This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/33312e3138372e37342e302f32342d3332203d3e203531313637.roa File: 33312e3138372e37342e302f32342d3332203d3e203531313637.roa (raw, json) Hash identifier: U1eOk5DcUKrXCgIrFo9rgIDgfZztpCBFE6BToFE6Wz4= Subject key identifier: D4:48:9A:02:9B:F8:13:B3:F9:1C:05:8B:64:FB:11:E5:3C:47:61:16 Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Certificate serial: 66DEDB878F2DC9700A57CD2F7D4233035BCBB96F Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/33312e3138372e37342e302f32342d3332203d3e203531313637.roa Signing time: Mon 29 Dec 2025 09:51:07 +0000 ROA not before: Mon 29 Dec 2025 09:46:07 +0000 ROA not after: Mon 28 Dec 2026 09:51:07 +0000 asID: 51167 IP address blocks: 31.187.74.0/24 maxlen: 32 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 01:05:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:de:db:87:8f:2d:c9:70:0a:57:cd:2f:7d:42:33:03:5b:cb:b9:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Validity Not Before: Dec 29 09:46:07 2025 GMT Not After : Dec 28 09:51:07 2026 GMT Subject: CN=D4489A029BF813B3F91C058B64FB11E53C476116 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:d7:c8:d4:96:aa:ae:c4:7a:89:d6:66:b3:78: 10:6d:5f:ae:bf:fd:00:1f:5d:6c:46:5c:f0:48:90: 08:f5:6c:c8:88:f1:55:44:50:a0:e3:b4:be:5d:f9: c1:62:22:82:52:75:23:39:97:f6:13:45:67:51:4a: 10:f7:7e:ff:d7:61:df:5c:12:a8:65:ce:61:cb:cc: d7:01:25:48:68:8f:c5:75:a1:71:81:73:f3:1e:c3: e8:3e:6e:e7:17:93:69:c7:7e:3d:0f:8d:27:a1:68: c8:69:99:55:45:a8:67:ea:a3:71:a9:58:70:50:b6: ac:f2:f5:e5:62:cc:02:9c:2f:42:50:77:cf:6a:eb: 81:af:51:b1:8b:83:88:46:78:77:70:dd:ed:c2:26: 59:7f:d3:04:9e:fa:ba:1b:4d:c6:7f:b9:ee:7a:1e: 04:89:60:1d:cc:6b:63:85:db:48:8c:d2:da:54:57: 00:f5:90:5a:bc:42:1f:a8:4b:5b:28:58:90:f7:15: 2b:55:5f:7a:df:67:f9:d0:8b:2f:ea:a5:a9:dc:e5: d2:fb:45:ab:f2:52:83:f2:7f:9a:d2:61:5c:c7:2c: 4c:e1:ca:a9:60:72:25:a3:a0:12:25:68:84:bd:9d: b3:d1:df:cd:2a:66:c8:c7:37:0d:a4:b3:0c:e8:7d: c0:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:48:9A:02:9B:F8:13:B3:F9:1C:05:8B:64:FB:11:E5:3C:47:61:16 X509v3 Authority Key Identifier: keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/33312e3138372e37342e302f32342d3332203d3e203531313637.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.187.74.0/24 Signature Algorithm: sha256WithRSAEncryption 33:d0:3a:87:e6:7e:e5:a8:24:57:43:aa:2d:6d:9c:f7:19:4a: 3d:cd:9d:85:35:be:60:d8:d7:e2:1d:c8:b0:95:fe:ef:5a:29: 40:25:f9:bf:b0:c4:22:59:82:fa:dd:2d:8f:09:5e:45:27:a5: 8a:5a:f2:40:cc:50:76:8f:85:65:5d:f5:f0:cc:83:33:ba:ba: 8d:b3:40:7c:00:de:8c:cb:3a:46:e7:e4:28:f5:1f:25:22:24: c5:46:1e:14:42:ad:e9:21:a7:dc:b3:87:4e:e5:dc:76:43:9e: 15:5d:dd:e6:74:63:40:14:7d:c9:5e:80:4a:2c:47:30:73:6f: 35:2b:22:fb:d4:2e:4d:69:95:0c:f2:35:9a:37:1c:99:d4:a7: 1f:ee:82:17:bf:98:d9:3e:6d:cb:cd:3a:d2:38:65:cf:c0:49: 20:99:f4:b1:cf:3a:bf:fb:e7:69:60:2d:77:f6:74:1a:ae:b1: 76:1e:08:76:7e:fd:06:0f:ef:e3:84:d6:2d:0f:9f:33:b7:04: 09:6e:4d:48:9d:d0:c8:3d:f7:33:7a:13:34:48:2c:49:8f:46: 1c:54:fc:01:5f:90:56:59:fb:75:25:6d:d4:b0:ad:3b:83:43: b2:5d:7d:45:cc:55:f5:22:9e:d1:4b:57:c6:f5:a7:1b:2e:5d: 3b:74:85:71 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUZt7bh48tyXAKV80vfUIzA1vLuW8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0 ZWE3Nzc5YzAeFw0yNTEyMjkwOTQ2MDdaFw0yNjEyMjgwOTUxMDdaMDMxMTAvBgNV BAMTKEQ0NDg5QTAyOUJGODEzQjNGOTFDMDU4QjY0RkIxMUU1M0M0NzYxMTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDR18jUlqquxHqJ1mazeBBtX66/ /QAfXWxGXPBIkAj1bMiI8VVEUKDjtL5d+cFiIoJSdSM5l/YTRWdRShD3fv/XYd9c EqhlzmHLzNcBJUhoj8V1oXGBc/Mew+g+bucXk2nHfj0PjSehaMhpmVVFqGfqo3Gp WHBQtqzy9eVizAKcL0JQd89q64GvUbGLg4hGeHdw3e3CJll/0wSe+robTcZ/ue56 HgSJYB3Ma2OF20iM0tpUVwD1kFq8Qh+oS1soWJD3FStVX3rfZ/nQiy/qpanc5dL7 RavyUoPyf5rSYVzHLEzhyqlgciWjoBIlaIS9nbPR380qZsjHNw2kswzofcDZAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQU1EiaApv4E7P5HAWLZPsR5TxHYRYwHwYDVR0j BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2 bmQ1dy5jZXIwgasGCCsGAQUFBwELBIGeMIGbMIGYBggrBgEFBQcwC4aBi3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzMzMTJlMzEzODM3MmUzNzM0 MmUzMDJmMzIzNDJkMzMzMjIwM2QzZTIwMzUzMTMxMzYzNy5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAB+7 SjANBgkqhkiG9w0BAQsFAAOCAQEAM9A6h+Z+5agkV0OqLW2c9xlKPc2dhTW+YNjX 4h3IsJX+71opQCX5v7DEIlmC+t0tjwleRSelilryQMxQdo+FZV318MyDM7q6jbNA fADejMs6RufkKPUfJSIkxUYeFEKt6SGn3LOHTuXcdkOeFV3d5nRjQBR9yV6ASixH MHNvNSsi+9QuTWmVDPI1mjccmdSnH+6CF7+Y2T5ty8060jhlz8BJIJn0sc86v/vn aWAtd/Z0Gq6xdh4Idn79Bg/v44TWLQ+fM7cECW5NSJ3QyD33M3oTNEgsSY9GHFT8 AV+QVln7dSVt1LCtO4NDsl19RcxV9SKe0UtXxvWnGy5dO3SFcQ== -----END CERTIFICATE-----Generated at Mon Jan 19 14:25:26 2026 by rpki-client