This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3138352e3234352e3235342e302f32342d3234203d3e20323034313730.roa File: 3138352e3234352e3235342e302f32342d3234203d3e20323034313730.roa (raw, json) Hash identifier: xu7rM3GTprDxNlP+vdZ8yHkDP3AfgLPOHuFFtij7Yi0= Subject key identifier: EF:54:41:38:B3:0B:68:46:49:9C:77:64:5F:55:A7:7B:6D:58:E5:B4 Certificate issuer: /CN=088469d1a33085ff88b3e599d223ca74c2313a3a Certificate serial: 74925E12A4F7971D66C9147D3030A010B88B559A Authority key identifier: 08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3138352e3234352e3235342e302f32342d3234203d3e20323034313730.roa Signing time: Mon 01 Dec 2025 15:50:06 +0000 ROA not before: Mon 01 Dec 2025 15:45:06 +0000 ROA not after: Mon 30 Nov 2026 15:50:06 +0000 asID: 204170 IP address blocks: 185.245.254.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.mft rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 05:02:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:92:5e:12:a4:f7:97:1d:66:c9:14:7d:30:30:a0:10:b8:8b:55:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=088469d1a33085ff88b3e599d223ca74c2313a3a Validity Not Before: Dec 1 15:45:06 2025 GMT Not After : Nov 30 15:50:06 2026 GMT Subject: CN=EF544138B30B6846499C77645F55A77B6D58E5B4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:a8:c2:c5:fc:37:22:f5:bd:af:d7:16:54:d3: 5e:bc:df:1e:bb:1f:47:26:5e:18:71:21:7a:37:ca: f7:3b:bc:81:ee:0f:b1:9b:d2:a9:ef:fb:11:61:15: ed:0b:09:48:70:03:45:31:6b:b2:09:14:15:61:5e: 0c:f4:36:9f:7d:f2:64:7d:35:33:3f:da:a2:59:17: 06:00:84:b9:44:06:f0:22:40:5c:95:b5:35:5e:74: 12:35:73:46:74:49:b0:6a:c9:82:ae:9c:95:7a:32: 83:ae:b0:b7:0d:0d:6d:a1:e7:03:96:b8:57:f0:b5: 6c:52:ef:c1:d4:53:1c:e6:9a:fb:bd:85:35:bd:c1: b8:36:93:7c:a4:b2:06:8f:cb:e7:b2:f5:bd:68:cd: 76:3e:06:97:9d:f4:bb:31:49:c8:fd:d0:e3:0f:e9: 7a:02:7d:7c:bb:3f:a8:0e:69:7b:29:2a:8c:4e:8f: 80:a5:07:89:d9:b7:89:d3:a5:1f:eb:60:39:8c:b4: 64:c7:4c:c3:98:95:5b:2c:a3:08:6e:7d:3f:37:fe: d5:4c:1f:a8:40:31:97:44:77:5f:12:44:0c:af:41: 9a:e9:86:30:51:19:39:46:d3:10:fd:98:c2:29:02: 74:15:17:32:4f:b4:a5:78:1a:fd:f5:be:ca:c1:2a: 7a:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:54:41:38:B3:0B:68:46:49:9C:77:64:5F:55:A7:7B:6D:58:E5:B4 X509v3 Authority Key Identifier: keyid:08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3138352e3234352e3235342e302f32342d3234203d3e20323034313730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.245.254.0/24 Signature Algorithm: sha256WithRSAEncryption 6a:c2:ab:47:2e:1d:68:93:04:97:e7:b7:1b:11:94:dd:00:cd: e0:5f:5e:78:79:47:46:8b:b9:13:6e:2c:52:27:a0:57:19:d5: 4e:72:1b:f8:4e:3f:90:18:1e:28:21:38:33:e7:18:a8:f0:03: a4:33:1f:37:ad:63:68:8e:7b:97:77:6d:13:4c:82:18:7e:d4: c9:0a:db:74:ee:28:2d:10:b2:6a:e5:99:82:ee:8e:6e:fc:ab: 74:99:76:41:82:b4:a2:8e:e9:e7:2f:73:ae:4b:d4:0b:7d:7b: dc:36:39:49:42:30:d5:fb:e7:28:71:f8:d3:55:2a:54:28:08: 5e:f8:7d:fa:78:0c:52:64:98:ca:2e:6c:31:60:5e:28:c0:f4: 51:a6:a7:14:ba:9a:f5:20:d6:92:17:62:23:8e:22:25:7a:67: 11:2f:9b:65:57:a0:9b:7f:4e:62:ff:b6:b6:91:12:8b:84:c6: 5d:70:47:0d:1e:32:da:37:d1:84:39:fe:98:4f:3d:fc:b8:d2: 6c:23:f8:09:7b:78:4d:b2:13:fa:0d:ac:61:63:13:e3:4b:a9: 12:8f:0a:aa:05:44:b0:8a:e4:9a:a8:b7:fa:b9:a4:49:83:32: 35:9f:7d:ce:72:bb:d8:ba:bc:c4:f2:e7:b9:04:ce:cb:aa:ce: f2:a6:b7:1b -----BEGIN CERTIFICATE----- MIIFNzCCBB+gAwIBAgIUdJJeEqT3lx1myRR9MDCgELiLVZowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDg4NDY5ZDFhMzMwODVmZjg4YjNlNTk5ZDIyM2NhNzRj MjMxM2EzYTAeFw0yNTEyMDExNTQ1MDZaFw0yNjExMzAxNTUwMDZaMDMxMTAvBgNV BAMTKEVGNTQ0MTM4QjMwQjY4NDY0OTlDNzc2NDVGNTVBNzdCNkQ1OEU1QjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYqMLF/Dci9b2v1xZU01683x67 H0cmXhhxIXo3yvc7vIHuD7Gb0qnv+xFhFe0LCUhwA0Uxa7IJFBVhXgz0Np998mR9 NTM/2qJZFwYAhLlEBvAiQFyVtTVedBI1c0Z0SbBqyYKunJV6MoOusLcNDW2h5wOW uFfwtWxS78HUUxzmmvu9hTW9wbg2k3yksgaPy+ey9b1ozXY+Bped9LsxScj90OMP 6XoCfXy7P6gOaXspKoxOj4ClB4nZt4nTpR/rYDmMtGTHTMOYlVssowhufT83/tVM H6hAMZdEd18SRAyvQZrphjBRGTlG0xD9mMIpAnQVFzJPtKV4Gv31vsrBKnrNAgMB AAGjggJBMIICPTAdBgNVHQ4EFgQU71RBOLMLaEZJnHdkX1Wne21Y5bQwHwYDVR0j BBgwFoAUCIRp0aMwhf+Is+WZ0iPKdMIxOjowDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzUvMDg4NDY5RDFBMzMwODVGRjg4QjNFNTk5RDIyM0NBNzRDMjMxM0EzQS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0NJUnAwYU13aGYtSXMtV1owaVBLZE1J eE9qby5jZXIwgbEGCCsGAQUFBwELBIGkMIGhMIGeBggrBgEFBQcwC4aBkXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzUvMzEzODM1MmUzMjM0MzUyZTMy MzUzNDJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMyMzAzNDMxMzczMC5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEALn1/jANBgkqhkiG9w0BAQsFAAOCAQEAasKrRy4daJMEl+e3GxGU3QDN4F9e eHlHRou5E24sUiegVxnVTnIb+E4/kBgeKCE4M+cYqPADpDMfN61jaI57l3dtE0yC GH7UyQrbdO4oLRCyauWZgu6ObvyrdJl2QYK0oo7p5y9zrkvUC3173DY5SUIw1fvn KHH401UqVCgIXvh9+ngMUmSYyi5sMWBeKMD0UaanFLqa9SDWkhdiI44iJXpnES+b ZVegm39OYv+2tpESi4TGXXBHDR4y2jfRhDn+mE89/LjSbCP4CXt4TbIT+g2sYWMT 40upEo8KqgVEsIrkmqi3+rmkSYMyNZ99znK72Lq8xPLnuQTOy6rO8qa3Gw== -----END CERTIFICATE-----Generated at Fri Dec 5 13:12:36 2025 by rpki-client