This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/0d854c77-fd8b-425a-bd55-82e1d7faa782/0/352e3139392e342e302f32322d3234203d3e20383334.roa File: 352e3139392e342e302f32322d3234203d3e20383334.roa (raw, json) Hash identifier: 65MqopLjpyM8Mqlpr5SzIvO2zxNR0Tk0bh69luxGgCk= Subject key identifier: 6F:94:C6:A2:F6:C3:17:65:49:36:28:48:C4:C0:22:4F:C1:3E:82:C2 Certificate issuer: /CN=4b3aca3a7c652a9faf8e4e119bd2f7bf54afde76 Certificate serial: 44D86498CAF6E75F12F0F297D2F03A4E52FC5F0D Authority key identifier: 4B:3A:CA:3A:7C:65:2A:9F:AF:8E:4E:11:9B:D2:F7:BF:54:AF:DE:76 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SzrKOnxlKp-vjk4Rm9L3v1Sv3nY.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/0d854c77-fd8b-425a-bd55-82e1d7faa782/0/352e3139392e342e302f32322d3234203d3e20383334.roa Signing time: Thu 13 Nov 2025 07:14:21 +0000 ROA not before: Thu 13 Nov 2025 07:09:21 +0000 ROA not after: Thu 12 Nov 2026 07:14:21 +0000 asID: 834 IP address blocks: 5.199.4.0/22 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/0d854c77-fd8b-425a-bd55-82e1d7faa782/0/4B3ACA3A7C652A9FAF8E4E119BD2F7BF54AFDE76.crl rsync://rsync.paas.rpki.ripe.net/repository/0d854c77-fd8b-425a-bd55-82e1d7faa782/0/4B3ACA3A7C652A9FAF8E4E119BD2F7BF54AFDE76.mft rsync://rpki.ripe.net/repository/DEFAULT/SzrKOnxlKp-vjk4Rm9L3v1Sv3nY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 28 Nov 2025 18:47:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:d8:64:98:ca:f6:e7:5f:12:f0:f2:97:d2:f0:3a:4e:52:fc:5f:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4b3aca3a7c652a9faf8e4e119bd2f7bf54afde76 Validity Not Before: Nov 13 07:09:21 2025 GMT Not After : Nov 12 07:14:21 2026 GMT Subject: CN=6F94C6A2F6C3176549362848C4C0224FC13E82C2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:75:bf:66:c5:2e:4b:3d:16:d0:30:a1:d6:47: bb:34:27:c0:95:9f:4f:1f:da:b0:4b:74:e5:9a:dd: b2:6b:fa:48:10:0e:3f:a1:44:4a:f0:9b:60:2e:95: 24:6b:4c:73:e2:e8:c3:8b:60:73:80:1e:cb:45:48: 03:0a:b4:39:f8:5c:ca:62:3f:3a:9e:09:3a:3b:ca: d6:65:7c:37:07:e9:4a:66:60:e3:94:1c:19:79:e8: 8b:ea:c1:18:1a:f8:cd:e5:00:7d:d7:7f:8d:3f:8e: d7:65:fb:bb:9b:a0:28:c5:44:af:0e:fe:09:82:2d: b5:32:24:95:d8:89:86:d2:0e:f9:21:8b:1c:67:6a: 20:6c:f9:5b:7c:23:85:77:ff:a5:26:35:dd:c3:c7: 17:92:12:5f:44:70:c8:8c:f3:9f:d3:19:73:73:3c: f0:9b:d1:f5:fc:a2:e0:8d:77:b2:38:af:ea:6b:11: a6:cf:7b:b8:71:09:b7:3d:14:62:e9:a4:32:5e:f8: 08:e3:31:68:16:69:a0:6e:f4:b1:f3:e0:3b:ff:5e: 46:9e:78:9a:46:3d:d6:13:0e:be:46:1a:19:0e:24: 82:df:80:5e:c4:b4:93:f6:32:8c:f7:eb:bd:10:16: 1d:8d:f4:d8:2b:8d:89:08:ce:53:80:74:5a:da:15: dc:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:94:C6:A2:F6:C3:17:65:49:36:28:48:C4:C0:22:4F:C1:3E:82:C2 X509v3 Authority Key Identifier: keyid:4B:3A:CA:3A:7C:65:2A:9F:AF:8E:4E:11:9B:D2:F7:BF:54:AF:DE:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/0d854c77-fd8b-425a-bd55-82e1d7faa782/0/4B3ACA3A7C652A9FAF8E4E119BD2F7BF54AFDE76.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SzrKOnxlKp-vjk4Rm9L3v1Sv3nY.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/0d854c77-fd8b-425a-bd55-82e1d7faa782/0/352e3139392e342e302f32322d3234203d3e20383334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.199.4.0/22 Signature Algorithm: sha256WithRSAEncryption 9f:e1:b9:a5:e0:96:46:e1:3a:11:b9:9b:cc:38:44:e7:dc:37: f4:70:93:9a:d1:90:c2:f3:0a:2b:7a:71:3d:4e:5c:d8:1b:a7: 64:1d:54:40:1a:20:ea:d0:98:eb:aa:8a:80:49:40:0f:70:f7: 07:95:25:d8:69:57:ee:fa:fe:10:c0:a3:09:ff:57:c4:b8:cc: a4:65:25:db:42:01:96:b8:11:e8:a3:51:92:53:66:9b:df:2c: 30:92:95:e2:15:06:5a:0e:87:1b:9a:90:ef:51:5c:3b:30:14: 7b:78:3b:09:4a:8d:f7:92:5a:78:e7:fc:70:0a:49:c3:46:94: 90:10:d3:aa:4a:33:34:b9:ef:e6:16:34:01:32:06:39:35:ba: 8c:13:f0:45:21:57:cd:32:21:91:3d:75:18:d9:1a:d6:a2:9e: ea:74:e3:91:08:8e:1c:3b:d0:20:f7:c8:88:79:be:c7:31:2c: fd:76:a3:7a:21:cb:40:71:ad:13:41:5c:93:22:93:81:e1:af: 9c:09:07:a9:5a:39:33:11:25:c6:bf:d3:d8:b0:75:0f:50:42: a6:94:52:16:8c:8d:ec:0a:7b:d5:06:23:0b:b2:58:38:6d:69: b6:00:55:da:21:b2:2c:11:84:cb:ad:df:72:8b:a5:0b:31:c3: 3a:d9:fb:e8 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIURNhkmMr2518S8PKX0vA6TlL8Xw0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNGIzYWNhM2E3YzY1MmE5ZmFmOGU0ZTExOWJkMmY3YmY1 NGFmZGU3NjAeFw0yNTExMTMwNzA5MjFaFw0yNjExMTIwNzE0MjFaMDMxMTAvBgNV BAMTKDZGOTRDNkEyRjZDMzE3NjU0OTM2Mjg0OEM0QzAyMjRGQzEzRTgyQzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFdb9mxS5LPRbQMKHWR7s0J8CV n08f2rBLdOWa3bJr+kgQDj+hRErwm2AulSRrTHPi6MOLYHOAHstFSAMKtDn4XMpi PzqeCTo7ytZlfDcH6UpmYOOUHBl56IvqwRga+M3lAH3Xf40/jtdl+7uboCjFRK8O /gmCLbUyJJXYiYbSDvkhixxnaiBs+Vt8I4V3/6UmNd3DxxeSEl9EcMiM85/TGXNz PPCb0fX8ouCNd7I4r+prEabPe7hxCbc9FGLppDJe+AjjMWgWaaBu9LHz4Dv/Xkae eJpGPdYTDr5GGhkOJILfgF7EtJP2Moz3670QFh2N9NgrjYkIzlOAdFraFdz9AgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUb5TGovbDF2VJNihIxMAiT8E+gsIwHwYDVR0j BBgwFoAUSzrKOnxlKp+vjk4Rm9L3v1Sv3nYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMGQ4NTRjNzctZmQ4Yi00MjVhLWJkNTUtODJlMWQ3ZmFh NzgyLzAvNEIzQUNBM0E3QzY1MkE5RkFGOEU0RTExOUJEMkY3QkY1NEFGREU3Ni5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1N6cktPbnhsS3AtdmprNFJtOUwzdjFT djNuWS5jZXIwgaMGCCsGAQUFBwELBIGWMIGTMIGQBggrBgEFBQcwC4aBg3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMGQ4NTRjNzct ZmQ4Yi00MjVhLWJkNTUtODJlMWQ3ZmFhNzgyLzAvMzUyZTMxMzkzOTJlMzQyZTMw MmYzMjMyMmQzMjM0MjAzZDNlMjAzODMzMzQucm9hMBgGA1UdIAEB/wQOMAwwCgYI KwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAIFxwQwDQYJKoZI hvcNAQELBQADggEBAJ/huaXglkbhOhG5m8w4ROfcN/Rwk5rRkMLzCit6cT1OXNgb p2QdVEAaIOrQmOuqioBJQA9w9weVJdhpV+76/hDAown/V8S4zKRlJdtCAZa4Eeij UZJTZpvfLDCSleIVBloOhxuakO9RXDswFHt4OwlKjfeSWnjn/HAKScNGlJAQ06pK MzS57+YWNAEyBjk1uowT8EUhV80yIZE9dRjZGtainup045EIjhw70CD3yIh5vscx LP12o3ohy0BxrRNBXJMik4Hhr5wJB6laOTMRJca/09iwdQ9QQqaUUhaMjewKe9UG IwuyWDhtabYAVdohsiwRhMut33KLpQsxwzrZ++g= -----END CERTIFICATE-----Generated at Fri Nov 28 06:10:44 2025 by rpki-client