This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38362e34382e31312e302f32342d3234203d3e20313337343039.roa File: 38362e34382e31312e302f32342d3234203d3e20313337343039.roa (raw, json) Hash identifier: qGEgJwa1nSbiezHOUEMQZg9bbdZwzf/lgMWxrostKmM= Subject key identifier: AE:EC:12:EA:25:11:59:D7:23:38:5B:BC:DA:38:4D:B5:ED:B6:7B:CF Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Certificate serial: 73984D74170C21D42FF8FB6C53676A969F6EEF6E Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38362e34382e31312e302f32342d3234203d3e20313337343039.roa Signing time: Mon 29 Dec 2025 09:50:41 +0000 ROA not before: Mon 29 Dec 2025 09:45:41 +0000 ROA not after: Mon 28 Dec 2026 09:50:41 +0000 asID: 137409 IP address blocks: 86.48.11.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 01:05:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:98:4d:74:17:0c:21:d4:2f:f8:fb:6c:53:67:6a:96:9f:6e:ef:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Validity Not Before: Dec 29 09:45:41 2025 GMT Not After : Dec 28 09:50:41 2026 GMT Subject: CN=AEEC12EA251159D723385BBCDA384DB5EDB67BCF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:0c:e2:35:04:19:80:e1:ae:cf:20:83:2d:e5: 77:23:fb:c6:ee:e5:d2:2d:04:3c:1a:21:00:b5:5c: b6:da:40:49:1d:d2:30:42:39:a8:a8:49:63:ed:bd: 99:05:47:8f:ad:0e:83:61:3e:6f:62:2f:bd:cd:3f: 64:53:dc:eb:dc:58:cf:15:65:cc:13:a0:71:04:c2: 8f:30:08:0f:7c:f7:07:e6:36:97:1f:cb:dc:2f:f3: 9f:db:6b:88:ef:2a:2c:00:f8:66:bd:bf:8d:d3:33: 4d:2a:63:63:ba:cc:80:23:3b:9b:cc:17:0c:f2:42: bf:3c:55:d9:be:0e:fe:53:54:2c:5f:e2:bd:03:b6: 56:44:14:6a:53:b9:e6:ee:7c:2a:ec:ce:86:4b:fb: 2a:90:5a:3e:12:1d:36:fe:61:e6:99:24:10:3a:d8: 45:13:03:dd:4b:9a:2e:b8:94:c0:f8:05:e3:3e:a4: ac:05:f3:6c:1a:fe:a7:29:7d:0b:15:7e:48:8d:a2: 78:0b:c9:24:a1:24:71:13:83:30:04:1f:6b:02:58: 65:e2:ff:a7:be:3c:ae:7d:41:e4:1b:51:0b:03:83: 3a:c4:67:5f:59:9c:39:c2:9a:c6:f7:32:90:19:98: 8e:5b:f4:32:b5:0f:b4:e4:84:8b:62:b4:e2:cb:f7: 68:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:EC:12:EA:25:11:59:D7:23:38:5B:BC:DA:38:4D:B5:ED:B6:7B:CF X509v3 Authority Key Identifier: keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38362e34382e31312e302f32342d3234203d3e20313337343039.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 86.48.11.0/24 Signature Algorithm: sha256WithRSAEncryption 68:31:4e:21:45:1b:07:0d:66:af:d7:54:16:d0:fb:84:14:8b: 28:66:16:6d:18:b2:27:e2:52:14:ef:95:50:35:29:10:71:09: 4f:c3:b4:c0:ad:c4:40:29:a0:a6:bb:f4:6d:dd:f5:5a:89:fc: 9c:5a:fb:b9:2b:36:29:6d:a3:58:6b:c5:91:aa:da:ff:eb:13: 34:21:8d:b1:dc:de:5d:e8:05:c7:e6:e9:f4:e8:ac:bd:08:ef: 1b:35:fd:cf:3a:ba:ee:23:1f:fa:af:77:84:fb:c6:cc:5d:08: 38:c8:b5:02:d3:80:6f:27:47:f1:f6:d0:e3:bb:40:22:e3:c0: a6:77:cf:c8:6d:c0:67:99:c9:86:61:b4:27:c4:de:3b:bf:1f: 67:ac:96:b3:a5:fd:74:3d:41:c8:d8:94:af:64:cb:5f:99:8f: 91:11:93:66:34:b2:e1:49:e1:ec:89:a3:27:83:42:5d:c6:ed: 40:2d:d1:52:d2:33:36:02:01:43:f6:69:fa:83:45:6e:88:e7: 2a:29:79:ba:72:3f:c5:e7:cf:1a:b5:02:37:e7:67:bc:ac:ab: a4:86:28:2e:c0:90:63:e3:84:fe:af:4c:e1:e7:62:d8:94:ae: 74:1a:b3:59:74:32:44:f5:ee:af:54:22:ae:42:e4:c8:92:a8: e3:bc:d6:54 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUc5hNdBcMIdQv+PtsU2dqlp9u724wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0 ZWE3Nzc5YzAeFw0yNTEyMjkwOTQ1NDFaFw0yNjEyMjgwOTUwNDFaMDMxMTAvBgNV BAMTKEFFRUMxMkVBMjUxMTU5RDcyMzM4NUJCQ0RBMzg0REI1RURCNjdCQ0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8DOI1BBmA4a7PIIMt5Xcj+8bu 5dItBDwaIQC1XLbaQEkd0jBCOaioSWPtvZkFR4+tDoNhPm9iL73NP2RT3OvcWM8V ZcwToHEEwo8wCA989wfmNpcfy9wv85/ba4jvKiwA+Ga9v43TM00qY2O6zIAjO5vM FwzyQr88Vdm+Dv5TVCxf4r0DtlZEFGpTuebufCrszoZL+yqQWj4SHTb+YeaZJBA6 2EUTA91Lmi64lMD4BeM+pKwF82wa/qcpfQsVfkiNongLySShJHETgzAEH2sCWGXi /6e+PK59QeQbUQsDgzrEZ19ZnDnCmsb3MpAZmI5b9DK1D7TkhItitOLL92gbAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUruwS6iURWdcjOFu82jhNte22e88wHwYDVR0j BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2 bmQ1dy5jZXIwgasGCCsGAQUFBwELBIGeMIGbMIGYBggrBgEFBQcwC4aBi3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzgzNjJlMzQzODJlMzEzMTJl MzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzMzNzM0MzAzOS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFYw CzANBgkqhkiG9w0BAQsFAAOCAQEAaDFOIUUbBw1mr9dUFtD7hBSLKGYWbRiyJ+JS FO+VUDUpEHEJT8O0wK3EQCmgprv0bd31Won8nFr7uSs2KW2jWGvFkara/+sTNCGN sdzeXegFx+bp9OisvQjvGzX9zzq67iMf+q93hPvGzF0IOMi1AtOAbydH8fbQ47tA IuPApnfPyG3AZ5nJhmG0J8TeO78fZ6yWs6X9dD1ByNiUr2TLX5mPkRGTZjSy4Unh 7ImjJ4NCXcbtQC3RUtIzNgIBQ/Zp+oNFbojnKil5unI/xefPGrUCN+dnvKyrpIYo LsCQY+OE/q9M4edi2JSudBqzWXQyRPXur1QirkLkyJKo47zWVA== -----END CERTIFICATE-----Generated at Mon Jan 19 14:24:10 2026 by rpki-client