This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/39342e3134302e392e302f32342d3332203d3e20313336373837.roa File: 39342e3134302e392e302f32342d3332203d3e20313336373837.roa (raw, json) Hash identifier: Mzzk7ClRBFOLf4sf1LCtnGANdlPkoXBO751aFU+mT6c= Subject key identifier: 93:03:50:54:9B:A4:8A:C6:B0:F9:89:4D:FA:EC:95:44:6C:06:B8:6F Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Certificate serial: 31411D4C0B2A911196211D29AFEC88BBB2FEC56F Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/39342e3134302e392e302f32342d3332203d3e20313336373837.roa Signing time: Mon 29 Dec 2025 09:50:53 +0000 ROA not before: Mon 29 Dec 2025 09:45:53 +0000 ROA not after: Mon 28 Dec 2026 09:50:53 +0000 asID: 136787 IP address blocks: 94.140.9.0/24 maxlen: 32 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 01:05:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:41:1d:4c:0b:2a:91:11:96:21:1d:29:af:ec:88:bb:b2:fe:c5:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Validity Not Before: Dec 29 09:45:53 2025 GMT Not After : Dec 28 09:50:53 2026 GMT Subject: CN=930350549BA48AC6B0F9894DFAEC95446C06B86F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:57:76:4e:94:49:3c:6c:d0:b6:61:1c:84:bb: 7b:d7:cd:d6:ec:c7:07:be:2f:5d:05:dd:77:cb:10: 29:0e:53:53:ca:7c:9e:0b:a7:42:24:ba:41:ae:b6: 5b:d1:b9:3b:0b:97:d0:99:c7:fc:88:c5:7a:af:7d: d3:f2:c9:4a:bb:75:87:f9:c6:ff:02:d6:f3:bc:92: 0d:af:74:db:8a:cf:cf:5a:bc:50:77:69:a7:14:93: b0:92:6e:a7:7d:07:bb:61:f8:17:42:1a:7f:de:d9: 0c:3f:6e:43:97:74:ff:97:90:32:7c:a0:ad:dc:53: 90:b9:a5:66:89:92:cf:25:a3:87:5f:59:cd:95:3e: aa:a9:43:17:b2:d6:be:3d:45:33:25:19:11:2a:92: d6:39:96:7a:76:e4:71:4b:dc:ce:32:d9:c5:77:26: 0d:0e:21:29:44:62:65:92:1e:5e:97:1a:1a:52:8c: af:77:ba:4b:b6:54:6c:25:27:87:59:b5:d0:09:aa: 8e:d5:9f:ad:42:2a:70:54:80:b8:3d:fa:a6:1b:bb: 96:d7:60:f3:9a:49:02:5c:af:b7:06:3b:c3:e4:55: e8:a0:19:80:70:75:84:17:13:01:ac:95:9a:b8:ea: bd:6e:69:00:c5:ed:2c:90:46:0c:22:3b:a8:43:d8: 40:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:03:50:54:9B:A4:8A:C6:B0:F9:89:4D:FA:EC:95:44:6C:06:B8:6F X509v3 Authority Key Identifier: keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/39342e3134302e392e302f32342d3332203d3e20313336373837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 94.140.9.0/24 Signature Algorithm: sha256WithRSAEncryption 91:39:c3:2e:01:47:e8:7f:0b:08:5a:d4:b7:d1:d7:60:62:60: 75:98:44:49:8a:19:f5:d3:13:07:21:11:c8:9d:1d:72:7d:4f: 0b:4e:87:e6:b4:27:64:da:fe:ae:7d:bd:75:be:9d:94:82:8b: 3a:bf:e6:b7:fd:1e:51:cd:29:f3:14:2e:ed:fa:6d:6a:7c:c2: 8e:1f:f7:17:2a:b6:42:c3:5c:f4:b7:48:b4:11:2b:4e:4b:0d: 76:80:b7:c9:26:e5:67:95:55:23:9f:bc:a8:69:42:db:03:53: 3d:ae:fd:c4:ad:e3:88:90:57:9e:21:1a:5d:ca:ac:07:5f:5f: 01:c2:31:0f:fa:ec:16:85:4f:48:4c:84:de:53:68:29:a6:7c: 2a:3d:f3:42:e1:b0:d3:ae:d1:49:d0:07:6a:9f:75:36:97:14: 60:8a:ae:60:ef:a9:a9:b2:78:be:28:84:51:bf:ea:c4:47:ce: 60:c0:fb:c9:84:12:6e:77:99:c1:e5:63:c1:77:5c:b7:17:e8: 86:62:ff:c4:04:35:58:8f:93:d7:33:16:bc:52:13:5d:b9:fe: c8:f1:30:e7:a2:24:23:33:f4:21:45:f5:b8:25:7b:c4:8e:aa: 91:ae:2a:f7:3f:ae:4e:ef:2b:59:40:4e:8c:11:ce:9f:dc:41: ea:b9:29:ee -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUMUEdTAsqkRGWIR0pr+yIu7L+xW8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0 ZWE3Nzc5YzAeFw0yNTEyMjkwOTQ1NTNaFw0yNjEyMjgwOTUwNTNaMDMxMTAvBgNV BAMTKDkzMDM1MDU0OUJBNDhBQzZCMEY5ODk0REZBRUM5NTQ0NkMwNkI4NkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8V3ZOlEk8bNC2YRyEu3vXzdbs xwe+L10F3XfLECkOU1PKfJ4Lp0IkukGutlvRuTsLl9CZx/yIxXqvfdPyyUq7dYf5 xv8C1vO8kg2vdNuKz89avFB3aacUk7CSbqd9B7th+BdCGn/e2Qw/bkOXdP+XkDJ8 oK3cU5C5pWaJks8lo4dfWc2VPqqpQxey1r49RTMlGREqktY5lnp25HFL3M4y2cV3 Jg0OISlEYmWSHl6XGhpSjK93uku2VGwlJ4dZtdAJqo7Vn61CKnBUgLg9+qYbu5bX YPOaSQJcr7cGO8PkVeigGYBwdYQXEwGslZq46r1uaQDF7SyQRgwiO6hD2EBPAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUkwNQVJukisaw+YlN+uyVRGwGuG8wHwYDVR0j BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2 bmQ1dy5jZXIwgasGCCsGAQUFBwELBIGeMIGbMIGYBggrBgEFBQcwC4aBi3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzkzNDJlMzEzNDMwMmUzOTJl MzAyZjMyMzQyZDMzMzIyMDNkM2UyMDMxMzMzNjM3MzgzNy5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAF6M CTANBgkqhkiG9w0BAQsFAAOCAQEAkTnDLgFH6H8LCFrUt9HXYGJgdZhESYoZ9dMT ByERyJ0dcn1PC06H5rQnZNr+rn29db6dlIKLOr/mt/0eUc0p8xQu7fptanzCjh/3 Fyq2QsNc9LdItBErTksNdoC3ySblZ5VVI5+8qGlC2wNTPa79xK3jiJBXniEaXcqs B19fAcIxD/rsFoVPSEyE3lNoKaZ8Kj3zQuGw067RSdAHap91NpcUYIquYO+pqbJ4 viiEUb/qxEfOYMD7yYQSbneZweVjwXdctxfohmL/xAQ1WI+T1zMWvFITXbn+yPEw 56IkIzP0IUX1uCV7xI6qka4q9z+uTu8rWUBOjBHOn9xB6rkp7g== -----END CERTIFICATE-----Generated at Mon Jan 19 14:25:27 2026 by rpki-client