDANBgkqhkiG9w0BAQsFAAOCAQEASGhfKYSnul40jb6uY+pkImUJEV6SycKQvS+6 xjgMM96D6O0rW6MnvQ66Rf94eT3+dl1C7Vyj7QX3SvZDpGVH9WaDrX7W8/6Di9pr ixucENZgc7CvlHThKP0hmPInItUH99qE/tezkY2rsWHcuPuao/1Cw67VICxwnJcp YB+7VQY6yxTvvgX8jgHq8bYR7xl9uKstArsHs1EY9sgZF0+CDiL8hVrGZm2KPpvX LW5krGI+jFiONc++poW4fLqnVydzEDpwgjDerrvojNILfXo/Sd2pDK2ef8BsnKRf /3uA3y+siGxwM6ldk7uC/YdWvWxMNBSfsRy0w38H5ku9UEUTZw== -----END CERTIFICATE-----Generated at Sun Jan 11 11:46:47 2026 by rpki-client