This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fc9aa95f-7b38-426a-9966-5441939fe031/0/34352e3135302e362e302f32342d3234203d3e203538303631.roa File: 34352e3135302e362e302f32342d3234203d3e203538303631.roa (raw, json) Hash identifier: yaUDjxZGhyEVxNfdUbfnMRoUwlBxM/900/kJEwn4Oxc= Subject key identifier: C1:10:E7:05:6C:28:CC:94:33:EA:98:4F:12:D3:87:76:4B:E5:0C:8F Certificate issuer: /CN=64af15419bd5fe6c8f97e224a86a4917a2e6fefe Certificate serial: 097CCB1A5E958EA47552EA0C7445A7E21F657CC7 Authority key identifier: 64:AF:15:41:9B:D5:FE:6C:8F:97:E2:24:A8:6A:49:17:A2:E6:FE:FE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZK8VQZvV_myPl-IkqGpJF6Lm_v4.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fc9aa95f-7b38-426a-9966-5441939fe031/0/34352e3135302e362e302f32342d3234203d3e203538303631.roa Signing time: Tue 20 Jan 2026 11:55:34 +0000 ROA not before: Tue 20 Jan 2026 11:50:34 +0000 ROA not after: Tue 19 Jan 2027 11:55:34 +0000 asID: 58061 IP address blocks: 45.150.6.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fc9aa95f-7b38-426a-9966-5441939fe031/0/64AF15419BD5FE6C8F97E224A86A4917A2E6FEFE.crl rsync://rsync.paas.rpki.ripe.net/repository/fc9aa95f-7b38-426a-9966-5441939fe031/0/64AF15419BD5FE6C8F97E224A86A4917A2E6FEFE.mft rsync://rpki.ripe.net/repository/DEFAULT/ZK8VQZvV_myPl-IkqGpJF6Lm_v4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 08:36:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:7c:cb:1a:5e:95:8e:a4:75:52:ea:0c:74:45:a7:e2:1f:65:7c:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=64af15419bd5fe6c8f97e224a86a4917a2e6fefe Validity Not Before: Jan 20 11:50:34 2026 GMT Not After : Jan 19 11:55:34 2027 GMT Subject: CN=C110E7056C28CC9433EA984F12D387764BE50C8F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:67:54:91:d7:cb:14:f1:34:c5:d6:51:09:32: 2c:c5:cf:e9:f0:2c:dd:9a:de:5b:c0:be:91:dd:25: 90:e1:05:19:91:41:0a:65:4b:95:08:d6:17:41:a5: e3:3e:d3:ba:d0:15:bc:1d:f2:e9:88:fd:93:29:77: da:1f:29:5f:af:e4:82:c5:d8:fa:1d:43:ae:6e:f1: 51:b5:fc:95:90:d9:51:5d:1b:9b:17:66:25:a1:dc: 4a:c9:ea:db:e4:4b:68:f8:6e:e7:83:52:c7:25:a7: 38:e4:8b:24:6a:37:a0:ca:51:5d:c0:59:80:ba:d9: c0:e8:ff:43:f4:23:41:35:5b:25:ab:51:69:9c:aa: 5c:fd:f4:93:6a:74:99:28:d7:f6:8c:3e:ca:fc:35: d0:ea:17:25:b9:0c:3c:00:b3:6c:cc:51:51:9f:3c: 5f:48:f1:c3:08:09:ad:80:7c:85:2b:08:47:af:10: d3:74:c5:04:e2:8c:c0:54:61:db:da:22:1c:c0:8f: 54:53:59:1a:a7:82:e0:0a:0c:a3:c1:f9:55:48:e9: 2f:8d:28:f5:9c:4a:15:98:e7:8d:1f:df:37:dc:b2: f3:01:30:36:4d:10:9a:8c:c7:5b:f2:18:a5:0d:0c: f6:1d:e0:24:e9:04:87:d9:52:06:dd:ed:5e:c6:09: a0:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:10:E7:05:6C:28:CC:94:33:EA:98:4F:12:D3:87:76:4B:E5:0C:8F X509v3 Authority Key Identifier: keyid:64:AF:15:41:9B:D5:FE:6C:8F:97:E2:24:A8:6A:49:17:A2:E6:FE:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fc9aa95f-7b38-426a-9966-5441939fe031/0/64AF15419BD5FE6C8F97E224A86A4917A2E6FEFE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZK8VQZvV_myPl-IkqGpJF6Lm_v4.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fc9aa95f-7b38-426a-9966-5441939fe031/0/34352e3135302e362e302f32342d3234203d3e203538303631.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.150.6.0/24 Signature Algorithm: sha256WithRSAEncryption 4c:3e:ba:85:71:f5:b5:55:c9:8a:12:85:12:0c:6f:cc:89:50: 99:ba:47:33:69:3d:c7:24:a6:6b:d8:87:f7:7b:5f:40:75:8a: de:ac:d6:d3:9f:7d:91:c3:72:16:90:e0:88:91:ca:c0:ae:1b: 2c:45:17:65:c8:71:b6:47:b7:c0:4a:e7:5b:dc:2a:7b:bb:a9: d5:89:90:18:31:94:9c:af:fd:49:55:6d:b1:3e:09:23:1a:f8: 73:18:49:e6:be:53:5c:36:be:d3:8b:8c:7b:17:f0:84:e1:87: e9:fb:3a:6f:19:da:75:c4:05:65:56:a4:1b:37:5d:ca:e8:68: 54:f3:af:af:d6:5e:19:64:3c:4a:9c:7d:a6:e9:c7:9d:e4:ff: fd:58:e7:4f:56:96:84:aa:fe:63:ac:10:c4:0a:d4:0b:5e:69: 0b:34:a5:af:2f:aa:5c:65:02:8d:07:76:6b:59:2e:b4:52:cb: 49:aa:d9:50:97:f8:6c:9c:37:90:17:8e:3f:c9:c6:ba:86:92: 68:58:72:65:00:13:6c:e0:02:d3:4f:ac:a1:48:3d:b9:91:b5: 5b:61:84:83:22:74:85:28:7d:31:5e:8d:02:a2:3c:62:8c:ca: 7b:93:2a:02:e9:dd:2d:a4:66:76:5c:e2:76:01:8d:bb:79:14: 34:e1:41:e3 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUCXzLGl6VjqR1UuoMdEWn4h9lfMcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjRhZjE1NDE5YmQ1ZmU2YzhmOTdlMjI0YTg2YTQ5MTdh MmU2ZmVmZTAeFw0yNjAxMjAxMTUwMzRaFw0yNzAxMTkxMTU1MzRaMDMxMTAvBgNV BAMTKEMxMTBFNzA1NkMyOENDOTQzM0VBOTg0RjEyRDM4Nzc2NEJFNTBDOEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDpZ1SR18sU8TTF1lEJMizFz+nw LN2a3lvAvpHdJZDhBRmRQQplS5UI1hdBpeM+07rQFbwd8umI/ZMpd9ofKV+v5ILF 2PodQ65u8VG1/JWQ2VFdG5sXZiWh3ErJ6tvkS2j4bueDUsclpzjkiyRqN6DKUV3A WYC62cDo/0P0I0E1WyWrUWmcqlz99JNqdJko1/aMPsr8NdDqFyW5DDwAs2zMUVGf PF9I8cMICa2AfIUrCEevENN0xQTijMBUYdvaIhzAj1RTWRqnguAKDKPB+VVI6S+N KPWcShWY540f3zfcsvMBMDZNEJqMx1vyGKUNDPYd4CTpBIfZUgbd7V7GCaB7AgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUwRDnBWwozJQz6phPEtOHdkvlDI8wHwYDVR0j BBgwFoAUZK8VQZvV/myPl+IkqGpJF6Lm/v4wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmM5YWE5NWYtN2IzOC00MjZhLTk5NjYtNTQ0MTkzOWZl MDMxLzAvNjRBRjE1NDE5QkQ1RkU2QzhGOTdFMjI0QTg2QTQ5MTdBMkU2RkVGRS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1pLOFZRWnZWX215UGwtSWtxR3BKRjZM bV92NC5jZXIwgakGCCsGAQUFBwELBIGcMIGZMIGWBggrBgEFBQcwC4aBiXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmM5YWE5NWYt N2IzOC00MjZhLTk5NjYtNTQ0MTkzOWZlMDMxLzAvMzQzNTJlMzEzNTMwMmUzNjJl MzAyZjMyMzQyZDMyMzQyMDNkM2UyMDM1MzgzMDM2MzEucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAtlgYw DQYJKoZIhvcNAQELBQADggEBAEw+uoVx9bVVyYoShRIMb8yJUJm6RzNpPcckpmvY h/d7X0B1it6s1tOffZHDchaQ4IiRysCuGyxFF2XIcbZHt8BK51vcKnu7qdWJkBgx lJyv/UlVbbE+CSMa+HMYSea+U1w2vtOLjHsX8IThh+n7Om8Z2nXEBWVWpBs3Xcro aFTzr6/WXhlkPEqcfabpx53k//1Y509WloSq/mOsEMQK1AteaQs0pa8vqlxlAo0H dmtZLrRSy0mq2VCX+GycN5AXjj/JxrqGkmhYcmUAE2zgAtNPrKFIPbmRtVthhIMi dIUofTFejQKiPGKMynuTKgLp3S2kZnZc4nYBjbt5FDThQeM= -----END CERTIFICATE-----Generated at Mon Feb 9 21:10:35 2026 by rpki-client