This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/322e35392e35372e302f32342d3234203d3e203134363138.roa File: 322e35392e35372e302f32342d3234203d3e203134363138.roa (raw, json) Hash identifier: oI396s0WlYavOBVZdhvWsx8cllXCJO3pNpALJtOBYMs= Subject key identifier: AF:8B:C8:F7:27:8A:58:56:2A:83:5B:F1:D0:B1:1D:44:E6:C8:0A:F9 Certificate issuer: /CN=70cbd7a9817e470009c0f40ea1e370aa79b5fd91 Certificate serial: 343859D61A13D6F60A081DB411CA224954307217 Authority key identifier: 70:CB:D7:A9:81:7E:47:00:09:C0:F4:0E:A1:E3:70:AA:79:B5:FD:91 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cMvXqYF-RwAJwPQOoeNwqnm1_ZE.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/322e35392e35372e302f32342d3234203d3e203134363138.roa Signing time: Thu 08 Jan 2026 10:55:33 +0000 ROA not before: Thu 08 Jan 2026 10:50:33 +0000 ROA not after: Thu 07 Jan 2027 10:55:33 +0000 asID: 14618 IP address blocks: 2.59.57.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/70CBD7A9817E470009C0F40EA1E370AA79B5FD91.crl rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/70CBD7A9817E470009C0F40EA1E370AA79B5FD91.mft rsync://rpki.ripe.net/repository/DEFAULT/cMvXqYF-RwAJwPQOoeNwqnm1_ZE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:38:59:d6:1a:13:d6:f6:0a:08:1d:b4:11:ca:22:49:54:30:72:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=70cbd7a9817e470009c0f40ea1e370aa79b5fd91 Validity Not Before: Jan 8 10:50:33 2026 GMT Not After : Jan 7 10:55:33 2027 GMT Subject: CN=AF8BC8F7278A58562A835BF1D0B11D44E6C80AF9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:6d:da:10:fc:32:a0:01:b6:cf:41:a2:4a:63: d2:6b:6d:94:a6:a0:5b:2b:82:ca:24:aa:4e:a1:8b: 99:23:ed:65:a2:5a:80:ff:60:ac:52:64:63:00:0b: 7c:7d:4e:84:d0:16:f2:d2:45:5d:79:33:0a:96:44: 32:47:c6:8d:70:16:89:53:f4:6e:2a:00:26:fd:f7: ad:61:35:fe:60:4a:4b:52:a7:59:82:63:9a:5b:06: f8:0f:e3:67:45:be:de:11:a3:cc:34:aa:a8:d3:3d: bc:cc:c3:99:3d:a0:ee:1d:15:64:ab:b1:59:2f:81: cc:32:23:32:62:5f:d2:a8:f6:79:55:12:a0:2a:fb: 98:d8:aa:9f:56:fd:48:b3:e0:0b:1c:31:60:56:42: 0e:1c:2e:d6:4f:0f:8e:78:70:01:f3:9d:70:47:ea: 8c:70:3a:55:9e:2c:00:cc:21:c4:65:f5:74:d2:cf: 10:69:6c:ad:8c:34:1c:a5:cb:9a:b1:cf:42:01:0a: ab:82:10:be:f1:4a:ed:6f:97:93:41:02:61:f4:44: 43:c8:76:b4:e7:07:50:6e:d4:89:01:1f:ff:ba:b4: 7c:04:14:27:62:95:3a:63:3f:f6:ea:8b:53:64:e2: f6:4c:45:65:a5:6b:b4:86:56:52:f7:c3:19:0c:f5: 19:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:8B:C8:F7:27:8A:58:56:2A:83:5B:F1:D0:B1:1D:44:E6:C8:0A:F9 X509v3 Authority Key Identifier: keyid:70:CB:D7:A9:81:7E:47:00:09:C0:F4:0E:A1:E3:70:AA:79:B5:FD:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/70CBD7A9817E470009C0F40EA1E370AA79B5FD91.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cMvXqYF-RwAJwPQOoeNwqnm1_ZE.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/322e35392e35372e302f32342d3234203d3e203134363138.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 2.59.57.0/24 Signature Algorithm: sha256WithRSAEncryption b5:ac:a4:bc:03:a0:bc:5e:bc:d1:ad:59:f8:4a:06:6b:84:73: d2:d6:86:c2:7a:d5:f6:36:f9:b8:1a:c0:b2:70:c1:75:f1:bd: 3e:8c:32:19:02:f4:6e:37:0d:1b:71:29:44:13:c9:b8:c8:ae: 24:48:c3:c4:1e:a1:2a:b1:23:35:3b:6a:b0:35:d4:01:ba:a5: 64:87:11:cb:f7:68:a9:ea:61:9a:94:2a:83:d3:3a:09:84:25: c6:6f:0b:c0:8e:54:8e:de:52:e8:d9:62:be:7b:d3:99:9f:dc: 55:a8:b4:a8:86:1f:c1:a7:46:f0:58:8c:14:e4:ca:47:47:f8: 41:61:6b:c9:0d:8d:35:71:a2:c8:33:cb:61:e2:d0:0a:2d:e1: e6:1c:ff:de:6f:31:70:f6:92:6a:d6:b7:53:82:b3:0b:dc:94: 50:e1:a0:ee:5c:40:11:7f:94:27:68:6f:22:4f:3d:5d:e6:cf: 4b:72:8f:8c:51:29:b9:54:21:4e:65:d2:c0:00:4d:96:2c:7f: 1e:9b:24:d3:fb:94:5e:49:4e:e3:5c:07:8a:bf:e2:66:5c:2a: 64:8b:ba:8b:ce:53:dc:d9:96:7f:d9:a8:be:5f:1e:50:33:ac: be:7e:1c:0a:5c:37:e5:c3:9c:16:91:f7:32:a2:e0:25:f0:79: 23:04:2f:f0 -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUNDhZ1hoT1vYKCB20EcoiSVQwchcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzBjYmQ3YTk4MTdlNDcwMDA5YzBmNDBlYTFlMzcwYWE3 OWI1ZmQ5MTAeFw0yNjAxMDgxMDUwMzNaFw0yNzAxMDcxMDU1MzNaMDMxMTAvBgNV BAMTKEFGOEJDOEY3Mjc4QTU4NTYyQTgzNUJGMUQwQjExRDQ0RTZDODBBRjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMbdoQ/DKgAbbPQaJKY9JrbZSm oFsrgsokqk6hi5kj7WWiWoD/YKxSZGMAC3x9ToTQFvLSRV15MwqWRDJHxo1wFolT 9G4qACb9961hNf5gSktSp1mCY5pbBvgP42dFvt4Ro8w0qqjTPbzMw5k9oO4dFWSr sVkvgcwyIzJiX9Ko9nlVEqAq+5jYqp9W/Uiz4AscMWBWQg4cLtZPD454cAHznXBH 6oxwOlWeLADMIcRl9XTSzxBpbK2MNByly5qxz0IBCquCEL7xSu1vl5NBAmH0REPI drTnB1Bu1IkBH/+6tHwEFCdilTpjP/bqi1Nk4vZMRWWla7SGVlL3wxkM9RlHAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUr4vI9yeKWFYqg1vx0LEdRObICvkwHwYDVR0j BBgwFoAUcMvXqYF+RwAJwPQOoeNwqnm1/ZEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYjczMzJhZjAtZGQ3My00NzU1LTlkMjAtNjkzZWE4Mjg5 ZjhhLzAvNzBDQkQ3QTk4MTdFNDcwMDA5QzBGNDBFQTFFMzcwQUE3OUI1RkQ5MS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2NNdlhxWUYtUndBSndQUU9vZU53cW5t MV9aRS5jZXIwgacGCCsGAQUFBwELBIGaMIGXMIGUBggrBgEFBQcwC4aBh3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYjczMzJhZjAt ZGQ3My00NzU1LTlkMjAtNjkzZWE4Mjg5ZjhhLzAvMzIyZTM1MzkyZTM1MzcyZTMw MmYzMjM0MmQzMjM0MjAzZDNlMjAzMTM0MzYzMTM4LnJvYTAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAAjs5MA0G CSqGSIb3DQEBCwUAA4IBAQC1rKS8A6C8XrzRrVn4SgZrhHPS1obCetX2Nvm4GsCy cMF18b0+jDIZAvRuNw0bcSlEE8m4yK4kSMPEHqEqsSM1O2qwNdQBuqVkhxHL92ip 6mGalCqD0zoJhCXGbwvAjlSO3lLo2WK+e9OZn9xVqLSohh/Bp0bwWIwU5MpHR/hB YWvJDY01caLIM8th4tAKLeHmHP/ebzFw9pJq1rdTgrML3JRQ4aDuXEARf5QnaG8i Tz1d5s9Lco+MUSm5VCFOZdLAAE2WLH8emyTT+5ReSU7jXAeKv+JmXCpki7qLzlPc 2ZZ/2ai+Xx5QM6y+fhwKXDflw5wWkfcyouAl8HkjBC/w -----END CERTIFICATE-----Generated at Sun Jan 25 21:11:28 2026 by rpki-client