This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38322e3138302e3135362e302f32322d3234203d3e203437353833.roa File: 38322e3138302e3135362e302f32322d3234203d3e203437353833.roa (raw, json) Hash identifier: V/+KhK6XjzVfK4Sm5tHnULJYu+nsdlktOpCNahFlico= Subject key identifier: 43:08:60:BB:FF:7A:04:6D:0C:E4:3D:D9:A8:55:FD:DF:ED:C7:DC:89 Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Certificate serial: 2FF3DA7575B0F15600E79EC0BFC25AA17B0D34E3 Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38322e3138302e3135362e302f32322d3234203d3e203437353833.roa Signing time: Mon 29 Dec 2025 09:50:45 +0000 ROA not before: Mon 29 Dec 2025 09:45:45 +0000 ROA not after: Mon 28 Dec 2026 09:50:45 +0000 asID: 47583 IP address blocks: 82.180.156.0/22 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 01:05:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:f3:da:75:75:b0:f1:56:00:e7:9e:c0:bf:c2:5a:a1:7b:0d:34:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Validity Not Before: Dec 29 09:45:45 2025 GMT Not After : Dec 28 09:50:45 2026 GMT Subject: CN=430860BBFF7A046D0CE43DD9A855FDDFEDC7DC89 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:2f:b4:5e:bc:8d:29:4a:00:b5:b6:6e:4f:cf: 0c:b4:14:40:af:eb:d8:c4:ce:95:9a:80:8c:67:f5: 34:58:41:38:1d:a5:b7:d7:c9:a0:af:51:d7:88:93: 20:1c:9f:cd:1a:c8:a9:39:85:67:91:6b:8d:be:81: 23:1a:e2:9f:ba:0b:6b:52:ae:a5:29:64:11:84:20: f0:55:c3:97:2d:cb:4b:51:8f:c5:cf:0d:21:1c:a4: 66:3a:68:98:da:36:24:08:40:3e:7e:c4:e2:e5:16: a5:f4:eb:7f:c3:07:1c:6e:a6:4f:ee:eb:e3:47:85: 87:d9:fc:a0:38:5d:dd:8d:6b:a1:29:8b:b6:4e:df: 45:52:c8:e6:07:7e:03:d7:04:91:d8:27:fa:7f:97: 9a:ae:51:46:65:30:72:45:88:93:80:96:0a:77:a2: 5b:b4:ab:24:30:0a:6c:9b:b3:68:03:af:7b:da:26: 2d:60:1b:e6:60:ee:a5:d0:c4:99:69:15:76:b9:e1: 0b:fe:79:5d:7a:88:f0:75:0c:25:b7:5e:46:07:fb: b1:d3:89:62:fe:17:0d:d6:c4:1a:1a:4d:e1:22:79: 5b:56:72:88:a8:9e:0f:c6:0f:d6:e8:f0:bf:89:08: 20:bb:26:b8:50:af:f6:4b:db:00:21:22:43:af:3d: f4:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:08:60:BB:FF:7A:04:6D:0C:E4:3D:D9:A8:55:FD:DF:ED:C7:DC:89 X509v3 Authority Key Identifier: keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38322e3138302e3135362e302f32322d3234203d3e203437353833.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 82.180.156.0/22 Signature Algorithm: sha256WithRSAEncryption 55:be:6f:37:cb:f7:0e:ed:b2:99:87:15:c4:bc:ad:9b:09:05: c5:d2:85:0f:53:7d:1a:23:b9:3e:10:01:94:03:15:9e:86:4d: 62:ee:a6:6c:93:b9:08:a2:2b:40:ae:34:1f:b3:1f:e1:d1:6c: c5:3b:c9:cb:3c:c4:a5:e3:37:0a:88:e3:65:71:18:ac:1e:cd: bc:ac:b6:02:60:0a:a0:8a:fe:79:fe:3e:eb:83:c5:c0:11:3b: c2:1d:1c:3a:71:31:cf:3f:37:3e:a8:62:0c:53:cd:89:09:d0: cb:75:50:29:93:6a:07:10:93:73:80:87:71:3b:55:88:a6:37: 57:2c:c2:c6:be:f3:1b:9d:78:61:aa:75:cb:99:a3:90:d4:20: 4e:65:84:40:a4:c5:43:83:d2:08:8d:1e:a7:bc:a9:b9:08:94: 31:be:56:72:0b:1a:35:73:77:67:96:3b:32:5a:76:cf:15:74: 9e:69:e9:ec:31:26:ca:8c:0b:49:21:e0:1b:e3:77:f8:f6:f5: 50:73:5f:79:0d:f6:c5:5c:c4:89:a4:91:ea:6c:5b:0b:7a:2e: 4e:2e:11:5e:c7:f0:6b:b7:27:23:41:97:7d:37:6e:66:a4:74: d2:4e:c1:78:a5:f8:45:0a:c3:d2:03:96:0a:d3:ea:78:ca:74: 66:f1:0a:81 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUL/PadXWw8VYA557Av8JaoXsNNOMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0 ZWE3Nzc5YzAeFw0yNTEyMjkwOTQ1NDVaFw0yNjEyMjgwOTUwNDVaMDMxMTAvBgNV BAMTKDQzMDg2MEJCRkY3QTA0NkQwQ0U0M0REOUE4NTVGRERGRURDN0RDODkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwL7RevI0pSgC1tm5Pzwy0FECv 69jEzpWagIxn9TRYQTgdpbfXyaCvUdeIkyAcn80ayKk5hWeRa42+gSMa4p+6C2tS rqUpZBGEIPBVw5cty0tRj8XPDSEcpGY6aJjaNiQIQD5+xOLlFqX063/DBxxupk/u 6+NHhYfZ/KA4Xd2Na6Epi7ZO30VSyOYHfgPXBJHYJ/p/l5quUUZlMHJFiJOAlgp3 olu0qyQwCmybs2gDr3vaJi1gG+Zg7qXQxJlpFXa54Qv+eV16iPB1DCW3XkYH+7HT iWL+Fw3WxBoaTeEieVtWcoiong/GD9bo8L+JCCC7JrhQr/ZL2wAhIkOvPfThAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUQwhgu/96BG0M5D3ZqFX93+3H3IkwHwYDVR0j BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2 bmQ1dy5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzgzMjJlMzEzODMwMmUzMTM1 MzYyZTMwMmYzMjMyMmQzMjM0MjAzZDNlMjAzNDM3MzUzODMzLnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQC UrScMA0GCSqGSIb3DQEBCwUAA4IBAQBVvm83y/cO7bKZhxXEvK2bCQXF0oUPU30a I7k+EAGUAxWehk1i7qZsk7kIoitArjQfsx/h0WzFO8nLPMSl4zcKiONlcRisHs28 rLYCYAqgiv55/j7rg8XAETvCHRw6cTHPPzc+qGIMU82JCdDLdVApk2oHEJNzgIdx O1WIpjdXLMLGvvMbnXhhqnXLmaOQ1CBOZYRApMVDg9IIjR6nvKm5CJQxvlZyCxo1 c3dnljsyWnbPFXSeaensMSbKjAtJIeAb43f49vVQc195DfbFXMSJpJHqbFsLei5O LhFex/BrtycjQZd9N25mpHTSTsF4pfhFCsPSA5YK0+p4ynRm8QqB -----END CERTIFICATE-----Generated at Mon Jan 19 14:26:12 2026 by rpki-client