This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3139332e3136382e3139342e302f32332d3234203d3e203437353833.roa File: 3139332e3136382e3139342e302f32332d3234203d3e203437353833.roa (raw, json) Hash identifier: ZYbB/BN2LzHIhneKslQ0g3fLRCH5aoya3naMxKWf/kA= Subject key identifier: EB:2C:5A:CC:8F:5A:C4:FB:B4:99:D2:35:2F:7A:13:8B:A8:76:CF:8C Certificate issuer: /CN=088469d1a33085ff88b3e599d223ca74c2313a3a Certificate serial: 65BEAADA276791EC0743B5A4C300D6632AE28797 Authority key identifier: 08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3139332e3136382e3139342e302f32332d3234203d3e203437353833.roa Signing time: Mon 29 Dec 2025 09:50:24 +0000 ROA not before: Mon 29 Dec 2025 09:45:24 +0000 ROA not after: Mon 28 Dec 2026 09:50:24 +0000 asID: 47583 IP address blocks: 193.168.194.0/23 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.mft rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 16:55:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:be:aa:da:27:67:91:ec:07:43:b5:a4:c3:00:d6:63:2a:e2:87:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=088469d1a33085ff88b3e599d223ca74c2313a3a Validity Not Before: Dec 29 09:45:24 2025 GMT Not After : Dec 28 09:50:24 2026 GMT Subject: CN=EB2C5ACC8F5AC4FBB499D2352F7A138BA876CF8C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:c1:ea:05:35:66:f0:33:70:c8:6a:69:4c:8d: f5:20:7f:52:c2:3d:6c:02:27:99:f4:39:a8:4d:54: 04:16:b8:16:37:c8:fc:b3:df:a6:ef:ac:36:c1:dd: 61:e1:3c:d5:16:a8:a1:8c:1a:7f:98:18:b3:53:73: a3:42:2d:df:bb:96:cd:65:fc:3e:dd:8e:df:e0:d7: ac:a6:f0:18:51:24:0d:12:3b:01:14:cb:45:aa:80: 2d:9b:6f:2a:82:21:4b:2b:76:2d:5b:4b:f8:57:80: 75:db:2f:ea:6b:12:63:6b:50:8c:c3:79:f6:20:1a: c4:88:35:34:0e:dd:e9:63:bf:96:97:a9:25:4b:8e: 43:c4:6a:c0:a0:8f:3b:c8:68:a7:d4:bf:b7:ff:0c: a2:b5:02:05:3f:df:fa:c2:54:20:24:ee:65:6a:07: 4f:70:0f:a4:f4:60:d3:0c:80:e4:88:62:a5:bf:93: c7:f8:35:19:48:42:85:30:30:9d:08:1b:d8:3b:65: f1:a7:5d:cf:62:4c:ff:a6:8e:15:58:89:6a:23:cd: ba:c9:e5:ba:4c:a3:63:35:44:dd:17:6b:3b:cb:1c: f3:b2:d9:ff:6d:8a:12:6a:d0:59:f0:73:8c:04:b9: 0c:66:0e:45:8f:82:31:e9:34:56:5b:64:23:e9:b6: ff:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:2C:5A:CC:8F:5A:C4:FB:B4:99:D2:35:2F:7A:13:8B:A8:76:CF:8C X509v3 Authority Key Identifier: keyid:08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3139332e3136382e3139342e302f32332d3234203d3e203437353833.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.168.194.0/23 Signature Algorithm: sha256WithRSAEncryption b3:90:c0:71:2f:ae:b8:28:ac:cc:dd:6c:c7:a3:02:93:48:6b: d0:93:9b:48:b1:86:d5:86:95:36:9f:50:e3:67:58:0f:10:e4: d3:01:8f:1d:81:87:05:cf:58:82:93:44:53:60:2c:ff:db:4b: 4d:a9:6f:cc:11:ab:79:05:b2:73:cf:48:ea:15:32:24:32:60: 53:ad:2e:be:c6:ce:d7:3c:4b:4f:00:8e:5e:c3:46:63:10:6f: 6c:3d:a9:c1:23:db:ae:b0:8d:4c:94:7f:7c:a1:2e:b8:11:41: 22:d4:cc:1e:4c:79:b9:f1:9e:6b:da:79:76:25:69:20:f8:75: 66:3b:d4:58:a6:8d:4b:3d:71:8e:e1:88:76:a6:89:2b:c1:c0: 23:9e:9e:15:80:e5:6c:79:ce:49:2f:78:d6:76:6c:6a:9c:38: b6:bb:29:34:c1:ac:9e:3b:d3:97:54:bd:fb:22:8b:fe:30:bd: 8e:6e:98:e6:ea:8d:23:d3:7d:d7:71:60:af:a5:50:75:8d:76: 4c:7f:65:6f:54:72:c3:b4:06:fd:1f:f1:37:29:e1:30:56:34: a1:c7:da:52:b9:ff:57:b6:4e:66:49:9a:c2:31:ae:89:d6:0f: 17:28:88:41:28:45:7c:7c:96:b0:4a:19:cd:f6:1a:28:5b:14: a8:8d:28:95 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUZb6q2idnkewHQ7WkwwDWYyrih5cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDg4NDY5ZDFhMzMwODVmZjg4YjNlNTk5ZDIyM2NhNzRj MjMxM2EzYTAeFw0yNTEyMjkwOTQ1MjRaFw0yNjEyMjgwOTUwMjRaMDMxMTAvBgNV BAMTKEVCMkM1QUNDOEY1QUM0RkJCNDk5RDIzNTJGN0ExMzhCQTg3NkNGOEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8weoFNWbwM3DIamlMjfUgf1LC PWwCJ5n0OahNVAQWuBY3yPyz36bvrDbB3WHhPNUWqKGMGn+YGLNTc6NCLd+7ls1l /D7djt/g16ym8BhRJA0SOwEUy0WqgC2bbyqCIUsrdi1bS/hXgHXbL+prEmNrUIzD efYgGsSINTQO3eljv5aXqSVLjkPEasCgjzvIaKfUv7f/DKK1AgU/3/rCVCAk7mVq B09wD6T0YNMMgOSIYqW/k8f4NRlIQoUwMJ0IG9g7ZfGnXc9iTP+mjhVYiWojzbrJ 5bpMo2M1RN0XazvLHPOy2f9tihJq0Fnwc4wEuQxmDkWPgjHpNFZbZCPptv/hAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQU6yxazI9axPu0mdI1L3oTi6h2z4wwHwYDVR0j BBgwFoAUCIRp0aMwhf+Is+WZ0iPKdMIxOjowDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzUvMDg4NDY5RDFBMzMwODVGRjg4QjNFNTk5RDIyM0NBNzRDMjMxM0EzQS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0NJUnAwYU13aGYtSXMtV1owaVBLZE1J eE9qby5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzUvMzEzOTMzMmUzMTM2MzgyZTMx MzkzNDJlMzAyZjMyMzMyZDMyMzQyMDNkM2UyMDM0MzczNTM4MzMucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAHBqMIwDQYJKoZIhvcNAQELBQADggEBALOQwHEvrrgorMzdbMejApNIa9CTm0ix htWGlTafUONnWA8Q5NMBjx2BhwXPWIKTRFNgLP/bS02pb8wRq3kFsnPPSOoVMiQy YFOtLr7Gztc8S08Ajl7DRmMQb2w9qcEj266wjUyUf3yhLrgRQSLUzB5Mebnxnmva eXYlaSD4dWY71FimjUs9cY7hiHamiSvBwCOenhWA5Wx5zkkveNZ2bGqcOLa7KTTB rJ4705dUvfsii/4wvY5umObqjSPTfddxYK+lUHWNdkx/ZW9UcsO0Bv0f8Tcp4TBW NKHH2lK5/1e2TmZJmsIxronWDxcoiEEoRXx8lrBKGc32GihbFKiNKJU= -----END CERTIFICATE-----Generated at Mon Jan 19 20:02:33 2026 by rpki-client