This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3139332e3136302e36342e302f32332d3234203d3e203437353833.roa File: 3139332e3136302e36342e302f32332d3234203d3e203437353833.roa (raw, json) Hash identifier: YTMlCzcyOf4f5uFOqMdUtzGzjXHlM6lb74ajVHWJ0CY= Subject key identifier: 35:39:96:EC:A2:B6:1A:C8:1B:C6:8A:88:E5:0D:A2:F2:AA:A5:4A:8B Certificate issuer: /CN=088469d1a33085ff88b3e599d223ca74c2313a3a Certificate serial: 4E8B8984204B1D9429CF9D547DC4289192B77DC3 Authority key identifier: 08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3139332e3136302e36342e302f32332d3234203d3e203437353833.roa Signing time: Mon 29 Dec 2025 09:50:27 +0000 ROA not before: Mon 29 Dec 2025 09:45:27 +0000 ROA not after: Mon 28 Dec 2026 09:50:27 +0000 asID: 47583 IP address blocks: 193.160.64.0/23 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.mft rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 16:55:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:8b:89:84:20:4b:1d:94:29:cf:9d:54:7d:c4:28:91:92:b7:7d:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=088469d1a33085ff88b3e599d223ca74c2313a3a Validity Not Before: Dec 29 09:45:27 2025 GMT Not After : Dec 28 09:50:27 2026 GMT Subject: CN=353996ECA2B61AC81BC68A88E50DA2F2AAA54A8B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:2e:dd:3f:5b:e4:2b:79:05:d6:ff:ec:fb:7b: 84:c0:85:80:3a:a0:fb:e7:bd:e5:7c:8a:1e:28:62: d1:e4:68:be:6f:d9:65:51:ae:b1:ef:3a:e6:69:07: 7c:70:34:a6:74:07:ff:3c:00:50:69:8a:36:d1:09: da:3f:11:34:a3:e7:ef:5f:0d:1e:f8:c7:22:dc:a9: fe:71:34:0d:57:e4:87:85:1f:1f:05:a9:d6:bf:92: 17:53:4c:8c:9f:dc:13:66:b7:a3:67:9e:f1:2e:11: 62:0e:59:65:c6:dc:91:28:8b:12:dc:40:dd:b9:d6: 4b:2b:01:85:49:51:e3:51:2a:5d:6c:75:4c:8b:ea: 03:62:a4:fd:19:78:d5:9a:5a:96:f6:5c:f3:97:f5: 7d:cb:68:60:45:34:2e:49:86:b3:49:0d:d4:70:07: a3:01:3d:b4:59:84:a9:78:26:5d:e3:be:d8:b3:25: d8:89:f9:8e:dd:4c:20:4b:84:2c:49:f1:23:11:22: 90:1e:62:36:e2:0d:a3:85:42:dc:5f:18:57:83:1e: a7:6a:a8:63:bd:5a:13:30:dd:5d:f7:7f:c2:36:30: 36:c6:ad:1d:3e:df:9a:37:31:5f:79:e1:77:f9:35: c3:17:17:ed:cb:c7:5b:9c:37:f2:95:69:15:d9:c7: ba:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:39:96:EC:A2:B6:1A:C8:1B:C6:8A:88:E5:0D:A2:F2:AA:A5:4A:8B X509v3 Authority Key Identifier: keyid:08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3139332e3136302e36342e302f32332d3234203d3e203437353833.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.160.64.0/23 Signature Algorithm: sha256WithRSAEncryption 93:6c:bc:19:d5:69:68:f4:38:c9:22:2e:ec:59:d7:58:b0:d7: 2d:f0:ed:3f:5b:43:c9:68:a3:ce:fd:2b:8a:cf:40:c7:73:ee: a5:3e:a1:25:d0:17:3c:53:7b:4a:b8:7d:17:29:36:45:d4:7e: 63:9a:08:d2:70:c3:0b:0a:4c:f8:c7:b3:c4:e0:4c:d0:6d:33: 15:56:f1:e9:87:05:81:b4:e8:44:a0:a2:d5:37:3d:d0:00:ef: b0:ea:ed:a6:e0:15:2c:1c:5f:52:c4:c0:74:57:0a:7f:d9:44: 48:75:a0:27:d0:fb:f8:f1:0d:0e:b1:5a:87:68:63:57:46:b8: 2b:32:e2:7a:ee:a5:74:cc:58:c7:f0:9e:95:12:c1:8d:4b:33: 42:1d:3c:9c:29:be:0b:ee:24:5b:af:76:ae:ab:ec:95:52:62: 4e:73:f6:b9:b0:be:30:49:40:92:68:1e:bd:51:a0:7c:b1:55: 70:71:85:d8:ed:b3:2f:25:7b:8a:03:37:1a:ec:ad:55:51:df: eb:9c:f6:63:23:38:eb:5c:f5:46:b5:b0:60:1e:ee:b8:a6:db: 18:d4:26:09:d5:c2:fe:2f:26:d3:c2:9e:b5:db:70:ae:82:7f: 39:98:c3:ca:85:d7:2b:64:02:c6:32:fe:6b:a1:91:b5:3c:65: 8e:b0:02:af -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUTouJhCBLHZQpz51UfcQokZK3fcMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDg4NDY5ZDFhMzMwODVmZjg4YjNlNTk5ZDIyM2NhNzRj MjMxM2EzYTAeFw0yNTEyMjkwOTQ1MjdaFw0yNjEyMjgwOTUwMjdaMDMxMTAvBgNV BAMTKDM1Mzk5NkVDQTJCNjFBQzgxQkM2OEE4OEU1MERBMkYyQUFBNTRBOEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrLt0/W+QreQXW/+z7e4TAhYA6 oPvnveV8ih4oYtHkaL5v2WVRrrHvOuZpB3xwNKZ0B/88AFBpijbRCdo/ETSj5+9f DR74xyLcqf5xNA1X5IeFHx8Fqda/khdTTIyf3BNmt6NnnvEuEWIOWWXG3JEoixLc QN251ksrAYVJUeNRKl1sdUyL6gNipP0ZeNWaWpb2XPOX9X3LaGBFNC5JhrNJDdRw B6MBPbRZhKl4Jl3jvtizJdiJ+Y7dTCBLhCxJ8SMRIpAeYjbiDaOFQtxfGFeDHqdq qGO9WhMw3V33f8I2MDbGrR0+35o3MV954Xf5NcMXF+3Lx1ucN/KVaRXZx7phAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUNTmW7KK2GsgbxoqI5Q2i8qqlSoswHwYDVR0j BBgwFoAUCIRp0aMwhf+Is+WZ0iPKdMIxOjowDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzUvMDg4NDY5RDFBMzMwODVGRjg4QjNFNTk5RDIyM0NBNzRDMjMxM0EzQS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0NJUnAwYU13aGYtSXMtV1owaVBLZE1J eE9qby5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzUvMzEzOTMzMmUzMTM2MzAyZTM2 MzQyZTMwMmYzMjMzMmQzMjM0MjAzZDNlMjAzNDM3MzUzODMzLnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQB waBAMA0GCSqGSIb3DQEBCwUAA4IBAQCTbLwZ1Wlo9DjJIi7sWddYsNct8O0/W0PJ aKPO/SuKz0DHc+6lPqEl0Bc8U3tKuH0XKTZF1H5jmgjScMMLCkz4x7PE4EzQbTMV VvHphwWBtOhEoKLVNz3QAO+w6u2m4BUsHF9SxMB0Vwp/2URIdaAn0Pv48Q0OsVqH aGNXRrgrMuJ67qV0zFjH8J6VEsGNSzNCHTycKb4L7iRbr3auq+yVUmJOc/a5sL4w SUCSaB69UaB8sVVwcYXY7bMvJXuKAzca7K1VUd/rnPZjIzjrXPVGtbBgHu64ptsY 1CYJ1cL+LybTwp6123Cugn85mMPKhdcrZALGMv5roZG1PGWOsAKv -----END CERTIFICATE-----Generated at Mon Jan 19 20:02:29 2026 by rpki-client