This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/1f9823d0-0855-41f2-ac46-59a2e98da736/1/352e3138312e3138362e302f32342d3234203d3e203239303636.roa File: 352e3138312e3138362e302f32342d3234203d3e203239303636.roa (raw, json) Hash identifier: Br5xkylLQ7DIyBTDg1K2G6clr5115SCctfJJ5icls9U= Subject key identifier: A6:3A:B4:E2:AA:09:33:AC:52:0F:80:C9:E2:98:C6:1C:EB:F0:00:95 Certificate issuer: /CN=a9420e6c6f24b0e422da7fe7e420ef50354f45c6 Certificate serial: 7E95C1C7381D26A2C347313867308DB2890DB337 Authority key identifier: A9:42:0E:6C:6F:24:B0:E4:22:DA:7F:E7:E4:20:EF:50:35:4F:45:C6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qUIObG8ksOQi2n_n5CDvUDVPRcY.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/1f9823d0-0855-41f2-ac46-59a2e98da736/1/352e3138312e3138362e302f32342d3234203d3e203239303636.roa Signing time: Thu 11 Dec 2025 04:55:15 +0000 ROA not before: Thu 11 Dec 2025 04:50:15 +0000 ROA not after: Thu 10 Dec 2026 04:55:15 +0000 asID: 29066 IP address blocks: 5.181.186.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/1f9823d0-0855-41f2-ac46-59a2e98da736/1/A9420E6C6F24B0E422DA7FE7E420EF50354F45C6.crl rsync://rsync.paas.rpki.ripe.net/repository/1f9823d0-0855-41f2-ac46-59a2e98da736/1/A9420E6C6F24B0E422DA7FE7E420EF50354F45C6.mft rsync://rpki.ripe.net/repository/DEFAULT/qUIObG8ksOQi2n_n5CDvUDVPRcY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 15 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:95:c1:c7:38:1d:26:a2:c3:47:31:38:67:30:8d:b2:89:0d:b3:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a9420e6c6f24b0e422da7fe7e420ef50354f45c6 Validity Not Before: Dec 11 04:50:15 2025 GMT Not After : Dec 10 04:55:15 2026 GMT Subject: CN=A63AB4E2AA0933AC520F80C9E298C61CEBF00095 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:bb:07:b2:a6:15:e6:53:3a:3f:f5:60:29:3e: d5:6e:0f:49:3c:35:ca:07:4c:c8:fb:d0:4f:af:f7: 66:77:8b:07:99:2e:90:d6:de:bd:61:45:f0:97:85: d4:cd:3e:31:49:a9:6a:d2:64:2d:49:63:e1:fb:bf: dc:6a:bd:f9:ed:ec:60:32:11:c8:23:ef:60:8a:3a: 2b:11:8c:59:e4:bd:ad:54:5a:c1:c1:80:7a:79:ed: 72:f1:de:70:35:a5:ab:fc:24:35:b4:fd:00:17:6d: d9:90:e3:26:ab:8a:7c:85:5a:cd:00:b4:6f:8e:61: 0e:4c:01:79:07:fc:bc:e9:29:71:3d:31:14:52:d1: a7:ec:89:8a:e1:ad:28:ff:4b:22:87:a7:b8:41:56: 69:3d:51:47:6d:28:28:24:fa:b8:d8:87:5c:5b:53: e7:9f:b1:6a:de:b4:26:00:f7:60:37:a4:a5:ec:0e: c3:c3:fb:f0:51:6a:32:a7:bf:e9:b0:d2:15:c3:aa: 70:d7:31:63:61:7f:d5:da:ca:ca:22:6c:f3:29:a8: e3:b0:01:50:01:77:36:e2:b3:31:2e:57:0b:88:66: a2:8f:dd:16:37:0b:10:e6:0b:97:a3:ee:ff:c0:4d: 1a:9b:fa:3a:76:54:c6:b1:51:f7:15:7f:4e:17:04: e6:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:3A:B4:E2:AA:09:33:AC:52:0F:80:C9:E2:98:C6:1C:EB:F0:00:95 X509v3 Authority Key Identifier: keyid:A9:42:0E:6C:6F:24:B0:E4:22:DA:7F:E7:E4:20:EF:50:35:4F:45:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/1f9823d0-0855-41f2-ac46-59a2e98da736/1/A9420E6C6F24B0E422DA7FE7E420EF50354F45C6.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qUIObG8ksOQi2n_n5CDvUDVPRcY.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/1f9823d0-0855-41f2-ac46-59a2e98da736/1/352e3138312e3138362e302f32342d3234203d3e203239303636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.181.186.0/24 Signature Algorithm: sha256WithRSAEncryption b4:ba:fb:63:8d:71:ae:99:1a:0f:a5:c2:2f:64:ff:8a:8f:25: e7:ea:f3:ac:12:0d:9f:fe:97:73:7e:e4:7d:dc:5e:7b:7e:e6: 51:49:ef:7e:dc:01:08:f1:63:8b:da:c7:cf:38:e2:81:e8:30: 8e:1d:e6:4e:09:0e:5a:e4:d9:fd:1c:b6:ee:46:a5:a2:74:d5: 8c:0b:d1:92:dc:27:f8:15:50:01:81:1f:0e:22:ab:26:b1:68: c8:15:d0:17:bf:a6:0e:74:57:38:b7:f3:67:23:c4:09:af:8d: e1:8d:ba:25:39:8c:c3:ea:ac:7e:f7:69:a1:10:4c:91:bd:50: 5a:d7:3c:10:4f:1b:cc:31:ed:d0:8c:e9:f3:92:46:81:d9:7a: 69:6a:92:23:ba:28:e5:9f:9e:72:83:8d:01:8e:6e:da:18:85: 24:2a:a1:6e:01:c7:ff:86:1c:a7:b3:bf:ae:ac:63:c4:7c:fb: ed:1d:92:10:08:ae:c5:78:b0:58:61:13:1f:6e:12:5e:69:05: 44:65:d5:ed:fe:9f:cf:40:9c:69:22:80:9d:a5:68:a5:44:d8: bb:56:c3:84:9d:d8:f4:f6:6e:ca:be:24:27:ab:09:90:a3:0f: 20:24:0c:38:fc:5c:3c:f2:1d:f6:f0:10:cd:30:0e:2b:0c:9d: 02:f4:e8:05 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUfpXBxzgdJqLDRzE4ZzCNsokNszcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYTk0MjBlNmM2ZjI0YjBlNDIyZGE3ZmU3ZTQyMGVmNTAz NTRmNDVjNjAeFw0yNTEyMTEwNDUwMTVaFw0yNjEyMTAwNDU1MTVaMDMxMTAvBgNV BAMTKEE2M0FCNEUyQUEwOTMzQUM1MjBGODBDOUUyOThDNjFDRUJGMDAwOTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyuweyphXmUzo/9WApPtVuD0k8 NcoHTMj70E+v92Z3iweZLpDW3r1hRfCXhdTNPjFJqWrSZC1JY+H7v9xqvfnt7GAy Ecgj72CKOisRjFnkva1UWsHBgHp57XLx3nA1pav8JDW0/QAXbdmQ4yarinyFWs0A tG+OYQ5MAXkH/LzpKXE9MRRS0afsiYrhrSj/SyKHp7hBVmk9UUdtKCgk+rjYh1xb U+efsWretCYA92A3pKXsDsPD+/BRajKnv+mw0hXDqnDXMWNhf9XaysoibPMpqOOw AVABdzbiszEuVwuIZqKP3RY3CxDmC5ej7v/ATRqb+jp2VMaxUfcVf04XBOZnAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUpjq04qoJM6xSD4DJ4pjGHOvwAJUwHwYDVR0j BBgwFoAUqUIObG8ksOQi2n/n5CDvUDVPRcYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMWY5ODIzZDAtMDg1NS00MWYyLWFjNDYtNTlhMmU5OGRh NzM2LzEvQTk0MjBFNkM2RjI0QjBFNDIyREE3RkU3RTQyMEVGNTAzNTRGNDVDNi5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3FVSU9iRzhrc09RaTJuX241Q0R2VURW UFJjWS5jZXIwgasGCCsGAQUFBwELBIGeMIGbMIGYBggrBgEFBQcwC4aBi3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMWY5ODIzZDAt MDg1NS00MWYyLWFjNDYtNTlhMmU5OGRhNzM2LzEvMzUyZTMxMzgzMTJlMzEzODM2 MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzIzOTMwMzYzNi5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAAW1 ujANBgkqhkiG9w0BAQsFAAOCAQEAtLr7Y41xrpkaD6XCL2T/io8l5+rzrBINn/6X c37kfdxee37mUUnvftwBCPFji9rHzzjigegwjh3mTgkOWuTZ/Ry27kalonTVjAvR ktwn+BVQAYEfDiKrJrFoyBXQF7+mDnRXOLfzZyPECa+N4Y26JTmMw+qsfvdpoRBM kb1QWtc8EE8bzDHt0Izp85JGgdl6aWqSI7oo5Z+ecoONAY5u2hiFJCqhbgHH/4Yc p7O/rqxjxHz77R2SEAiuxXiwWGETH24SXmkFRGXV7f6fz0CcaSKAnaVopUTYu1bD hJ3Y9PZuyr4kJ6sJkKMPICQMOPxcPPId9vAQzTAOKwydAvToBQ== -----END CERTIFICATE-----Generated at Sun Dec 14 13:00:43 2025 by rpki-client