This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3139332e34332e36382e302f32342d3234203d3e20323034313730.roa File: 3139332e34332e36382e302f32342d3234203d3e20323034313730.roa (raw, json) Hash identifier: kbwEz0Dy1Irjmu4ORkCnxw/CYv63u05dfekI9iAh82g= Subject key identifier: 9C:B0:55:01:13:BB:1D:BB:27:D5:F6:D7:D1:B9:98:1B:3F:EF:9B:1C Certificate issuer: /CN=088469d1a33085ff88b3e599d223ca74c2313a3a Certificate serial: 48467CD28656027856C8A07DB5D66514840F8F4D Authority key identifier: 08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3139332e34332e36382e302f32342d3234203d3e20323034313730.roa Signing time: Mon 29 Dec 2025 09:50:31 +0000 ROA not before: Mon 29 Dec 2025 09:45:31 +0000 ROA not after: Mon 28 Dec 2026 09:50:31 +0000 asID: 204170 IP address blocks: 193.43.68.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.mft rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 16:55:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:46:7c:d2:86:56:02:78:56:c8:a0:7d:b5:d6:65:14:84:0f:8f:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=088469d1a33085ff88b3e599d223ca74c2313a3a Validity Not Before: Dec 29 09:45:31 2025 GMT Not After : Dec 28 09:50:31 2026 GMT Subject: CN=9CB0550113BB1DBB27D5F6D7D1B9981B3FEF9B1C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:f7:1d:aa:af:5c:38:95:92:fd:1e:32:d1:4b: 7a:7d:8e:8b:ef:0a:6d:ef:b0:8c:ca:4d:8b:8b:75: 20:9c:9c:38:e2:23:20:43:7d:87:d3:d6:41:a6:58: 4a:4a:d0:96:bb:f2:cc:d0:c8:ad:6a:78:7a:77:d6: 96:93:54:f2:28:55:b3:ac:50:bf:d2:cf:4e:6b:98: 8c:e4:1b:e9:51:fe:41:1a:a6:e0:ec:36:cd:2d:66: 5b:94:0c:b2:db:e9:08:84:73:95:1a:a2:61:45:9c: 14:0e:46:17:f8:92:fd:5c:4c:9a:c4:96:6c:34:06: b0:77:c6:47:bd:50:29:6e:3b:0e:dd:7f:06:32:12: ee:96:51:7e:07:86:5c:2e:36:16:33:3d:14:4b:c0: 90:d4:2a:21:7a:24:07:6d:63:37:d6:c9:aa:99:4d: e3:a0:72:e2:16:ca:db:fc:98:96:b3:e9:88:d7:a3: 54:bb:58:7e:43:2c:a5:83:af:d5:f9:18:a8:41:f5: c5:71:34:aa:e5:e3:12:08:89:bd:97:55:58:6a:3c: 9b:46:04:23:47:66:e2:32:fd:ee:05:a1:4c:db:10: d8:e6:ca:4d:83:01:66:2a:c9:55:63:29:cf:93:76: f8:4b:51:4a:04:f9:2d:77:93:2d:ec:e4:ec:d9:58: b3:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:B0:55:01:13:BB:1D:BB:27:D5:F6:D7:D1:B9:98:1B:3F:EF:9B:1C X509v3 Authority Key Identifier: keyid:08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3139332e34332e36382e302f32342d3234203d3e20323034313730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.43.68.0/24 Signature Algorithm: sha256WithRSAEncryption 75:80:9a:30:3b:ea:5b:01:4b:d6:94:30:3b:91:1d:21:4e:15: 56:e8:a8:31:73:23:47:ff:35:d9:d3:18:b6:a0:7d:84:79:b1: 5f:1a:ed:1c:17:6f:17:4f:22:f8:82:30:98:b6:14:00:48:98: 0b:42:19:c9:10:79:64:a6:1a:08:da:d3:f1:69:c8:f4:53:33: 03:1d:13:5c:e3:8b:e5:2f:3e:8b:79:2f:d6:d6:ed:18:58:de: 0c:b7:fa:85:0a:a1:80:d6:68:35:8d:67:14:03:b8:6d:70:26: 72:7b:13:5b:02:b5:68:d9:42:72:64:61:48:cf:88:6a:51:58: 4a:53:67:75:f2:58:15:b4:2a:4f:41:ce:f6:7d:e8:7c:29:16: 81:5e:e9:01:ad:3d:4d:82:49:b7:0f:42:c4:8e:0d:b1:18:ff: 46:c3:01:6c:04:08:d1:26:73:87:de:b0:ad:21:19:a8:c7:15: e1:d6:52:f9:c9:44:88:6b:97:33:cf:e3:94:00:f8:59:0a:99: 82:04:25:2d:be:ff:9d:2d:a2:a2:85:85:d1:60:d8:08:be:dd: 3e:fc:8f:44:9f:14:38:1e:b1:98:f8:ef:d1:e5:e0:59:b4:0a: 0d:f0:ac:df:1e:19:f8:01:10:f6:59:c6:10:ff:9d:e6:40:8c: 2b:f3:f8:68 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUSEZ80oZWAnhWyKB9tdZlFIQPj00wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDg4NDY5ZDFhMzMwODVmZjg4YjNlNTk5ZDIyM2NhNzRj MjMxM2EzYTAeFw0yNTEyMjkwOTQ1MzFaFw0yNjEyMjgwOTUwMzFaMDMxMTAvBgNV BAMTKDlDQjA1NTAxMTNCQjFEQkIyN0Q1RjZEN0QxQjk5ODFCM0ZFRjlCMUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCb9x2qr1w4lZL9HjLRS3p9jovv Cm3vsIzKTYuLdSCcnDjiIyBDfYfT1kGmWEpK0Ja78szQyK1qeHp31paTVPIoVbOs UL/Sz05rmIzkG+lR/kEapuDsNs0tZluUDLLb6QiEc5UaomFFnBQORhf4kv1cTJrE lmw0BrB3xke9UCluOw7dfwYyEu6WUX4HhlwuNhYzPRRLwJDUKiF6JAdtYzfWyaqZ TeOgcuIWytv8mJaz6YjXo1S7WH5DLKWDr9X5GKhB9cVxNKrl4xIIib2XVVhqPJtG BCNHZuIy/e4FoUzbENjmyk2DAWYqyVVjKc+TdvhLUUoE+S13ky3s5OzZWLPzAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUnLBVARO7Hbsn1fbX0bmYGz/vmxwwHwYDVR0j BBgwFoAUCIRp0aMwhf+Is+WZ0iPKdMIxOjowDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzUvMDg4NDY5RDFBMzMwODVGRjg4QjNFNTk5RDIyM0NBNzRDMjMxM0EzQS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0NJUnAwYU13aGYtSXMtV1owaVBLZE1J eE9qby5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzUvMzEzOTMzMmUzNDMzMmUzNjM4 MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzIzMDM0MzEzNzMwLnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA wStEMA0GCSqGSIb3DQEBCwUAA4IBAQB1gJowO+pbAUvWlDA7kR0hThVW6KgxcyNH /zXZ0xi2oH2EebFfGu0cF28XTyL4gjCYthQASJgLQhnJEHlkphoI2tPxacj0UzMD HRNc44vlLz6LeS/W1u0YWN4Mt/qFCqGA1mg1jWcUA7htcCZyexNbArVo2UJyZGFI z4hqUVhKU2d18lgVtCpPQc72feh8KRaBXukBrT1Ngkm3D0LEjg2xGP9GwwFsBAjR JnOH3rCtIRmoxxXh1lL5yUSIa5czz+OUAPhZCpmCBCUtvv+dLaKihYXRYNgIvt0+ /I9EnxQ4HrGY+O/R5eBZtAoN8KzfHhn4ARD2WcYQ/53mQIwr8/ho -----END CERTIFICATE-----Generated at Mon Jan 19 20:02:26 2026 by rpki-client