This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3138352e3230352e31322e302f32342d3234203d3e20313336373837.roa File: 3138352e3230352e31322e302f32342d3234203d3e20313336373837.roa (raw, json) Hash identifier: Z/IlfD2pAxf9fVAsdO2vTfEtRy70fz360u/4RmY0/8g= Subject key identifier: 6C:5E:3B:B1:8E:CD:1E:29:79:B5:26:A6:0D:45:38:3F:57:F8:EA:8E Certificate issuer: /CN=088469d1a33085ff88b3e599d223ca74c2313a3a Certificate serial: 4615A03F167246D54E226951C3F1F59876C9A372 Authority key identifier: 08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3138352e3230352e31322e302f32342d3234203d3e20313336373837.roa Signing time: Mon 01 Dec 2025 15:50:09 +0000 ROA not before: Mon 01 Dec 2025 15:45:09 +0000 ROA not after: Mon 30 Nov 2026 15:50:09 +0000 asID: 136787 IP address blocks: 185.205.12.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.mft rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 05:02:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:15:a0:3f:16:72:46:d5:4e:22:69:51:c3:f1:f5:98:76:c9:a3:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=088469d1a33085ff88b3e599d223ca74c2313a3a Validity Not Before: Dec 1 15:45:09 2025 GMT Not After : Nov 30 15:50:09 2026 GMT Subject: CN=6C5E3BB18ECD1E2979B526A60D45383F57F8EA8E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:87:1d:29:be:42:e3:aa:e9:bc:6a:a1:fa:fa: 66:7b:dc:a4:15:19:c0:62:49:fa:25:70:46:ee:98: b9:eb:c7:28:ae:e6:0a:e1:3f:00:b8:47:eb:5c:f0: 60:72:2f:27:2b:d9:f9:12:30:e3:d5:9c:68:97:1f: 74:8d:2a:05:9c:c6:97:06:77:74:8e:b4:cf:0d:c9: f8:46:ed:14:69:e8:2c:60:ef:34:b7:d9:a4:67:78: fd:2a:74:db:72:1b:de:38:52:bd:4a:63:97:a1:5b: 78:0c:3e:c0:0f:5b:d6:7c:69:8d:77:d5:f2:98:8c: 3a:f7:64:60:3e:aa:4c:bc:5d:de:22:98:76:c5:48: af:5d:91:ec:a4:7f:c9:5c:2e:23:7c:06:61:17:0c: 84:e4:72:c5:6d:b1:db:d6:45:d6:4b:44:90:ef:b9: d9:45:ec:c0:60:6a:12:33:97:f0:98:02:5f:91:96: 91:89:3e:82:a6:74:97:f5:2f:0d:65:e7:8c:86:8e: 94:d5:24:a0:98:24:ed:02:0c:ff:eb:22:ac:15:53: 35:3d:b7:98:7f:a7:e7:ed:98:b2:6e:26:96:45:a6: 01:48:fb:28:dd:49:03:89:e1:ef:54:c0:79:22:c9: d7:56:0c:c7:9b:ae:8b:4a:3d:b8:8a:51:1e:be:26: 6c:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:5E:3B:B1:8E:CD:1E:29:79:B5:26:A6:0D:45:38:3F:57:F8:EA:8E X509v3 Authority Key Identifier: keyid:08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3138352e3230352e31322e302f32342d3234203d3e20313336373837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.205.12.0/24 Signature Algorithm: sha256WithRSAEncryption 31:2a:43:5e:ba:6e:28:fe:ad:ac:b2:3e:32:84:a1:40:b1:60: 71:ea:a4:8c:2f:72:b6:f1:da:7a:75:34:2a:a8:c9:2b:d9:12: 57:46:3b:ec:09:07:8e:4f:6b:dd:5b:7a:e2:45:46:ae:80:b0: d0:11:77:f0:c7:2a:a5:11:53:06:8e:f8:ee:a6:f4:d7:a8:e3: 08:14:cd:d7:56:ab:1f:ea:89:06:69:01:87:8f:00:72:83:98: b6:85:51:1b:6f:de:6c:fa:cb:05:1d:40:fb:18:38:69:26:b3: 07:f2:32:50:00:c8:03:e1:f2:41:bd:3b:20:c3:97:2d:49:63: 5c:5c:c9:5f:20:a0:2f:30:78:38:c5:1f:49:fc:45:b6:97:37: 7e:54:18:41:59:cf:17:5b:64:2c:f6:2e:54:9f:1d:76:ca:e9: 25:71:88:b5:cb:63:60:2b:ea:65:7e:e7:aa:c3:8e:2a:ef:0c: 44:9b:c3:59:8e:c8:b8:08:f3:a4:21:63:90:70:f7:58:9d:98: 09:33:5b:ce:cc:fc:fc:56:bd:10:f4:b2:c8:d1:4d:8a:e3:80: bd:7b:88:3a:32:b8:47:4e:1f:e8:1c:73:14:a1:06:93:28:3b: 86:14:a0:9e:f3:6a:5c:a0:2f:41:94:78:56:83:73:93:23:1d: 8b:1d:9b:5b -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIURhWgPxZyRtVOImlRw/H1mHbJo3IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDg4NDY5ZDFhMzMwODVmZjg4YjNlNTk5ZDIyM2NhNzRj MjMxM2EzYTAeFw0yNTEyMDExNTQ1MDlaFw0yNjExMzAxNTUwMDlaMDMxMTAvBgNV BAMTKDZDNUUzQkIxOEVDRDFFMjk3OUI1MjZBNjBENDUzODNGNTdGOEVBOEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLhx0pvkLjqum8aqH6+mZ73KQV GcBiSfolcEbumLnrxyiu5grhPwC4R+tc8GByLycr2fkSMOPVnGiXH3SNKgWcxpcG d3SOtM8NyfhG7RRp6Cxg7zS32aRneP0qdNtyG944Ur1KY5ehW3gMPsAPW9Z8aY13 1fKYjDr3ZGA+qky8Xd4imHbFSK9dkeykf8lcLiN8BmEXDITkcsVtsdvWRdZLRJDv udlF7MBgahIzl/CYAl+RlpGJPoKmdJf1Lw1l54yGjpTVJKCYJO0CDP/rIqwVUzU9 t5h/p+ftmLJuJpZFpgFI+yjdSQOJ4e9UwHkiyddWDMebrotKPbiKUR6+Jmz/AgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUbF47sY7NHil5tSamDUU4P1f46o4wHwYDVR0j BBgwFoAUCIRp0aMwhf+Is+WZ0iPKdMIxOjowDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzUvMDg4NDY5RDFBMzMwODVGRjg4QjNFNTk5RDIyM0NBNzRDMjMxM0EzQS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0NJUnAwYU13aGYtSXMtV1owaVBLZE1J eE9qby5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzUvMzEzODM1MmUzMjMwMzUyZTMx MzIyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMTMzMzYzNzM4Mzcucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAC5zQwwDQYJKoZIhvcNAQELBQADggEBADEqQ166bij+rayyPjKEoUCxYHHqpIwv crbx2np1NCqoySvZEldGO+wJB45Pa91beuJFRq6AsNARd/DHKqURUwaO+O6m9Neo 4wgUzddWqx/qiQZpAYePAHKDmLaFURtv3mz6ywUdQPsYOGkmswfyMlAAyAPh8kG9 OyDDly1JY1xcyV8goC8weDjFH0n8RbaXN35UGEFZzxdbZCz2LlSfHXbK6SVxiLXL Y2Ar6mV+56rDjirvDESbw1mOyLgI86QhY5Bw91idmAkzW87M/PxWvRD0ssjRTYrj gL17iDoyuEdOH+gccxShBpMoO4YUoJ7zalygL0GUeFaDc5MjHYsdm1s= -----END CERTIFICATE-----Generated at Fri Dec 5 13:10:28 2025 by rpki-client