This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/33312e3232302e34342e302f32332d3233203d3e203432373038.roa File: 33312e3232302e34342e302f32332d3233203d3e203432373038.roa (raw, json) Hash identifier: R2hCjWH9WXzClEMP8/2Enc6JOG5bG6/A0Cnw/nm14AA= Subject key identifier: D3:94:F4:78:A8:B0:DE:CF:AF:AA:6D:68:A4:13:65:5F:B6:10:67:00 Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Certificate serial: 19C15FAC5C994209E6565C2065998CDC7362D736 Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/33312e3232302e34342e302f32332d3233203d3e203432373038.roa Signing time: Mon 29 Dec 2025 09:51:01 +0000 ROA not before: Mon 29 Dec 2025 09:46:01 +0000 ROA not after: Mon 28 Dec 2026 09:51:01 +0000 asID: 42708 IP address blocks: 31.220.44.0/23 maxlen: 23 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 01:05:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:c1:5f:ac:5c:99:42:09:e6:56:5c:20:65:99:8c:dc:73:62:d7:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Validity Not Before: Dec 29 09:46:01 2025 GMT Not After : Dec 28 09:51:01 2026 GMT Subject: CN=D394F478A8B0DECFAFAA6D68A413655FB6106700 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:95:66:05:0f:a6:56:29:16:5f:97:6b:9b:b4: ff:3f:66:a3:1d:37:3e:17:3a:82:03:cb:2b:0a:26: 78:75:79:f1:84:1e:4b:aa:41:7d:d2:62:6f:06:bc: 76:a4:ce:9f:5a:bd:da:46:54:53:9e:5c:67:65:95: 5f:3d:5e:18:ae:aa:bb:fe:81:c4:3e:7b:8e:cb:2d: 80:e8:6e:f4:89:8b:b6:15:ea:57:97:0d:7c:60:a5: 74:10:02:2d:c3:ca:bb:df:83:26:b9:c9:42:35:81: 2f:eb:26:32:36:3a:95:61:d6:ce:c8:c9:de:55:4d: 2d:f5:3b:54:6f:89:e7:e6:1f:b8:7e:56:9a:4a:ca: 3b:d3:c0:1c:50:7f:34:d4:e6:c8:d9:1d:61:82:b0: 2b:56:6c:e9:b4:64:53:8d:59:d2:72:1b:75:69:aa: 6f:cd:d2:8c:02:5c:9b:3e:47:c7:6a:83:7c:02:df: 4c:6d:99:28:35:1d:31:9a:95:0f:25:29:62:b0:44: 09:b5:db:cb:38:cb:02:22:f8:19:a8:8b:5b:02:bb: f8:fe:30:bd:a4:cd:cb:73:b6:3a:23:c3:80:26:9a: f7:cc:54:96:8b:65:1b:0e:79:57:92:bb:80:a7:21: 94:c5:fc:79:eb:f2:a2:91:8b:77:89:da:d9:33:00: 09:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:94:F4:78:A8:B0:DE:CF:AF:AA:6D:68:A4:13:65:5F:B6:10:67:00 X509v3 Authority Key Identifier: keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/33312e3232302e34342e302f32332d3233203d3e203432373038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.220.44.0/23 Signature Algorithm: sha256WithRSAEncryption 43:69:fd:4d:2b:fa:b5:ce:f2:23:0d:71:f7:8a:53:74:df:05: 04:7f:c8:0d:18:0f:10:39:83:4b:16:23:bf:3e:b2:db:bf:99: 58:6e:d6:a9:84:67:0b:de:b8:d8:ce:00:9a:38:1d:0e:0f:85: 42:9d:82:fb:ca:1d:30:50:33:04:e7:84:df:d5:58:13:05:57: ab:85:cb:83:e5:9f:01:a3:82:1c:33:54:f4:31:cd:83:c6:bd: 95:5e:ac:60:fb:3e:3f:b1:0d:20:88:92:82:d7:61:46:04:f3: 2a:88:7c:b1:a5:90:f5:13:70:c0:c3:98:57:09:ec:bd:e8:7a: 46:e0:56:35:58:ef:14:23:0f:54:70:7d:32:86:06:d9:05:93: ac:9f:89:3f:e7:b9:07:e5:c9:ec:95:e0:9a:16:f9:79:fe:f2: 35:a0:9f:f8:98:02:ff:41:99:41:8f:13:63:2f:4b:c1:e3:10: ef:4b:cf:0f:47:b6:9a:00:b1:2b:7c:1c:15:ef:31:76:df:fc: 67:10:ef:aa:e5:3a:f3:68:45:b4:67:71:60:34:05:84:af:70: b0:ae:11:f2:ca:e3:ea:8a:36:c0:94:77:57:15:6f:38:47:6b: b1:72:0c:72:16:08:43:d8:46:e1:21:a4:e6:3f:5f:98:06:d4: f4:87:9d:aa -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUGcFfrFyZQgnmVlwgZZmM3HNi1zYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0 ZWE3Nzc5YzAeFw0yNTEyMjkwOTQ2MDFaFw0yNjEyMjgwOTUxMDFaMDMxMTAvBgNV BAMTKEQzOTRGNDc4QThCMERFQ0ZBRkFBNkQ2OEE0MTM2NTVGQjYxMDY3MDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/lWYFD6ZWKRZfl2ubtP8/ZqMd Nz4XOoIDyysKJnh1efGEHkuqQX3SYm8GvHakzp9avdpGVFOeXGdllV89Xhiuqrv+ gcQ+e47LLYDobvSJi7YV6leXDXxgpXQQAi3Dyrvfgya5yUI1gS/rJjI2OpVh1s7I yd5VTS31O1RviefmH7h+VppKyjvTwBxQfzTU5sjZHWGCsCtWbOm0ZFONWdJyG3Vp qm/N0owCXJs+R8dqg3wC30xtmSg1HTGalQ8lKWKwRAm128s4ywIi+Bmoi1sCu/j+ ML2kzctztjojw4AmmvfMVJaLZRsOeVeSu4CnIZTF/Hnr8qKRi3eJ2tkzAAnvAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQU05T0eKiw3s+vqm1opBNlX7YQZwAwHwYDVR0j BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2 bmQ1dy5jZXIwgasGCCsGAQUFBwELBIGeMIGbMIGYBggrBgEFBQcwC4aBi3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzMzMTJlMzIzMjMwMmUzNDM0 MmUzMDJmMzIzMzJkMzIzMzIwM2QzZTIwMzQzMjM3MzAzOC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAR/c LDANBgkqhkiG9w0BAQsFAAOCAQEAQ2n9TSv6tc7yIw1x94pTdN8FBH/IDRgPEDmD SxYjvz6y27+ZWG7WqYRnC9642M4AmjgdDg+FQp2C+8odMFAzBOeE39VYEwVXq4XL g+WfAaOCHDNU9DHNg8a9lV6sYPs+P7ENIIiSgtdhRgTzKoh8saWQ9RNwwMOYVwns veh6RuBWNVjvFCMPVHB9MoYG2QWTrJ+JP+e5B+XJ7JXgmhb5ef7yNaCf+JgC/0GZ QY8TYy9LweMQ70vPD0e2mgCxK3wcFe8xdt/8ZxDvquU682hFtGdxYDQFhK9wsK4R 8srj6oo2wJR3VxVvOEdrsXIMchYIQ9hG4SGk5j9fmAbU9Iedqg== -----END CERTIFICATE-----Generated at Mon Jan 19 14:23:08 2026 by rpki-client