This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/37372e37382e3132312e302f32342d3234203d3e20313336373837.roa File: 37372e37382e3132312e302f32342d3234203d3e20313336373837.roa (raw, json) Hash identifier: dCOWTZN7GctSFMngJwRvMQYjemDHLHb2/CGeSExTyPI= Subject key identifier: ED:10:7F:44:C6:8E:56:3C:AB:43:DF:21:47:A5:81:21:53:9E:12:26 Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Certificate serial: 59341B66AFF412A07B24094D5688DBFE964AD101 Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/37372e37382e3132312e302f32342d3234203d3e20313336373837.roa Signing time: Mon 29 Dec 2025 09:51:07 +0000 ROA not before: Mon 29 Dec 2025 09:46:07 +0000 ROA not after: Mon 28 Dec 2026 09:51:07 +0000 asID: 136787 IP address blocks: 77.78.121.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 14:41:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:34:1b:66:af:f4:12:a0:7b:24:09:4d:56:88:db:fe:96:4a:d1:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Validity Not Before: Dec 29 09:46:07 2025 GMT Not After : Dec 28 09:51:07 2026 GMT Subject: CN=ED107F44C68E563CAB43DF2147A58121539E1226 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:02:08:02:9f:23:4d:1c:2a:e9:2f:f1:42:3a: 68:fa:9f:24:a0:89:45:0a:e7:b2:d2:29:9f:bc:bb: ee:bc:16:47:87:a0:34:14:f8:77:f0:ca:28:02:e1: 39:08:5e:50:48:4f:ea:71:10:59:56:cd:45:3a:37: 9c:8e:79:ef:72:9e:32:3d:1b:d1:c5:5f:03:dc:41: a8:81:4a:37:e0:f5:6f:ee:d6:3c:83:ab:cf:d6:90: 76:21:90:81:0b:d0:7b:34:b3:20:28:ce:c4:d6:72: ec:bc:fc:a2:ce:6b:0b:64:4c:6e:c1:6f:36:e4:22: 6c:7d:90:88:3e:0e:c7:4e:a7:a1:b0:89:7a:b2:85: 9a:b0:c6:94:67:c5:dc:34:29:53:0c:59:95:e5:fc: 6e:44:5e:04:d3:70:6c:71:c2:87:e7:93:b7:76:d9: 3d:73:ed:19:b4:b3:10:78:10:8d:a9:44:87:ba:eb: 51:34:57:0e:b6:bb:8d:06:8e:be:03:f1:f7:05:d0: fd:16:3a:7b:d6:fa:6f:d2:38:37:d0:af:26:e1:f4: 5d:a7:21:91:ba:be:ad:39:87:2e:fc:ab:b6:5e:73: 9d:1c:e7:b5:6c:87:b0:dd:37:c9:a1:be:33:f0:f1: e5:1f:36:be:6a:79:0a:b3:ed:12:71:15:3a:eb:bc: b0:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:10:7F:44:C6:8E:56:3C:AB:43:DF:21:47:A5:81:21:53:9E:12:26 X509v3 Authority Key Identifier: keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/37372e37382e3132312e302f32342d3234203d3e20313336373837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 77.78.121.0/24 Signature Algorithm: sha256WithRSAEncryption 07:32:11:b8:a5:9d:34:b0:a9:c8:0e:6d:9f:dd:a9:fb:7f:bd: d5:60:83:c8:d5:bd:42:92:67:1c:36:12:0c:81:6c:30:36:17: 21:ef:51:13:54:c7:54:cc:4c:db:4e:e8:e4:08:7d:7f:35:c8: 64:5f:d9:09:ef:b9:19:fd:93:89:69:37:a5:b4:8f:b2:7a:c1: 6d:0b:32:03:2a:c8:13:f5:b4:91:b9:e3:d6:b3:11:f3:a9:d3: e3:1f:42:b3:21:e6:46:59:b7:02:fb:43:22:0d:44:6a:5f:9c: ad:c1:e3:36:53:10:7b:6d:34:cf:0e:50:4f:10:8c:51:77:72: 43:0e:56:a0:39:e8:e5:59:03:09:c8:59:1a:09:40:2f:aa:97: 08:25:e0:92:34:29:42:e7:1e:1e:63:f8:9b:e3:ac:98:f4:15: 6d:33:2b:52:86:96:b6:33:52:18:4b:09:d7:c6:8b:db:e8:3d: 9d:71:c9:b4:91:06:3f:9f:6f:ef:2f:d7:da:d5:70:ca:a9:98: 43:69:2d:1f:3d:cc:c9:34:3e:6e:6d:93:01:ab:3c:2f:1a:5c: c8:5e:c3:0d:39:35:1a:09:71:6b:1e:08:c0:95:ac:a9:77:26: 68:37:a3:2c:6c:d2:ad:77:f7:11:51:5d:a2:02:50:e4:d1:82: 22:69:8a:80 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUWTQbZq/0EqB7JAlNVojb/pZK0QEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0 ZWE3Nzc5YzAeFw0yNTEyMjkwOTQ2MDdaFw0yNjEyMjgwOTUxMDdaMDMxMTAvBgNV BAMTKEVEMTA3RjQ0QzY4RTU2M0NBQjQzREYyMTQ3QTU4MTIxNTM5RTEyMjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0AggCnyNNHCrpL/FCOmj6nySg iUUK57LSKZ+8u+68FkeHoDQU+HfwyigC4TkIXlBIT+pxEFlWzUU6N5yOee9ynjI9 G9HFXwPcQaiBSjfg9W/u1jyDq8/WkHYhkIEL0Hs0syAozsTWcuy8/KLOawtkTG7B bzbkImx9kIg+DsdOp6GwiXqyhZqwxpRnxdw0KVMMWZXl/G5EXgTTcGxxwofnk7d2 2T1z7Rm0sxB4EI2pRIe661E0Vw62u40Gjr4D8fcF0P0WOnvW+m/SODfQrybh9F2n IZG6vq05hy78q7Zec50c57Vsh7DdN8mhvjPw8eUfNr5qeQqz7RJxFTrrvLDrAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU7RB/RMaOVjyrQ98hR6WBIVOeEiYwHwYDVR0j BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2 bmQ1dy5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzczNzJlMzczODJlMzEzMjMx MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzEzMzM2MzczODM3LnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA TU55MA0GCSqGSIb3DQEBCwUAA4IBAQAHMhG4pZ00sKnIDm2f3an7f73VYIPI1b1C kmccNhIMgWwwNhch71ETVMdUzEzbTujkCH1/NchkX9kJ77kZ/ZOJaTeltI+yesFt CzIDKsgT9bSRuePWsxHzqdPjH0KzIeZGWbcC+0MiDURqX5ytweM2UxB7bTTPDlBP EIxRd3JDDlagOejlWQMJyFkaCUAvqpcIJeCSNClC5x4eY/ib46yY9BVtMytShpa2 M1IYSwnXxovb6D2dccm0kQY/n2/vL9fa1XDKqZhDaS0fPczJND5ubZMBqzwvGlzI XsMNOTUaCXFrHgjAlaypdyZoN6MsbNKtd/cRUV2iAlDk0YIiaYqA -----END CERTIFICATE-----Generated at Tue Jan 27 06:06:45 2026 by rpki-client