This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38352e3139302e3233332e302f32342d3234203d3e20323037313337.roa File: 38352e3139302e3233332e302f32342d3234203d3e20323037313337.roa (raw, json) Hash identifier: gKJyjbIorB73nEZeYGWd3/wL4xIlc/2tdRPN4+MWkZE= Subject key identifier: 9D:9A:8E:CB:A3:A8:F3:37:4F:D6:C7:84:F9:0D:1F:D2:C5:7C:87:0A Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Certificate serial: 5CE6835910BCAA43E3E395215D47632886CDD110 Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38352e3139302e3233332e302f32342d3234203d3e20323037313337.roa Signing time: Mon 29 Dec 2025 09:50:41 +0000 ROA not before: Mon 29 Dec 2025 09:45:41 +0000 ROA not after: Mon 28 Dec 2026 09:50:41 +0000 asID: 207137 IP address blocks: 85.190.233.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 01:05:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:e6:83:59:10:bc:aa:43:e3:e3:95:21:5d:47:63:28:86:cd:d1:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Validity Not Before: Dec 29 09:45:41 2025 GMT Not After : Dec 28 09:50:41 2026 GMT Subject: CN=9D9A8ECBA3A8F3374FD6C784F90D1FD2C57C870A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:cb:b3:ad:e7:ed:14:67:57:9c:09:e3:0b:a9: 19:98:f6:69:26:d3:da:c0:9e:ff:72:38:82:68:af: 0d:9f:67:52:d0:88:3b:79:ff:89:f3:ea:e9:e4:3c: 70:ba:81:e6:55:99:5b:5c:dd:f9:36:2a:ac:55:ec: 0c:94:8f:7b:22:cb:ba:cc:d4:4f:c3:24:7b:55:70: 05:8d:88:b6:9c:23:fc:2a:ae:dc:13:3f:1b:d9:9c: b2:04:4a:5a:46:36:cb:0d:9c:d2:c2:93:c3:d6:b1: 02:4c:50:70:cf:04:73:9f:c1:18:46:28:4b:40:ab: 94:ee:d3:19:af:c7:88:b5:99:43:18:7c:4d:ea:75: 9b:24:73:6e:1f:54:0a:06:e2:e3:6d:2e:f2:2a:65: 1b:49:e9:9f:2e:4b:45:29:75:f0:1e:65:3a:11:63: 4b:3f:be:c7:ea:81:35:ba:89:0d:a8:cc:4d:29:aa: 24:5a:2e:fd:85:a4:8d:f9:4e:f3:79:9f:74:33:25: 2c:71:b6:13:cd:c0:67:92:81:13:77:cc:da:0a:87: d0:67:50:e4:d8:70:54:84:9a:92:a0:7b:41:18:a9: 61:ab:a1:db:8f:49:35:da:fb:6d:7a:6a:e6:fa:5e: 8d:fb:7f:30:6a:9b:59:29:90:2d:1c:b8:8a:aa:cf: e5:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:9A:8E:CB:A3:A8:F3:37:4F:D6:C7:84:F9:0D:1F:D2:C5:7C:87:0A X509v3 Authority Key Identifier: keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38352e3139302e3233332e302f32342d3234203d3e20323037313337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 85.190.233.0/24 Signature Algorithm: sha256WithRSAEncryption 86:09:70:fd:e8:99:99:5d:83:96:db:cf:33:ed:fd:28:2e:a1: 7c:55:ff:ad:ff:3d:2c:2b:68:f7:57:85:dd:27:25:dc:27:75: 43:09:8b:75:dd:fa:ba:bb:05:6e:90:23:24:91:f7:db:c1:80: b5:b3:39:94:fb:c0:83:a5:c7:c6:03:6c:da:cc:dd:2d:3e:67: 0e:4f:7e:0d:3d:09:3a:7a:8c:70:65:68:ec:1b:08:dc:16:90: 7c:03:06:02:ae:e5:a1:19:cc:32:eb:7e:d0:00:5f:46:82:62: 0e:27:92:72:73:88:03:b8:c3:e6:08:d6:69:54:e0:f8:65:24: df:49:7b:60:c2:4e:8f:cf:6f:75:72:d3:ed:8d:a0:19:a0:ef: ee:9c:9d:d6:ec:61:78:e4:42:00:40:07:74:59:53:ec:24:4a: 98:00:12:36:42:c0:44:09:6e:1a:4a:45:e5:ef:0e:2e:c9:d2: 9f:c7:6a:d5:89:ca:ff:21:4c:2f:0e:29:ea:95:d4:67:e9:e6: 6d:ff:b1:42:2b:1f:93:3e:a9:03:3d:b6:0f:2e:11:a5:70:64: ad:86:0a:57:61:82:8a:04:1d:e2:34:d2:e9:d6:cf:b5:a5:a6: 18:57:2b:6e:69:a3:e9:3c:60:7b:31:11:c8:39:a8:74:1e:92: 73:73:11:f5 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUXOaDWRC8qkPj45UhXUdjKIbN0RAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0 ZWE3Nzc5YzAeFw0yNTEyMjkwOTQ1NDFaFw0yNjEyMjgwOTUwNDFaMDMxMTAvBgNV BAMTKDlEOUE4RUNCQTNBOEYzMzc0RkQ2Qzc4NEY5MEQxRkQyQzU3Qzg3MEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNy7Ot5+0UZ1ecCeMLqRmY9mkm 09rAnv9yOIJorw2fZ1LQiDt5/4nz6unkPHC6geZVmVtc3fk2KqxV7AyUj3siy7rM 1E/DJHtVcAWNiLacI/wqrtwTPxvZnLIESlpGNssNnNLCk8PWsQJMUHDPBHOfwRhG KEtAq5Tu0xmvx4i1mUMYfE3qdZskc24fVAoG4uNtLvIqZRtJ6Z8uS0UpdfAeZToR Y0s/vsfqgTW6iQ2ozE0pqiRaLv2FpI35TvN5n3QzJSxxthPNwGeSgRN3zNoKh9Bn UOTYcFSEmpKge0EYqWGroduPSTXa+216aub6Xo37fzBqm1kpkC0cuIqqz+XjAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUnZqOy6Oo8zdP1seE+Q0f0sV8hwowHwYDVR0j BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2 bmQ1dy5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzgzNTJlMzEzOTMwMmUzMjMz MzMyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMjMwMzczMTMzMzcucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABVvukwDQYJKoZIhvcNAQELBQADggEBAIYJcP3omZldg5bbzzPt/SguoXxV/63/ PSwraPdXhd0nJdwndUMJi3Xd+rq7BW6QIySR99vBgLWzOZT7wIOlx8YDbNrM3S0+ Zw5Pfg09CTp6jHBlaOwbCNwWkHwDBgKu5aEZzDLrftAAX0aCYg4nknJziAO4w+YI 1mlU4PhlJN9Je2DCTo/Pb3Vy0+2NoBmg7+6cndbsYXjkQgBAB3RZU+wkSpgAEjZC wEQJbhpKReXvDi7J0p/HatWJyv8hTC8OKeqV1Gfp5m3/sUIrH5M+qQM9tg8uEaVw ZK2GCldhgooEHeI00unWz7WlphhXK25po+k8YHsxEcg5qHQeknNzEfU= -----END CERTIFICATE-----Generated at Mon Jan 19 14:27:29 2026 by rpki-client