This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38322e3230382e32302e302f32322d3332203d3e203531313637.roa File: 38322e3230382e32302e302f32322d3332203d3e203531313637.roa (raw, json) Hash identifier: YG8HbW5cGI3x9AAv5hrjOPiV3FK2YIUojxzuI4Oma48= Subject key identifier: 6D:17:1E:FF:33:8C:C5:52:BD:92:10:B5:48:61:76:43:44:B4:77:2D Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Certificate serial: 20E90583FEE2414AD5D3467230C396363A44A1A4 Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38322e3230382e32302e302f32322d3332203d3e203531313637.roa Signing time: Mon 29 Dec 2025 09:50:56 +0000 ROA not before: Mon 29 Dec 2025 09:45:56 +0000 ROA not after: Mon 28 Dec 2026 09:50:56 +0000 asID: 51167 IP address blocks: 82.208.20.0/22 maxlen: 32 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 01:05:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:e9:05:83:fe:e2:41:4a:d5:d3:46:72:30:c3:96:36:3a:44:a1:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Validity Not Before: Dec 29 09:45:56 2025 GMT Not After : Dec 28 09:50:56 2026 GMT Subject: CN=6D171EFF338CC552BD9210B54861764344B4772D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:dd:bf:07:84:d4:68:8d:00:1e:ea:a3:01:22: 81:be:4f:66:7a:fe:a7:f8:bf:14:02:85:78:f6:c6: 64:87:ac:26:2b:71:1c:97:6e:b6:5c:85:19:ad:42: fb:17:db:88:63:fc:cd:b9:74:c1:35:07:b8:7f:03: db:79:a1:81:d6:1f:2f:84:f2:32:f4:8c:a3:41:b0: 99:a7:9b:e5:43:28:b9:7d:6b:73:cd:ff:94:3f:f9: 0a:8c:11:3b:58:ab:6d:15:67:58:c2:9b:39:80:bc: 09:a3:e1:6d:6b:d6:31:36:40:cc:34:63:0c:e8:fc: c3:e5:64:a1:44:bd:17:ff:a2:01:7d:63:0d:18:c4: 62:b0:30:9d:4a:83:4b:e6:7b:88:b2:8e:58:b7:04: d6:0d:72:e7:52:4b:e1:ac:7b:a4:2a:09:58:77:c0: a7:68:40:e3:8a:36:a1:c9:5a:0e:07:4b:93:9b:03: e8:31:97:8d:67:98:d5:95:f1:55:7b:95:d0:06:f1: 21:01:16:9e:73:f9:ce:98:0a:88:c7:7b:39:c3:78: 56:d5:74:37:a1:d8:57:d3:53:2a:9b:5c:ca:14:ec: 5e:b6:b4:c1:57:56:2f:71:88:b1:d2:01:c2:8a:5d: 43:da:58:f1:5e:e0:2c:98:3c:bb:16:e7:2e:90:2a: 25:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:17:1E:FF:33:8C:C5:52:BD:92:10:B5:48:61:76:43:44:B4:77:2D X509v3 Authority Key Identifier: keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38322e3230382e32302e302f32322d3332203d3e203531313637.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 82.208.20.0/22 Signature Algorithm: sha256WithRSAEncryption 8b:a3:fb:83:8d:f8:92:01:d5:5b:f5:f9:cc:52:df:af:53:f6: 5a:64:1d:74:15:ae:f8:66:8d:f5:30:74:a1:24:00:ef:84:54: 33:90:a0:a3:4a:02:31:52:8d:7a:19:81:48:48:b2:1c:c5:04: 4e:31:32:a6:ec:fb:c7:49:24:2d:2c:9f:68:d5:55:c4:6d:01: 8e:09:f6:ea:a0:d7:1d:31:2a:37:4b:00:55:ef:12:cc:d6:bc: 61:f7:05:a2:83:70:a0:25:17:4f:7f:3f:7b:25:c7:8c:ff:0c: cf:8f:27:5e:e8:c9:e7:1c:c3:31:9b:45:a1:80:27:e4:c6:86: 4f:20:0f:bb:9b:39:5f:e2:33:1e:84:0b:8a:20:7f:02:b0:b0: 55:b5:77:92:55:59:cf:f4:15:1d:a5:47:00:de:40:86:5f:7f: 18:e0:ea:1a:20:55:6e:c2:db:2f:f3:2c:48:65:7a:38:a9:36: 48:ad:b1:00:9a:d0:6d:c0:ae:37:a9:86:01:85:1f:26:97:5b: ac:40:32:56:04:49:48:46:15:97:55:3c:a0:26:0a:90:52:ff: 05:34:68:0f:98:f5:f5:2d:e5:81:4b:05:cc:04:8b:ca:65:53: e1:17:b7:e8:e7:e4:de:24:ad:dd:37:a5:19:53:77:76:52:b2: d8:63:6a:27 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUIOkFg/7iQUrV00ZyMMOWNjpEoaQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0 ZWE3Nzc5YzAeFw0yNTEyMjkwOTQ1NTZaFw0yNjEyMjgwOTUwNTZaMDMxMTAvBgNV BAMTKDZEMTcxRUZGMzM4Q0M1NTJCRDkyMTBCNTQ4NjE3NjQzNDRCNDc3MkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDN3b8HhNRojQAe6qMBIoG+T2Z6 /qf4vxQChXj2xmSHrCYrcRyXbrZchRmtQvsX24hj/M25dME1B7h/A9t5oYHWHy+E 8jL0jKNBsJmnm+VDKLl9a3PN/5Q/+QqMETtYq20VZ1jCmzmAvAmj4W1r1jE2QMw0 Ywzo/MPlZKFEvRf/ogF9Yw0YxGKwMJ1Kg0vme4iyjli3BNYNcudSS+Gse6QqCVh3 wKdoQOOKNqHJWg4HS5ObA+gxl41nmNWV8VV7ldAG8SEBFp5z+c6YCojHeznDeFbV dDeh2FfTUyqbXMoU7F62tMFXVi9xiLHSAcKKXUPaWPFe4CyYPLsW5y6QKiVlAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUbRce/zOMxVK9khC1SGF2Q0S0dy0wHwYDVR0j BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2 bmQ1dy5jZXIwgasGCCsGAQUFBwELBIGeMIGbMIGYBggrBgEFBQcwC4aBi3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzgzMjJlMzIzMDM4MmUzMjMw MmUzMDJmMzIzMjJkMzMzMjIwM2QzZTIwMzUzMTMxMzYzNy5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAlLQ FDANBgkqhkiG9w0BAQsFAAOCAQEAi6P7g434kgHVW/X5zFLfr1P2WmQddBWu+GaN 9TB0oSQA74RUM5Cgo0oCMVKNehmBSEiyHMUETjEypuz7x0kkLSyfaNVVxG0Bjgn2 6qDXHTEqN0sAVe8SzNa8YfcFooNwoCUXT38/eyXHjP8Mz48nXujJ5xzDMZtFoYAn 5MaGTyAPu5s5X+IzHoQLiiB/ArCwVbV3klVZz/QVHaVHAN5Ahl9/GODqGiBVbsLb L/MsSGV6OKk2SK2xAJrQbcCuN6mGAYUfJpdbrEAyVgRJSEYVl1U8oCYKkFL/BTRo D5j19S3lgUsFzASLymVT4Re36Ofk3iSt3TelGVN3dlKy2GNqJw== -----END CERTIFICATE-----Generated at Mon Jan 19 14:24:57 2026 by rpki-client