This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38332e3133362e3138312e302f32342d3234203d3e203230383630.roa File: 38332e3133362e3138312e302f32342d3234203d3e203230383630.roa (raw, json) Hash identifier: r7rWUsGb7yZKZ4Lc1UuQI2ihwEvqCzOOP4K1J74tmLI= Subject key identifier: 0B:1D:E1:2F:1E:B8:6C:5A:13:F4:7F:67:57:56:EF:A6:43:6A:00:B2 Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Certificate serial: 176C61A7F09EF54128DB23B260E725BC49E8BD56 Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38332e3133362e3138312e302f32342d3234203d3e203230383630.roa Signing time: Mon 29 Dec 2025 19:51:08 +0000 ROA not before: Mon 29 Dec 2025 19:46:08 +0000 ROA not after: Mon 28 Dec 2026 19:51:08 +0000 asID: 20860 IP address blocks: 83.136.181.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 01:05:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:6c:61:a7:f0:9e:f5:41:28:db:23:b2:60:e7:25:bc:49:e8:bd:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Validity Not Before: Dec 29 19:46:08 2025 GMT Not After : Dec 28 19:51:08 2026 GMT Subject: CN=0B1DE12F1EB86C5A13F47F675756EFA6436A00B2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:d3:79:8f:c5:a6:a2:9f:09:93:2a:8b:0b:35: fe:6a:65:f4:53:21:c9:3e:63:39:5c:57:8e:12:32: 17:99:c2:6f:a4:bb:ef:88:73:3d:bf:e9:ae:c0:94: 4e:35:97:6f:78:35:ad:4b:6f:92:52:99:6e:22:b3: d2:41:3a:41:ad:2b:4b:fc:f7:7f:b5:c1:86:69:79: 10:f2:60:2b:fa:c2:f6:63:05:5d:29:9b:c0:c4:30: d0:28:47:17:4c:4d:c5:34:ba:96:c9:4f:ab:60:fd: 13:82:ae:ad:21:bd:76:16:7c:14:e6:d0:f3:92:09: 11:4f:9f:c6:db:25:64:cf:2c:4e:2d:b4:f8:9c:b0: f1:a4:8d:3c:04:1c:e3:4a:fc:d8:92:72:1f:fc:cd: 34:f7:49:c3:19:4f:9c:5b:9f:b6:c2:90:8f:7c:8a: 5a:e9:9c:59:40:98:5f:15:2b:d8:44:e3:c9:30:e8: 96:2f:13:99:e6:09:30:ac:9f:b0:fa:89:4e:d3:d0: a2:e7:1c:b5:1b:37:b4:0d:0a:91:68:ae:c3:3d:a0: 66:5f:58:79:97:ef:21:27:83:ec:fd:b9:06:3d:d9: 00:3a:37:5a:06:be:c1:4c:41:b3:ab:50:33:75:8e: d9:f1:27:8a:3d:62:a8:d9:46:50:65:bf:cc:37:a0: 51:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:1D:E1:2F:1E:B8:6C:5A:13:F4:7F:67:57:56:EF:A6:43:6A:00:B2 X509v3 Authority Key Identifier: keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38332e3133362e3138312e302f32342d3234203d3e203230383630.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 83.136.181.0/24 Signature Algorithm: sha256WithRSAEncryption 43:8d:cf:b6:d9:9b:42:03:ea:99:ed:9f:48:87:37:a5:44:2d: d5:0d:8b:1a:54:4e:78:a7:f3:ac:fc:bf:1c:18:cc:9a:d2:87: 89:68:0f:9b:a4:89:74:62:f8:5c:43:0b:1f:59:54:26:01:8b: 5b:25:6c:fc:5a:b0:f9:40:e4:f6:70:5d:4c:78:05:a4:1b:e5: 96:d8:fd:17:c5:aa:be:ec:24:f2:a3:ff:79:5b:74:f0:20:81: 49:b5:07:41:bb:7c:96:ba:9b:4c:d7:46:07:63:89:a6:2a:06: 55:2f:66:18:7f:f6:6a:9f:87:8a:e0:7b:3f:19:f7:71:1f:b3: 29:8d:0b:05:5a:3f:69:b5:05:68:61:4b:14:1f:f3:15:a2:02: 9c:79:26:bb:9f:29:43:bc:f5:8e:2b:72:d8:dc:8e:8e:b5:d5: 6d:e3:4f:67:38:91:b8:da:9f:ab:83:cb:14:c0:99:70:a5:6b: db:7b:9b:af:88:0e:e3:86:43:e4:a2:8a:22:ec:50:c5:d1:c7: d5:ca:dd:f3:87:b8:f5:c6:33:6e:78:bc:3b:80:ee:c2:23:27: e4:c4:fa:fa:16:27:e0:85:1e:c3:3c:b6:06:53:9f:f7:1d:f9: 34:66:5a:40:2c:13:88:3a:8a:ea:ef:bb:60:32:26:ac:02:13: 7d:6f:cb:ab -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUF2xhp/Ce9UEo2yOyYOclvEnovVYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0 ZWE3Nzc5YzAeFw0yNTEyMjkxOTQ2MDhaFw0yNjEyMjgxOTUxMDhaMDMxMTAvBgNV BAMTKDBCMURFMTJGMUVCODZDNUExM0Y0N0Y2NzU3NTZFRkE2NDM2QTAwQjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDB03mPxaainwmTKosLNf5qZfRT Ick+YzlcV44SMheZwm+ku++Icz2/6a7AlE41l294Na1Lb5JSmW4is9JBOkGtK0v8 93+1wYZpeRDyYCv6wvZjBV0pm8DEMNAoRxdMTcU0upbJT6tg/ROCrq0hvXYWfBTm 0POSCRFPn8bbJWTPLE4ttPicsPGkjTwEHONK/NiSch/8zTT3ScMZT5xbn7bCkI98 ilrpnFlAmF8VK9hE48kw6JYvE5nmCTCsn7D6iU7T0KLnHLUbN7QNCpForsM9oGZf WHmX7yEng+z9uQY92QA6N1oGvsFMQbOrUDN1jtnxJ4o9YqjZRlBlv8w3oFG3AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUCx3hLx64bFoT9H9nV1bvpkNqALIwHwYDVR0j BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2 bmQ1dy5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzgzMzJlMzEzMzM2MmUzMTM4 MzEyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMjMwMzgzNjMwLnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA U4i1MA0GCSqGSIb3DQEBCwUAA4IBAQBDjc+22ZtCA+qZ7Z9IhzelRC3VDYsaVE54 p/Os/L8cGMya0oeJaA+bpIl0YvhcQwsfWVQmAYtbJWz8WrD5QOT2cF1MeAWkG+WW 2P0Xxaq+7CTyo/95W3TwIIFJtQdBu3yWuptM10YHY4mmKgZVL2YYf/Zqn4eK4Hs/ GfdxH7MpjQsFWj9ptQVoYUsUH/MVogKceSa7nylDvPWOK3LY3I6OtdVt409nOJG4 2p+rg8sUwJlwpWvbe5uviA7jhkPkoooi7FDF0cfVyt3zh7j1xjNueLw7gO7CIyfk xPr6FifghR7DPLYGU5/3Hfk0ZlpALBOIOorq77tgMiasAhN9b8ur -----END CERTIFICATE-----Generated at Mon Jan 19 14:23:30 2026 by rpki-client