This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/33312e3138372e37322e302f32342d3234203d3e203437353833.roa File: 33312e3138372e37322e302f32342d3234203d3e203437353833.roa (raw, json) Hash identifier: Dwys+G5+YH9+/Kx/jXreTTx2D3pGgvUtvz5E1VMUWdA= Subject key identifier: 1E:65:A4:CE:6C:17:4E:57:8C:15:70:98:1D:0F:B4:E9:AE:8F:E3:01 Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Certificate serial: 6FAFCCF822EF52A0EB0046DCC08F4E28329F95DC Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/33312e3138372e37322e302f32342d3234203d3e203437353833.roa Signing time: Mon 29 Dec 2025 09:50:34 +0000 ROA not before: Mon 29 Dec 2025 09:45:34 +0000 ROA not after: Mon 28 Dec 2026 09:50:34 +0000 asID: 47583 IP address blocks: 31.187.72.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 01:05:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:af:cc:f8:22:ef:52:a0:eb:00:46:dc:c0:8f:4e:28:32:9f:95:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Validity Not Before: Dec 29 09:45:34 2025 GMT Not After : Dec 28 09:50:34 2026 GMT Subject: CN=1E65A4CE6C174E578C1570981D0FB4E9AE8FE301 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:de:20:a9:7b:0f:72:26:38:37:01:3f:18:ab: 47:93:a4:0c:50:a7:5c:0d:77:1f:85:f4:ba:a2:1e: 3b:5c:74:0d:8b:8d:a8:dd:e7:40:0b:08:19:94:ef: 56:46:f2:2a:f3:02:35:51:15:83:7c:89:cf:38:17: 2c:4e:63:58:55:95:bb:d8:1b:f1:c0:90:54:ed:30: 08:69:a4:17:5a:4d:ca:4f:82:95:99:72:a9:7c:b1: ab:b3:3b:fe:40:76:bc:56:f6:31:d5:b3:2c:51:26: 92:85:06:eb:cd:e3:92:43:69:70:06:9b:a8:7c:ae: e6:3e:10:36:e0:97:6e:70:9a:cd:43:c4:44:66:34: 50:94:90:43:2e:59:38:8b:22:db:65:8c:4f:28:da: 57:e5:74:bc:f1:a7:61:79:d2:4b:23:9b:08:ae:2a: 33:30:0f:0b:03:d5:c6:fc:be:77:b6:ac:3c:20:ac: 74:f1:2a:59:25:78:0f:83:97:c2:59:a8:91:ff:e3: 08:ef:00:6e:0e:e1:f5:8a:4d:c9:6f:38:86:6a:81: 23:bb:82:e3:1c:4d:af:b0:f5:47:b0:79:88:a3:13: 0c:ec:2a:4e:28:fa:d4:41:1c:de:26:e0:b9:ca:52: 09:7c:68:a1:81:cc:6c:fa:b5:c5:f8:3b:e3:f0:4e: 21:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:65:A4:CE:6C:17:4E:57:8C:15:70:98:1D:0F:B4:E9:AE:8F:E3:01 X509v3 Authority Key Identifier: keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/33312e3138372e37322e302f32342d3234203d3e203437353833.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.187.72.0/24 Signature Algorithm: sha256WithRSAEncryption 33:e0:2e:b2:a2:41:bd:7c:a5:b5:d4:69:ec:07:80:ae:eb:83: a1:76:49:ff:20:1e:32:f6:78:c8:e2:ac:ee:7a:ba:27:38:7e: e5:96:98:53:93:b2:8a:9e:19:3f:88:67:75:d9:75:73:a8:cc: 65:f8:44:56:fb:14:57:f8:d5:54:58:4f:d7:d4:48:ba:22:4a: 66:96:cd:64:95:b3:84:8c:7c:1a:50:ac:78:30:56:57:21:eb: 85:0c:79:af:12:08:10:bb:75:1d:a4:7e:a9:97:c9:e3:cc:bc: b2:29:5f:bf:e7:40:34:38:77:f8:79:7f:d3:50:0f:4b:00:ae: bb:cb:a9:a8:c6:95:31:a1:53:c9:f2:c7:0e:ae:30:bd:41:c9: 9b:8e:5d:75:bb:de:ea:33:c5:a3:40:95:38:8b:26:0e:1d:b0: 4a:bc:d4:5a:0e:1c:1a:b4:bc:af:f1:74:ac:c0:63:e9:4c:df: 49:9f:78:02:b4:a0:16:ee:03:d4:cd:3e:d7:a8:8b:e1:70:f9: 48:62:da:2f:7f:e8:f2:39:c4:b3:33:b1:c0:e9:42:c4:59:0a: b4:8a:bb:e6:7a:58:c0:16:cb:d8:17:97:f6:ae:68:d3:f2:c0: 5d:aa:ee:3f:d8:ac:c2:86:5a:a4:4f:c9:fc:0e:bc:3b:85:3d: 1f:1a:42:9e -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUb6/M+CLvUqDrAEbcwI9OKDKfldwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0 ZWE3Nzc5YzAeFw0yNTEyMjkwOTQ1MzRaFw0yNjEyMjgwOTUwMzRaMDMxMTAvBgNV BAMTKDFFNjVBNENFNkMxNzRFNTc4QzE1NzA5ODFEMEZCNEU5QUU4RkUzMDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC13iCpew9yJjg3AT8Yq0eTpAxQ p1wNdx+F9LqiHjtcdA2Ljajd50ALCBmU71ZG8irzAjVRFYN8ic84FyxOY1hVlbvY G/HAkFTtMAhppBdaTcpPgpWZcql8sauzO/5AdrxW9jHVsyxRJpKFBuvN45JDaXAG m6h8ruY+EDbgl25wms1DxERmNFCUkEMuWTiLIttljE8o2lfldLzxp2F50ksjmwiu KjMwDwsD1cb8vne2rDwgrHTxKlkleA+Dl8JZqJH/4wjvAG4O4fWKTclvOIZqgSO7 guMcTa+w9UeweYijEwzsKk4o+tRBHN4m4LnKUgl8aKGBzGz6tcX4O+PwTiGbAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUHmWkzmwXTleMFXCYHQ+06a6P4wEwHwYDVR0j BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2 bmQ1dy5jZXIwgasGCCsGAQUFBwELBIGeMIGbMIGYBggrBgEFBQcwC4aBi3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzMzMTJlMzEzODM3MmUzNzMy MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzQzNzM1MzgzMy5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAB+7 SDANBgkqhkiG9w0BAQsFAAOCAQEAM+AusqJBvXyltdRp7AeAruuDoXZJ/yAeMvZ4 yOKs7nq6Jzh+5ZaYU5Oyip4ZP4hnddl1c6jMZfhEVvsUV/jVVFhP19RIuiJKZpbN ZJWzhIx8GlCseDBWVyHrhQx5rxIIELt1HaR+qZfJ48y8silfv+dANDh3+Hl/01AP SwCuu8upqMaVMaFTyfLHDq4wvUHJm45ddbve6jPFo0CVOIsmDh2wSrzUWg4cGrS8 r/F0rMBj6UzfSZ94ArSgFu4D1M0+16iL4XD5SGLaL3/o8jnEszOxwOlCxFkKtIq7 5npYwBbL2BeX9q5o0/LAXaruP9iswoZapE/J/A68O4U9HxpCng== -----END CERTIFICATE-----Generated at Mon Jan 19 14:24:54 2026 by rpki-client