This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38352e3139302e3233322e302f32342d3234203d3e20323037313337.roa File: 38352e3139302e3233322e302f32342d3234203d3e20323037313337.roa (raw, json) Hash identifier: NXQCF1jiLd3q8z/ok/8azGYWkM2iWiYegAKQT3+j/aI= Subject key identifier: 45:4E:51:BD:59:D8:45:C2:64:01:93:83:6E:76:C4:34:EB:6C:7A:A6 Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Certificate serial: 760525652ED44FD8A4960EC517D47E877DD062A3 Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38352e3139302e3233322e302f32342d3234203d3e20323037313337.roa Signing time: Mon 29 Dec 2025 09:50:39 +0000 ROA not before: Mon 29 Dec 2025 09:45:39 +0000 ROA not after: Mon 28 Dec 2026 09:50:39 +0000 asID: 207137 IP address blocks: 85.190.232.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 01:05:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:05:25:65:2e:d4:4f:d8:a4:96:0e:c5:17:d4:7e:87:7d:d0:62:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Validity Not Before: Dec 29 09:45:39 2025 GMT Not After : Dec 28 09:50:39 2026 GMT Subject: CN=454E51BD59D845C2640193836E76C434EB6C7AA6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:b7:a9:eb:ff:e1:dc:b9:92:29:1d:e6:89:f2: 70:5a:45:69:9b:6e:05:50:06:0b:36:80:b9:86:d6: cb:79:c5:2d:74:18:54:90:0d:c2:ad:3b:18:80:c8: 5d:c5:49:a0:90:ca:60:8c:f4:25:61:f4:ed:cf:23: f9:a2:6c:2d:23:ed:da:c0:3d:03:bf:55:d6:1e:d8: 27:20:27:6c:77:1b:f5:e9:2c:0b:6f:4d:6c:f4:c4: 30:d2:d0:9d:85:95:14:a5:c2:da:68:ca:d2:fc:6c: 0e:d0:40:1a:56:5c:ba:f5:17:f5:53:98:86:63:74: d5:82:67:a5:9d:81:34:20:ff:14:27:b2:fe:16:55: 57:c4:66:01:f5:4a:68:f4:5a:62:c3:52:21:03:8f: f1:3b:b6:ed:57:bf:01:c1:4c:0f:99:71:37:4e:5c: 7a:7d:5c:52:57:75:c9:40:6e:d7:b2:b4:9e:dc:ad: b3:f5:d0:9c:ff:7f:78:c1:f2:58:10:54:0d:ff:e5: cc:24:5a:86:c6:4b:5e:57:5e:0c:d1:2d:c8:c2:c6: 4e:f0:81:d1:b3:61:ec:4c:09:51:89:64:60:6c:f3: 3a:b8:d9:0f:f1:41:e2:00:57:01:89:37:c9:40:47: b3:82:09:f1:7a:ff:44:5f:04:3d:d3:3c:e8:bd:e1: 22:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:4E:51:BD:59:D8:45:C2:64:01:93:83:6E:76:C4:34:EB:6C:7A:A6 X509v3 Authority Key Identifier: keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38352e3139302e3233322e302f32342d3234203d3e20323037313337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 85.190.232.0/24 Signature Algorithm: sha256WithRSAEncryption 58:eb:f9:79:fe:f4:2c:1b:c3:ee:72:3c:58:49:b8:37:c8:b0: dc:76:6a:7b:26:6d:2a:dc:c4:99:6f:59:b8:e4:f3:56:69:ac: 47:54:4d:fa:04:d1:ff:01:56:53:68:d1:a6:58:88:41:81:3f: 99:a6:95:da:4c:b3:51:1c:b6:b8:40:d0:b3:a7:df:c4:46:ef: 5c:56:d2:56:a9:02:ee:8a:e8:64:25:89:3f:fd:34:71:4b:b1: 24:74:95:07:d7:34:90:60:21:44:84:5e:6d:4e:38:59:d1:10: 04:88:06:7c:e5:12:34:12:53:03:78:75:e2:6c:54:7a:c0:11: 31:d4:ed:35:88:a7:b8:ab:2e:14:aa:14:5a:fe:1f:17:e0:4f: 72:7a:a4:90:76:bd:ef:5a:4b:11:d6:9a:c0:0a:80:8b:6f:98: 96:22:4d:aa:1b:c1:2c:68:84:2a:92:74:63:bc:d5:a9:7c:8f: 16:60:bc:cc:8b:45:b5:74:89:10:43:aa:6a:ec:b9:1b:28:cb: 08:21:42:7d:6f:68:a3:7e:d2:37:c3:28:c4:50:74:bd:9a:df: 8e:48:cd:a7:39:74:dd:9e:c9:c3:9c:09:1a:ec:79:10:34:f1: 71:18:5c:50:82:40:d6:f4:73:8e:92:04:0d:c8:74:94:39:a7: c2:4a:f9:e7 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUdgUlZS7UT9iklg7FF9R+h33QYqMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0 ZWE3Nzc5YzAeFw0yNTEyMjkwOTQ1MzlaFw0yNjEyMjgwOTUwMzlaMDMxMTAvBgNV BAMTKDQ1NEU1MUJENTlEODQ1QzI2NDAxOTM4MzZFNzZDNDM0RUI2QzdBQTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDqt6nr/+HcuZIpHeaJ8nBaRWmb bgVQBgs2gLmG1st5xS10GFSQDcKtOxiAyF3FSaCQymCM9CVh9O3PI/mibC0j7drA PQO/VdYe2CcgJ2x3G/XpLAtvTWz0xDDS0J2FlRSlwtpoytL8bA7QQBpWXLr1F/VT mIZjdNWCZ6WdgTQg/xQnsv4WVVfEZgH1Smj0WmLDUiEDj/E7tu1XvwHBTA+ZcTdO XHp9XFJXdclAbteytJ7crbP10Jz/f3jB8lgQVA3/5cwkWobGS15XXgzRLcjCxk7w gdGzYexMCVGJZGBs8zq42Q/xQeIAVwGJN8lAR7OCCfF6/0RfBD3TPOi94SJZAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQURU5RvVnYRcJkAZODbnbENOtseqYwHwYDVR0j BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2 bmQ1dy5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzgzNTJlMzEzOTMwMmUzMjMz MzIyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMjMwMzczMTMzMzcucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABVvugwDQYJKoZIhvcNAQELBQADggEBAFjr+Xn+9Cwbw+5yPFhJuDfIsNx2ansm bSrcxJlvWbjk81ZprEdUTfoE0f8BVlNo0aZYiEGBP5mmldpMs1EctrhA0LOn38RG 71xW0lapAu6K6GQliT/9NHFLsSR0lQfXNJBgIUSEXm1OOFnREASIBnzlEjQSUwN4 deJsVHrAETHU7TWIp7irLhSqFFr+HxfgT3J6pJB2ve9aSxHWmsAKgItvmJYiTaob wSxohCqSdGO81al8jxZgvMyLRbV0iRBDqmrsuRsoywghQn1vaKN+0jfDKMRQdL2a 345Izac5dN2eycOcCRrseRA08XEYXFCCQNb0c46SBA3IdJQ5p8JK+ec= -----END CERTIFICATE-----Generated at Mon Jan 19 14:25:22 2026 by rpki-client