This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/34352e3135322e34342e302f32342d3234203d3e203437353833.roa File: 34352e3135322e34342e302f32342d3234203d3e203437353833.roa (raw, json) Hash identifier: hJBCqdVgJBHx/sQV/ACxwzjoTm/3hPH8iEX23h+1oH0= Subject key identifier: E2:60:24:5F:C4:F8:80:72:F2:80:49:EA:40:C5:14:63:B2:F9:6D:01 Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Certificate serial: 27C320CF2A689C39F62DDDBD6D8CCD704F69AF7F Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/34352e3135322e34342e302f32342d3234203d3e203437353833.roa Signing time: Mon 29 Dec 2025 09:50:49 +0000 ROA not before: Mon 29 Dec 2025 09:45:49 +0000 ROA not after: Mon 28 Dec 2026 09:50:49 +0000 asID: 47583 IP address blocks: 45.152.44.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 01:05:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:c3:20:cf:2a:68:9c:39:f6:2d:dd:bd:6d:8c:cd:70:4f:69:af:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Validity Not Before: Dec 29 09:45:49 2025 GMT Not After : Dec 28 09:50:49 2026 GMT Subject: CN=E260245FC4F88072F28049EA40C51463B2F96D01 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:46:7e:19:d5:6f:b7:ec:e3:db:eb:1a:f8:bc: 5b:31:29:c7:dc:c6:37:f9:56:25:a3:86:fb:42:3b: d0:ae:2f:40:b6:c8:84:01:e8:1f:4a:c1:d7:e5:8b: a2:7d:58:d1:ca:ba:52:ca:ca:73:7b:b8:d9:69:0b: 16:7f:9c:be:e1:07:4d:68:ad:7a:6f:c1:78:5a:e7: f2:51:9a:98:54:53:72:12:90:f0:9b:3c:9c:34:ca: fe:08:73:b1:f5:27:78:9b:99:c9:58:66:1f:16:97: 25:10:af:3e:7a:f0:19:40:ef:6c:d8:35:2c:08:36: 1f:2b:55:a4:e0:c9:e8:d8:53:5e:ee:a4:24:29:a7: b9:14:99:36:8b:e9:9b:c2:a9:72:69:9a:2a:9f:73: a3:41:38:78:dc:e3:ca:26:a4:96:9a:a8:61:85:74: 70:8b:8f:63:6d:35:08:20:e6:59:f5:0c:38:0b:d9: 38:a9:56:f0:d2:fd:ea:e3:f8:e6:c4:eb:66:af:ef: b6:f7:fe:ce:b0:96:3e:a1:fa:cb:ad:ae:08:61:74: 52:84:f9:d0:42:48:c4:61:01:03:e6:23:06:6c:21: d1:98:68:ed:ac:80:29:b1:d7:bf:91:67:ba:7a:ad: 4f:dd:a3:6a:67:4c:07:05:38:4e:6d:0e:f6:7a:9f: 98:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:60:24:5F:C4:F8:80:72:F2:80:49:EA:40:C5:14:63:B2:F9:6D:01 X509v3 Authority Key Identifier: keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/34352e3135322e34342e302f32342d3234203d3e203437353833.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.152.44.0/24 Signature Algorithm: sha256WithRSAEncryption 1e:f0:22:cb:30:bf:d9:54:d7:d3:08:37:e2:eb:7d:4d:55:f8: 02:d1:6f:d8:5f:d2:55:76:74:1c:84:60:03:07:93:0a:e7:00: 49:b0:12:6d:8f:b3:a9:47:47:30:5c:c6:de:5d:2f:1b:d9:ae: 91:68:ca:07:16:9f:b6:71:13:f4:f4:e8:90:ce:1d:6d:ed:c5: 3e:85:1e:0f:5c:07:7d:64:ee:77:35:3a:aa:30:eb:b5:c6:cb: 31:44:e6:eb:89:63:a9:00:9b:5d:de:b4:4b:90:8c:19:8c:57: 33:34:ac:f7:f7:e9:2b:0d:01:0c:ce:9b:f4:f0:2d:a6:70:cd: 4a:2f:e1:64:7f:06:9e:a6:bc:70:d5:79:25:f5:02:b4:c2:12: bb:a1:51:61:9d:42:79:df:50:dc:b3:e0:ed:49:78:8d:2a:dc: 94:9e:d1:83:e6:6b:61:e2:92:24:a7:29:87:41:83:a2:42:b6: f2:b8:59:fe:d4:2f:b7:cc:44:ea:1f:e0:23:62:ca:12:8c:a5: 96:b9:e6:be:80:0b:58:1b:cf:43:da:b4:64:d6:16:85:92:f1: c5:80:92:47:1a:08:e2:8c:10:30:12:8f:f0:05:60:75:b9:4a: d7:c1:42:ec:2c:24:ee:b1:3a:58:b0:25:de:c0:b5:6f:51:43: af:f7:e7:05 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUJ8MgzyponDn2Ld29bYzNcE9pr38wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0 ZWE3Nzc5YzAeFw0yNTEyMjkwOTQ1NDlaFw0yNjEyMjgwOTUwNDlaMDMxMTAvBgNV BAMTKEUyNjAyNDVGQzRGODgwNzJGMjgwNDlFQTQwQzUxNDYzQjJGOTZEMDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9Rn4Z1W+37OPb6xr4vFsxKcfc xjf5ViWjhvtCO9CuL0C2yIQB6B9Kwdfli6J9WNHKulLKynN7uNlpCxZ/nL7hB01o rXpvwXha5/JRmphUU3ISkPCbPJw0yv4Ic7H1J3ibmclYZh8WlyUQrz568BlA72zY NSwINh8rVaTgyejYU17upCQpp7kUmTaL6ZvCqXJpmiqfc6NBOHjc48ompJaaqGGF dHCLj2NtNQgg5ln1DDgL2TipVvDS/erj+ObE62av77b3/s6wlj6h+sutrghhdFKE +dBCSMRhAQPmIwZsIdGYaO2sgCmx17+RZ7p6rU/do2pnTAcFOE5tDvZ6n5jlAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQU4mAkX8T4gHLygEnqQMUUY7L5bQEwHwYDVR0j BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2 bmQ1dy5jZXIwgasGCCsGAQUFBwELBIGeMIGbMIGYBggrBgEFBQcwC4aBi3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzQzNTJlMzEzNTMyMmUzNDM0 MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzQzNzM1MzgzMy5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAC2Y LDANBgkqhkiG9w0BAQsFAAOCAQEAHvAiyzC/2VTX0wg34ut9TVX4AtFv2F/SVXZ0 HIRgAweTCucASbASbY+zqUdHMFzG3l0vG9mukWjKBxaftnET9PTokM4dbe3FPoUe D1wHfWTudzU6qjDrtcbLMUTm64ljqQCbXd60S5CMGYxXMzSs9/fpKw0BDM6b9PAt pnDNSi/hZH8Gnqa8cNV5JfUCtMISu6FRYZ1Ced9Q3LPg7Ul4jSrclJ7Rg+ZrYeKS JKcph0GDokK28rhZ/tQvt8xE6h/gI2LKEoyllrnmvoALWBvPQ9q0ZNYWhZLxxYCS RxoI4owQMBKP8AVgdblK18FC7Cwk7rE6WLAl3sC1b1FDr/fnBQ== -----END CERTIFICATE-----Generated at Mon Jan 19 14:23:34 2026 by rpki-client