This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3139342e3134362e31322e302f32342d3332203d3e203531313637.roa File: 3139342e3134362e31322e302f32342d3332203d3e203531313637.roa (raw, json) Hash identifier: 2l7oKaroQlsLdSSy9FqI+ySkmKLezzsQAmussEnL2c8= Subject key identifier: 34:14:99:32:25:81:AE:C0:0A:E4:BC:F5:88:96:D9:23:CE:48:38:DA Certificate issuer: /CN=088469d1a33085ff88b3e599d223ca74c2313a3a Certificate serial: 03F509F01936C7900EBBB6745EA1EE6755ABEEEE Authority key identifier: 08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3139342e3134362e31322e302f32342d3332203d3e203531313637.roa Signing time: Mon 29 Dec 2025 09:50:24 +0000 ROA not before: Mon 29 Dec 2025 09:45:24 +0000 ROA not after: Mon 28 Dec 2026 09:50:24 +0000 asID: 51167 IP address blocks: 194.146.12.0/24 maxlen: 32 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.mft rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 17:47:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:f5:09:f0:19:36:c7:90:0e:bb:b6:74:5e:a1:ee:67:55:ab:ee:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=088469d1a33085ff88b3e599d223ca74c2313a3a Validity Not Before: Dec 29 09:45:24 2025 GMT Not After : Dec 28 09:50:24 2026 GMT Subject: CN=341499322581AEC00AE4BCF58896D923CE4838DA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:d2:f9:06:79:14:e2:f5:05:57:7b:e0:13:bd: 66:d0:3a:e1:41:df:8f:8f:d4:c1:09:6c:63:5b:2d: 76:a8:9f:88:63:fd:0c:0f:90:7d:f8:12:3b:be:1d: 23:9a:9d:dd:1e:50:35:0d:32:ce:aa:7a:90:1c:88: 35:2f:93:00:e8:30:a8:d3:12:9c:b2:e7:f8:e6:5b: f3:7b:4c:9c:e7:65:a1:c3:5d:de:b9:48:b6:30:ca: 27:17:93:ad:95:8c:32:0b:3f:8c:34:a8:bd:5e:95: dc:26:db:00:77:c6:c0:bc:74:6b:fe:7d:53:f4:2d: e4:88:86:78:76:e3:a3:10:aa:02:89:d6:44:05:08: 7c:02:c9:fa:81:4f:1f:ef:2d:f3:42:b9:76:59:70: 38:d4:21:2b:97:8e:60:73:b1:a3:4d:23:ad:30:27: 7c:70:2e:12:64:05:1e:4d:98:83:41:8f:a9:dc:6d: 80:c4:a4:56:0f:26:2b:ea:78:91:71:d4:b6:f4:10: cd:e4:f9:2d:38:34:e1:7b:71:42:f8:ca:52:8f:56: 0f:cf:f3:f0:dd:b8:63:8f:87:66:ec:e5:fa:e2:fb: 2e:51:f2:af:2c:7c:2c:53:a3:71:6b:4e:09:13:72: 55:90:b1:d8:05:eb:63:82:6d:b4:49:c7:68:70:fb: 61:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:14:99:32:25:81:AE:C0:0A:E4:BC:F5:88:96:D9:23:CE:48:38:DA X509v3 Authority Key Identifier: keyid:08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3139342e3134362e31322e302f32342d3332203d3e203531313637.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.146.12.0/24 Signature Algorithm: sha256WithRSAEncryption 24:73:f8:8f:02:69:7b:0e:ef:58:e9:64:2d:83:4f:eb:f7:6d: 6d:8a:a9:20:91:64:12:c7:7a:89:13:87:4e:29:0d:1f:b8:f0: 1a:80:1e:f3:56:c9:c5:bc:58:f8:f6:43:bf:ad:b5:c9:26:ab: 6e:57:9f:48:e2:c7:bc:b6:87:54:3d:9a:8f:b3:0e:b9:91:46: eb:66:e0:b2:79:ab:4d:d9:4f:13:9d:bf:f9:7d:33:f4:b0:54: d9:00:92:4d:14:5a:03:43:e3:ff:f8:cb:ed:09:58:ec:a6:9e: 37:39:0f:34:f3:dc:dd:d5:ee:50:b8:3f:a0:5c:30:ca:34:7e: dc:f4:16:c8:f8:34:42:38:af:c6:f4:1b:cd:33:63:dc:17:a1: dd:db:fe:b4:10:a5:00:c4:4c:59:5d:0a:33:56:9b:8c:84:08: ad:3b:94:dc:d6:0e:d1:4f:77:67:71:0d:11:57:f1:b9:8e:08: 50:de:a9:0f:56:4f:b5:bc:b0:ac:03:18:38:2b:fb:43:b3:0a: 8e:ae:82:f3:4d:d0:94:8d:87:6e:59:cd:3a:e0:8f:32:ab:04: f6:f3:81:49:c0:05:21:4b:b5:a2:fd:d3:b9:6d:cb:31:d1:95: 91:c3:25:12:74:32:7f:ee:93:ea:a8:a7:a5:4d:4e:15:87:1a: 03:fb:b0:61 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUA/UJ8Bk2x5AOu7Z0XqHuZ1Wr7u4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDg4NDY5ZDFhMzMwODVmZjg4YjNlNTk5ZDIyM2NhNzRj MjMxM2EzYTAeFw0yNTEyMjkwOTQ1MjRaFw0yNjEyMjgwOTUwMjRaMDMxMTAvBgNV BAMTKDM0MTQ5OTMyMjU4MUFFQzAwQUU0QkNGNTg4OTZEOTIzQ0U0ODM4REEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCX0vkGeRTi9QVXe+ATvWbQOuFB 34+P1MEJbGNbLXaon4hj/QwPkH34Eju+HSOand0eUDUNMs6qepAciDUvkwDoMKjT Epyy5/jmW/N7TJznZaHDXd65SLYwyicXk62VjDILP4w0qL1eldwm2wB3xsC8dGv+ fVP0LeSIhnh246MQqgKJ1kQFCHwCyfqBTx/vLfNCuXZZcDjUISuXjmBzsaNNI60w J3xwLhJkBR5NmINBj6ncbYDEpFYPJivqeJFx1Lb0EM3k+S04NOF7cUL4ylKPVg/P 8/DduGOPh2bs5fri+y5R8q8sfCxTo3FrTgkTclWQsdgF62OCbbRJx2hw+2EHAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUNBSZMiWBrsAK5Lz1iJbZI85IONowHwYDVR0j BBgwFoAUCIRp0aMwhf+Is+WZ0iPKdMIxOjowDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzUvMDg4NDY5RDFBMzMwODVGRjg4QjNFNTk5RDIyM0NBNzRDMjMxM0EzQS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0NJUnAwYU13aGYtSXMtV1owaVBLZE1J eE9qby5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzUvMzEzOTM0MmUzMTM0MzYyZTMx MzIyZTMwMmYzMjM0MmQzMzMyMjAzZDNlMjAzNTMxMzEzNjM3LnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA wpIMMA0GCSqGSIb3DQEBCwUAA4IBAQAkc/iPAml7Du9Y6WQtg0/r921tiqkgkWQS x3qJE4dOKQ0fuPAagB7zVsnFvFj49kO/rbXJJqtuV59I4se8todUPZqPsw65kUbr ZuCyeatN2U8Tnb/5fTP0sFTZAJJNFFoDQ+P/+MvtCVjspp43OQ8089zd1e5QuD+g XDDKNH7c9BbI+DRCOK/G9BvNM2PcF6Hd2/60EKUAxExZXQozVpuMhAitO5Tc1g7R T3dncQ0RV/G5jghQ3qkPVk+1vLCsAxg4K/tDswqOroLzTdCUjYduWc064I8yqwT2 84FJwAUhS7Wi/dO5bcsx0ZWRwyUSdDJ/7pPqqKelTU4VhxoD+7Bh -----END CERTIFICATE-----Generated at Tue Feb 10 06:10:43 2026 by rpki-client