This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38322e3138302e3134382e302f32342d3332203d3e20313336373837.roa File: 38322e3138302e3134382e302f32342d3332203d3e20313336373837.roa (raw, json) Hash identifier: kbbg4E9ggOn69x4QVlCG4qTerNsrYHKagwdP9WtuIYA= Subject key identifier: 82:14:9C:E5:0B:B7:FE:33:CF:25:E2:77:B3:03:E7:3F:88:56:FB:88 Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Certificate serial: 1B52F1B29A5E600364356A523EADDA8C83E9A6D2 Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38322e3138302e3134382e302f32342d3332203d3e20313336373837.roa Signing time: Mon 29 Dec 2025 09:50:42 +0000 ROA not before: Mon 29 Dec 2025 09:45:42 +0000 ROA not after: Mon 28 Dec 2026 09:50:42 +0000 asID: 136787 IP address blocks: 82.180.148.0/24 maxlen: 32 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 01:05:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:52:f1:b2:9a:5e:60:03:64:35:6a:52:3e:ad:da:8c:83:e9:a6:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Validity Not Before: Dec 29 09:45:42 2025 GMT Not After : Dec 28 09:50:42 2026 GMT Subject: CN=82149CE50BB7FE33CF25E277B303E73F8856FB88 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:0c:7f:12:74:59:48:0d:f9:40:3e:f6:dd:55: 19:fc:cb:59:70:88:59:e3:8b:14:6b:79:79:1e:32: a9:d2:7f:1b:73:b9:3c:a4:29:a5:6d:e3:f1:d9:37: 90:3f:9c:a0:dd:44:af:ca:15:5b:73:ae:0a:0b:bd: 27:f6:fd:bf:9f:0f:58:4e:21:5c:59:5b:e6:15:e2: fb:67:61:4d:18:00:60:19:11:20:ab:ed:99:d1:1e: 12:e1:14:1c:2d:95:7b:e5:46:c3:f0:56:a4:39:e2: 86:30:98:cd:b5:ae:df:3e:cd:ff:e5:87:bd:90:a2: 2c:6d:9e:5c:ba:eb:c2:f0:53:ef:35:f1:e4:0e:d5: 52:ce:10:e8:fe:21:f7:5a:25:07:9a:44:b6:04:7c: 08:57:3c:6d:84:9e:c1:f1:59:40:42:06:cb:97:cb: a3:84:8a:2a:d6:e6:2e:7b:60:22:29:50:e8:7a:f2: 06:dd:13:ca:ac:d0:d9:9b:12:da:f9:d3:19:51:25: ee:5b:98:eb:d2:f7:49:37:ae:a8:e8:b5:0c:cb:02: 3d:47:15:ad:56:91:3f:e3:80:b7:21:9b:69:be:09: 40:12:b1:7d:1c:bc:9b:22:57:e5:24:02:b9:12:f6: d9:7f:11:64:e8:3a:b5:11:47:c4:2e:9b:b1:8a:15: 5d:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:14:9C:E5:0B:B7:FE:33:CF:25:E2:77:B3:03:E7:3F:88:56:FB:88 X509v3 Authority Key Identifier: keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38322e3138302e3134382e302f32342d3332203d3e20313336373837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 82.180.148.0/24 Signature Algorithm: sha256WithRSAEncryption 05:d0:11:dc:1a:85:92:5c:71:85:86:88:b8:ec:85:56:d1:b7: 7d:25:58:8e:28:8e:2f:5b:59:b5:22:74:21:a5:1e:1f:eb:73: ae:a9:03:07:ae:0a:c0:2d:63:99:df:b2:f4:e9:a4:68:3b:f1: 73:ca:c1:59:23:26:21:a3:58:77:79:7b:b1:e8:34:1d:c9:15: 12:b3:82:46:b6:c5:fa:83:0d:94:4b:df:30:f9:4b:97:de:d7: 1c:1a:8d:25:75:aa:09:7a:b2:8d:bc:4c:3a:d5:ad:7e:91:c7: 8e:0a:c7:90:bd:ec:01:8d:78:bf:c3:71:98:71:5f:11:60:15: e1:9f:e6:9b:df:8a:99:50:46:35:1a:d0:6b:a6:82:1b:c4:51: c5:01:cc:31:54:55:65:86:7d:64:a3:24:4e:d8:54:a9:e1:b3: c9:8e:99:5a:66:a9:19:13:ca:4c:60:3b:1b:fa:e2:93:19:1e: ea:85:2d:ce:de:62:02:b4:69:c6:cb:42:65:fa:3b:12:76:45: fa:d4:b6:1b:87:36:d8:15:4f:71:93:d6:9f:11:31:5e:32:81: e0:07:0e:6b:0e:82:c6:62:2c:69:08:9e:d4:d4:38:df:51:d3: 3d:13:a9:4f:64:88:ca:05:f6:86:fa:b6:f5:2f:27:e8:36:0b: e6:ab:4d:5f -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUG1LxsppeYANkNWpSPq3ajIPpptIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0 ZWE3Nzc5YzAeFw0yNTEyMjkwOTQ1NDJaFw0yNjEyMjgwOTUwNDJaMDMxMTAvBgNV BAMTKDgyMTQ5Q0U1MEJCN0ZFMzNDRjI1RTI3N0IzMDNFNzNGODg1NkZCODgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7DH8SdFlIDflAPvbdVRn8y1lw iFnjixRreXkeMqnSfxtzuTykKaVt4/HZN5A/nKDdRK/KFVtzrgoLvSf2/b+fD1hO IVxZW+YV4vtnYU0YAGAZESCr7ZnRHhLhFBwtlXvlRsPwVqQ54oYwmM21rt8+zf/l h72Qoixtnly668LwU+818eQO1VLOEOj+IfdaJQeaRLYEfAhXPG2EnsHxWUBCBsuX y6OEiirW5i57YCIpUOh68gbdE8qs0NmbEtr50xlRJe5bmOvS90k3rqjotQzLAj1H Fa1WkT/jgLchm2m+CUASsX0cvJsiV+UkArkS9tl/EWToOrURR8Qum7GKFV17AgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUghSc5Qu3/jPPJeJ3swPnP4hW+4gwHwYDVR0j BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2 bmQ1dy5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzgzMjJlMzEzODMwMmUzMTM0 MzgyZTMwMmYzMjM0MmQzMzMyMjAzZDNlMjAzMTMzMzYzNzM4Mzcucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABStJQwDQYJKoZIhvcNAQELBQADggEBAAXQEdwahZJccYWGiLjshVbRt30lWI4o ji9bWbUidCGlHh/rc66pAweuCsAtY5nfsvTppGg78XPKwVkjJiGjWHd5e7HoNB3J FRKzgka2xfqDDZRL3zD5S5fe1xwajSV1qgl6so28TDrVrX6Rx44Kx5C97AGNeL/D cZhxXxFgFeGf5pvfiplQRjUa0GumghvEUcUBzDFUVWWGfWSjJE7YVKnhs8mOmVpm qRkTykxgOxv64pMZHuqFLc7eYgK0acbLQmX6OxJ2RfrUthuHNtgVT3GT1p8RMV4y geAHDmsOgsZiLGkIntTUON9R0z0TqU9kiMoF9ob6tvUvJ+g2C+arTV8= -----END CERTIFICATE-----Generated at Mon Jan 19 14:28:01 2026 by rpki-client