This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3139332e32392e36312e302f32342d3234203d3e20313437303439.roa File: 3139332e32392e36312e302f32342d3234203d3e20313437303439.roa (raw, json) Hash identifier: Gwku5uEyieeyxpxlXnNFB5GGJ28dG15A9o5OHrcwxks= Subject key identifier: 82:77:42:57:66:65:CC:24:DE:CC:09:9F:27:26:DB:17:9D:C2:73:C5 Certificate issuer: /CN=088469d1a33085ff88b3e599d223ca74c2313a3a Certificate serial: 2947EA7B850546B6817D9FA53EC95EBA9ACE9C97 Authority key identifier: 08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3139332e32392e36312e302f32342d3234203d3e20313437303439.roa Signing time: Mon 29 Dec 2025 09:50:27 +0000 ROA not before: Mon 29 Dec 2025 09:45:27 +0000 ROA not after: Mon 28 Dec 2026 09:50:27 +0000 asID: 147049 IP address blocks: 193.29.61.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.mft rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 09:01:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:47:ea:7b:85:05:46:b6:81:7d:9f:a5:3e:c9:5e:ba:9a:ce:9c:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=088469d1a33085ff88b3e599d223ca74c2313a3a Validity Not Before: Dec 29 09:45:27 2025 GMT Not After : Dec 28 09:50:27 2026 GMT Subject: CN=827742576665CC24DECC099F2726DB179DC273C5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:37:2e:f0:04:8b:23:e8:7d:a3:6c:08:83:25: 8b:82:82:01:19:57:38:b4:23:dc:a4:b2:d2:a4:e3: eb:13:79:36:16:71:6f:f6:a1:bd:2f:70:16:bb:f2: ba:8d:53:36:0f:72:04:43:f6:8b:77:09:87:d9:56: 7e:59:32:aa:af:fe:9a:d2:1e:c3:b3:05:42:86:eb: a5:a2:6f:2a:85:8c:a8:c6:37:93:26:cb:23:73:21: 2c:9d:48:39:94:92:6d:20:de:67:12:8b:d4:89:58: cb:06:5f:27:db:7a:ec:3f:2b:e1:4f:e7:f9:2d:65: df:06:5a:c3:3c:0e:fc:2d:bd:c5:20:9d:f9:4e:1f: 44:73:15:26:52:07:d2:9b:ba:fe:cc:70:61:fb:50: 4d:47:12:a3:23:42:90:ad:74:f5:94:cc:69:eb:fc: 7e:59:37:89:4c:e2:25:a3:82:e0:99:e3:ea:07:b6: 54:50:c3:73:91:05:d6:19:a4:04:05:b0:a6:73:26: da:78:9a:65:24:b9:15:d4:8a:dc:67:ec:98:ae:02: e9:95:e8:d5:b7:bf:09:02:27:cd:ac:6a:b6:87:04: f9:20:4b:1c:b1:f7:5a:78:44:97:3b:cd:bc:8a:a5: b7:48:cd:59:bf:68:f4:52:f0:b0:b5:ac:95:24:16: 3d:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:77:42:57:66:65:CC:24:DE:CC:09:9F:27:26:DB:17:9D:C2:73:C5 X509v3 Authority Key Identifier: keyid:08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3139332e32392e36312e302f32342d3234203d3e20313437303439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.29.61.0/24 Signature Algorithm: sha256WithRSAEncryption 9b:71:bf:2e:6d:ec:5a:4d:53:da:09:88:34:3a:f7:d0:38:e4: 6e:28:e7:3b:da:ea:e1:e8:dc:4e:a1:e2:15:fb:7c:9e:58:05: 79:b7:cb:67:a6:c4:5b:d4:21:1c:6b:6f:91:c4:c5:3a:6a:7c: e6:8c:72:d4:02:15:9e:91:ec:a1:99:c3:59:bc:64:b6:9e:71: 19:69:44:f8:3e:f5:3c:6c:bd:2c:3d:0d:60:c8:13:92:f8:41: e0:74:90:9a:ff:3e:95:6c:71:a5:96:f3:2b:bd:3b:27:fb:4e: 59:bd:e0:f2:61:13:8f:4d:ff:1c:53:43:d6:27:88:89:ee:68: ef:6f:11:17:8b:a6:b2:e5:34:37:f5:0f:24:12:fb:f6:53:24: db:f6:ba:5e:4e:40:41:f0:80:80:ed:00:6a:7a:e0:26:ac:95: d2:99:6a:f0:19:3a:98:48:bb:20:05:76:bb:00:0c:5a:7d:3f: 01:49:5a:89:c8:37:8e:0e:74:81:e0:31:cd:2b:82:81:06:b1: 4a:a6:02:0b:6f:f2:b2:38:00:55:27:e4:06:1d:13:c7:cf:44: da:8c:fe:c9:84:9c:13:54:c1:a1:a3:45:52:36:e6:de:09:a8: 6f:e9:ba:a5:50:08:22:3a:24:e3:e7:27:8b:7d:07:0f:ea:5e: 9c:6c:c3:39 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUKUfqe4UFRraBfZ+lPsleuprOnJcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDg4NDY5ZDFhMzMwODVmZjg4YjNlNTk5ZDIyM2NhNzRj MjMxM2EzYTAeFw0yNTEyMjkwOTQ1MjdaFw0yNjEyMjgwOTUwMjdaMDMxMTAvBgNV BAMTKDgyNzc0MjU3NjY2NUNDMjRERUNDMDk5RjI3MjZEQjE3OURDMjczQzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRNy7wBIsj6H2jbAiDJYuCggEZ Vzi0I9ykstKk4+sTeTYWcW/2ob0vcBa78rqNUzYPcgRD9ot3CYfZVn5ZMqqv/prS HsOzBUKG66WibyqFjKjGN5MmyyNzISydSDmUkm0g3mcSi9SJWMsGXyfbeuw/K+FP 5/ktZd8GWsM8DvwtvcUgnflOH0RzFSZSB9Kbuv7McGH7UE1HEqMjQpCtdPWUzGnr /H5ZN4lM4iWjguCZ4+oHtlRQw3ORBdYZpAQFsKZzJtp4mmUkuRXUitxn7JiuAumV 6NW3vwkCJ82saraHBPkgSxyx91p4RJc7zbyKpbdIzVm/aPRS8LC1rJUkFj3rAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUgndCV2ZlzCTezAmfJybbF53Cc8UwHwYDVR0j BBgwFoAUCIRp0aMwhf+Is+WZ0iPKdMIxOjowDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzUvMDg4NDY5RDFBMzMwODVGRjg4QjNFNTk5RDIyM0NBNzRDMjMxM0EzQS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0NJUnAwYU13aGYtSXMtV1owaVBLZE1J eE9qby5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzUvMzEzOTMzMmUzMjM5MmUzNjMx MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzEzNDM3MzAzNDM5LnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA wR09MA0GCSqGSIb3DQEBCwUAA4IBAQCbcb8ubexaTVPaCYg0OvfQOORuKOc72urh 6NxOoeIV+3yeWAV5t8tnpsRb1CEca2+RxMU6anzmjHLUAhWekeyhmcNZvGS2nnEZ aUT4PvU8bL0sPQ1gyBOS+EHgdJCa/z6VbHGllvMrvTsn+05ZveDyYROPTf8cU0PW J4iJ7mjvbxEXi6ay5TQ39Q8kEvv2UyTb9rpeTkBB8ICA7QBqeuAmrJXSmWrwGTqY SLsgBXa7AAxafT8BSVqJyDeODnSB4DHNK4KBBrFKpgILb/KyOABVJ+QGHRPHz0Ta jP7JhJwTVMGho0VSNubeCahv6bqlUAgiOiTj5yeLfQcP6l6cbMM5 -----END CERTIFICATE-----Generated at Mon Jan 19 17:35:23 2026 by rpki-client