This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38352e3139302e3232392e302f32342d3332203d3e20313336373837.roa File: 38352e3139302e3232392e302f32342d3332203d3e20313336373837.roa (raw, json) Hash identifier: I9y4bWsCxHwlYHsTgXXNxa8hagZVXEhtHb+RbZQhdd4= Subject key identifier: C7:51:D4:9C:DA:D9:B2:A0:52:46:9E:87:8E:20:59:B6:98:A4:56:F3 Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Certificate serial: 261046CD66035DF5761D5EDA05DF9B3880493195 Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38352e3139302e3232392e302f32342d3332203d3e20313336373837.roa Signing time: Mon 29 Dec 2025 09:50:41 +0000 ROA not before: Mon 29 Dec 2025 09:45:41 +0000 ROA not after: Mon 28 Dec 2026 09:50:41 +0000 asID: 136787 IP address blocks: 85.190.229.0/24 maxlen: 32 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 01:05:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:10:46:cd:66:03:5d:f5:76:1d:5e:da:05:df:9b:38:80:49:31:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Validity Not Before: Dec 29 09:45:41 2025 GMT Not After : Dec 28 09:50:41 2026 GMT Subject: CN=C751D49CDAD9B2A052469E878E2059B698A456F3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:57:38:c7:45:a4:14:2e:ea:4a:97:93:4b:db: b3:9d:2e:c2:48:87:a9:a4:b6:7d:32:7e:27:5b:ae: c2:00:97:ed:fe:35:8d:1d:7a:f7:13:9d:26:44:b5: f7:ab:21:8d:5d:36:4c:d1:1b:d2:c7:30:d1:88:d9: d5:04:af:43:49:80:05:7d:bc:ea:00:3f:31:7d:1d: c0:d0:7e:71:cc:f3:26:57:1f:f6:50:72:06:2c:de: 59:d7:1d:6b:42:0d:df:9c:b3:d9:f2:a0:cc:f3:c9: 1a:84:c6:b2:36:ef:24:12:eb:77:e8:96:b5:a2:78: 7b:2a:03:e0:2a:d0:3d:49:39:1a:2f:5a:b2:6e:95: c6:59:57:d4:42:ca:eb:8e:eb:34:1a:26:b2:58:8e: 54:3e:fa:63:6b:dd:78:fd:b3:7d:68:f6:73:c5:77: 3d:08:85:8b:f7:80:fe:29:49:d4:bd:f5:30:af:b7: ed:8b:66:6e:cb:7d:e7:57:53:e2:77:67:a2:65:89: 6e:39:db:3b:1c:8b:f9:6c:24:83:63:d2:52:61:bd: 04:62:2e:ce:b5:8e:45:3c:f6:3c:ea:54:2b:5e:33: 55:80:c0:79:51:da:ae:cd:55:7f:82:50:ac:1f:f5: 36:66:d6:0d:6b:b1:79:a0:1e:53:a3:05:25:3f:db: 4f:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:51:D4:9C:DA:D9:B2:A0:52:46:9E:87:8E:20:59:B6:98:A4:56:F3 X509v3 Authority Key Identifier: keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38352e3139302e3232392e302f32342d3332203d3e20313336373837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 85.190.229.0/24 Signature Algorithm: sha256WithRSAEncryption 92:64:b9:46:a0:13:04:f3:96:f9:f7:91:01:a6:c6:b7:85:89: f5:2c:f3:b6:02:09:b3:52:16:36:f0:10:bb:1c:92:56:fd:8d: 2e:21:ec:31:75:e6:e2:71:83:d4:fc:c2:d7:d5:37:f8:67:d2: 06:32:48:d3:8a:bd:78:c7:a9:09:24:49:75:df:a0:13:ee:4b: cb:b6:ed:05:f0:62:37:d0:c0:ec:cd:b0:7e:96:ff:3b:61:a6: a6:85:02:ab:b7:b8:8f:c7:28:62:78:a7:ad:45:25:49:31:8c: a9:0f:a8:ce:2e:52:3c:8e:18:1f:01:eb:4c:c6:77:ea:88:2f: fa:26:9b:56:88:2d:a8:99:02:b6:7f:25:00:15:db:7c:a4:23: 11:b0:9c:25:0b:70:7c:31:cd:22:fa:01:8e:ac:20:6e:45:d9: 72:be:bf:39:6f:45:1a:47:86:ef:70:2c:76:29:64:82:4c:64: 48:9a:93:1b:2f:ae:43:6a:e8:d6:13:0c:83:c4:dd:9e:e4:54: 45:44:69:a6:10:00:e2:f4:b9:c1:16:9c:7f:f5:52:16:f2:25: ba:2c:13:9e:97:c7:2f:03:31:26:dd:e5:c0:b9:7e:d2:bf:e1: c2:3f:cf:5d:e8:a8:87:cf:80:c9:ba:5b:47:18:44:88:c3:fa: a9:cc:72:59 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUJhBGzWYDXfV2HV7aBd+bOIBJMZUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0 ZWE3Nzc5YzAeFw0yNTEyMjkwOTQ1NDFaFw0yNjEyMjgwOTUwNDFaMDMxMTAvBgNV BAMTKEM3NTFENDlDREFEOUIyQTA1MjQ2OUU4NzhFMjA1OUI2OThBNDU2RjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7VzjHRaQULupKl5NL27OdLsJI h6mktn0yfidbrsIAl+3+NY0devcTnSZEtferIY1dNkzRG9LHMNGI2dUEr0NJgAV9 vOoAPzF9HcDQfnHM8yZXH/ZQcgYs3lnXHWtCDd+cs9nyoMzzyRqExrI27yQS63fo lrWieHsqA+Aq0D1JORovWrJulcZZV9RCyuuO6zQaJrJYjlQ++mNr3Xj9s31o9nPF dz0IhYv3gP4pSdS99TCvt+2LZm7LfedXU+J3Z6JliW452zsci/lsJINj0lJhvQRi Ls61jkU89jzqVCteM1WAwHlR2q7NVX+CUKwf9TZm1g1rsXmgHlOjBSU/20+hAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUx1HUnNrZsqBSRp6HjiBZtpikVvMwHwYDVR0j BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2 bmQ1dy5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzgzNTJlMzEzOTMwMmUzMjMy MzkyZTMwMmYzMjM0MmQzMzMyMjAzZDNlMjAzMTMzMzYzNzM4Mzcucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABVvuUwDQYJKoZIhvcNAQELBQADggEBAJJkuUagEwTzlvn3kQGmxreFifUs87YC CbNSFjbwELscklb9jS4h7DF15uJxg9T8wtfVN/hn0gYySNOKvXjHqQkkSXXfoBPu S8u27QXwYjfQwOzNsH6W/zthpqaFAqu3uI/HKGJ4p61FJUkxjKkPqM4uUjyOGB8B 60zGd+qIL/omm1aILaiZArZ/JQAV23ykIxGwnCULcHwxzSL6AY6sIG5F2XK+vzlv RRpHhu9wLHYpZIJMZEiakxsvrkNq6NYTDIPE3Z7kVEVEaaYQAOL0ucEWnH/1Uhby JbosE56Xxy8DMSbd5cC5ftK/4cI/z13oqIfPgMm6W0cYRIjD+qnMclk= -----END CERTIFICATE-----Generated at Mon Jan 19 14:27:27 2026 by rpki-client