This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38352e3139302e3235322e302f32342d3234203d3e20323031333431.roa File: 38352e3139302e3235322e302f32342d3234203d3e20323031333431.roa (raw, json) Hash identifier: eQXlYoWuKaVH5Ug8cgrEyZnrFcGPf04gVPkB/ExlutI= Subject key identifier: 21:C9:93:0B:D3:4B:C4:C1:22:4A:B6:28:9B:75:FA:71:9A:5C:BB:02 Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Certificate serial: 2C74FA717110960C5108F0F6F6D023007FAFCFEF Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38352e3139302e3235322e302f32342d3234203d3e20323031333431.roa Signing time: Mon 29 Dec 2025 09:50:56 +0000 ROA not before: Mon 29 Dec 2025 09:45:56 +0000 ROA not after: Mon 28 Dec 2026 09:50:56 +0000 asID: 201341 IP address blocks: 85.190.252.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 15:51:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:74:fa:71:71:10:96:0c:51:08:f0:f6:f6:d0:23:00:7f:af:cf:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Validity Not Before: Dec 29 09:45:56 2025 GMT Not After : Dec 28 09:50:56 2026 GMT Subject: CN=21C9930BD34BC4C1224AB6289B75FA719A5CBB02 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:16:9a:74:a7:7f:c9:20:62:3a:93:26:07:c2: c5:c8:08:3f:13:62:5e:5b:07:99:00:a7:4e:b6:76: 16:8c:43:40:2d:ca:e4:b0:fe:cb:42:4f:1b:99:2a: ce:e0:10:fd:05:91:76:11:e8:fa:c3:14:ce:cf:3e: e4:f0:49:9b:85:14:72:50:b1:4b:de:7b:27:02:4c: 7c:17:77:56:dc:b4:31:e0:d9:ef:bb:98:26:7c:49: 01:8b:f0:51:bb:38:f1:f3:4a:33:78:14:4d:2e:96: 55:94:e2:d5:c1:95:a3:b0:73:f4:cf:0e:9b:1e:8d: ae:72:1a:ce:35:ce:91:53:f4:01:cd:ef:63:f4:57: 06:71:2d:ff:97:d5:55:2f:ea:62:fa:d1:3f:9e:d5: 27:56:5d:ae:ca:5e:71:f6:a6:a2:bb:a5:79:14:cc: 6b:00:10:dc:0c:fc:07:0a:cb:38:0b:7b:58:46:af: 15:82:3e:82:9d:88:6c:5c:f3:a0:72:7b:30:67:cc: 00:16:76:2a:54:b7:1d:ae:77:ec:c2:8b:6f:6f:d9: 62:dd:60:10:a2:a4:f6:1b:58:a8:65:b9:da:37:60: e5:8d:64:db:ad:9c:d6:42:b4:94:8e:37:2a:7c:ff: 66:35:2a:e6:c2:63:47:0b:34:71:78:7f:5b:c6:ba: b6:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:C9:93:0B:D3:4B:C4:C1:22:4A:B6:28:9B:75:FA:71:9A:5C:BB:02 X509v3 Authority Key Identifier: keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38352e3139302e3235322e302f32342d3234203d3e20323031333431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 85.190.252.0/24 Signature Algorithm: sha256WithRSAEncryption 93:2e:1d:81:c3:7a:55:20:6c:85:03:b5:ae:a6:b3:2d:b5:05: 1f:70:2f:c7:07:3b:46:0a:d0:81:67:92:a0:b2:a2:86:1e:42: 68:dd:69:41:45:1c:0c:af:e1:4d:b6:40:b8:12:8f:5b:e7:92: 95:b8:49:46:5d:75:ae:ef:3c:54:a7:34:6c:e3:10:a5:9f:9e: 68:bc:59:a7:3c:96:b9:b0:fc:64:cc:07:68:67:3e:3c:68:2e: 18:39:ca:62:b4:bb:9f:99:0c:a1:a1:6d:9b:10:89:51:a8:94: bc:1d:39:90:f4:9b:74:30:62:eb:de:46:55:7c:da:3d:8a:61: fb:55:20:af:d3:02:27:c6:79:c5:81:41:bd:d0:c1:67:cc:db: f3:4b:9c:07:80:22:75:d0:4f:11:13:4c:21:58:53:da:59:4e: f9:54:fa:2a:98:87:88:28:b7:00:2d:68:7e:e8:ea:34:7e:07: 86:c4:15:c2:a8:35:12:19:23:57:9f:ad:05:ab:ef:f7:19:3b: 1a:94:b6:b7:bc:fe:60:53:cd:86:31:d8:7d:8a:c6:83:52:f5: 6a:5b:1c:57:7b:e7:e5:69:cf:24:44:57:28:3b:cb:c3:4c:e8: 83:cb:09:94:6f:02:df:ef:7e:dd:2e:9b:73:f8:79:86:ba:f4: c9:b4:27:f4 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIULHT6cXEQlgxRCPD29tAjAH+vz+8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0 ZWE3Nzc5YzAeFw0yNTEyMjkwOTQ1NTZaFw0yNjEyMjgwOTUwNTZaMDMxMTAvBgNV BAMTKDIxQzk5MzBCRDM0QkM0QzEyMjRBQjYyODlCNzVGQTcxOUE1Q0JCMDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDFpp0p3/JIGI6kyYHwsXICD8T Yl5bB5kAp062dhaMQ0AtyuSw/stCTxuZKs7gEP0FkXYR6PrDFM7PPuTwSZuFFHJQ sUveeycCTHwXd1bctDHg2e+7mCZ8SQGL8FG7OPHzSjN4FE0ullWU4tXBlaOwc/TP Dpseja5yGs41zpFT9AHN72P0VwZxLf+X1VUv6mL60T+e1SdWXa7KXnH2pqK7pXkU zGsAENwM/AcKyzgLe1hGrxWCPoKdiGxc86ByezBnzAAWdipUtx2ud+zCi29v2WLd YBCipPYbWKhludo3YOWNZNutnNZCtJSONyp8/2Y1KubCY0cLNHF4f1vGuravAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUIcmTC9NLxMEiSrYom3X6cZpcuwIwHwYDVR0j BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2 bmQ1dy5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzgzNTJlMzEzOTMwMmUzMjM1 MzIyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMjMwMzEzMzM0MzEucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABVvvwwDQYJKoZIhvcNAQELBQADggEBAJMuHYHDelUgbIUDta6msy21BR9wL8cH O0YK0IFnkqCyooYeQmjdaUFFHAyv4U22QLgSj1vnkpW4SUZdda7vPFSnNGzjEKWf nmi8Wac8lrmw/GTMB2hnPjxoLhg5ymK0u5+ZDKGhbZsQiVGolLwdOZD0m3QwYuve RlV82j2KYftVIK/TAifGecWBQb3QwWfM2/NLnAeAInXQTxETTCFYU9pZTvlU+iqY h4gotwAtaH7o6jR+B4bEFcKoNRIZI1efrQWr7/cZOxqUtre8/mBTzYYx2H2KxoNS 9WpbHFd75+VpzyREVyg7y8NM6IPLCZRvAt/vft0um3P4eYa69Mm0J/Q= -----END CERTIFICATE-----Generated at Sun Jan 25 07:22:47 2026 by rpki-client