This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3138352e3232392e3131322e302f32332d3234203d3e203437353833.roa File: 3138352e3232392e3131322e302f32332d3234203d3e203437353833.roa (raw, json) Hash identifier: B73EVwZKONUsiIjB9AMeXI59uWS/9ettrD7clNWNrBs= Subject key identifier: 74:60:07:D7:D5:D1:89:BD:C0:EA:85:1D:9E:AE:3F:8C:41:27:2F:3E Certificate issuer: /CN=088469d1a33085ff88b3e599d223ca74c2313a3a Certificate serial: 7275DF842D783E1A70F663FE91B8A0A76905626A Authority key identifier: 08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3138352e3232392e3131322e302f32332d3234203d3e203437353833.roa Signing time: Mon 01 Dec 2025 15:50:09 +0000 ROA not before: Mon 01 Dec 2025 15:45:09 +0000 ROA not after: Mon 30 Nov 2026 15:50:09 +0000 asID: 47583 IP address blocks: 185.229.112.0/23 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.mft rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 05:02:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:75:df:84:2d:78:3e:1a:70:f6:63:fe:91:b8:a0:a7:69:05:62:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=088469d1a33085ff88b3e599d223ca74c2313a3a Validity Not Before: Dec 1 15:45:09 2025 GMT Not After : Nov 30 15:50:09 2026 GMT Subject: CN=746007D7D5D189BDC0EA851D9EAE3F8C41272F3E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:40:56:6e:ce:fa:ae:f6:75:8f:9d:90:11:4a: 25:e6:f0:90:58:74:28:b0:fd:0c:51:34:69:f5:11: 6b:d8:12:f8:b6:ac:d1:37:20:44:6f:2f:de:47:45: 99:de:3f:7c:58:86:4d:88:cc:b5:4f:9a:c3:0d:0e: 86:03:fb:c2:53:c9:78:8a:26:67:e7:4b:5e:f1:75: 30:90:70:90:b5:b9:d1:b4:3e:c0:6c:e1:89:2d:a4: 4c:40:ca:2c:f4:80:0a:21:a3:84:28:01:e0:11:3f: 12:05:47:4c:c0:cb:64:ba:8d:20:42:e1:ed:30:83: 6a:ae:20:02:a0:7f:fa:36:17:aa:16:bd:c6:dc:27: e3:11:80:ec:1a:85:51:0a:68:1b:25:b0:2d:1d:05: 50:4f:2b:7c:65:6d:2a:ee:f6:ba:10:f7:45:60:25: 65:e3:64:88:99:77:e2:0b:25:fe:42:41:ea:48:3e: e8:6a:c0:5a:5f:18:4c:db:de:6c:6a:21:79:c8:bf: 46:c1:93:9e:0c:59:44:1c:70:2b:19:89:f1:17:50: 35:4f:90:b4:60:83:dd:6a:05:3b:6a:cf:5b:da:e1: 7b:fd:d2:d7:06:3b:e8:7c:db:b7:6b:c4:91:64:69: f1:e7:d6:b4:6f:5f:a6:04:b9:5c:41:2e:53:01:2e: 68:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:60:07:D7:D5:D1:89:BD:C0:EA:85:1D:9E:AE:3F:8C:41:27:2F:3E X509v3 Authority Key Identifier: keyid:08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3138352e3232392e3131322e302f32332d3234203d3e203437353833.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.229.112.0/23 Signature Algorithm: sha256WithRSAEncryption 44:39:e8:49:c9:6b:6a:19:30:ac:4d:bd:eb:c6:86:1d:b4:83: c1:87:73:cb:54:1f:c5:26:90:12:05:e7:9b:f4:30:10:fe:dd: 1b:ea:e4:c0:97:a6:a2:ab:a9:d7:e2:6f:02:0e:3f:08:d9:d5: af:8d:25:a4:f1:50:bb:9e:92:2d:73:e3:d8:0d:36:5f:37:e9: ab:ff:49:74:0e:b3:0b:f3:27:e3:e3:68:ef:0b:48:44:2a:07: 43:4e:3c:2e:49:27:0a:de:8c:fb:b0:f5:65:60:93:01:54:2a: 72:d0:7e:ec:e8:5b:2e:df:b1:5b:6e:f7:d5:83:cf:67:8b:c8: d8:d0:2f:72:1a:96:06:d5:6c:a7:d7:db:f8:76:69:65:9e:2c: 49:0a:8a:f1:aa:18:70:8c:e2:9d:b7:2e:4a:d2:bf:cd:b6:aa: 40:13:7b:86:7b:e3:ba:30:b1:ed:30:93:7a:f9:6c:0b:5d:7c: c8:9c:cb:68:4f:37:4a:e9:5e:1f:22:bd:6e:33:8f:f6:46:fc: d6:f0:c6:1e:fd:87:40:13:bd:86:a9:1c:8b:9c:f9:2b:cc:97: 63:92:d5:8a:1a:4b:3a:a7:e2:c2:74:19:76:b4:27:e6:97:7b: 66:3d:d8:e9:aa:9f:65:9d:e9:3d:85:28:ec:59:cb:9e:08:66: 00:3b:67:f6 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUcnXfhC14Phpw9mP+kbigp2kFYmowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDg4NDY5ZDFhMzMwODVmZjg4YjNlNTk5ZDIyM2NhNzRj MjMxM2EzYTAeFw0yNTEyMDExNTQ1MDlaFw0yNjExMzAxNTUwMDlaMDMxMTAvBgNV BAMTKDc0NjAwN0Q3RDVEMTg5QkRDMEVBODUxRDlFQUUzRjhDNDEyNzJGM0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCuQFZuzvqu9nWPnZARSiXm8JBY dCiw/QxRNGn1EWvYEvi2rNE3IERvL95HRZneP3xYhk2IzLVPmsMNDoYD+8JTyXiK JmfnS17xdTCQcJC1udG0PsBs4YktpExAyiz0gAoho4QoAeARPxIFR0zAy2S6jSBC 4e0wg2quIAKgf/o2F6oWvcbcJ+MRgOwahVEKaBslsC0dBVBPK3xlbSru9roQ90Vg JWXjZIiZd+ILJf5CQepIPuhqwFpfGEzb3mxqIXnIv0bBk54MWUQccCsZifEXUDVP kLRgg91qBTtqz1va4Xv90tcGO+h827drxJFkafHn1rRvX6YEuVxBLlMBLmifAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUdGAH19XRib3A6oUdnq4/jEEnLz4wHwYDVR0j BBgwFoAUCIRp0aMwhf+Is+WZ0iPKdMIxOjowDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzUvMDg4NDY5RDFBMzMwODVGRjg4QjNFNTk5RDIyM0NBNzRDMjMxM0EzQS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0NJUnAwYU13aGYtSXMtV1owaVBLZE1J eE9qby5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzUvMzEzODM1MmUzMjMyMzkyZTMx MzEzMjJlMzAyZjMyMzMyZDMyMzQyMDNkM2UyMDM0MzczNTM4MzMucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAG55XAwDQYJKoZIhvcNAQELBQADggEBAEQ56EnJa2oZMKxNvevGhh20g8GHc8tU H8UmkBIF55v0MBD+3Rvq5MCXpqKrqdfibwIOPwjZ1a+NJaTxULueki1z49gNNl83 6av/SXQOswvzJ+PjaO8LSEQqB0NOPC5JJwrejPuw9WVgkwFUKnLQfuzoWy7fsVtu 99WDz2eLyNjQL3IalgbVbKfX2/h2aWWeLEkKivGqGHCM4p23LkrSv822qkATe4Z7 47owse0wk3r5bAtdfMicy2hPN0rpXh8ivW4zj/ZG/Nbwxh79h0ATvYapHIuc+SvM l2OS1YoaSzqn4sJ0GXa0J+aXe2Y92Omqn2Wd6T2FKOxZy54IZgA7Z/Y= -----END CERTIFICATE-----Generated at Fri Dec 5 13:11:00 2025 by rpki-client