This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38362e34382e31302e302f32342d3332203d3e20313336373837.roa File: 38362e34382e31302e302f32342d3332203d3e20313336373837.roa (raw, json) Hash identifier: g2vDTncyWPk1DzNpcLmIlm1zm/V5O8+LobgPGBDAXSs= Subject key identifier: 52:16:9E:2A:87:4E:D4:C9:55:E4:40:83:16:DC:79:79:24:CF:9F:C6 Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Certificate serial: 27C8F542C342484417EE6C463CCB79C2189AF689 Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38362e34382e31302e302f32342d3332203d3e20313336373837.roa Signing time: Mon 29 Dec 2025 09:51:02 +0000 ROA not before: Mon 29 Dec 2025 09:46:02 +0000 ROA not after: Mon 28 Dec 2026 09:51:02 +0000 asID: 136787 IP address blocks: 86.48.10.0/24 maxlen: 32 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 01:05:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:c8:f5:42:c3:42:48:44:17:ee:6c:46:3c:cb:79:c2:18:9a:f6:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Validity Not Before: Dec 29 09:46:02 2025 GMT Not After : Dec 28 09:51:02 2026 GMT Subject: CN=52169E2A874ED4C955E4408316DC797924CF9FC6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:9b:0f:f4:0c:ec:ab:d3:c0:ab:cb:be:bc:d3: 35:9f:69:40:52:5a:8b:a8:e8:a2:98:44:8a:e5:db: 38:9d:41:9e:d0:d7:c2:59:6f:ae:26:46:2d:98:c5: e5:f2:79:55:8e:c3:e7:a4:65:3a:08:7b:b5:3a:cc: 79:e8:ea:56:b0:6c:9c:90:1a:03:e9:af:91:be:fc: e9:d0:74:9b:7c:4e:35:52:f0:77:02:32:12:be:8b: 46:52:3a:05:98:d9:82:26:7d:8b:72:d4:ab:c5:ab: d3:c4:f7:f2:35:be:43:ac:45:f4:a8:03:c8:34:0c: eb:c2:bb:e1:6a:1f:29:8a:f9:f9:f9:7f:1f:57:4e: 1d:d1:8e:14:64:09:60:97:21:a1:3c:35:18:bf:ea: 47:4f:44:a9:9a:4b:4c:ac:a8:39:a4:c5:57:7b:67: 09:c4:36:94:83:15:e0:31:d4:ad:37:b5:94:82:9b: 9b:75:f5:5d:50:df:b3:0f:40:60:b1:38:89:b4:3d: c1:60:e3:d3:43:5c:0b:0c:9d:4d:d8:b5:85:b1:4c: 9c:63:e9:7f:a1:7f:d4:a3:35:33:5f:60:ba:86:83: 7f:9c:7c:dc:02:2b:e8:c9:df:6d:d5:c3:1d:57:fc: 7d:9a:89:5c:26:58:d7:23:6a:f9:2a:6b:27:ab:a8: 4f:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:16:9E:2A:87:4E:D4:C9:55:E4:40:83:16:DC:79:79:24:CF:9F:C6 X509v3 Authority Key Identifier: keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38362e34382e31302e302f32342d3332203d3e20313336373837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 86.48.10.0/24 Signature Algorithm: sha256WithRSAEncryption 62:44:83:ed:58:57:4d:70:87:a4:6c:c4:e3:9b:44:77:15:aa: 21:e9:44:f5:0f:b8:14:84:a9:1d:18:51:b9:bc:86:2c:d2:98: 4e:c2:02:97:29:7c:f7:d5:68:0a:87:08:95:a9:9e:61:f8:22: 8b:2a:fd:85:2d:66:0a:a7:b3:60:83:b9:d7:32:79:8a:b5:f6: 68:57:54:a1:2c:a4:2f:aa:d7:35:59:f7:40:8e:f4:d0:5b:02: a7:7c:34:99:30:a3:9f:5b:52:ef:d4:0e:40:6c:46:0b:e5:b2: 93:d4:06:0d:1e:4d:2a:f2:65:2f:a9:0c:23:35:4f:db:c0:33: b0:64:be:3e:7f:b9:d1:48:bd:83:0c:1d:9a:c0:90:6b:cc:b3: 1e:34:f1:4a:76:99:d3:9c:25:9f:6e:1c:ef:3d:4c:27:64:5f: 64:b7:51:7c:bf:5a:7f:a6:9a:07:83:34:b2:a4:7f:c3:45:4e: 4d:7b:49:f1:38:8d:6a:39:59:58:25:c6:6f:45:bc:65:71:d1: a2:bc:85:7b:28:f1:55:b6:55:f4:3d:d9:d6:00:9d:1f:ba:4e: 84:0e:59:2b:1b:3a:3c:3b:50:2a:87:a5:95:bc:57:89:d8:d4: 26:c6:a5:85:16:d2:a7:90:bd:48:8f:d0:40:6e:f0:4d:ef:34: 6b:e4:6e:f0 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUJ8j1QsNCSEQX7mxGPMt5whia9okwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0 ZWE3Nzc5YzAeFw0yNTEyMjkwOTQ2MDJaFw0yNjEyMjgwOTUxMDJaMDMxMTAvBgNV BAMTKDUyMTY5RTJBODc0RUQ0Qzk1NUU0NDA4MzE2REM3OTc5MjRDRjlGQzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQClmw/0DOyr08Cry7680zWfaUBS Wouo6KKYRIrl2zidQZ7Q18JZb64mRi2YxeXyeVWOw+ekZToIe7U6zHno6lawbJyQ GgPpr5G+/OnQdJt8TjVS8HcCMhK+i0ZSOgWY2YImfYty1KvFq9PE9/I1vkOsRfSo A8g0DOvCu+FqHymK+fn5fx9XTh3RjhRkCWCXIaE8NRi/6kdPRKmaS0ysqDmkxVd7 ZwnENpSDFeAx1K03tZSCm5t19V1Q37MPQGCxOIm0PcFg49NDXAsMnU3YtYWxTJxj 6X+hf9SjNTNfYLqGg3+cfNwCK+jJ323Vwx1X/H2aiVwmWNcjavkqayerqE/vAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUUhaeKodO1MlV5ECDFtx5eSTPn8YwHwYDVR0j BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2 bmQ1dy5jZXIwgasGCCsGAQUFBwELBIGeMIGbMIGYBggrBgEFBQcwC4aBi3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzgzNjJlMzQzODJlMzEzMDJl MzAyZjMyMzQyZDMzMzIyMDNkM2UyMDMxMzMzNjM3MzgzNy5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFYw CjANBgkqhkiG9w0BAQsFAAOCAQEAYkSD7VhXTXCHpGzE45tEdxWqIelE9Q+4FISp HRhRubyGLNKYTsIClyl899VoCocIlameYfgiiyr9hS1mCqezYIO51zJ5irX2aFdU oSykL6rXNVn3QI700FsCp3w0mTCjn1tS79QOQGxGC+Wyk9QGDR5NKvJlL6kMIzVP 28AzsGS+Pn+50Ui9gwwdmsCQa8yzHjTxSnaZ05wln24c7z1MJ2RfZLdRfL9af6aa B4M0sqR/w0VOTXtJ8TiNajlZWCXGb0W8ZXHRoryFeyjxVbZV9D3Z1gCdH7pOhA5Z Kxs6PDtQKoellbxXidjUJsalhRbSp5C9SI/QQG7wTe80a+Ru8A== -----END CERTIFICATE-----Generated at Mon Jan 19 14:25:21 2026 by rpki-client