This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38322e3138302e3135302e302f32342d3234203d3e20313336373837.roa File: 38322e3138302e3135302e302f32342d3234203d3e20313336373837.roa (raw, json) Hash identifier: axPeZBs4IjXhUADrfUMAZK4Rhts8UhZ6CMtGmfLMwzI= Subject key identifier: 25:B2:52:79:67:B8:E0:3B:CA:59:33:B5:17:8B:0E:0D:81:55:75:62 Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Certificate serial: 2BC2E27BEADD972A3FEC907498A7830129ED396F Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38322e3138302e3135302e302f32342d3234203d3e20313336373837.roa Signing time: Mon 29 Dec 2025 09:50:42 +0000 ROA not before: Mon 29 Dec 2025 09:45:42 +0000 ROA not after: Mon 28 Dec 2026 09:50:42 +0000 asID: 136787 IP address blocks: 82.180.150.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 01:05:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:c2:e2:7b:ea:dd:97:2a:3f:ec:90:74:98:a7:83:01:29:ed:39:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Validity Not Before: Dec 29 09:45:42 2025 GMT Not After : Dec 28 09:50:42 2026 GMT Subject: CN=25B2527967B8E03BCA5933B5178B0E0D81557562 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:f4:b6:87:64:10:32:20:a5:57:56:ae:cc:2e: ee:80:7a:f6:60:27:af:de:e6:e5:7a:cd:d6:1d:05: 56:0d:83:98:20:c7:66:3a:a8:c0:a3:e5:49:15:cf: ff:fd:9c:9c:2a:57:b4:de:7f:19:04:7f:bc:2d:48: 61:41:b2:d3:45:9e:70:0d:f0:7d:9d:75:f1:01:a0: f5:d4:a1:43:e8:79:8a:5b:1a:3a:7f:3b:ab:d8:3d: f2:97:4b:cd:f5:1f:a8:39:6e:2e:38:2f:77:2d:e8: a7:ee:45:ef:41:d1:10:98:c8:eb:81:13:8e:04:cf: af:38:e5:98:bc:72:cd:99:13:a7:51:64:94:02:0e: 81:c2:c2:20:90:8f:e2:0b:bf:7b:3d:a3:89:8c:40: 2c:3b:b1:bb:ee:c8:9a:5d:58:e0:c7:fb:5c:3c:b7: b3:29:b7:75:2e:5d:41:9e:4d:f5:98:a4:53:91:2a: 0b:9d:e1:35:0e:7c:4c:c4:3b:1a:d6:4a:78:c0:e8: ae:58:ef:6b:8b:f9:36:29:f0:03:9a:f6:ae:7a:6f: 7e:24:f4:2d:92:42:b9:a4:b9:f2:11:35:f9:14:aa: da:4f:1f:7d:07:42:3a:78:17:c5:12:5c:12:02:af: 3a:6f:23:bc:ec:11:38:56:a6:a3:bf:5a:5f:fd:28: b1:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:B2:52:79:67:B8:E0:3B:CA:59:33:B5:17:8B:0E:0D:81:55:75:62 X509v3 Authority Key Identifier: keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38322e3138302e3135302e302f32342d3234203d3e20313336373837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 82.180.150.0/24 Signature Algorithm: sha256WithRSAEncryption 99:c4:e7:06:7f:7e:77:19:39:f4:e2:db:f5:ed:bd:a7:03:87: 7a:e1:c2:3b:00:5a:d5:9f:0c:26:69:76:28:24:ed:37:b9:e4: 90:67:f8:4a:11:be:a3:b3:47:c0:a6:62:cb:19:f9:1e:42:98: 19:75:43:38:1f:0b:9a:bf:d9:72:2c:77:43:9a:bd:09:1e:2c: 70:d0:b2:a9:b5:fb:a9:b9:11:f7:a9:e5:58:2c:3f:46:1b:59: e1:d2:3e:06:44:a1:35:21:f2:12:6e:a4:56:22:8f:86:18:51: b8:cb:96:84:81:49:f8:d7:ca:83:50:aa:ac:85:7e:9d:81:d6: 6d:df:4f:7a:57:25:94:d7:75:e7:35:ca:87:55:53:d8:d5:10: 97:6b:40:fa:cc:16:75:6e:43:97:ee:30:c9:07:3c:09:fc:bd: 5f:54:bc:3b:52:65:35:34:02:fb:36:61:cf:34:27:82:1b:e5: 4d:01:53:54:13:b8:97:8b:f9:70:88:e1:6f:42:07:0f:f3:b8: 53:ed:10:e1:d0:fa:93:08:00:68:7c:48:fa:19:bd:a0:c9:3f: ba:1e:8d:6b:80:d5:00:ec:01:1a:87:ba:cf:7d:31:0c:6c:0c: 80:d8:02:6f:84:a3:8b:2e:c2:55:77:e2:ff:da:52:59:b9:13: 2e:78:48:40 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUK8Lie+rdlyo/7JB0mKeDASntOW8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0 ZWE3Nzc5YzAeFw0yNTEyMjkwOTQ1NDJaFw0yNjEyMjgwOTUwNDJaMDMxMTAvBgNV BAMTKDI1QjI1Mjc5NjdCOEUwM0JDQTU5MzNCNTE3OEIwRTBEODE1NTc1NjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDS9LaHZBAyIKVXVq7MLu6AevZg J6/e5uV6zdYdBVYNg5ggx2Y6qMCj5UkVz//9nJwqV7TefxkEf7wtSGFBstNFnnAN 8H2ddfEBoPXUoUPoeYpbGjp/O6vYPfKXS831H6g5bi44L3ct6KfuRe9B0RCYyOuB E44Ez6845Zi8cs2ZE6dRZJQCDoHCwiCQj+ILv3s9o4mMQCw7sbvuyJpdWODH+1w8 t7Mpt3UuXUGeTfWYpFORKgud4TUOfEzEOxrWSnjA6K5Y72uL+TYp8AOa9q56b34k 9C2SQrmkufIRNfkUqtpPH30HQjp4F8USXBICrzpvI7zsEThWpqO/Wl/9KLHXAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUJbJSeWe44DvKWTO1F4sODYFVdWIwHwYDVR0j BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2 bmQ1dy5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzgzMjJlMzEzODMwMmUzMTM1 MzAyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMTMzMzYzNzM4Mzcucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABStJYwDQYJKoZIhvcNAQELBQADggEBAJnE5wZ/fncZOfTi2/XtvacDh3rhwjsA WtWfDCZpdigk7Te55JBn+EoRvqOzR8CmYssZ+R5CmBl1QzgfC5q/2XIsd0OavQke LHDQsqm1+6m5Efep5VgsP0YbWeHSPgZEoTUh8hJupFYij4YYUbjLloSBSfjXyoNQ qqyFfp2B1m3fT3pXJZTXdec1yodVU9jVEJdrQPrMFnVuQ5fuMMkHPAn8vV9UvDtS ZTU0Avs2Yc80J4Ib5U0BU1QTuJeL+XCI4W9CBw/zuFPtEOHQ+pMIAGh8SPoZvaDJ P7oejWuA1QDsARqHus99MQxsDIDYAm+Eo4suwlV34v/aUlm5Ey54SEA= -----END CERTIFICATE-----Generated at Mon Jan 19 14:27:27 2026 by rpki-client