This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/352e3138332e382e302f32322d3234203d3e203437353833.roa File: 352e3138332e382e302f32322d3234203d3e203437353833.roa (raw, json) Hash identifier: kHxW9JDQR9NsBtMMdzCzZVlcW6i4ILZJZRC8eZHGZ7M= Subject key identifier: 2E:85:AA:07:06:05:35:E6:C9:80:1F:69:FB:65:7A:E0:9D:93:CA:07 Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Certificate serial: 16D003F64BDC8A5B256AD605DD2BA3894564D7B2 Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/352e3138332e382e302f32322d3234203d3e203437353833.roa Signing time: Mon 29 Dec 2025 09:50:46 +0000 ROA not before: Mon 29 Dec 2025 09:45:46 +0000 ROA not after: Mon 28 Dec 2026 09:50:46 +0000 asID: 47583 IP address blocks: 5.183.8.0/22 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 01:05:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:d0:03:f6:4b:dc:8a:5b:25:6a:d6:05:dd:2b:a3:89:45:64:d7:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Validity Not Before: Dec 29 09:45:46 2025 GMT Not After : Dec 28 09:50:46 2026 GMT Subject: CN=2E85AA07060535E6C9801F69FB657AE09D93CA07 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:87:4f:f1:08:af:8e:42:a0:b3:1d:2a:76:11: 01:8d:2b:04:2b:18:bb:dc:c0:18:74:67:7f:9a:97: 24:09:6a:f5:53:b2:50:a6:cf:66:2c:28:2e:db:02: 46:f8:bf:bf:76:48:7f:f0:db:7b:ac:7c:17:b3:8d: 2f:92:30:e5:53:bd:d0:32:43:a2:b4:6a:64:43:6b: 12:6c:91:71:01:c0:5b:5d:90:ae:06:31:b7:a3:6f: 5a:a8:a5:af:f8:10:cc:4a:3b:9e:61:81:f3:35:1b: 25:3d:3c:7b:dc:ab:19:91:77:e0:42:f4:96:ab:18: 17:1f:ff:0c:30:82:15:fc:99:17:d8:62:1d:71:33: a0:41:84:e4:51:11:58:33:50:19:b9:51:bb:67:83: ac:25:4d:a7:3d:f7:0f:4f:a6:d9:a7:1a:ac:3e:e1: 36:35:c5:dd:ba:4d:e4:9c:bc:9e:8d:d5:45:f4:3d: 77:1e:43:47:d6:31:2d:35:0f:10:93:87:da:b7:c1: b3:f5:85:30:37:b8:76:31:6d:da:00:1a:9e:20:33: 50:89:05:d4:09:36:66:97:96:3c:c0:85:69:c9:cf: 8e:b9:ed:a9:f9:bc:f9:f4:1a:d4:2f:0b:46:3c:9f: ad:16:e6:f8:d5:5c:84:53:fe:32:61:63:df:1c:0d: 81:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:85:AA:07:06:05:35:E6:C9:80:1F:69:FB:65:7A:E0:9D:93:CA:07 X509v3 Authority Key Identifier: keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/352e3138332e382e302f32322d3234203d3e203437353833.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.183.8.0/22 Signature Algorithm: sha256WithRSAEncryption 13:9c:2f:70:35:33:06:b1:dd:5e:ec:79:f3:a3:8d:1f:44:33: 7d:53:90:da:02:a9:60:9b:35:6e:c2:89:90:74:42:08:f4:72: 15:67:10:44:85:c0:2d:bd:b2:4e:c6:71:db:a1:62:b9:a9:d9: 2f:9c:9b:8c:b3:87:3a:e7:08:4b:7b:68:37:17:49:3a:f3:81: f8:d7:52:e0:f3:10:92:d8:31:d4:ac:21:9a:9d:2d:86:a5:28: 98:ec:b6:b1:cd:bd:ad:e9:2b:7e:0e:2b:24:b3:62:17:a6:7b: bd:2f:f1:da:5e:39:fd:6d:0e:eb:1b:69:4c:6b:94:21:f4:b1: 8a:86:f8:10:49:37:de:99:54:bf:bc:48:7b:65:e8:1a:5a:f1: c4:08:5d:2c:05:cf:5f:c7:77:b9:80:c2:45:a6:5c:5b:a7:8f: cd:06:df:0a:26:3b:e4:4e:87:e4:5d:28:12:0f:30:5a:6b:90: e4:02:36:58:2b:9e:ea:83:66:e3:86:4d:1d:de:94:19:01:0a: 0a:c8:03:75:f7:5e:7b:68:07:b6:66:88:96:65:fc:68:65:da: b8:73:9b:e8:e1:cb:c9:8a:74:aa:9d:21:7c:4d:8f:2e:62:3d: 23:58:b7:73:0d:0e:fa:f5:87:ef:4a:db:a0:55:0d:26:d1:ef: da:36:4c:ac -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUFtAD9kvcilslatYF3SujiUVk17IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0 ZWE3Nzc5YzAeFw0yNTEyMjkwOTQ1NDZaFw0yNjEyMjgwOTUwNDZaMDMxMTAvBgNV BAMTKDJFODVBQTA3MDYwNTM1RTZDOTgwMUY2OUZCNjU3QUUwOUQ5M0NBMDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVh0/xCK+OQqCzHSp2EQGNKwQr GLvcwBh0Z3+alyQJavVTslCmz2YsKC7bAkb4v792SH/w23usfBezjS+SMOVTvdAy Q6K0amRDaxJskXEBwFtdkK4GMbejb1qopa/4EMxKO55hgfM1GyU9PHvcqxmRd+BC 9JarGBcf/wwwghX8mRfYYh1xM6BBhORREVgzUBm5Ubtng6wlTac99w9PptmnGqw+ 4TY1xd26TeScvJ6N1UX0PXceQ0fWMS01DxCTh9q3wbP1hTA3uHYxbdoAGp4gM1CJ BdQJNmaXljzAhWnJz4657an5vPn0GtQvC0Y8n60W5vjVXIRT/jJhY98cDYFHAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQULoWqBwYFNebJgB9p+2V64J2TygcwHwYDVR0j BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2 bmQ1dy5jZXIwgacGCCsGAQUFBwELBIGaMIGXMIGUBggrBgEFBQcwC4aBh3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzUyZTMxMzgzMzJlMzgyZTMw MmYzMjMyMmQzMjM0MjAzZDNlMjAzNDM3MzUzODMzLnJvYTAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCBbcIMA0G CSqGSIb3DQEBCwUAA4IBAQATnC9wNTMGsd1e7Hnzo40fRDN9U5DaAqlgmzVuwomQ dEII9HIVZxBEhcAtvbJOxnHboWK5qdkvnJuMs4c65whLe2g3F0k684H411Lg8xCS 2DHUrCGanS2GpSiY7Laxzb2t6St+Disks2IXpnu9L/HaXjn9bQ7rG2lMa5Qh9LGK hvgQSTfemVS/vEh7ZegaWvHECF0sBc9fx3e5gMJFplxbp4/NBt8KJjvkTofkXSgS DzBaa5DkAjZYK57qg2bjhk0d3pQZAQoKyAN19157aAe2ZoiWZfxoZdq4c5vo4cvJ inSqnSF8TY8uYj0jWLdzDQ769YfvStugVQ0m0e/aNkys -----END CERTIFICATE-----Generated at Mon Jan 19 14:23:22 2026 by rpki-client