This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3138352e3138352e3132342e302f32342d3234203d3e20323034313730.roa File: 3138352e3138352e3132342e302f32342d3234203d3e20323034313730.roa (raw, json) Hash identifier: HbBzsWJUjDo7SukvMKTFeHkIZUuN8gG6bKwD6MfYX2k= Subject key identifier: B8:E4:94:DD:86:92:07:D2:56:9B:84:A6:BC:A9:79:40:B8:E4:41:2F Certificate issuer: /CN=088469d1a33085ff88b3e599d223ca74c2313a3a Certificate serial: 232E892D5AB2DE76E43CAC381754BC22D3394422 Authority key identifier: 08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3138352e3138352e3132342e302f32342d3234203d3e20323034313730.roa Signing time: Mon 01 Dec 2025 15:50:07 +0000 ROA not before: Mon 01 Dec 2025 15:45:07 +0000 ROA not after: Mon 30 Nov 2026 15:50:07 +0000 asID: 204170 IP address blocks: 185.185.124.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.mft rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 05:02:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:2e:89:2d:5a:b2:de:76:e4:3c:ac:38:17:54:bc:22:d3:39:44:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=088469d1a33085ff88b3e599d223ca74c2313a3a Validity Not Before: Dec 1 15:45:07 2025 GMT Not After : Nov 30 15:50:07 2026 GMT Subject: CN=B8E494DD869207D2569B84A6BCA97940B8E4412F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:45:5e:6c:07:ca:e3:2a:07:72:de:53:bd:ba: b4:6b:e4:2f:33:28:d1:7e:b7:f2:a9:e6:a8:4c:1d: bd:66:65:32:6e:68:18:82:41:20:9b:6f:b2:dd:53: ae:b9:77:5a:1c:27:e2:75:d5:a4:10:25:7c:e4:3b: 3e:33:47:50:37:b0:80:26:63:f0:f9:26:5d:54:f8: 72:9a:8d:5f:af:96:36:9b:b2:1e:87:5f:13:40:74: 97:23:ed:08:85:33:52:df:1f:7d:45:74:f7:42:cd: 00:97:fb:7c:15:df:9c:6c:36:d1:10:23:3f:76:39: 98:04:32:2d:e0:ad:90:25:e6:d5:b8:48:f9:c3:a8: f3:59:c7:9b:80:cb:ec:d3:b2:ee:4d:1c:d8:ad:e9: c0:54:c2:9b:c8:41:10:ed:f6:9a:0a:10:1d:e2:ef: 64:15:7b:ef:3f:bc:cb:d5:c8:73:3f:11:36:d1:f3: da:89:84:83:7c:e2:25:a1:3a:8e:80:aa:35:e0:8e: 87:b3:77:6d:98:9c:e7:cb:18:13:61:03:30:a4:49: b8:14:21:56:88:42:41:4a:e3:72:c8:45:7c:49:02: 5b:f4:1e:f1:58:a8:ad:da:a3:e7:89:ac:3c:cc:33: ca:97:7e:66:50:ed:3c:f1:50:b8:b9:88:62:1e:68: fd:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:E4:94:DD:86:92:07:D2:56:9B:84:A6:BC:A9:79:40:B8:E4:41:2F X509v3 Authority Key Identifier: keyid:08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3138352e3138352e3132342e302f32342d3234203d3e20323034313730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.185.124.0/24 Signature Algorithm: sha256WithRSAEncryption 85:a8:82:15:2c:b9:ec:8b:f1:62:ec:1a:e1:ee:f6:69:91:aa: b8:95:67:4b:06:b4:57:75:64:db:f1:71:1f:fa:24:2a:15:14: 3b:b7:fa:3c:9c:66:43:2e:37:d0:dd:40:12:e4:1c:c7:cb:a6: b6:db:17:de:35:e3:fd:8c:25:dd:8d:c1:49:58:cf:93:0d:e9: ba:a7:0d:8a:7c:19:87:49:e9:66:17:0e:3e:a5:9f:40:68:ab: 3f:8c:7f:22:e5:cb:12:76:f4:7e:47:28:81:0e:0e:b2:51:28: 1a:8e:98:81:15:72:e1:54:52:de:74:d3:29:ef:f9:8e:bc:40: f1:ba:7f:0f:4e:ce:cd:15:0f:19:53:c4:d4:44:3d:3d:3a:63: fb:85:65:6e:64:a5:54:4d:d4:9e:2c:bb:7c:bc:66:6b:8d:0b: d8:35:ff:1e:c0:38:2f:83:d3:00:8d:f1:9a:ae:2c:bb:68:b1: 33:20:53:61:e2:fa:b7:a0:b5:34:a4:bb:4d:11:3f:04:f2:e0: 8f:f0:ce:9b:95:85:80:99:66:ab:fc:72:a6:b5:6c:13:b4:c9: c6:d1:10:53:f1:1e:92:77:18:58:5c:73:a7:2b:ef:38:9e:f6: 0a:6d:eb:16:92:01:b8:d0:fb:db:91:75:d9:41:81:31:11:94: f1:a8:ad:3f -----BEGIN CERTIFICATE----- MIIFNzCCBB+gAwIBAgIUIy6JLVqy3nbkPKw4F1S8ItM5RCIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDg4NDY5ZDFhMzMwODVmZjg4YjNlNTk5ZDIyM2NhNzRj MjMxM2EzYTAeFw0yNTEyMDExNTQ1MDdaFw0yNjExMzAxNTUwMDdaMDMxMTAvBgNV BAMTKEI4RTQ5NEREODY5MjA3RDI1NjlCODRBNkJDQTk3OTQwQjhFNDQxMkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCuRV5sB8rjKgdy3lO9urRr5C8z KNF+t/Kp5qhMHb1mZTJuaBiCQSCbb7LdU665d1ocJ+J11aQQJXzkOz4zR1A3sIAm Y/D5Jl1U+HKajV+vljabsh6HXxNAdJcj7QiFM1LfH31FdPdCzQCX+3wV35xsNtEQ Iz92OZgEMi3grZAl5tW4SPnDqPNZx5uAy+zTsu5NHNit6cBUwpvIQRDt9poKEB3i 72QVe+8/vMvVyHM/ETbR89qJhIN84iWhOo6AqjXgjoezd22YnOfLGBNhAzCkSbgU IVaIQkFK43LIRXxJAlv0HvFYqK3ao+eJrDzMM8qXfmZQ7TzxULi5iGIeaP2lAgMB AAGjggJBMIICPTAdBgNVHQ4EFgQUuOSU3YaSB9JWm4SmvKl5QLjkQS8wHwYDVR0j BBgwFoAUCIRp0aMwhf+Is+WZ0iPKdMIxOjowDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzUvMDg4NDY5RDFBMzMwODVGRjg4QjNFNTk5RDIyM0NBNzRDMjMxM0EzQS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0NJUnAwYU13aGYtSXMtV1owaVBLZE1J eE9qby5jZXIwgbEGCCsGAQUFBwELBIGkMIGhMIGeBggrBgEFBQcwC4aBkXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzUvMzEzODM1MmUzMTM4MzUyZTMx MzIzNDJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMyMzAzNDMxMzczMC5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEALm5fDANBgkqhkiG9w0BAQsFAAOCAQEAhaiCFSy57IvxYuwa4e72aZGquJVn Swa0V3Vk2/FxH/okKhUUO7f6PJxmQy430N1AEuQcx8umttsX3jXj/Ywl3Y3BSVjP kw3puqcNinwZh0npZhcOPqWfQGirP4x/IuXLEnb0fkcogQ4OslEoGo6YgRVy4VRS 3nTTKe/5jrxA8bp/D07OzRUPGVPE1EQ9PTpj+4VlbmSlVE3Uniy7fLxma40L2DX/ HsA4L4PTAI3xmq4su2ixMyBTYeL6t6C1NKS7TRE/BPLgj/DOm5WFgJlmq/xyprVs E7TJxtEQU/EekncYWFxzpyvvOJ72Cm3rFpIBuND725F12UGBMRGU8aitPw== -----END CERTIFICATE-----Generated at Fri Dec 5 13:09:26 2025 by rpki-client