This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3138352e3231362e3233312e302f32342d3234203d3e20313437303439.roa File: 3138352e3231362e3233312e302f32342d3234203d3e20313437303439.roa (raw, json) Hash identifier: dqC4LVmqcHeTzNp2CTHAxnoBXwZ6tlfZ3NBNiN2asD4= Subject key identifier: 09:3F:42:3D:18:03:E6:13:29:15:72:A9:90:7C:65:31:47:FD:40:3E Certificate issuer: /CN=088469d1a33085ff88b3e599d223ca74c2313a3a Certificate serial: 190E40307BFDB74658D050AC1370D4EE94FF7358 Authority key identifier: 08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3138352e3231362e3233312e302f32342d3234203d3e20313437303439.roa Signing time: Mon 01 Dec 2025 15:50:10 +0000 ROA not before: Mon 01 Dec 2025 15:45:10 +0000 ROA not after: Mon 30 Nov 2026 15:50:10 +0000 asID: 147049 IP address blocks: 185.216.231.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.mft rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 05:02:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:0e:40:30:7b:fd:b7:46:58:d0:50:ac:13:70:d4:ee:94:ff:73:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=088469d1a33085ff88b3e599d223ca74c2313a3a Validity Not Before: Dec 1 15:45:10 2025 GMT Not After : Nov 30 15:50:10 2026 GMT Subject: CN=093F423D1803E613291572A9907C653147FD403E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:07:9d:37:89:18:dc:f4:fa:58:27:43:55:a0: 3d:43:cb:48:39:90:53:70:e4:2e:5f:a7:86:03:a5: 56:9b:81:38:69:a3:67:1d:9a:fb:e2:4f:f3:3c:86: 3b:c0:01:dd:b8:ab:66:8f:ae:5c:05:d5:70:c6:4f: 28:0b:91:81:96:de:85:03:21:27:3b:90:d2:61:51: 5b:5b:bf:a5:a9:36:d4:3c:7b:6d:6b:f0:7c:e8:86: 93:51:e6:de:88:e6:05:ce:06:6f:8d:49:b4:be:ed: 6c:a7:a1:98:0b:17:29:6a:2a:4f:1c:22:b2:36:5e: 87:cb:ff:df:bc:89:ae:26:50:09:d7:e8:3f:5c:1f: 95:f7:c8:e0:17:a5:56:5c:67:05:e1:98:97:e5:a2: 96:05:e9:86:0a:c8:56:4d:29:a2:f7:88:c7:a2:28: 56:4c:1b:14:01:45:ae:1a:3e:4d:51:7b:b1:11:93: fc:80:cc:7a:fb:1e:7d:9c:ba:5c:2e:7f:aa:b2:41: 9b:5c:53:1b:2c:4a:ff:c0:ac:81:bd:92:6e:c1:e1: b6:c1:cb:86:20:39:5b:b6:7f:16:4c:85:af:cb:31: 69:7a:90:40:bd:17:3f:f9:d1:9c:67:99:f1:9d:1e: 98:55:0f:cf:6d:aa:dd:16:2a:5d:4f:f5:14:44:cd: 98:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:3F:42:3D:18:03:E6:13:29:15:72:A9:90:7C:65:31:47:FD:40:3E X509v3 Authority Key Identifier: keyid:08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3138352e3231362e3233312e302f32342d3234203d3e20313437303439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.216.231.0/24 Signature Algorithm: sha256WithRSAEncryption 4f:c2:c5:9e:bb:84:9f:1b:8c:6d:b1:1b:29:bf:92:bb:07:24: 0d:cb:c7:53:3a:c8:5b:2c:69:a7:d3:3b:44:8d:1d:31:81:b2: 0a:81:58:dd:d1:ec:95:78:e8:d3:d3:69:86:fd:f2:a8:ce:94: 10:11:52:7f:ac:8f:b6:0b:8a:4b:d7:30:ac:1f:c7:5a:fd:fa: eb:bd:4a:02:27:cb:f5:4e:71:7a:34:30:f1:b5:42:76:be:28: 18:b0:82:d7:8f:9b:8b:e9:60:b8:a5:2d:d5:98:00:d6:a9:95: 32:32:20:de:cc:e4:3b:dc:2d:db:ff:92:8c:b9:ce:e0:a7:f2: cc:c3:cd:9b:e3:36:9c:87:6b:d6:33:bd:e2:69:9d:32:e2:90: f8:6a:d9:d8:ae:3e:30:75:b9:cb:25:ab:f3:69:01:aa:27:5f: 62:60:75:c9:b8:16:64:7d:96:84:50:2c:92:d1:ef:b9:2d:5e: c6:79:08:cc:9e:b8:f8:1b:b8:64:d8:f1:f0:f1:66:74:47:7d: 4f:25:93:4f:49:80:65:f8:39:d5:ce:86:17:88:7f:85:56:08: 2d:3b:58:4e:aa:13:55:66:82:b4:42:af:2d:64:43:8c:d0:dd: 3f:43:b0:46:20:8e:1d:70:4e:62:86:60:f7:84:6f:72:b1:45: 33:86:34:28 -----BEGIN CERTIFICATE----- MIIFNzCCBB+gAwIBAgIUGQ5AMHv9t0ZY0FCsE3DU7pT/c1gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDg4NDY5ZDFhMzMwODVmZjg4YjNlNTk5ZDIyM2NhNzRj MjMxM2EzYTAeFw0yNTEyMDExNTQ1MTBaFw0yNjExMzAxNTUwMTBaMDMxMTAvBgNV BAMTKDA5M0Y0MjNEMTgwM0U2MTMyOTE1NzJBOTkwN0M2NTMxNDdGRDQwM0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPB503iRjc9PpYJ0NVoD1Dy0g5 kFNw5C5fp4YDpVabgThpo2cdmvviT/M8hjvAAd24q2aPrlwF1XDGTygLkYGW3oUD ISc7kNJhUVtbv6WpNtQ8e21r8HzohpNR5t6I5gXOBm+NSbS+7WynoZgLFylqKk8c IrI2XofL/9+8ia4mUAnX6D9cH5X3yOAXpVZcZwXhmJflopYF6YYKyFZNKaL3iMei KFZMGxQBRa4aPk1Re7ERk/yAzHr7Hn2culwuf6qyQZtcUxssSv/ArIG9km7B4bbB y4YgOVu2fxZMha/LMWl6kEC9Fz/50ZxnmfGdHphVD89tqt0WKl1P9RREzZjVAgMB AAGjggJBMIICPTAdBgNVHQ4EFgQUCT9CPRgD5hMpFXKpkHxlMUf9QD4wHwYDVR0j BBgwFoAUCIRp0aMwhf+Is+WZ0iPKdMIxOjowDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzUvMDg4NDY5RDFBMzMwODVGRjg4QjNFNTk5RDIyM0NBNzRDMjMxM0EzQS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0NJUnAwYU13aGYtSXMtV1owaVBLZE1J eE9qby5jZXIwgbEGCCsGAQUFBwELBIGkMIGhMIGeBggrBgEFBQcwC4aBkXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzUvMzEzODM1MmUzMjMxMzYyZTMy MzMzMTJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzQzNzMwMzQzOS5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEALnY5zANBgkqhkiG9w0BAQsFAAOCAQEAT8LFnruEnxuMbbEbKb+SuwckDcvH UzrIWyxpp9M7RI0dMYGyCoFY3dHslXjo09Nphv3yqM6UEBFSf6yPtguKS9cwrB/H Wv36671KAifL9U5xejQw8bVCdr4oGLCC14+bi+lguKUt1ZgA1qmVMjIg3szkO9wt 2/+SjLnO4KfyzMPNm+M2nIdr1jO94mmdMuKQ+GrZ2K4+MHW5yyWr82kBqidfYmB1 ybgWZH2WhFAsktHvuS1exnkIzJ64+Bu4ZNjx8PFmdEd9TyWTT0mAZfg51c6GF4h/ hVYILTtYTqoTVWaCtEKvLWRDjNDdP0OwRiCOHXBOYoZg94RvcrFFM4Y0KA== -----END CERTIFICATE-----Generated at Fri Dec 5 11:35:59 2025 by rpki-client