This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/ccd3884a-c385-4b65-9866-4f6383172672/0/3134372e3132352e3139382e302f32342d3234203d3e20383334.roa File: 3134372e3132352e3139382e302f32342d3234203d3e20383334.roa (raw, json) Hash identifier: pqlHr7RrLgkY/fD1VcR+3dlHSeT1bBsEPw38TPU34cg= Subject key identifier: E0:40:01:06:E1:95:6A:31:C2:4A:CC:D2:D7:EF:97:D2:6C:A0:F0:C7 Certificate issuer: /CN=6ccdc82bae7800f7d507c737924869bdeb5a76ea Certificate serial: 4AAA6075612CC4A1D5DD1871854E92C683E052D8 Authority key identifier: 6C:CD:C8:2B:AE:78:00:F7:D5:07:C7:37:92:48:69:BD:EB:5A:76:EA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bM3IK654APfVB8c3kkhpvetaduo.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/ccd3884a-c385-4b65-9866-4f6383172672/0/3134372e3132352e3139382e302f32342d3234203d3e20383334.roa Signing time: Fri 09 Jan 2026 15:59:35 +0000 ROA not before: Fri 09 Jan 2026 15:54:35 +0000 ROA not after: Fri 08 Jan 2027 15:59:35 +0000 asID: 834 IP address blocks: 147.125.198.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/ccd3884a-c385-4b65-9866-4f6383172672/0/6CCDC82BAE7800F7D507C737924869BDEB5A76EA.crl rsync://rsync.paas.rpki.ripe.net/repository/ccd3884a-c385-4b65-9866-4f6383172672/0/6CCDC82BAE7800F7D507C737924869BDEB5A76EA.mft rsync://rpki.ripe.net/repository/DEFAULT/bM3IK654APfVB8c3kkhpvetaduo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 04:37:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:aa:60:75:61:2c:c4:a1:d5:dd:18:71:85:4e:92:c6:83:e0:52:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ccdc82bae7800f7d507c737924869bdeb5a76ea Validity Not Before: Jan 9 15:54:35 2026 GMT Not After : Jan 8 15:59:35 2027 GMT Subject: CN=E0400106E1956A31C24ACCD2D7EF97D26CA0F0C7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:37:22:4a:fa:a2:01:bf:6e:71:70:1e:82:2f: aa:16:a2:8f:c7:8a:54:5c:21:21:a2:3f:14:a5:f3: 07:27:09:09:52:22:bb:a8:84:9b:8f:02:33:07:08: 6a:23:8b:5c:5d:a1:eb:16:9d:57:1e:c8:bd:c0:7f: 79:97:90:39:50:9e:51:6a:f5:7a:4a:d5:f6:5f:88: 39:0f:c4:69:fd:a9:26:a9:dd:f6:40:cd:1a:b6:73: e3:01:d8:6a:8e:5d:fc:89:e2:55:9a:37:d7:db:f0: 14:42:94:fc:f8:a5:73:ba:bc:c3:c7:f5:70:ec:25: 8e:7f:10:99:d4:37:d6:f3:05:9a:76:75:c8:36:3a: ea:92:44:fb:6c:2f:b7:57:9a:6b:9d:3b:b6:c5:95: ce:69:07:37:fd:a2:2d:e1:cb:07:12:6e:32:92:17: 3f:89:21:ae:68:48:b5:3b:b0:5d:aa:eb:62:ee:05: 55:95:fa:40:ac:d1:6b:32:60:04:d1:c6:e9:20:d9: 8a:bb:d1:64:b5:e2:43:22:7d:15:6f:b6:61:cc:91: 4b:62:8b:53:13:72:1b:37:31:2a:f5:6e:0e:fe:f7: 80:55:e4:f4:12:fe:fd:fd:89:fc:9c:2f:e7:de:59: 09:9e:e8:20:df:d3:54:20:c1:04:4f:5f:89:37:a5: 88:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:40:01:06:E1:95:6A:31:C2:4A:CC:D2:D7:EF:97:D2:6C:A0:F0:C7 X509v3 Authority Key Identifier: keyid:6C:CD:C8:2B:AE:78:00:F7:D5:07:C7:37:92:48:69:BD:EB:5A:76:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/ccd3884a-c385-4b65-9866-4f6383172672/0/6CCDC82BAE7800F7D507C737924869BDEB5A76EA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bM3IK654APfVB8c3kkhpvetaduo.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/ccd3884a-c385-4b65-9866-4f6383172672/0/3134372e3132352e3139382e302f32342d3234203d3e20383334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 147.125.198.0/24 Signature Algorithm: sha256WithRSAEncryption 44:3f:f9:b5:fd:0f:f4:b4:88:73:09:fe:fc:84:e2:0b:23:2e: 2b:ea:7f:fb:86:31:32:28:5d:d1:fb:9f:36:a2:58:eb:97:50: 19:d1:2f:ff:b0:65:78:3f:d8:40:36:88:da:b4:f5:dc:09:f8: bb:91:1e:8a:c7:09:fa:86:51:62:e6:69:4d:97:ee:fc:a7:61: 92:ed:bd:9a:6f:db:90:6a:ca:4e:88:20:a1:79:7c:8c:df:ec: 13:f6:4e:ad:b6:7a:e1:43:70:9c:d7:36:cb:7c:d3:a9:6f:87: b0:31:7b:a4:42:6e:ab:20:4c:81:9d:1b:ab:6c:0e:12:e4:2a: e8:c3:42:b3:17:f9:4b:7f:84:c5:eb:61:a7:66:6f:45:b4:4c: 5e:06:49:3d:f1:6c:a6:12:fb:4e:3b:9c:9b:7c:49:28:ea:06: 90:74:f8:1c:ba:1f:fb:37:d0:5a:db:d9:08:a9:86:4e:df:7f: 5e:77:98:42:01:5c:03:da:ff:4f:c2:31:72:88:03:fb:06:34: 47:a2:60:90:d4:d1:31:36:fb:f6:c1:fb:6e:40:27:23:ca:28: 38:4f:33:e9:bf:07:97:91:2f:6e:2b:fb:6f:31:f4:ed:8a:b7: eb:54:89:03:ba:90:71:1d:58:95:a9:45:10:8c:c3:63:e1:ce: 25:02:c3:99 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUSqpgdWEsxKHV3RhxhU6SxoPgUtgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNmNjZGM4MmJhZTc4MDBmN2Q1MDdjNzM3OTI0ODY5YmRl YjVhNzZlYTAeFw0yNjAxMDkxNTU0MzVaFw0yNzAxMDgxNTU5MzVaMDMxMTAvBgNV BAMTKEUwNDAwMTA2RTE5NTZBMzFDMjRBQ0NEMkQ3RUY5N0QyNkNBMEYwQzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDaNyJK+qIBv25xcB6CL6oWoo/H ilRcISGiPxSl8wcnCQlSIruohJuPAjMHCGoji1xdoesWnVceyL3Af3mXkDlQnlFq 9XpK1fZfiDkPxGn9qSap3fZAzRq2c+MB2GqOXfyJ4lWaN9fb8BRClPz4pXO6vMPH 9XDsJY5/EJnUN9bzBZp2dcg2OuqSRPtsL7dXmmudO7bFlc5pBzf9oi3hywcSbjKS Fz+JIa5oSLU7sF2q62LuBVWV+kCs0WsyYATRxukg2Yq70WS14kMifRVvtmHMkUti i1MTchs3MSr1bg7+94BV5PQS/v39ifycL+feWQme6CDf01QgwQRPX4k3pYgZAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQU4EABBuGVajHCSszS1++X0myg8McwHwYDVR0j BBgwFoAUbM3IK654APfVB8c3kkhpvetaduowDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvY2NkMzg4NGEtYzM4NS00YjY1LTk4NjYtNGY2MzgzMTcy NjcyLzAvNkNDREM4MkJBRTc4MDBGN0Q1MDdDNzM3OTI0ODY5QkRFQjVBNzZFQS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2JNM0lLNjU0QVBmVkI4YzNra2hwdmV0 YWR1by5jZXIwgasGCCsGAQUFBwELBIGeMIGbMIGYBggrBgEFBQcwC4aBi3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvY2NkMzg4NGEt YzM4NS00YjY1LTk4NjYtNGY2MzgzMTcyNjcyLzAvMzEzNDM3MmUzMTMyMzUyZTMx MzkzODJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDM4MzMzNC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAJN9 xjANBgkqhkiG9w0BAQsFAAOCAQEARD/5tf0P9LSIcwn+/ITiCyMuK+p/+4YxMihd 0fufNqJY65dQGdEv/7BleD/YQDaI2rT13An4u5EeiscJ+oZRYuZpTZfu/Kdhku29 mm/bkGrKToggoXl8jN/sE/ZOrbZ64UNwnNc2y3zTqW+HsDF7pEJuqyBMgZ0bq2wO EuQq6MNCsxf5S3+Exethp2ZvRbRMXgZJPfFsphL7Tjucm3xJKOoGkHT4HLof+zfQ WtvZCKmGTt9/XneYQgFcA9r/T8IxcogD+wY0R6JgkNTRMTb79sH7bkAnI8ooOE8z 6b8Hl5Evbiv7bzH07Yq361SJA7qQcR1YlalFEIzDY+HOJQLDmQ== -----END CERTIFICATE-----Generated at Sun Jan 25 14:04:32 2026 by rpki-client