This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3138352e3233372e3134362e302f32332d3234203d3e203437353833.roa File: 3138352e3233372e3134362e302f32332d3234203d3e203437353833.roa (raw, json) Hash identifier: 5CHbvH9xJmbm65a8Cg1if5a2E9Czttu6dN0ghkR0Qs0= Subject key identifier: 8E:32:46:C8:35:CD:9E:02:F9:3E:88:99:27:71:59:5A:F1:6F:66:1F Certificate issuer: /CN=088469d1a33085ff88b3e599d223ca74c2313a3a Certificate serial: 7516B3080C29DEAB0A7D4AA7A324FA676C3F108F Authority key identifier: 08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3138352e3233372e3134362e302f32332d3234203d3e203437353833.roa Signing time: Mon 01 Dec 2025 15:50:07 +0000 ROA not before: Mon 01 Dec 2025 15:45:07 +0000 ROA not after: Mon 30 Nov 2026 15:50:07 +0000 asID: 47583 IP address blocks: 185.237.146.0/23 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.mft rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 05:02:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:16:b3:08:0c:29:de:ab:0a:7d:4a:a7:a3:24:fa:67:6c:3f:10:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=088469d1a33085ff88b3e599d223ca74c2313a3a Validity Not Before: Dec 1 15:45:07 2025 GMT Not After : Nov 30 15:50:07 2026 GMT Subject: CN=8E3246C835CD9E02F93E88992771595AF16F661F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:d1:10:e6:26:94:01:89:26:75:67:34:de:44: e7:df:00:54:45:49:06:9b:34:72:fb:60:ce:5f:5b: 03:cf:2d:eb:02:fd:00:18:20:93:19:ea:d1:15:f9: 53:ca:87:9c:99:80:b2:1c:36:96:ba:c4:cc:f7:f4: 74:d3:31:f7:55:c5:10:4b:58:65:a0:ba:7f:4b:55: 24:18:17:90:fa:a7:06:bc:23:e0:da:cb:b5:87:1a: 09:7d:30:2a:f4:48:9e:9e:78:25:ed:56:1c:88:0e: b4:b1:8d:05:3e:46:44:29:e3:28:90:de:8f:fe:cb: 7f:89:4b:82:51:fa:db:38:68:be:91:7b:a0:8f:28: b3:da:cc:2a:be:77:ad:ad:f1:1c:14:a5:88:de:0e: 81:d1:fe:49:cb:67:dc:d7:d2:fd:91:00:45:4d:2d: 9a:32:0c:18:e3:96:9b:e6:d8:03:93:da:b7:77:3a: c4:6e:9b:fe:44:c7:01:47:cb:5e:cb:a0:51:a1:8c: e2:c5:45:86:22:fd:b6:bb:e4:d2:93:af:64:fa:9c: 64:85:bb:cb:b2:2f:ca:1f:2f:75:15:0b:df:4b:81: 9e:2e:9b:21:ff:49:a4:93:55:94:19:fb:21:b5:1b: 8b:00:ae:1f:c3:ca:75:68:7c:15:73:29:72:e5:45: 9b:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:32:46:C8:35:CD:9E:02:F9:3E:88:99:27:71:59:5A:F1:6F:66:1F X509v3 Authority Key Identifier: keyid:08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3138352e3233372e3134362e302f32332d3234203d3e203437353833.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.237.146.0/23 Signature Algorithm: sha256WithRSAEncryption 4a:e2:e4:92:27:19:e8:4b:f6:7d:80:08:3a:4a:d7:06:d1:c0: a5:3a:e4:1a:af:d5:2b:08:fb:42:9b:ea:c8:2c:f3:5b:5e:de: f1:f5:54:85:a0:4e:46:c7:10:4e:7a:a9:db:9d:fb:73:8a:92: a0:52:08:9e:7e:d3:b4:de:a4:9e:59:a2:d2:22:ab:7f:be:b3: bb:f6:c9:1b:d1:0d:e1:df:46:05:1e:bf:a2:fb:bc:48:70:f1: bc:13:42:34:6b:63:98:5a:c1:07:10:d6:45:40:cb:a6:c9:04: 53:ab:6a:c6:5c:d8:5c:41:52:25:2a:86:14:a4:bc:4d:2f:a0: d5:25:5f:8d:0e:21:c8:10:78:1c:3e:58:86:f2:b5:30:9a:56: 61:cc:4a:0b:e7:10:3d:27:a7:24:41:16:a0:08:40:d8:c1:f3: 69:66:9a:71:dd:2a:2e:66:66:88:68:2e:1a:74:f4:6c:05:fe: 43:ac:f4:c1:ee:9f:5b:97:2f:2d:e8:df:95:39:12:b5:d9:d1: de:1b:9d:30:d7:7a:7a:15:51:4d:8b:ce:27:e7:97:3d:f2:79: 95:f1:f7:16:b9:9c:f1:3f:73:26:f4:58:84:7c:32:be:c9:d6: 5c:90:47:d8:50:00:1d:72:69:08:38:e7:c0:d5:bf:82:ea:99: 3e:2b:b7:31 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUdRazCAwp3qsKfUqnoyT6Z2w/EI8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDg4NDY5ZDFhMzMwODVmZjg4YjNlNTk5ZDIyM2NhNzRj MjMxM2EzYTAeFw0yNTEyMDExNTQ1MDdaFw0yNjExMzAxNTUwMDdaMDMxMTAvBgNV BAMTKDhFMzI0NkM4MzVDRDlFMDJGOTNFODg5OTI3NzE1OTVBRjE2RjY2MUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD10RDmJpQBiSZ1ZzTeROffAFRF SQabNHL7YM5fWwPPLesC/QAYIJMZ6tEV+VPKh5yZgLIcNpa6xMz39HTTMfdVxRBL WGWgun9LVSQYF5D6pwa8I+Day7WHGgl9MCr0SJ6eeCXtVhyIDrSxjQU+RkQp4yiQ 3o/+y3+JS4JR+ts4aL6Re6CPKLPazCq+d62t8RwUpYjeDoHR/knLZ9zX0v2RAEVN LZoyDBjjlpvm2AOT2rd3OsRum/5ExwFHy17LoFGhjOLFRYYi/ba75NKTr2T6nGSF u8uyL8ofL3UVC99LgZ4umyH/SaSTVZQZ+yG1G4sArh/DynVofBVzKXLlRZtdAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUjjJGyDXNngL5PoiZJ3FZWvFvZh8wHwYDVR0j BBgwFoAUCIRp0aMwhf+Is+WZ0iPKdMIxOjowDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzUvMDg4NDY5RDFBMzMwODVGRjg4QjNFNTk5RDIyM0NBNzRDMjMxM0EzQS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0NJUnAwYU13aGYtSXMtV1owaVBLZE1J eE9qby5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzUvMzEzODM1MmUzMjMzMzcyZTMx MzQzNjJlMzAyZjMyMzMyZDMyMzQyMDNkM2UyMDM0MzczNTM4MzMucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAG57ZIwDQYJKoZIhvcNAQELBQADggEBAEri5JInGehL9n2ACDpK1wbRwKU65Bqv 1SsI+0Kb6sgs81te3vH1VIWgTkbHEE56qdud+3OKkqBSCJ5+07TepJ5ZotIiq3++ s7v2yRvRDeHfRgUev6L7vEhw8bwTQjRrY5hawQcQ1kVAy6bJBFOrasZc2FxBUiUq hhSkvE0voNUlX40OIcgQeBw+WIbytTCaVmHMSgvnED0npyRBFqAIQNjB82lmmnHd Ki5mZohoLhp09GwF/kOs9MHun1uXLy3o35U5ErXZ0d4bnTDXenoVUU2Lzifnlz3y eZXx9xa5nPE/cyb0WIR8Mr7J1lyQR9hQAB1yaQg458DVv4LqmT4rtzE= -----END CERTIFICATE-----Generated at Fri Dec 5 13:09:16 2025 by rpki-client