This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3139332e3136382e3139322e302f32332d3234203d3e203437353833.roa File: 3139332e3136382e3139322e302f32332d3234203d3e203437353833.roa (raw, json) Hash identifier: DGYQAUUv/XRCqVQKJSQJQlg+vviqxKgSrA/tGNNBFto= Subject key identifier: 2C:DE:35:68:A9:2C:01:1F:04:80:9C:0A:5B:23:C2:E1:17:E5:9D:C8 Certificate issuer: /CN=088469d1a33085ff88b3e599d223ca74c2313a3a Certificate serial: 701E28CFD836EC7959A8BC6AC004B15EECA5A77C Authority key identifier: 08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3139332e3136382e3139322e302f32332d3234203d3e203437353833.roa Signing time: Mon 29 Dec 2025 09:50:24 +0000 ROA not before: Mon 29 Dec 2025 09:45:24 +0000 ROA not after: Mon 28 Dec 2026 09:50:24 +0000 asID: 47583 IP address blocks: 193.168.192.0/23 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.mft rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 16:55:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:1e:28:cf:d8:36:ec:79:59:a8:bc:6a:c0:04:b1:5e:ec:a5:a7:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=088469d1a33085ff88b3e599d223ca74c2313a3a Validity Not Before: Dec 29 09:45:24 2025 GMT Not After : Dec 28 09:50:24 2026 GMT Subject: CN=2CDE3568A92C011F04809C0A5B23C2E117E59DC8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:c3:f3:c4:30:ff:20:c5:91:ee:58:ac:5f:d2: 9c:ab:fc:fa:97:fa:60:25:2d:6c:1e:38:4c:12:25: ca:9e:d6:17:bb:a9:ae:8e:15:c3:f4:18:58:b5:f6: ed:84:12:35:fc:e0:48:98:8f:c6:e7:7e:1c:20:9e: b4:e4:be:85:e0:bb:6c:97:5a:e0:9c:f6:ad:87:46: 20:b9:21:ab:d9:3a:45:cf:4a:4f:42:82:5f:b3:a2: 4d:69:30:7c:3e:0c:9c:e3:8f:65:5b:d8:d7:c8:98: 2f:aa:c2:79:68:56:7e:0e:90:47:6d:5c:b9:ab:91: bf:fb:7f:23:b6:f8:c6:7b:46:77:6b:0b:fb:05:c9: 6d:65:70:5b:09:70:1a:f8:7e:d7:77:93:03:98:e0: ff:85:6a:4f:09:01:68:e3:d2:8d:99:42:6a:6a:fa: 1d:8f:8c:3c:f7:b5:dc:88:42:27:34:3c:bb:f2:21: 61:e1:fd:f2:d3:f5:1f:e8:58:63:e4:3f:a6:c9:5f: 3f:76:14:d0:e7:a6:8b:ba:93:07:ec:0f:46:04:a8: 13:14:95:c0:df:07:e4:dc:f0:7f:e6:07:e2:c6:06: 4f:45:ad:b8:07:8f:7d:c0:00:2f:dd:8a:6f:0c:32: 52:3d:64:88:c1:de:e2:d1:3c:b9:57:34:34:1e:3c: 5f:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:DE:35:68:A9:2C:01:1F:04:80:9C:0A:5B:23:C2:E1:17:E5:9D:C8 X509v3 Authority Key Identifier: keyid:08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3139332e3136382e3139322e302f32332d3234203d3e203437353833.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.168.192.0/23 Signature Algorithm: sha256WithRSAEncryption 85:bb:c6:6d:e6:49:eb:a3:49:e0:6f:79:18:91:e9:12:bc:d8: 6b:26:62:58:d3:d5:ec:61:fb:51:9b:87:75:e9:bb:7d:a1:de: d8:51:d8:e0:5f:5f:c6:36:20:ef:66:08:0e:87:93:db:8c:a8: 59:58:a5:fd:dc:1d:d2:f6:2b:91:fe:89:fb:84:23:a8:bf:14: 93:e0:3d:ab:81:a0:64:2b:9c:83:56:83:ab:cf:01:1e:66:dc: 0b:39:b5:80:23:1a:32:72:8a:e3:f3:e2:d6:01:f9:8d:ca:8b: c5:73:1f:1a:21:c8:05:f9:08:0e:71:58:5e:09:1c:2b:2d:23: 8b:f2:92:ce:09:86:04:0c:f7:50:4f:6e:3b:29:67:58:75:48: 89:92:c3:32:42:d5:e7:ab:35:13:a6:51:bc:7b:55:8c:f4:af: a5:fb:7c:0b:94:08:a7:3d:0a:48:bb:26:5f:08:a9:ae:2b:2a: dd:95:d9:09:d8:ad:0e:19:3c:2c:f4:86:31:8d:6e:8f:94:b1: 49:9e:b1:7f:c7:fc:33:27:f0:70:a0:9f:65:5f:cd:60:45:24: 04:fc:26:c7:0e:c5:2b:74:bc:c8:7a:53:08:cf:52:f8:f4:a9: e6:b9:1f:c1:44:d3:12:35:07:30:8c:1b:81:34:d1:a8:4f:c6: 8d:bf:bc:a4 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUcB4oz9g27HlZqLxqwASxXuylp3wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDg4NDY5ZDFhMzMwODVmZjg4YjNlNTk5ZDIyM2NhNzRj MjMxM2EzYTAeFw0yNTEyMjkwOTQ1MjRaFw0yNjEyMjgwOTUwMjRaMDMxMTAvBgNV BAMTKDJDREUzNTY4QTkyQzAxMUYwNDgwOUMwQTVCMjNDMkUxMTdFNTlEQzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7w/PEMP8gxZHuWKxf0pyr/PqX +mAlLWweOEwSJcqe1he7qa6OFcP0GFi19u2EEjX84EiYj8bnfhwgnrTkvoXgu2yX WuCc9q2HRiC5IavZOkXPSk9Cgl+zok1pMHw+DJzjj2Vb2NfImC+qwnloVn4OkEdt XLmrkb/7fyO2+MZ7RndrC/sFyW1lcFsJcBr4ftd3kwOY4P+Fak8JAWjj0o2ZQmpq +h2PjDz3tdyIQic0PLvyIWHh/fLT9R/oWGPkP6bJXz92FNDnpou6kwfsD0YEqBMU lcDfB+Tc8H/mB+LGBk9FrbgHj33AAC/dim8MMlI9ZIjB3uLRPLlXNDQePF9NAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQULN41aKksAR8EgJwKWyPC4RflncgwHwYDVR0j BBgwFoAUCIRp0aMwhf+Is+WZ0iPKdMIxOjowDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzUvMDg4NDY5RDFBMzMwODVGRjg4QjNFNTk5RDIyM0NBNzRDMjMxM0EzQS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0NJUnAwYU13aGYtSXMtV1owaVBLZE1J eE9qby5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzUvMzEzOTMzMmUzMTM2MzgyZTMx MzkzMjJlMzAyZjMyMzMyZDMyMzQyMDNkM2UyMDM0MzczNTM4MzMucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAHBqMAwDQYJKoZIhvcNAQELBQADggEBAIW7xm3mSeujSeBveRiR6RK82GsmYljT 1exh+1Gbh3Xpu32h3thR2OBfX8Y2IO9mCA6Hk9uMqFlYpf3cHdL2K5H+ifuEI6i/ FJPgPauBoGQrnINWg6vPAR5m3As5tYAjGjJyiuPz4tYB+Y3Ki8VzHxohyAX5CA5x WF4JHCstI4vyks4JhgQM91BPbjspZ1h1SImSwzJC1eerNROmUbx7VYz0r6X7fAuU CKc9Cki7Jl8Iqa4rKt2V2QnYrQ4ZPCz0hjGNbo+UsUmesX/H/DMn8HCgn2VfzWBF JAT8JscOxSt0vMh6UwjPUvj0qea5H8FE0xI1BzCMG4E00ahPxo2/vKQ= -----END CERTIFICATE-----Generated at Mon Jan 19 20:02:38 2026 by rpki-client