This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38322e3138302e3135332e302f32342d3234203d3e203437353833.roa File: 38322e3138302e3135332e302f32342d3234203d3e203437353833.roa (raw, json) Hash identifier: AHAmgy6QwVvNzWuH7ZBFC0gWOM5+gnCRSlazPFrpJ84= Subject key identifier: 44:07:30:6B:5E:9F:D3:F6:C7:97:CD:68:A4:4B:74:3D:FE:EE:A1:EA Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Certificate serial: 0E2A4866AC8717B561B48E69E51708A3DA3FA380 Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38322e3138302e3135332e302f32342d3234203d3e203437353833.roa Signing time: Mon 29 Dec 2025 09:51:00 +0000 ROA not before: Mon 29 Dec 2025 09:46:00 +0000 ROA not after: Mon 28 Dec 2026 09:51:00 +0000 asID: 47583 IP address blocks: 82.180.153.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 01:05:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:2a:48:66:ac:87:17:b5:61:b4:8e:69:e5:17:08:a3:da:3f:a3:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Validity Not Before: Dec 29 09:46:00 2025 GMT Not After : Dec 28 09:51:00 2026 GMT Subject: CN=4407306B5E9FD3F6C797CD68A44B743DFEEEA1EA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:46:28:5f:10:52:14:c7:b2:1b:cd:31:fd:c5: 71:70:b6:0a:57:80:fb:39:0d:c0:b9:9d:24:99:7a: f5:15:71:ae:83:2f:37:05:06:0c:ac:46:4e:19:b5: 29:ed:6a:fa:a7:54:03:b9:dd:f6:cf:43:75:61:89: 39:26:e1:51:5f:99:50:3f:ff:cc:dd:27:19:62:95: 9f:46:3c:57:0e:db:ee:ca:03:d9:0b:b3:8e:89:83: a1:77:05:b4:3a:c4:d9:9b:38:04:26:0e:e7:71:ff: 54:25:84:58:f8:31:84:18:67:12:c0:6c:94:4c:06: 48:78:02:12:21:d4:b8:8c:78:e4:3b:ad:a3:69:3f: 0a:03:cb:56:ab:4e:0c:5c:22:2f:3c:34:83:f3:94: 97:99:96:71:7a:f1:c7:4f:17:ca:63:0c:2c:79:18: 06:9b:37:3e:7a:52:e2:a3:03:74:53:9e:59:31:3f: 01:d1:87:e7:ef:2e:8f:fc:87:97:8f:a1:aa:83:22: a5:35:c5:1a:9f:e8:15:6f:2c:10:e7:5c:1b:05:1a: 33:91:2f:5d:bc:c2:99:88:15:a2:ae:d1:0e:59:09: 7c:f3:e8:39:b1:e0:5f:c7:fc:5a:29:b5:3a:92:86: 6c:4f:eb:b3:65:35:b6:8a:b5:c8:f5:d2:f3:da:cb: dd:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:07:30:6B:5E:9F:D3:F6:C7:97:CD:68:A4:4B:74:3D:FE:EE:A1:EA X509v3 Authority Key Identifier: keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38322e3138302e3135332e302f32342d3234203d3e203437353833.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 82.180.153.0/24 Signature Algorithm: sha256WithRSAEncryption 7d:93:e6:9b:9f:2c:8d:8f:e9:0e:23:8a:36:a6:0d:0a:00:2b: 8f:9a:45:ca:74:10:e3:bd:14:aa:7f:36:99:d5:53:50:bc:e3: c1:a6:56:ac:1f:fa:05:18:c8:a0:d6:96:d9:c3:84:69:0f:e0: f7:37:4d:af:d9:9f:96:1d:e0:d7:2f:66:d3:a3:12:e2:63:3d: e2:1c:4f:8f:82:95:31:89:9b:c2:29:bc:aa:de:27:80:35:ba: b5:c4:77:d0:a5:28:ed:2a:b9:ca:b5:89:85:d8:19:a9:28:e4: 2f:80:04:16:93:49:6e:47:54:04:61:69:ec:8d:60:0e:0f:5b: 6d:3d:c1:8d:bb:90:cd:2d:d7:72:1d:22:48:9a:f1:e4:66:fa: cf:de:85:2a:71:20:d1:f6:e1:5a:e4:b7:44:9b:dc:30:db:9b: b1:a2:11:33:6a:3a:8e:cb:97:a3:18:b3:f3:ab:31:e0:a1:16: 2a:15:cd:4a:3f:a5:56:58:cd:43:b0:33:89:29:49:e7:7f:f1: 67:c1:c8:9b:d8:7a:4b:c3:57:81:37:a2:78:2d:cf:9b:76:33: 30:e3:bc:1e:27:e1:22:ab:ee:a3:9a:c3:90:e8:4c:3c:d1:be: 74:fa:18:1c:da:41:b7:49:fd:ff:c9:54:3c:fd:7b:c0:30:b7: 8c:37:6e:d4 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUDipIZqyHF7VhtI5p5RcIo9o/o4AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0 ZWE3Nzc5YzAeFw0yNTEyMjkwOTQ2MDBaFw0yNjEyMjgwOTUxMDBaMDMxMTAvBgNV BAMTKDQ0MDczMDZCNUU5RkQzRjZDNzk3Q0Q2OEE0NEI3NDNERkVFRUExRUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsRihfEFIUx7IbzTH9xXFwtgpX gPs5DcC5nSSZevUVca6DLzcFBgysRk4ZtSntavqnVAO53fbPQ3VhiTkm4VFfmVA/ /8zdJxlilZ9GPFcO2+7KA9kLs46Jg6F3BbQ6xNmbOAQmDudx/1QlhFj4MYQYZxLA bJRMBkh4AhIh1LiMeOQ7raNpPwoDy1arTgxcIi88NIPzlJeZlnF68cdPF8pjDCx5 GAabNz56UuKjA3RTnlkxPwHRh+fvLo/8h5ePoaqDIqU1xRqf6BVvLBDnXBsFGjOR L128wpmIFaKu0Q5ZCXzz6Dmx4F/H/FoptTqShmxP67NlNbaKtcj10vPay91LAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQURAcwa16f0/bHl81opEt0Pf7uoeowHwYDVR0j BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2 bmQ1dy5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzgzMjJlMzEzODMwMmUzMTM1 MzMyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzNDM3MzUzODMzLnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA UrSZMA0GCSqGSIb3DQEBCwUAA4IBAQB9k+abnyyNj+kOI4o2pg0KACuPmkXKdBDj vRSqfzaZ1VNQvOPBplasH/oFGMig1pbZw4RpD+D3N02v2Z+WHeDXL2bToxLiYz3i HE+PgpUxiZvCKbyq3ieANbq1xHfQpSjtKrnKtYmF2BmpKOQvgAQWk0luR1QEYWns jWAOD1ttPcGNu5DNLddyHSJImvHkZvrP3oUqcSDR9uFa5LdEm9ww25uxohEzajqO y5ejGLPzqzHgoRYqFc1KP6VWWM1DsDOJKUnnf/Fnwcib2HpLw1eBN6J4Lc+bdjMw 47weJ+Eiq+6jmsOQ6Ew80b50+hgc2kG3Sf3/yVQ8/XvAMLeMN27U -----END CERTIFICATE-----Generated at Mon Jan 19 14:26:16 2026 by rpki-client