This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/39322e3131382e34382e302f32342d3234203d3e20313336373837.roa File: 39322e3131382e34382e302f32342d3234203d3e20313336373837.roa (raw, json) Hash identifier: 7LsXM0badE5eCEIWW1ZZFNaj74tKItbEWUZipxavgRQ= Subject key identifier: 75:EB:EF:FA:8E:EB:62:29:E6:D0:43:2D:97:E7:E0:A8:1B:1F:49:6A Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Certificate serial: 4D5CCCEA2FACE83FA0FD15E7404C915D3F5400A1 Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/39322e3131382e34382e302f32342d3234203d3e20313336373837.roa Signing time: Sat 03 Jan 2026 22:51:13 +0000 ROA not before: Sat 03 Jan 2026 22:46:13 +0000 ROA not after: Sat 02 Jan 2027 22:51:13 +0000 asID: 136787 IP address blocks: 92.118.48.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 14:41:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:5c:cc:ea:2f:ac:e8:3f:a0:fd:15:e7:40:4c:91:5d:3f:54:00:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Validity Not Before: Jan 3 22:46:13 2026 GMT Not After : Jan 2 22:51:13 2027 GMT Subject: CN=75EBEFFA8EEB6229E6D0432D97E7E0A81B1F496A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:c2:8e:7e:6c:4b:e8:69:fa:ea:d6:c9:36:86: 78:09:4d:13:93:87:73:ba:89:1b:48:6f:a3:da:6a: 44:e6:00:cd:61:3b:3f:34:41:6b:af:3b:4c:9e:86: 92:c7:f0:c9:d0:4d:c4:88:6b:ca:43:91:4a:15:90: c5:31:0b:c1:63:7d:a1:e8:c7:04:a5:b5:52:33:28: 2b:c3:f3:0b:ee:e6:2f:59:f9:f5:87:6a:4b:bb:0e: aa:e8:71:04:f6:95:60:92:61:cc:f9:68:23:1c:50: 2d:f4:b5:e5:33:cd:8b:23:9d:e6:4c:eb:27:39:2a: e3:54:31:0e:d3:bd:13:ea:76:08:18:8d:84:c9:cf: 95:fc:79:3c:45:04:b4:f2:e0:07:26:ba:13:96:9a: 02:28:6b:25:79:2a:83:3b:72:32:d6:b8:4e:b9:b4: 0c:b3:86:da:0f:ee:54:f1:0e:d1:0f:eb:89:f2:86: e7:9b:13:e3:63:31:6b:a5:2a:b8:4a:f3:72:b3:a3: d9:40:2f:e7:c8:22:99:14:bb:20:52:89:20:b7:81: 5d:59:ea:f8:2f:a2:62:ff:f5:c3:1b:b2:9f:f3:b2: 39:ee:93:e9:46:2d:24:e8:37:ca:f4:ba:d3:7e:4c: 12:e8:65:6c:7e:79:1a:11:c1:5c:8d:cc:4c:7a:4b: fe:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:EB:EF:FA:8E:EB:62:29:E6:D0:43:2D:97:E7:E0:A8:1B:1F:49:6A X509v3 Authority Key Identifier: keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/39322e3131382e34382e302f32342d3234203d3e20313336373837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 92.118.48.0/24 Signature Algorithm: sha256WithRSAEncryption 02:78:84:76:1a:89:d7:c9:95:32:ea:d6:70:99:a9:ca:cf:d7: b4:56:3c:cb:86:89:01:70:23:24:bc:35:11:55:3d:57:d2:8f: a8:0e:c9:13:eb:15:81:4b:dc:cf:0a:d7:bb:9e:27:da:81:d4: 1f:9e:c9:e0:12:d1:43:01:de:39:5d:bb:ab:02:6e:78:03:e0: cd:b7:fd:86:36:5a:de:28:07:12:31:88:8b:a8:16:b0:6c:b3: 59:ad:de:a6:bb:f6:15:41:6e:75:f1:58:7d:95:fa:be:27:d0: 43:f7:b0:a1:28:3e:f0:90:00:4a:15:65:e2:de:e0:d6:aa:32: 73:c1:2f:a4:fe:62:99:e5:c6:fa:5b:cc:f9:74:aa:c2:6d:20: e6:03:f8:c1:35:39:09:63:e8:ab:bd:95:0d:cb:3b:26:a3:cf: f0:fc:9a:6b:03:3b:54:ce:46:2b:3e:f0:95:1c:d7:0b:53:75: b4:b3:1a:4a:34:26:3e:b3:4f:92:91:3f:bc:07:32:3d:02:74: 86:e0:4a:06:c2:12:44:ee:b8:92:16:05:b6:3b:9f:56:69:0d: 6d:a8:ed:88:80:ae:58:c0:66:51:66:ee:c1:16:b1:58:8b:17: 3c:54:8c:46:86:63:c7:be:42:9b:b5:34:08:d4:07:36:d4:82: c2:65:7a:7d -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUTVzM6i+s6D+g/RXnQEyRXT9UAKEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0 ZWE3Nzc5YzAeFw0yNjAxMDMyMjQ2MTNaFw0yNzAxMDIyMjUxMTNaMDMxMTAvBgNV BAMTKDc1RUJFRkZBOEVFQjYyMjlFNkQwNDMyRDk3RTdFMEE4MUIxRjQ5NkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdwo5+bEvoafrq1sk2hngJTROT h3O6iRtIb6PaakTmAM1hOz80QWuvO0yehpLH8MnQTcSIa8pDkUoVkMUxC8FjfaHo xwSltVIzKCvD8wvu5i9Z+fWHaku7DqrocQT2lWCSYcz5aCMcUC30teUzzYsjneZM 6yc5KuNUMQ7TvRPqdggYjYTJz5X8eTxFBLTy4AcmuhOWmgIoayV5KoM7cjLWuE65 tAyzhtoP7lTxDtEP64nyhuebE+NjMWulKrhK83Kzo9lAL+fIIpkUuyBSiSC3gV1Z 6vgvomL/9cMbsp/zsjnuk+lGLSToN8r0utN+TBLoZWx+eRoRwVyNzEx6S/6dAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUdevv+o7rYinm0EMtl+fgqBsfSWowHwYDVR0j BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2 bmQ1dy5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzkzMjJlMzEzMTM4MmUzNDM4 MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzEzMzM2MzczODM3LnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA XHYwMA0GCSqGSIb3DQEBCwUAA4IBAQACeIR2GonXyZUy6tZwmanKz9e0VjzLhokB cCMkvDURVT1X0o+oDskT6xWBS9zPCte7nifagdQfnsngEtFDAd45XburAm54A+DN t/2GNlreKAcSMYiLqBawbLNZrd6mu/YVQW518Vh9lfq+J9BD97ChKD7wkABKFWXi 3uDWqjJzwS+k/mKZ5cb6W8z5dKrCbSDmA/jBNTkJY+irvZUNyzsmo8/w/JprAztU zkYrPvCVHNcLU3W0sxpKNCY+s0+SkT+8BzI9AnSG4EoGwhJE7riSFgW2O59WaQ1t qO2IgK5YwGZRZu7BFrFYixc8VIxGhmPHvkKbtTQI1Ac21ILCZXp9 -----END CERTIFICATE-----Generated at Tue Jan 27 07:47:24 2026 by rpki-client