This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/34352e39352e3138302e302f32322d3234203d3e203437353833.roa File: 34352e39352e3138302e302f32322d3234203d3e203437353833.roa (raw, json) Hash identifier: Tc9VhWejmbbvKbsS/N0oA5Q56koVEzVzJIgxh7pRiIA= Subject key identifier: 5E:65:8D:97:28:6C:97:E0:A8:F5:60:86:4D:88:F1:2B:4B:85:86:79 Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Certificate serial: 4A6EEBD5649AAE7CEE5B1ED5E375683335B4F1B3 Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/34352e39352e3138302e302f32322d3234203d3e203437353833.roa Signing time: Mon 29 Dec 2025 09:51:04 +0000 ROA not before: Mon 29 Dec 2025 09:46:04 +0000 ROA not after: Mon 28 Dec 2026 09:51:04 +0000 asID: 47583 IP address blocks: 45.95.180.0/22 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 01:05:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:6e:eb:d5:64:9a:ae:7c:ee:5b:1e:d5:e3:75:68:33:35:b4:f1:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Validity Not Before: Dec 29 09:46:04 2025 GMT Not After : Dec 28 09:51:04 2026 GMT Subject: CN=5E658D97286C97E0A8F560864D88F12B4B858679 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:7c:41:e2:07:bc:13:97:9e:5b:12:01:3f:4f: 7f:9f:79:d0:19:df:b9:b4:fa:86:72:f6:b4:a1:2c: 5a:f7:c1:af:ca:ad:cb:14:60:67:77:05:31:67:ec: 3c:52:24:f0:84:01:43:64:5e:f1:36:98:1c:f8:db: e0:37:81:fe:54:cd:3e:8a:f2:50:43:a3:19:6c:70: c3:8c:ac:1a:87:c5:0f:72:ac:13:44:be:4d:fb:dd: c2:76:da:94:27:be:3d:47:29:32:7d:59:e9:39:6e: 27:8f:74:c2:32:a0:c9:ed:8d:05:7d:ab:83:dd:0b: 69:40:62:39:c4:e1:05:ee:97:7b:3d:91:fb:f9:e9: 21:50:f1:68:c4:43:8f:9e:47:db:98:06:3a:27:38: be:6d:a6:54:96:78:7c:ce:a8:bf:b8:a8:e8:58:d5: f2:12:74:e2:8c:c7:52:72:5f:c0:54:70:52:df:62: 9e:47:f1:6e:2b:6f:61:d6:4f:34:9f:df:d8:03:d0: 10:6d:82:b9:5a:95:15:08:d0:81:df:f6:29:eb:16: 48:76:ae:26:5a:d5:de:95:b3:72:e5:b1:3e:7c:15: 8b:30:01:16:52:27:44:c2:9a:82:fb:20:30:84:ff: 06:e5:0f:89:21:71:cd:8a:29:f3:dd:24:e2:a8:22: d8:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:65:8D:97:28:6C:97:E0:A8:F5:60:86:4D:88:F1:2B:4B:85:86:79 X509v3 Authority Key Identifier: keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/34352e39352e3138302e302f32322d3234203d3e203437353833.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.95.180.0/22 Signature Algorithm: sha256WithRSAEncryption 0b:b6:5e:3f:22:d3:2f:0e:a8:05:d0:94:4d:96:0f:d7:55:4e: dd:6c:4e:93:1a:35:2f:18:ca:42:43:45:0b:e1:6d:0b:1f:da: 5c:e6:14:30:71:7c:47:a1:6e:f4:38:f1:cf:5a:c9:a7:5e:25: 85:fd:d8:97:47:ec:ad:ab:29:43:6d:03:fd:87:29:71:4b:e5: 62:22:a0:ee:33:4e:66:ef:e3:aa:71:8e:5d:6c:63:5c:28:87: e3:6e:e2:b7:94:cf:53:9b:26:79:37:40:bd:bd:b7:0d:c5:0b: a4:55:4c:14:3b:e6:91:79:f7:10:d7:b9:73:6f:41:44:d9:48: 90:84:e6:50:43:5e:9d:61:48:60:d9:a0:56:cc:23:a7:28:a5: 83:31:7e:6a:cd:85:3c:be:a8:6f:7c:57:00:a5:c9:8d:17:04: a2:9f:25:ee:78:83:03:de:dd:47:7a:65:b0:3d:b4:20:72:2e: 2f:1f:27:c0:fe:df:88:e1:f4:8c:25:a1:d2:12:e0:98:0c:e5: f5:58:32:e0:10:50:e4:8c:8e:1f:dc:2e:4e:5e:92:aa:34:36: c5:7c:51:c7:26:98:d0:57:91:9f:8c:c3:6d:c4:0e:06:10:90: 48:c0:49:ce:e7:9b:bf:5a:c2:cf:a6:44:76:82:17:ab:2f:ce: 87:da:82:47 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUSm7r1WSarnzuWx7V43VoMzW08bMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0 ZWE3Nzc5YzAeFw0yNTEyMjkwOTQ2MDRaFw0yNjEyMjgwOTUxMDRaMDMxMTAvBgNV BAMTKDVFNjU4RDk3Mjg2Qzk3RTBBOEY1NjA4NjREODhGMTJCNEI4NTg2NzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKfEHiB7wTl55bEgE/T3+fedAZ 37m0+oZy9rShLFr3wa/KrcsUYGd3BTFn7DxSJPCEAUNkXvE2mBz42+A3gf5UzT6K 8lBDoxlscMOMrBqHxQ9yrBNEvk373cJ22pQnvj1HKTJ9Wek5biePdMIyoMntjQV9 q4PdC2lAYjnE4QXul3s9kfv56SFQ8WjEQ4+eR9uYBjonOL5tplSWeHzOqL+4qOhY 1fISdOKMx1JyX8BUcFLfYp5H8W4rb2HWTzSf39gD0BBtgrlalRUI0IHf9inrFkh2 riZa1d6Vs3LlsT58FYswARZSJ0TCmoL7IDCE/wblD4khcc2KKfPdJOKoItgHAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUXmWNlyhsl+Co9WCGTYjxK0uFhnkwHwYDVR0j BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2 bmQ1dy5jZXIwgasGCCsGAQUFBwELBIGeMIGbMIGYBggrBgEFBQcwC4aBi3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzQzNTJlMzkzNTJlMzEzODMw MmUzMDJmMzIzMjJkMzIzNDIwM2QzZTIwMzQzNzM1MzgzMy5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAi1f tDANBgkqhkiG9w0BAQsFAAOCAQEAC7ZePyLTLw6oBdCUTZYP11VO3WxOkxo1LxjK QkNFC+FtCx/aXOYUMHF8R6Fu9Djxz1rJp14lhf3Yl0fsraspQ20D/YcpcUvlYiKg 7jNOZu/jqnGOXWxjXCiH427it5TPU5smeTdAvb23DcULpFVMFDvmkXn3ENe5c29B RNlIkITmUENenWFIYNmgVswjpyilgzF+as2FPL6ob3xXAKXJjRcEop8l7niDA97d R3plsD20IHIuLx8nwP7fiOH0jCWh0hLgmAzl9Vgy4BBQ5IyOH9wuTl6SqjQ2xXxR xyaY0FeRn4zDbcQOBhCQSMBJzuebv1rCz6ZEdoIXqy/Oh9qCRw== -----END CERTIFICATE-----Generated at Mon Jan 19 14:24:13 2026 by rpki-client