This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3138352e3139362e32322e302f32342d3332203d3e20313336373837.roa File: 3138352e3139362e32322e302f32342d3332203d3e20313336373837.roa (raw, json) Hash identifier: DsWKC5OFD8uMtAltbCEVI9HD3WMq7hFqtHyvcuddZCs= Subject key identifier: 28:43:FC:0F:0B:A4:95:0D:ED:D8:1B:8F:D7:99:12:EB:3D:2D:40:8D Certificate issuer: /CN=088469d1a33085ff88b3e599d223ca74c2313a3a Certificate serial: 0BA2AB0BF2D88D57476184E296FF0A999EBDC4E5 Authority key identifier: 08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3138352e3139362e32322e302f32342d3332203d3e20313336373837.roa Signing time: Mon 01 Dec 2025 15:50:05 +0000 ROA not before: Mon 01 Dec 2025 15:45:05 +0000 ROA not after: Mon 30 Nov 2026 15:50:05 +0000 asID: 136787 IP address blocks: 185.196.22.0/24 maxlen: 32 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.mft rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 05:02:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:a2:ab:0b:f2:d8:8d:57:47:61:84:e2:96:ff:0a:99:9e:bd:c4:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=088469d1a33085ff88b3e599d223ca74c2313a3a Validity Not Before: Dec 1 15:45:05 2025 GMT Not After : Nov 30 15:50:05 2026 GMT Subject: CN=2843FC0F0BA4950DEDD81B8FD79912EB3D2D408D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:51:93:8d:b7:9b:a2:dc:b0:1f:6b:2a:f8:9b: 90:a7:c6:40:f9:6b:67:63:65:44:c9:55:19:59:af: d8:df:59:4b:3a:bf:94:db:27:7b:9a:ee:ce:a4:3a: d2:32:e8:b1:84:24:13:90:59:46:68:a3:1e:b3:f8: 67:fa:4a:fc:ac:ec:8b:3c:89:da:bd:fc:87:5b:a1: d6:ce:1b:db:dd:2d:15:20:51:2d:5e:57:27:0d:10: e3:82:57:6d:28:e2:cd:55:73:a1:9b:73:ca:29:45: ba:f4:7a:b6:1a:7c:af:60:a2:47:d5:71:b5:75:32: d3:4f:97:09:eb:fa:95:47:40:f3:9e:0d:66:14:e4: 6f:d3:2b:33:52:9d:62:33:c8:64:f6:64:bf:ef:57: b2:3f:5c:1b:f1:b3:a3:9c:db:d2:d6:28:06:7b:8c: b7:8a:fd:5c:1d:2c:c5:7f:d8:78:8d:ef:d2:76:75: 7e:bd:08:39:f0:15:66:77:f5:5c:c6:4b:4f:6b:1c: 45:f4:a5:b3:0f:a2:cc:0e:94:3c:40:0f:92:32:fa: 2f:9d:e0:77:30:45:ba:ab:aa:7e:0d:bf:b2:a0:c2: 6c:b3:b9:40:ef:7e:6c:26:71:3d:de:a5:98:1e:f7: b4:ca:52:ca:10:27:1d:32:7e:39:35:bc:b0:41:c2: b2:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:43:FC:0F:0B:A4:95:0D:ED:D8:1B:8F:D7:99:12:EB:3D:2D:40:8D X509v3 Authority Key Identifier: keyid:08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3138352e3139362e32322e302f32342d3332203d3e20313336373837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.196.22.0/24 Signature Algorithm: sha256WithRSAEncryption 4f:22:12:0b:2c:9e:eb:aa:4b:bb:a9:45:09:b4:e8:04:05:f6: 74:c6:ef:ab:5e:48:40:97:cc:38:0b:f9:06:28:f5:30:a4:6e: b9:84:bb:4d:a5:39:aa:18:7c:cf:de:75:3f:f8:c4:2a:b7:93: 5b:5c:22:89:24:fe:56:72:0e:2e:d4:5a:78:a8:92:d7:ed:40: 46:56:4f:5e:de:e9:c8:81:13:22:44:75:02:5c:3f:e0:1b:58: 38:c6:ef:af:33:c5:de:a5:50:dd:35:71:72:7a:a3:09:a4:2d: c7:af:a4:8e:09:14:61:6a:76:42:9b:54:0d:f9:23:e2:ec:4e: 5e:5b:ec:f0:4f:fa:95:08:ef:aa:d0:11:69:27:40:ab:c8:56: 56:f6:2e:a5:85:1d:62:82:17:14:1e:81:d6:f1:8e:0b:b2:46: 5f:12:53:f9:57:df:e2:d8:10:e0:29:60:b5:28:60:ee:77:14: 39:24:3a:d8:3c:2e:f3:e6:5e:fe:4f:21:d3:e8:aa:76:f3:06: 88:a7:34:b6:98:bc:79:cc:e1:14:f1:22:81:4f:92:04:dc:13: a8:bb:40:8d:cd:25:48:dd:3c:5d:98:2a:72:02:5b:69:1c:e7: 61:06:8f:f2:85:61:dd:e0:6f:20:80:da:51:42:63:74:43:3f: ed:aa:43:2c -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUC6KrC/LYjVdHYYTilv8KmZ69xOUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDg4NDY5ZDFhMzMwODVmZjg4YjNlNTk5ZDIyM2NhNzRj MjMxM2EzYTAeFw0yNTEyMDExNTQ1MDVaFw0yNjExMzAxNTUwMDVaMDMxMTAvBgNV BAMTKDI4NDNGQzBGMEJBNDk1MERFREQ4MUI4RkQ3OTkxMkVCM0QyRDQwOEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDmUZONt5ui3LAfayr4m5CnxkD5 a2djZUTJVRlZr9jfWUs6v5TbJ3ua7s6kOtIy6LGEJBOQWUZoox6z+Gf6Svys7Is8 idq9/IdbodbOG9vdLRUgUS1eVycNEOOCV20o4s1Vc6Gbc8opRbr0erYafK9gokfV cbV1MtNPlwnr+pVHQPOeDWYU5G/TKzNSnWIzyGT2ZL/vV7I/XBvxs6Oc29LWKAZ7 jLeK/VwdLMV/2HiN79J2dX69CDnwFWZ39VzGS09rHEX0pbMPoswOlDxAD5Iy+i+d 4HcwRbqrqn4Nv7KgwmyzuUDvfmwmcT3epZge97TKUsoQJx0yfjk1vLBBwrJ3AgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUKEP8DwuklQ3t2BuP15kS6z0tQI0wHwYDVR0j BBgwFoAUCIRp0aMwhf+Is+WZ0iPKdMIxOjowDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzUvMDg4NDY5RDFBMzMwODVGRjg4QjNFNTk5RDIyM0NBNzRDMjMxM0EzQS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0NJUnAwYU13aGYtSXMtV1owaVBLZE1J eE9qby5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzUvMzEzODM1MmUzMTM5MzYyZTMy MzIyZTMwMmYzMjM0MmQzMzMyMjAzZDNlMjAzMTMzMzYzNzM4Mzcucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAC5xBYwDQYJKoZIhvcNAQELBQADggEBAE8iEgssnuuqS7upRQm06AQF9nTG76te SECXzDgL+QYo9TCkbrmEu02lOaoYfM/edT/4xCq3k1tcIokk/lZyDi7UWnioktft QEZWT17e6ciBEyJEdQJcP+AbWDjG768zxd6lUN01cXJ6owmkLcevpI4JFGFqdkKb VA35I+LsTl5b7PBP+pUI76rQEWknQKvIVlb2LqWFHWKCFxQegdbxjguyRl8SU/lX 3+LYEOApYLUoYO53FDkkOtg8LvPmXv5PIdPoqnbzBoinNLaYvHnM4RTxIoFPkgTc E6i7QI3NJUjdPF2YKnICW2kc52EGj/KFYd3gbyCA2lFCY3RDP+2qQyw= -----END CERTIFICATE-----Generated at Fri Dec 5 13:09:26 2025 by rpki-client