This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3138352e3234332e35372e302f32342d3234203d3e20313336373837.roa File: 3138352e3234332e35372e302f32342d3234203d3e20313336373837.roa (raw, json) Hash identifier: pi3W/I0rdCJiKrzSSM0z2hzhiLLxqNFv4adFuvgvpOo= Subject key identifier: CE:50:88:37:DC:25:1D:93:39:3D:57:98:5F:CE:5C:49:4F:B9:C0:F4 Certificate issuer: /CN=088469d1a33085ff88b3e599d223ca74c2313a3a Certificate serial: 553FB8695305BD7EE06AA0A65F3B28226E5DA6D8 Authority key identifier: 08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3138352e3234332e35372e302f32342d3234203d3e20313336373837.roa Signing time: Mon 01 Dec 2025 15:50:04 +0000 ROA not before: Mon 01 Dec 2025 15:45:04 +0000 ROA not after: Mon 30 Nov 2026 15:50:04 +0000 asID: 136787 IP address blocks: 185.243.57.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.mft rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 05:02:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:3f:b8:69:53:05:bd:7e:e0:6a:a0:a6:5f:3b:28:22:6e:5d:a6:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=088469d1a33085ff88b3e599d223ca74c2313a3a Validity Not Before: Dec 1 15:45:04 2025 GMT Not After : Nov 30 15:50:04 2026 GMT Subject: CN=CE508837DC251D93393D57985FCE5C494FB9C0F4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:4c:d7:e3:c0:18:b0:9e:5b:fa:0d:70:b0:fd: e2:81:d2:00:b6:58:05:b7:ac:9a:9f:a4:02:80:b9: 75:ab:1a:b5:de:6d:36:f5:fe:e0:e5:11:78:a6:84: 09:7c:12:d3:e1:81:3e:16:13:ff:a2:84:5d:62:79: 9a:40:85:15:1e:23:12:e6:05:2a:b6:ce:53:c8:2c: 1c:92:d5:54:f7:fc:92:a2:cb:ea:18:fc:92:35:e0: a1:0b:47:4d:5d:28:ae:96:00:4d:f1:66:7f:f1:5f: d7:93:84:4c:b4:c7:10:2c:83:77:cd:f3:df:dc:a6: 31:79:df:cb:d9:bd:40:cd:e3:5c:b2:c9:52:25:b4: 75:dc:f6:f8:d0:91:40:ac:4c:3d:86:0f:c2:0e:79: 99:a6:7d:ca:4a:d4:20:53:98:be:c0:e6:f6:0c:9d: 54:2e:92:ca:2f:c2:30:0c:4f:2a:60:5e:5e:10:a9: 35:09:bf:03:81:ee:6e:2b:e2:93:2d:ef:45:2c:fd: 42:3a:40:ef:49:74:a0:73:da:0f:09:3c:1e:3b:0e: 11:f4:7f:58:39:1d:3f:25:a4:9f:18:d8:7e:e2:7c: 9e:49:52:4f:6c:6f:b0:ce:06:c3:f2:a3:a8:f5:44: d2:96:40:f4:f8:d3:29:bd:93:5e:5a:d6:3b:a2:a7: ac:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:50:88:37:DC:25:1D:93:39:3D:57:98:5F:CE:5C:49:4F:B9:C0:F4 X509v3 Authority Key Identifier: keyid:08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3138352e3234332e35372e302f32342d3234203d3e20313336373837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.243.57.0/24 Signature Algorithm: sha256WithRSAEncryption 73:5e:58:bb:97:bf:32:98:cc:44:3f:de:14:8e:22:ba:8d:13: 74:59:17:c8:3f:02:38:b2:e5:e2:90:66:ad:ac:80:9f:2b:2a: ce:e8:93:2b:5d:cf:94:34:0e:71:39:a0:2d:07:54:63:ba:5b: 98:2a:b6:9e:76:de:97:2d:b2:3a:7f:f1:24:4a:f2:02:ca:c0: 49:16:0c:26:13:df:b9:b0:f5:31:d1:c7:8f:5c:d9:10:8e:22: b6:e8:74:a4:b6:1c:71:2d:e7:f7:e3:79:64:a3:dd:be:e3:82: 95:f6:11:ad:55:61:64:bc:8a:99:a4:e6:c4:27:0a:f4:6f:0f: 2c:ed:79:48:fc:03:0d:13:85:cb:42:4d:c0:e0:6d:ec:0a:9c: 7e:9b:5c:5f:63:a1:5b:1e:5f:10:7f:ad:a0:ac:74:ff:fe:12: c5:22:57:37:c5:cc:60:17:22:bb:f9:13:2a:46:b2:ab:d6:70: ee:b4:0d:af:5f:2f:73:1f:0c:aa:66:fe:e9:2e:b7:35:8e:5f: 8a:dd:3d:33:a6:3a:ae:77:33:48:36:4a:52:22:96:f9:02:f8: 06:bc:ab:24:c2:c7:dd:8f:89:4b:54:6e:5b:1e:2e:39:17:1a: b8:bd:81:77:06:e3:89:56:99:ea:3f:bf:46:52:50:26:0c:b2: 54:84:6d:80 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUVT+4aVMFvX7gaqCmXzsoIm5dptgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDg4NDY5ZDFhMzMwODVmZjg4YjNlNTk5ZDIyM2NhNzRj MjMxM2EzYTAeFw0yNTEyMDExNTQ1MDRaFw0yNjExMzAxNTUwMDRaMDMxMTAvBgNV BAMTKENFNTA4ODM3REMyNTFEOTMzOTNENTc5ODVGQ0U1QzQ5NEZCOUMwRjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/TNfjwBiwnlv6DXCw/eKB0gC2 WAW3rJqfpAKAuXWrGrXebTb1/uDlEXimhAl8EtPhgT4WE/+ihF1ieZpAhRUeIxLm BSq2zlPILByS1VT3/JKiy+oY/JI14KELR01dKK6WAE3xZn/xX9eThEy0xxAsg3fN 89/cpjF538vZvUDN41yyyVIltHXc9vjQkUCsTD2GD8IOeZmmfcpK1CBTmL7A5vYM nVQuksovwjAMTypgXl4QqTUJvwOB7m4r4pMt70Us/UI6QO9JdKBz2g8JPB47DhH0 f1g5HT8lpJ8Y2H7ifJ5JUk9sb7DOBsPyo6j1RNKWQPT40ym9k15a1juip6yDAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUzlCIN9wlHZM5PVeYX85cSU+5wPQwHwYDVR0j BBgwFoAUCIRp0aMwhf+Is+WZ0iPKdMIxOjowDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzUvMDg4NDY5RDFBMzMwODVGRjg4QjNFNTk5RDIyM0NBNzRDMjMxM0EzQS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0NJUnAwYU13aGYtSXMtV1owaVBLZE1J eE9qby5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzUvMzEzODM1MmUzMjM0MzMyZTM1 MzcyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMTMzMzYzNzM4Mzcucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAC58zkwDQYJKoZIhvcNAQELBQADggEBAHNeWLuXvzKYzEQ/3hSOIrqNE3RZF8g/ Ajiy5eKQZq2sgJ8rKs7okytdz5Q0DnE5oC0HVGO6W5gqtp523pctsjp/8SRK8gLK wEkWDCYT37mw9THRx49c2RCOIrbodKS2HHEt5/fjeWSj3b7jgpX2Ea1VYWS8ipmk 5sQnCvRvDyzteUj8Aw0ThctCTcDgbewKnH6bXF9joVseXxB/raCsdP/+EsUiVzfF zGAXIrv5EypGsqvWcO60Da9fL3MfDKpm/ukutzWOX4rdPTOmOq53M0g2SlIilvkC +Aa8qyTCx92PiUtUblseLjkXGri9gXcG44lWmeo/v0ZSUCYMslSEbYA= -----END CERTIFICATE-----Generated at Fri Dec 5 13:12:37 2025 by rpki-client