This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38352e3139302e3233382e302f32342d3234203d3e20313336373837.roa File: 38352e3139302e3233382e302f32342d3234203d3e20313336373837.roa (raw, json) Hash identifier: e61hRNV6gcYSy0l5hN+Z98QHWC+BG1Ea7dlMoiwNp90= Subject key identifier: 07:34:38:81:04:16:27:36:18:22:DF:E4:6F:EF:DB:17:8F:B3:3F:62 Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Certificate serial: 24497E68A7904119079F978CDD6A6067280CE972 Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38352e3139302e3233382e302f32342d3234203d3e20313336373837.roa Signing time: Mon 29 Dec 2025 09:50:42 +0000 ROA not before: Mon 29 Dec 2025 09:45:42 +0000 ROA not after: Mon 28 Dec 2026 09:50:42 +0000 asID: 136787 IP address blocks: 85.190.238.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 01:05:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:49:7e:68:a7:90:41:19:07:9f:97:8c:dd:6a:60:67:28:0c:e9:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Validity Not Before: Dec 29 09:45:42 2025 GMT Not After : Dec 28 09:50:42 2026 GMT Subject: CN=07343881041627361822DFE46FEFDB178FB33F62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:5a:d5:aa:3b:e6:9c:cc:8b:ce:52:4b:c8:d8: d9:54:e0:50:6e:06:71:09:5c:bf:83:82:57:4d:5f: e5:78:0a:4b:cd:a7:56:b7:46:77:ab:a2:ad:a8:7a: f5:1e:ce:b8:89:81:df:ca:95:0a:2a:22:fd:58:c3: e8:94:f6:52:0b:41:61:0c:ca:47:4b:e0:f5:92:88: 12:30:5e:d3:e3:c6:4a:bc:5e:85:90:c8:f7:ef:3a: 34:7f:8e:61:cd:2d:45:62:1e:8a:51:34:ff:13:c9: af:a4:60:6f:39:38:bc:26:9e:2c:26:06:e7:20:41: cf:f5:fd:54:30:9d:69:d2:31:9f:9f:aa:1c:85:9d: 40:a6:b7:e2:2f:fe:79:86:42:d3:1b:aa:1a:e3:5a: 3d:84:7d:ec:60:bd:bb:37:82:a4:e1:b3:2b:ed:8e: 5b:5a:3c:4e:bb:86:f0:63:6d:13:3e:d0:9f:3e:9a: e9:02:86:9e:ad:85:c9:d7:6d:24:80:c1:44:a2:df: 34:f2:27:51:69:c8:1a:ff:1d:d5:7c:1b:31:2f:7d: 81:55:94:32:b0:f8:57:45:2c:b4:ff:83:97:0a:a6: db:a3:08:19:74:cb:73:f0:49:e7:18:41:35:38:f4: f9:85:31:c9:d5:6c:ae:3d:27:fb:f7:ea:a9:4b:7c: a3:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:34:38:81:04:16:27:36:18:22:DF:E4:6F:EF:DB:17:8F:B3:3F:62 X509v3 Authority Key Identifier: keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38352e3139302e3233382e302f32342d3234203d3e20313336373837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 85.190.238.0/24 Signature Algorithm: sha256WithRSAEncryption 4b:37:65:1f:da:13:60:e0:d6:35:99:45:cc:82:a4:7d:f7:53: 4e:9d:c8:ae:a7:fa:a6:b3:7e:a9:53:26:94:1c:8c:7a:f8:17: 42:1d:91:9b:ab:36:62:0f:84:1c:98:8d:ea:af:a9:96:ec:74: 63:54:12:be:7a:d2:9a:16:70:51:9d:28:c9:1a:7e:91:dc:87: c5:59:cf:e5:1b:98:11:3a:70:96:62:e0:43:7f:39:ab:bb:b6: 54:03:f3:f9:39:71:4e:03:45:3d:0a:10:55:c4:a8:0f:7f:b7: 53:d7:1d:96:36:c6:c8:e2:95:c1:44:07:9c:6b:ac:ec:c7:f4: 95:cc:8f:c9:9d:7c:60:cb:0d:af:8e:dc:ec:2c:c2:df:b8:6e: e0:50:51:22:bc:59:ab:cf:89:0c:0e:be:03:83:52:e2:89:98: 30:f4:e7:d2:41:b1:f9:93:32:7a:80:da:57:f5:78:2b:81:30: fb:d9:4f:ca:5b:f9:d5:0a:b1:9c:77:77:f3:5c:e1:7b:f8:12: fc:95:7b:e5:e6:7f:18:6c:be:88:be:64:d5:7d:ba:f0:78:ba: 35:c2:e0:9f:03:cf:d2:68:bd:7b:d9:fe:ec:56:7a:3b:82:0f: 31:10:20:6f:09:83:c2:47:68:cf:70:ea:3f:ad:19:47:d0:31: 34:b0:ef:de -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUJEl+aKeQQRkHn5eM3WpgZygM6XIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0 ZWE3Nzc5YzAeFw0yNTEyMjkwOTQ1NDJaFw0yNjEyMjgwOTUwNDJaMDMxMTAvBgNV BAMTKDA3MzQzODgxMDQxNjI3MzYxODIyREZFNDZGRUZEQjE3OEZCMzNGNjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCeWtWqO+aczIvOUkvI2NlU4FBu BnEJXL+DgldNX+V4CkvNp1a3Rneroq2oevUezriJgd/KlQoqIv1Yw+iU9lILQWEM ykdL4PWSiBIwXtPjxkq8XoWQyPfvOjR/jmHNLUViHopRNP8Tya+kYG85OLwmniwm BucgQc/1/VQwnWnSMZ+fqhyFnUCmt+Iv/nmGQtMbqhrjWj2Efexgvbs3gqThsyvt jltaPE67hvBjbRM+0J8+mukChp6thcnXbSSAwUSi3zTyJ1FpyBr/HdV8GzEvfYFV lDKw+FdFLLT/g5cKptujCBl0y3PwSecYQTU49PmFMcnVbK49J/v36qlLfKMFAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUBzQ4gQQWJzYYIt/kb+/bF4+zP2IwHwYDVR0j BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2 bmQ1dy5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzgzNTJlMzEzOTMwMmUzMjMz MzgyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMTMzMzYzNzM4Mzcucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABVvu4wDQYJKoZIhvcNAQELBQADggEBAEs3ZR/aE2Dg1jWZRcyCpH33U06dyK6n +qazfqlTJpQcjHr4F0IdkZurNmIPhByYjeqvqZbsdGNUEr560poWcFGdKMkafpHc h8VZz+UbmBE6cJZi4EN/Oau7tlQD8/k5cU4DRT0KEFXEqA9/t1PXHZY2xsjilcFE B5xrrOzH9JXMj8mdfGDLDa+O3Owswt+4buBQUSK8WavPiQwOvgODUuKJmDD059JB sfmTMnqA2lf1eCuBMPvZT8pb+dUKsZx3d/Nc4Xv4EvyVe+Xmfxhsvoi+ZNV9uvB4 ujXC4J8Dz9JovXvZ/uxWejuCDzEQIG8Jg8JHaM9w6j+tGUfQMTSw794= -----END CERTIFICATE-----Generated at Mon Jan 19 14:25:54 2026 by rpki-client