This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3138352e3232302e32332e302f32342d3234203d3e20313336373837.roa File: 3138352e3232302e32332e302f32342d3234203d3e20313336373837.roa (raw, json) Hash identifier: HTc912eOy3ShnCiSxFr0RN/IcdE8+yHfl7jqfohuVmE= Subject key identifier: C3:E1:3B:DF:26:19:2E:54:E1:69:5F:89:74:10:C4:91:FF:58:46:49 Certificate issuer: /CN=088469d1a33085ff88b3e599d223ca74c2313a3a Certificate serial: 2CD297E1B738D2A2CDAF61839A5E3F790C818150 Authority key identifier: 08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3138352e3232302e32332e302f32342d3234203d3e20313336373837.roa Signing time: Mon 01 Dec 2025 15:50:04 +0000 ROA not before: Mon 01 Dec 2025 15:45:04 +0000 ROA not after: Mon 30 Nov 2026 15:50:04 +0000 asID: 136787 IP address blocks: 185.220.23.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.mft rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 05:02:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:d2:97:e1:b7:38:d2:a2:cd:af:61:83:9a:5e:3f:79:0c:81:81:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=088469d1a33085ff88b3e599d223ca74c2313a3a Validity Not Before: Dec 1 15:45:04 2025 GMT Not After : Nov 30 15:50:04 2026 GMT Subject: CN=C3E13BDF26192E54E1695F897410C491FF584649 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:ba:4b:62:8f:1c:d2:c7:b2:5f:46:4c:30:74: 72:1a:4a:00:64:fa:5c:19:25:49:57:a9:de:9a:13: 0f:2a:76:f7:9b:fd:0b:89:da:e9:92:f1:34:30:86: 7f:20:45:85:01:73:01:61:2e:4a:d2:14:30:f6:64: ee:5f:9c:d9:78:da:03:03:c9:e4:ba:a2:f5:b1:47: 02:48:2c:26:ee:9a:aa:1f:da:18:32:c9:e4:c5:4c: c7:c8:2f:ed:a4:bf:e3:71:37:95:4f:c6:c9:d0:68: 2b:44:74:d0:cc:81:af:a0:fd:02:fd:fb:96:c6:83: 47:3e:7a:cf:83:ff:f6:bc:13:79:57:94:23:f4:ff: 1a:c1:f5:cd:6d:b6:a7:1f:b8:fc:ef:ae:e5:64:a4: d5:5b:84:52:af:a0:9c:bf:06:ef:d3:71:4e:92:e8: 1b:bf:da:c9:1f:b5:41:d0:34:34:1b:ab:34:d0:e4: 9d:62:7a:2f:e6:79:d3:e7:f2:cf:0d:0f:8f:e6:cf: 23:e9:d6:0e:23:e5:b9:68:70:a4:c8:ae:37:44:16: ab:92:32:a5:a3:3d:b5:19:da:f2:7a:c2:36:96:67: a8:e9:48:c9:5c:3c:14:39:c9:61:8c:4a:00:31:2f: 46:a9:7b:65:d0:c2:81:4c:fd:7c:19:a8:f0:5f:42: c9:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:E1:3B:DF:26:19:2E:54:E1:69:5F:89:74:10:C4:91:FF:58:46:49 X509v3 Authority Key Identifier: keyid:08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3138352e3232302e32332e302f32342d3234203d3e20313336373837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.220.23.0/24 Signature Algorithm: sha256WithRSAEncryption 63:4b:ed:32:6d:1d:4e:83:60:a5:16:69:a1:77:ef:dc:1c:80: 5c:5b:86:f0:78:b4:d6:7f:d2:8a:70:ba:e9:3f:dd:07:2d:68: d0:2d:37:d3:87:89:22:0c:20:4a:06:bc:3a:a0:56:d2:fb:1a: 3a:61:34:6f:f9:01:2b:95:45:b2:37:06:cb:f2:69:e7:56:15: 3e:eb:09:66:95:a7:42:aa:72:4e:af:f9:25:95:d7:00:58:84: 70:92:d7:34:6c:5f:32:41:f1:7a:cd:09:14:23:9e:3c:ac:fb: 7c:63:07:a5:b8:b1:33:bb:59:e9:c4:ff:d6:41:aa:8d:af:55: 1b:ee:54:b8:88:c4:38:10:24:ec:a3:75:16:86:59:7a:53:dc: bc:8b:ee:34:cf:25:0a:0c:45:f7:42:6c:65:3c:2e:c2:cc:31: fc:48:a5:d5:d5:8b:f9:69:6b:b8:88:bc:16:09:b1:6e:b0:15: 9e:77:ee:ba:57:20:f3:fb:ee:7b:7a:c7:a6:af:02:9e:75:1b: 85:bc:9d:31:33:22:aa:58:51:aa:67:4b:17:4e:d4:9d:94:6d: 69:f3:98:8a:77:16:6c:22:80:6a:b5:98:9e:fc:91:2b:ce:a6: 71:65:97:df:b8:e5:25:cf:45:9a:dd:92:82:76:38:3e:55:5a: d7:72:a9:0b -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIULNKX4bc40qLNr2GDml4/eQyBgVAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDg4NDY5ZDFhMzMwODVmZjg4YjNlNTk5ZDIyM2NhNzRj MjMxM2EzYTAeFw0yNTEyMDExNTQ1MDRaFw0yNjExMzAxNTUwMDRaMDMxMTAvBgNV BAMTKEMzRTEzQkRGMjYxOTJFNTRFMTY5NUY4OTc0MTBDNDkxRkY1ODQ2NDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwuktijxzSx7JfRkwwdHIaSgBk +lwZJUlXqd6aEw8qdveb/QuJ2umS8TQwhn8gRYUBcwFhLkrSFDD2ZO5fnNl42gMD yeS6ovWxRwJILCbumqof2hgyyeTFTMfIL+2kv+NxN5VPxsnQaCtEdNDMga+g/QL9 +5bGg0c+es+D//a8E3lXlCP0/xrB9c1ttqcfuPzvruVkpNVbhFKvoJy/Bu/TcU6S 6Bu/2skftUHQNDQbqzTQ5J1iei/medPn8s8ND4/mzyPp1g4j5blocKTIrjdEFquS MqWjPbUZ2vJ6wjaWZ6jpSMlcPBQ5yWGMSgAxL0ape2XQwoFM/XwZqPBfQslnAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUw+E73yYZLlThaV+JdBDEkf9YRkkwHwYDVR0j BBgwFoAUCIRp0aMwhf+Is+WZ0iPKdMIxOjowDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzUvMDg4NDY5RDFBMzMwODVGRjg4QjNFNTk5RDIyM0NBNzRDMjMxM0EzQS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0NJUnAwYU13aGYtSXMtV1owaVBLZE1J eE9qby5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzUvMzEzODM1MmUzMjMyMzAyZTMy MzMyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMTMzMzYzNzM4Mzcucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAC53BcwDQYJKoZIhvcNAQELBQADggEBAGNL7TJtHU6DYKUWaaF379wcgFxbhvB4 tNZ/0opwuuk/3QctaNAtN9OHiSIMIEoGvDqgVtL7GjphNG/5ASuVRbI3BsvyaedW FT7rCWaVp0Kqck6v+SWV1wBYhHCS1zRsXzJB8XrNCRQjnjys+3xjB6W4sTO7WenE /9ZBqo2vVRvuVLiIxDgQJOyjdRaGWXpT3LyL7jTPJQoMRfdCbGU8LsLMMfxIpdXV i/lpa7iIvBYJsW6wFZ537rpXIPP77nt6x6avAp51G4W8nTEzIqpYUapnSxdO1J2U bWnzmIp3FmwigGq1mJ78kSvOpnFll9+45SXPRZrdkoJ2OD5VWtdyqQs= -----END CERTIFICATE-----Generated at Fri Dec 5 13:09:26 2025 by rpki-client