This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/33312e3232302e34332e302f32342d3234203d3e203633343733.roa File: 33312e3232302e34332e302f32342d3234203d3e203633343733.roa (raw, json) Hash identifier: 86VuP2l44UM3ST18zqmL+0WtB/XBCgP1ddkCR1TqD9o= Subject key identifier: BE:E6:62:92:E8:F2:38:1B:EC:8C:95:2E:7B:6C:AB:BA:21:73:5A:31 Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Certificate serial: 3D5125E80C0BAC975B713636D1D652F3E4B74660 Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/33312e3232302e34332e302f32342d3234203d3e203633343733.roa Signing time: Mon 29 Dec 2025 09:50:58 +0000 ROA not before: Mon 29 Dec 2025 09:45:58 +0000 ROA not after: Mon 28 Dec 2026 09:50:58 +0000 asID: 63473 IP address blocks: 31.220.43.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 01:05:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:51:25:e8:0c:0b:ac:97:5b:71:36:36:d1:d6:52:f3:e4:b7:46:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Validity Not Before: Dec 29 09:45:58 2025 GMT Not After : Dec 28 09:50:58 2026 GMT Subject: CN=BEE66292E8F2381BEC8C952E7B6CABBA21735A31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:f7:a9:39:10:85:1c:e4:90:f2:60:21:04:bf: 45:6c:76:62:fb:f6:e5:09:49:10:3f:ce:7f:67:5b: 2b:12:2d:05:c1:8c:9a:7d:bb:ed:b0:25:35:fd:78: 57:25:90:a6:a4:78:e2:4c:b9:52:ab:c4:6c:ae:38: 4e:00:83:00:99:3e:5d:51:94:a9:d5:8c:81:f5:41: 8d:4b:97:5e:fc:57:1d:7a:6b:bc:ec:fc:08:4a:f2: a5:37:22:4d:ad:36:cb:8a:59:8f:a8:a6:7b:48:76: 50:82:13:26:a4:27:f4:f2:7a:b6:73:3e:84:39:dd: 55:52:df:f3:c3:86:60:97:30:e7:14:04:0e:f8:9d: 3d:7c:23:30:68:08:bd:b9:3f:95:31:6d:97:20:6c: ae:25:ff:d6:b3:d4:55:25:dc:cb:f5:9c:d9:44:20: 4b:68:9f:ae:5e:2b:c1:1e:64:34:03:2e:b9:87:1c: 69:10:66:e5:bd:9e:07:2d:81:72:b1:0e:37:74:fd: a9:a1:de:c5:7b:d2:76:ff:b2:3a:5e:39:ad:d1:1a: 30:06:51:70:84:15:fa:94:95:9e:fb:99:1c:b0:44: 54:bc:27:94:dd:9d:0a:5b:e0:ce:54:28:45:bb:c9: b5:dd:ef:af:53:05:5c:1f:ae:a4:13:8c:92:96:a2: 90:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:E6:62:92:E8:F2:38:1B:EC:8C:95:2E:7B:6C:AB:BA:21:73:5A:31 X509v3 Authority Key Identifier: keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/33312e3232302e34332e302f32342d3234203d3e203633343733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.220.43.0/24 Signature Algorithm: sha256WithRSAEncryption 49:74:b7:39:44:21:9c:19:5a:a0:c2:4c:87:a4:4e:bd:b5:a7: ab:e6:bd:dc:bd:91:50:18:36:95:a7:6d:ad:d7:f2:ae:e3:aa: 55:96:fa:02:df:7a:10:8b:6c:c8:44:96:a6:bb:ca:89:f9:cc: 03:0c:13:68:3b:d7:b8:e3:7f:e3:c5:47:9a:a4:45:d7:cf:f1: 9f:a3:ca:8c:79:df:f3:c5:39:f9:6e:39:2c:6c:04:4c:0a:e2: 47:ee:e3:00:27:02:b0:3d:26:37:29:85:61:29:69:9a:e7:23: bd:45:b2:4d:96:9c:e9:88:30:49:a1:85:bb:b8:28:99:41:8f: 31:62:9c:7f:4b:fc:51:5c:93:9c:63:72:d3:ef:6a:97:b3:2c: 53:76:9f:69:6c:25:5d:cc:f0:98:59:83:ca:e1:55:98:04:13: 56:43:c7:77:ec:d1:d0:ff:b5:60:ac:dc:bd:44:cc:17:2e:3b: f4:de:72:2e:23:2a:b4:4f:30:ad:f7:c9:41:5b:9a:72:69:87: fb:81:57:62:7b:f0:e1:da:e7:79:3c:a3:e4:5f:82:c6:cf:62: 5d:6d:37:b2:cc:4a:45:66:45:78:51:f9:dd:68:48:35:cc:38: 27:62:69:2a:61:28:7c:cd:a2:21:94:e5:a0:67:23:49:c4:be: c7:a6:82:15 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUPVEl6AwLrJdbcTY20dZS8+S3RmAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0 ZWE3Nzc5YzAeFw0yNTEyMjkwOTQ1NThaFw0yNjEyMjgwOTUwNThaMDMxMTAvBgNV BAMTKEJFRTY2MjkyRThGMjM4MUJFQzhDOTUyRTdCNkNBQkJBMjE3MzVBMzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCg96k5EIUc5JDyYCEEv0VsdmL7 9uUJSRA/zn9nWysSLQXBjJp9u+2wJTX9eFclkKakeOJMuVKrxGyuOE4AgwCZPl1R lKnVjIH1QY1Ll178Vx16a7zs/AhK8qU3Ik2tNsuKWY+opntIdlCCEyakJ/TyerZz PoQ53VVS3/PDhmCXMOcUBA74nT18IzBoCL25P5UxbZcgbK4l/9az1FUl3Mv1nNlE IEton65eK8EeZDQDLrmHHGkQZuW9ngctgXKxDjd0/amh3sV70nb/sjpeOa3RGjAG UXCEFfqUlZ77mRywRFS8J5TdnQpb4M5UKEW7ybXd769TBVwfrqQTjJKWopBdAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUvuZikujyOBvsjJUue2yruiFzWjEwHwYDVR0j BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2 bmQ1dy5jZXIwgasGCCsGAQUFBwELBIGeMIGbMIGYBggrBgEFBQcwC4aBi3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzMzMTJlMzIzMjMwMmUzNDMz MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzYzMzM0MzczMy5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAB/c KzANBgkqhkiG9w0BAQsFAAOCAQEASXS3OUQhnBlaoMJMh6ROvbWnq+a93L2RUBg2 ladtrdfyruOqVZb6At96EItsyESWprvKifnMAwwTaDvXuON/48VHmqRF18/xn6PK jHnf88U5+W45LGwETAriR+7jACcCsD0mNymFYSlpmucjvUWyTZac6YgwSaGFu7go mUGPMWKcf0v8UVyTnGNy0+9ql7MsU3afaWwlXczwmFmDyuFVmAQTVkPHd+zR0P+1 YKzcvUTMFy479N5yLiMqtE8wrffJQVuacmmH+4FXYnvw4drneTyj5F+Cxs9iXW03 ssxKRWZFeFH53WhINcw4J2JpKmEofM2iIZTloGcjScS+x6aCFQ== -----END CERTIFICATE-----Generated at Mon Jan 19 14:23:21 2026 by rpki-client