This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3138352e3234332e35392e302f32342d3234203d3e20323034313730.roa File: 3138352e3234332e35392e302f32342d3234203d3e20323034313730.roa (raw, json) Hash identifier: zh3hJYFIfONCejEfYa+tqWfvVfPiddUUt1CSos/9QSU= Subject key identifier: 5B:0E:9C:DC:D4:08:2D:2C:49:F5:AE:82:12:93:38:3F:69:79:88:54 Certificate issuer: /CN=088469d1a33085ff88b3e599d223ca74c2313a3a Certificate serial: 6F9AB915DCBC360FFAA67C11EC075101FCC9C43A Authority key identifier: 08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3138352e3234332e35392e302f32342d3234203d3e20323034313730.roa Signing time: Mon 01 Dec 2025 15:50:02 +0000 ROA not before: Mon 01 Dec 2025 15:45:02 +0000 ROA not after: Mon 30 Nov 2026 15:50:02 +0000 asID: 204170 IP address blocks: 185.243.59.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.mft rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 05:02:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:9a:b9:15:dc:bc:36:0f:fa:a6:7c:11:ec:07:51:01:fc:c9:c4:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=088469d1a33085ff88b3e599d223ca74c2313a3a Validity Not Before: Dec 1 15:45:02 2025 GMT Not After : Nov 30 15:50:02 2026 GMT Subject: CN=5B0E9CDCD4082D2C49F5AE821293383F69798854 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:e7:39:2e:83:d9:e4:d8:76:f9:93:26:9d:c4: 60:6e:7a:c4:2e:97:f9:40:da:31:9c:0e:03:10:0d: cc:3c:c1:87:81:6d:cf:b9:92:06:45:26:b0:67:cc: 4c:87:09:1b:5a:4e:a4:d4:18:03:4f:c4:1e:ee:bd: bf:68:e0:a3:f6:2c:2c:e5:05:ae:20:04:e0:88:b1: 26:d1:cb:3c:aa:50:d9:b4:ee:23:01:80:b5:6a:8d: c0:34:f8:76:ce:9a:87:e5:a3:b9:27:d7:52:69:d5: f6:c9:f6:6e:f7:fa:05:c6:e9:99:22:99:fe:5c:4f: ea:bc:76:0a:b4:de:33:b2:b9:7e:fd:48:c5:7f:76: df:11:01:71:e6:94:32:bb:62:e4:7d:a5:4c:13:1c: d2:57:7e:3f:be:8a:bd:03:1e:89:81:3a:36:9b:61: 35:c8:95:b6:52:81:06:74:d1:53:2c:7a:f1:9c:6a: 16:f6:03:33:3d:2a:29:03:f7:f9:f9:9d:c2:cb:6c: 86:fb:f8:e2:84:e9:69:7e:9d:ab:c1:c7:13:c0:e2: db:cc:92:ea:94:ef:3a:18:c0:12:14:7c:16:08:bd: ef:04:e1:9b:9d:87:c1:39:64:cf:7e:8d:bd:87:f9: c7:bb:65:37:ad:a6:49:90:80:cc:cf:fd:d7:96:c7: fa:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:0E:9C:DC:D4:08:2D:2C:49:F5:AE:82:12:93:38:3F:69:79:88:54 X509v3 Authority Key Identifier: keyid:08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3138352e3234332e35392e302f32342d3234203d3e20323034313730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.243.59.0/24 Signature Algorithm: sha256WithRSAEncryption 57:b4:41:87:21:ea:80:c8:24:70:3d:69:d4:c3:47:d3:37:f5: 90:60:c0:71:8b:19:64:73:e8:d3:f1:1a:21:d7:04:a9:15:c2: 36:bc:9d:e6:9f:3c:10:6d:0d:40:05:04:51:32:01:27:fe:2e: 72:a1:b3:0f:b5:8d:b7:d2:ed:1c:50:fd:e8:3c:fc:09:92:93: f8:ea:90:0f:33:64:74:03:1a:e3:3d:90:c0:e3:44:92:3b:a6: 66:4d:c1:d3:5b:df:bb:cf:53:70:5b:38:63:23:a0:6b:52:1e: ff:eb:52:24:0a:3d:9e:58:fd:5d:6e:4f:79:83:3a:ce:81:6d: 86:95:0d:14:5e:db:a6:96:db:6e:d8:f2:1f:6b:2a:c8:3c:fa: b4:68:8d:43:38:7a:83:f1:9e:1f:31:00:ea:23:ce:8e:9b:46: 59:fd:e1:9c:47:e0:aa:a5:84:42:7a:3c:45:62:99:18:dd:b7: 95:b2:76:97:22:42:fa:46:1c:7e:8c:dc:84:77:cf:f3:1d:b6: 4a:ac:86:4a:5e:78:8b:1b:7f:5c:a2:94:36:0a:b1:16:1e:b3: 89:44:56:df:3c:7d:b5:bb:eb:6b:37:64:a3:b6:d5:81:5c:aa: 24:09:48:0f:e8:03:82:dc:36:ee:3a:b3:c4:44:14:be:4a:03: 7b:e3:39:6b -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUb5q5Fdy8Ng/6pnwR7AdRAfzJxDowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDg4NDY5ZDFhMzMwODVmZjg4YjNlNTk5ZDIyM2NhNzRj MjMxM2EzYTAeFw0yNTEyMDExNTQ1MDJaFw0yNjExMzAxNTUwMDJaMDMxMTAvBgNV BAMTKDVCMEU5Q0RDRDQwODJEMkM0OUY1QUU4MjEyOTMzODNGNjk3OTg4NTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDA5zkug9nk2Hb5kyadxGBuesQu l/lA2jGcDgMQDcw8wYeBbc+5kgZFJrBnzEyHCRtaTqTUGANPxB7uvb9o4KP2LCzl Ba4gBOCIsSbRyzyqUNm07iMBgLVqjcA0+HbOmoflo7kn11Jp1fbJ9m73+gXG6Zki mf5cT+q8dgq03jOyuX79SMV/dt8RAXHmlDK7YuR9pUwTHNJXfj++ir0DHomBOjab YTXIlbZSgQZ00VMsevGcahb2AzM9KikD9/n5ncLLbIb7+OKE6Wl+navBxxPA4tvM kuqU7zoYwBIUfBYIve8E4Zudh8E5ZM9+jb2H+ce7ZTetpkmQgMzP/deWx/r3AgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUWw6c3NQILSxJ9a6CEpM4P2l5iFQwHwYDVR0j BBgwFoAUCIRp0aMwhf+Is+WZ0iPKdMIxOjowDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzUvMDg4NDY5RDFBMzMwODVGRjg4QjNFNTk5RDIyM0NBNzRDMjMxM0EzQS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0NJUnAwYU13aGYtSXMtV1owaVBLZE1J eE9qby5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzUvMzEzODM1MmUzMjM0MzMyZTM1 MzkyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMjMwMzQzMTM3MzAucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAC58zswDQYJKoZIhvcNAQELBQADggEBAFe0QYch6oDIJHA9adTDR9M39ZBgwHGL GWRz6NPxGiHXBKkVwja8neafPBBtDUAFBFEyASf+LnKhsw+1jbfS7RxQ/eg8/AmS k/jqkA8zZHQDGuM9kMDjRJI7pmZNwdNb37vPU3BbOGMjoGtSHv/rUiQKPZ5Y/V1u T3mDOs6BbYaVDRRe26aW227Y8h9rKsg8+rRojUM4eoPxnh8xAOojzo6bRln94ZxH 4KqlhEJ6PEVimRjdt5WydpciQvpGHH6M3IR3z/MdtkqshkpeeIsbf1yilDYKsRYe s4lEVt88fbW762s3ZKO21YFcqiQJSA/oA4LcNu46s8REFL5KA3vjOWs= -----END CERTIFICATE-----Generated at Fri Dec 5 13:12:37 2025 by rpki-client