This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3138352e3234352e3235352e302f32342d3234203d3e20313336373837.roa File: 3138352e3234352e3235352e302f32342d3234203d3e20313336373837.roa (raw, json) Hash identifier: L0CMM3OCXcb5ABPC7P1PBgGc/sGXPlMk1g7zTjnyOmg= Subject key identifier: F5:A9:B8:76:D3:71:3C:AA:39:04:7D:CE:D8:DC:16:C4:52:F3:5D:03 Certificate issuer: /CN=088469d1a33085ff88b3e599d223ca74c2313a3a Certificate serial: 2498497009929B81B772CA604512A1190BA3177A Authority key identifier: 08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3138352e3234352e3235352e302f32342d3234203d3e20313336373837.roa Signing time: Mon 01 Dec 2025 15:50:03 +0000 ROA not before: Mon 01 Dec 2025 15:45:03 +0000 ROA not after: Mon 30 Nov 2026 15:50:03 +0000 asID: 136787 IP address blocks: 185.245.255.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.mft rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 05:02:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:98:49:70:09:92:9b:81:b7:72:ca:60:45:12:a1:19:0b:a3:17:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=088469d1a33085ff88b3e599d223ca74c2313a3a Validity Not Before: Dec 1 15:45:03 2025 GMT Not After : Nov 30 15:50:03 2026 GMT Subject: CN=F5A9B876D3713CAA39047DCED8DC16C452F35D03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:c6:c5:08:5e:87:f8:aa:a7:9b:c9:fa:e8:6c: 9f:fa:3c:08:3b:fa:96:e9:6f:fd:34:e0:3f:38:ef: d8:0a:e3:ed:66:af:fc:9a:c1:13:d2:2d:d4:ba:d6: 54:37:cb:5e:2a:5a:a1:54:a7:9a:31:7d:78:d5:3c: 4f:6b:c9:0c:03:d5:2f:1d:ed:05:d0:19:65:6f:d7: fe:e5:c0:b2:69:4c:9d:76:a6:c8:0f:aa:f9:6f:ec: c4:fb:70:a0:98:1a:5b:c6:bd:b8:91:ae:63:94:1a: 9c:01:fb:9e:dd:d2:22:75:46:d2:93:7a:83:a1:4e: 30:0e:1f:e9:3c:e9:f8:2c:43:d3:da:0e:84:37:50: cb:9b:c9:8a:ec:d4:6b:9d:3a:7e:b0:ee:26:cc:f3: f3:14:e4:e2:da:bb:19:b7:62:f3:65:3e:98:6c:b6: cf:07:2d:25:d3:92:f0:8b:3c:90:7a:c8:d6:f4:6c: 3b:bd:be:67:65:0a:81:fb:1d:a9:5c:23:3e:6e:32: a1:4f:f9:0d:91:53:d5:57:8b:94:54:35:d9:c3:19: 77:23:f4:00:37:fd:1e:a1:e0:3f:34:86:9c:3b:ba: de:03:37:c6:d6:10:38:eb:91:bc:57:e8:63:8c:38: eb:cf:10:f7:e4:b5:66:db:7b:7b:2b:61:13:e8:74: 48:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:A9:B8:76:D3:71:3C:AA:39:04:7D:CE:D8:DC:16:C4:52:F3:5D:03 X509v3 Authority Key Identifier: keyid:08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3138352e3234352e3235352e302f32342d3234203d3e20313336373837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.245.255.0/24 Signature Algorithm: sha256WithRSAEncryption 91:d7:9d:7f:dc:2c:14:68:1f:3e:c3:b8:a1:16:b3:f9:55:63: 10:31:aa:ec:b1:5e:e2:46:7a:36:21:35:3c:92:b0:78:55:58: ef:6d:e7:5c:54:26:64:2a:4b:33:d8:22:10:af:f5:29:91:81: d3:cb:b9:82:bc:1c:80:fd:f0:a2:79:0a:65:32:b7:6c:8c:69: 3b:fd:2e:11:39:27:64:11:6a:c7:8c:a5:f5:d6:14:d8:2c:4f: e7:39:f8:ca:7a:2d:be:a9:fd:42:49:e7:11:83:99:53:0d:49: 06:d6:63:5a:a9:f1:19:b3:1a:2c:c4:4b:fa:44:11:9a:f2:c9: b3:4b:42:ad:2e:07:ad:14:fe:ba:bf:4e:83:9b:ff:5a:20:d4: f2:27:fe:ce:8b:c0:77:06:91:64:ed:3e:21:bf:85:29:d1:79: 27:24:28:d3:2f:5e:e7:f6:72:90:cc:2e:24:47:61:2e:48:57: c7:58:6f:2e:ad:eb:22:db:ae:bc:8e:75:13:9a:0e:da:5d:66: 9a:9a:40:ab:db:80:22:c2:16:cd:93:f0:6d:ac:8f:74:1c:bb: b9:9f:79:c3:02:76:3e:14:1a:4c:02:47:16:9b:2b:03:90:47: 35:42:4c:85:27:87:6e:26:02:a3:51:24:f6:d0:a5:e0:9f:f3: 2a:45:32:71 -----BEGIN CERTIFICATE----- MIIFNzCCBB+gAwIBAgIUJJhJcAmSm4G3cspgRRKhGQujF3owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDg4NDY5ZDFhMzMwODVmZjg4YjNlNTk5ZDIyM2NhNzRj MjMxM2EzYTAeFw0yNTEyMDExNTQ1MDNaFw0yNjExMzAxNTUwMDNaMDMxMTAvBgNV BAMTKEY1QTlCODc2RDM3MTNDQUEzOTA0N0RDRUQ4REMxNkM0NTJGMzVEMDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2xsUIXof4qqebyfrobJ/6PAg7 +pbpb/004D8479gK4+1mr/yawRPSLdS61lQ3y14qWqFUp5oxfXjVPE9ryQwD1S8d 7QXQGWVv1/7lwLJpTJ12psgPqvlv7MT7cKCYGlvGvbiRrmOUGpwB+57d0iJ1RtKT eoOhTjAOH+k86fgsQ9PaDoQ3UMubyYrs1GudOn6w7ibM8/MU5OLauxm3YvNlPphs ts8HLSXTkvCLPJB6yNb0bDu9vmdlCoH7HalcIz5uMqFP+Q2RU9VXi5RUNdnDGXcj 9AA3/R6h4D80hpw7ut4DN8bWEDjrkbxX6GOMOOvPEPfktWbbe3srYRPodEjNAgMB AAGjggJBMIICPTAdBgNVHQ4EFgQU9am4dtNxPKo5BH3O2NwWxFLzXQMwHwYDVR0j BBgwFoAUCIRp0aMwhf+Is+WZ0iPKdMIxOjowDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzUvMDg4NDY5RDFBMzMwODVGRjg4QjNFNTk5RDIyM0NBNzRDMjMxM0EzQS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0NJUnAwYU13aGYtSXMtV1owaVBLZE1J eE9qby5jZXIwgbEGCCsGAQUFBwELBIGkMIGhMIGeBggrBgEFBQcwC4aBkXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzUvMzEzODM1MmUzMjM0MzUyZTMy MzUzNTJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzMzNjM3MzgzNy5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEALn1/zANBgkqhkiG9w0BAQsFAAOCAQEAkdedf9wsFGgfPsO4oRaz+VVjEDGq 7LFe4kZ6NiE1PJKweFVY723nXFQmZCpLM9giEK/1KZGB08u5grwcgP3wonkKZTK3 bIxpO/0uETknZBFqx4yl9dYU2CxP5zn4ynotvqn9QknnEYOZUw1JBtZjWqnxGbMa LMRL+kQRmvLJs0tCrS4HrRT+ur9Og5v/WiDU8if+zovAdwaRZO0+Ib+FKdF5JyQo 0y9e5/ZykMwuJEdhLkhXx1hvLq3rItuuvI51E5oO2l1mmppAq9uAIsIWzZPwbayP dBy7uZ95wwJ2PhQaTAJHFpsrA5BHNUJMhSeHbiYCo1Ek9tCl4J/zKkUycQ== -----END CERTIFICATE-----Generated at Fri Dec 5 13:10:28 2025 by rpki-client