This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/322e35392e35372e302f32342d3234203d3e203136353039.roa File: 322e35392e35372e302f32342d3234203d3e203136353039.roa (raw, json) Hash identifier: xcNftsthAsOS/Vm1gBw6O8VJO0Cj26e9NkIhaWlZDew= Subject key identifier: E3:67:0D:47:D9:07:C0:06:EF:BC:20:73:04:C5:0A:5B:77:EC:07:C7 Certificate issuer: /CN=70cbd7a9817e470009c0f40ea1e370aa79b5fd91 Certificate serial: 5D736CAEEAD06E3E0F26CDDD22ABBF40ED78D409 Authority key identifier: 70:CB:D7:A9:81:7E:47:00:09:C0:F4:0E:A1:E3:70:AA:79:B5:FD:91 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cMvXqYF-RwAJwPQOoeNwqnm1_ZE.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/322e35392e35372e302f32342d3234203d3e203136353039.roa Signing time: Thu 08 Jan 2026 10:55:33 +0000 ROA not before: Thu 08 Jan 2026 10:50:33 +0000 ROA not after: Thu 07 Jan 2027 10:55:33 +0000 asID: 16509 IP address blocks: 2.59.57.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/70CBD7A9817E470009C0F40EA1E370AA79B5FD91.crl rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/70CBD7A9817E470009C0F40EA1E370AA79B5FD91.mft rsync://rpki.ripe.net/repository/DEFAULT/cMvXqYF-RwAJwPQOoeNwqnm1_ZE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 23:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:73:6c:ae:ea:d0:6e:3e:0f:26:cd:dd:22:ab:bf:40:ed:78:d4:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=70cbd7a9817e470009c0f40ea1e370aa79b5fd91 Validity Not Before: Jan 8 10:50:33 2026 GMT Not After : Jan 7 10:55:33 2027 GMT Subject: CN=E3670D47D907C006EFBC207304C50A5B77EC07C7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:b5:67:3e:0f:03:d3:40:e3:c6:f9:08:a9:3f: 68:fb:97:a2:44:bb:41:2c:9e:9f:1d:3b:f0:87:4d: 83:bb:c6:d7:37:a1:23:ba:5d:ad:40:85:eb:11:59: dc:fc:c7:9e:d4:5c:8d:6e:f4:21:42:7c:65:a8:8d: bf:e2:51:f8:c9:73:a6:97:2d:6c:11:a4:45:52:71: 9e:d1:c5:da:7a:8f:f1:65:2f:f5:63:bd:44:e2:cf: 6a:9b:74:7d:c9:ad:69:71:65:93:22:f8:bb:25:fa: fb:e2:a1:4c:66:a4:b8:6d:fb:4e:ad:b6:e2:b3:36: 40:7c:8d:9e:3d:e8:09:43:2a:2d:06:5c:ea:67:75: 39:58:31:da:9b:92:c6:13:b9:56:3c:d7:20:86:97: 56:28:e1:06:4b:0b:9c:10:db:4f:1d:9b:1c:2b:2a: 58:4f:0a:e2:92:1d:c9:68:8e:b7:2a:90:bc:c6:2d: d7:57:d8:e6:b1:79:f0:8d:2b:02:a5:b8:72:b8:3a: b7:38:68:a1:20:3c:1e:2b:8f:d4:c0:52:93:9e:ca: 81:b3:50:74:74:2e:c1:9b:d8:5f:0c:19:c0:f7:12: db:26:a9:b2:c3:b5:23:e1:c9:94:96:d6:fe:08:da: 53:0f:29:26:d6:16:af:53:65:6b:8d:73:58:e0:12: 2a:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:67:0D:47:D9:07:C0:06:EF:BC:20:73:04:C5:0A:5B:77:EC:07:C7 X509v3 Authority Key Identifier: keyid:70:CB:D7:A9:81:7E:47:00:09:C0:F4:0E:A1:E3:70:AA:79:B5:FD:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/70CBD7A9817E470009C0F40EA1E370AA79B5FD91.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cMvXqYF-RwAJwPQOoeNwqnm1_ZE.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/322e35392e35372e302f32342d3234203d3e203136353039.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 2.59.57.0/24 Signature Algorithm: sha256WithRSAEncryption ad:cb:57:26:7d:34:cb:d5:06:ae:49:89:9f:e4:05:2b:3b:55: ca:a6:25:c6:d2:a7:a2:40:2f:f7:94:61:6e:4a:7f:8c:78:12: 36:6e:d0:fc:99:a2:92:da:2e:23:ae:31:3c:16:41:83:05:d0: e9:62:5a:99:7f:66:55:9b:7f:77:7c:26:d9:ac:f6:2d:17:f6: 1e:b6:f2:f0:3e:82:a8:94:6f:f4:31:cc:c2:da:c9:4b:2d:08: de:e4:06:cc:c2:69:31:27:7e:bb:73:37:a8:e6:31:45:1a:70: b4:ea:90:0c:69:e9:3c:cd:ba:a0:44:0c:aa:62:88:89:e0:e5: 3e:fe:58:f8:34:32:f9:7d:82:a6:fe:fc:67:4e:a4:ab:49:9f: 19:c9:d6:a5:ec:29:1e:d6:aa:43:20:cc:16:53:a5:5c:fe:4c: f3:16:01:01:cb:e9:d2:13:fd:e4:a9:1d:1b:d8:9c:3e:a5:03: 75:4c:dc:26:df:c1:2a:40:5f:29:17:2e:c5:08:4d:ef:90:a2: 67:9a:65:d7:62:2d:2d:e0:51:9d:e2:ca:5a:69:fa:fe:67:ad: 2b:13:1d:a2:e8:23:7e:2a:90:d1:d0:3b:cd:8c:d5:5c:4f:71: a5:f9:08:5d:55:db:90:23:c3:f5:9e:fb:bc:4c:6d:29:85:e8: dd:1c:7d:e6 -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUXXNsrurQbj4PJs3dIqu/QO141AkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzBjYmQ3YTk4MTdlNDcwMDA5YzBmNDBlYTFlMzcwYWE3 OWI1ZmQ5MTAeFw0yNjAxMDgxMDUwMzNaFw0yNzAxMDcxMDU1MzNaMDMxMTAvBgNV BAMTKEUzNjcwRDQ3RDkwN0MwMDZFRkJDMjA3MzA0QzUwQTVCNzdFQzA3QzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVtWc+DwPTQOPG+QipP2j7l6JE u0Esnp8dO/CHTYO7xtc3oSO6Xa1AhesRWdz8x57UXI1u9CFCfGWojb/iUfjJc6aX LWwRpEVScZ7Rxdp6j/FlL/VjvUTiz2qbdH3JrWlxZZMi+Lsl+vvioUxmpLht+06t tuKzNkB8jZ496AlDKi0GXOpndTlYMdqbksYTuVY81yCGl1Yo4QZLC5wQ208dmxwr KlhPCuKSHclojrcqkLzGLddX2OaxefCNKwKluHK4Orc4aKEgPB4rj9TAUpOeyoGz UHR0LsGb2F8MGcD3EtsmqbLDtSPhyZSW1v4I2lMPKSbWFq9TZWuNc1jgEip9AgMB AAGjggI3MIICMzAdBgNVHQ4EFgQU42cNR9kHwAbvvCBzBMUKW3fsB8cwHwYDVR0j BBgwFoAUcMvXqYF+RwAJwPQOoeNwqnm1/ZEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYjczMzJhZjAtZGQ3My00NzU1LTlkMjAtNjkzZWE4Mjg5 ZjhhLzAvNzBDQkQ3QTk4MTdFNDcwMDA5QzBGNDBFQTFFMzcwQUE3OUI1RkQ5MS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2NNdlhxWUYtUndBSndQUU9vZU53cW5t MV9aRS5jZXIwgacGCCsGAQUFBwELBIGaMIGXMIGUBggrBgEFBQcwC4aBh3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYjczMzJhZjAt ZGQ3My00NzU1LTlkMjAtNjkzZWE4Mjg5ZjhhLzAvMzIyZTM1MzkyZTM1MzcyZTMw MmYzMjM0MmQzMjM0MjAzZDNlMjAzMTM2MzUzMDM5LnJvYTAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAAjs5MA0G CSqGSIb3DQEBCwUAA4IBAQCty1cmfTTL1QauSYmf5AUrO1XKpiXG0qeiQC/3lGFu Sn+MeBI2btD8maKS2i4jrjE8FkGDBdDpYlqZf2ZVm393fCbZrPYtF/YetvLwPoKo lG/0MczC2slLLQje5AbMwmkxJ367czeo5jFFGnC06pAMaek8zbqgRAyqYoiJ4OU+ /lj4NDL5fYKm/vxnTqSrSZ8Zydal7Cke1qpDIMwWU6Vc/kzzFgEBy+nSE/3kqR0b 2Jw+pQN1TNwm38EqQF8pFy7FCE3vkKJnmmXXYi0t4FGd4spaafr+Z60rEx2i6CN+ KpDR0DvNjNVcT3Gl+QhdVduQI8P1nvu8TG0phejdHH3m -----END CERTIFICATE-----Generated at Sun Jan 25 10:48:11 2026 by rpki-client