This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3137362e3131362e31392e302f32342d3234203d3e20323034313730.roa File: 3137362e3131362e31392e302f32342d3234203d3e20323034313730.roa (raw, json) Hash identifier: LCLF5y8Y4DGg4CAtSc/jxs8zfrSOkE3Rwmk324dIXi4= Subject key identifier: 18:21:46:1A:D9:1A:E1:96:26:4F:51:E6:C0:9E:27:41:05:1B:8E:0E Certificate issuer: /CN=088469d1a33085ff88b3e599d223ca74c2313a3a Certificate serial: 59C722F3863D4A9D902F854D77069C5E4010FD4F Authority key identifier: 08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3137362e3131362e31392e302f32342d3234203d3e20323034313730.roa Signing time: Mon 01 Dec 2025 15:50:06 +0000 ROA not before: Mon 01 Dec 2025 15:45:06 +0000 ROA not after: Mon 30 Nov 2026 15:50:06 +0000 asID: 204170 IP address blocks: 176.116.19.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.mft rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 05:02:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:c7:22:f3:86:3d:4a:9d:90:2f:85:4d:77:06:9c:5e:40:10:fd:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=088469d1a33085ff88b3e599d223ca74c2313a3a Validity Not Before: Dec 1 15:45:06 2025 GMT Not After : Nov 30 15:50:06 2026 GMT Subject: CN=1821461AD91AE196264F51E6C09E2741051B8E0E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:73:69:9b:c1:6a:1d:41:49:31:09:3f:12:08: 95:dd:f4:7f:c7:4c:c7:a0:f5:c7:36:ce:d4:49:cd: 67:58:9f:73:5b:f3:e4:f5:6a:31:7a:43:ba:de:6f: b0:fe:8d:67:6e:be:92:96:7c:aa:fb:84:4c:41:b0: 66:53:cf:fd:2a:89:c6:2f:ba:ee:0a:2d:7f:48:e3: 1b:6f:0a:11:1d:0e:68:8d:f8:3d:12:a7:d5:39:fd: e0:9c:0d:0d:b2:08:1b:aa:53:ef:fa:59:48:0f:90: 99:b2:c0:ca:d1:37:1f:6f:73:1d:db:6c:ac:b7:d1: df:ed:d6:67:f2:76:a5:86:74:eb:8d:21:47:40:8c: 3a:66:3a:de:e6:d1:9a:a7:61:9c:d0:87:49:ad:fe: c6:df:da:69:5e:b9:a3:fd:87:50:b1:cb:05:e4:de: 9b:c7:5c:e8:58:78:e0:9c:1b:bf:43:e7:a1:7f:20: 4e:31:e8:c9:34:61:2c:82:84:6d:96:a2:ff:c8:da: d6:03:cd:48:95:cf:43:26:fa:df:85:73:a5:fd:4b: 65:5c:55:21:dd:28:4f:0e:f6:d6:8e:4b:2f:5a:b6: 5e:b3:c7:72:15:f5:f5:9e:be:c0:3b:95:ff:7c:57: cb:73:67:59:44:54:9d:73:ab:96:9d:f5:5a:08:db: 68:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:21:46:1A:D9:1A:E1:96:26:4F:51:E6:C0:9E:27:41:05:1B:8E:0E X509v3 Authority Key Identifier: keyid:08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3137362e3131362e31392e302f32342d3234203d3e20323034313730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 176.116.19.0/24 Signature Algorithm: sha256WithRSAEncryption 58:ef:c1:46:77:47:6d:a6:e1:11:0a:b4:e3:31:ab:62:74:1e: 3b:84:43:6d:dd:8d:25:c6:73:25:d4:70:75:d3:7e:55:88:a7: 08:86:2d:5c:bc:43:37:90:0e:b0:cd:26:f2:9d:93:a1:0f:0a: 08:13:f0:45:16:be:41:e1:3e:dc:e0:f3:86:9a:61:13:16:eb: 02:81:de:83:e4:4f:bb:1b:37:6c:e4:2f:d4:3a:76:85:73:d5: 34:97:01:35:bf:a5:c6:82:91:23:27:6f:7d:2f:4c:5c:ee:68: 4c:53:64:92:e2:d3:a9:d2:e3:55:a4:03:79:1b:1d:6d:a6:65: 20:7c:99:3c:d2:b0:01:9a:18:6f:99:66:5e:47:83:30:1a:44: 65:a3:fa:07:c1:e0:4f:0d:96:a3:09:0c:bc:6f:81:2c:72:18: 2b:eb:bd:dc:73:26:c2:c0:ba:96:a2:ca:fc:07:cf:4e:84:08: 1a:3c:4d:e4:10:b1:93:ea:e5:7f:26:03:67:16:41:59:23:f8: 79:1b:4f:d1:c3:62:7b:c8:8f:34:5c:7b:dc:67:6b:7a:a8:97: 62:45:8a:d7:b9:34:0e:3b:02:78:d0:8b:b1:07:b8:79:93:98: 8a:4c:b7:ab:8d:73:02:1a:df:2d:4a:5e:02:de:85:34:bb:a3: 2c:c4:a8:5b -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUWcci84Y9Sp2QL4VNdwacXkAQ/U8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDg4NDY5ZDFhMzMwODVmZjg4YjNlNTk5ZDIyM2NhNzRj MjMxM2EzYTAeFw0yNTEyMDExNTQ1MDZaFw0yNjExMzAxNTUwMDZaMDMxMTAvBgNV BAMTKDE4MjE0NjFBRDkxQUUxOTYyNjRGNTFFNkMwOUUyNzQxMDUxQjhFMEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD1c2mbwWodQUkxCT8SCJXd9H/H TMeg9cc2ztRJzWdYn3Nb8+T1ajF6Q7reb7D+jWduvpKWfKr7hExBsGZTz/0qicYv uu4KLX9I4xtvChEdDmiN+D0Sp9U5/eCcDQ2yCBuqU+/6WUgPkJmywMrRNx9vcx3b bKy30d/t1mfydqWGdOuNIUdAjDpmOt7m0ZqnYZzQh0mt/sbf2mleuaP9h1CxywXk 3pvHXOhYeOCcG79D56F/IE4x6Mk0YSyChG2Wov/I2tYDzUiVz0Mm+t+Fc6X9S2Vc VSHdKE8O9taOSy9atl6zx3IV9fWevsA7lf98V8tzZ1lEVJ1zq5ad9VoI22jRAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUGCFGGtka4ZYmT1HmwJ4nQQUbjg4wHwYDVR0j BBgwFoAUCIRp0aMwhf+Is+WZ0iPKdMIxOjowDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzUvMDg4NDY5RDFBMzMwODVGRjg4QjNFNTk5RDIyM0NBNzRDMjMxM0EzQS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0NJUnAwYU13aGYtSXMtV1owaVBLZE1J eE9qby5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzUvMzEzNzM2MmUzMTMxMzYyZTMx MzkyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMjMwMzQzMTM3MzAucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BACwdBMwDQYJKoZIhvcNAQELBQADggEBAFjvwUZ3R22m4REKtOMxq2J0HjuEQ23d jSXGcyXUcHXTflWIpwiGLVy8QzeQDrDNJvKdk6EPCggT8EUWvkHhPtzg84aaYRMW 6wKB3oPkT7sbN2zkL9Q6doVz1TSXATW/pcaCkSMnb30vTFzuaExTZJLi06nS41Wk A3kbHW2mZSB8mTzSsAGaGG+ZZl5HgzAaRGWj+gfB4E8NlqMJDLxvgSxyGCvrvdxz JsLAupaiyvwHz06ECBo8TeQQsZPq5X8mA2cWQVkj+HkbT9HDYnvIjzRce9xna3qo l2JFite5NA47AnjQi7EHuHmTmIpMt6uNcwIa3y1KXgLehTS7oyzEqFs= -----END CERTIFICATE-----Generated at Fri Dec 5 13:12:37 2025 by rpki-client