This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3139342e3134362e31332e302f32342d3332203d3e203531313637.roa File: 3139342e3134362e31332e302f32342d3332203d3e203531313637.roa (raw, json) Hash identifier: D4m2ZPb7ZXpnF+5zOf7JsmsthPwuMqxikR4OLzf/QlQ= Subject key identifier: D0:64:C8:BE:F3:EF:AB:2D:5D:F0:F9:B3:18:FD:B7:55:33:AD:62:C8 Certificate issuer: /CN=088469d1a33085ff88b3e599d223ca74c2313a3a Certificate serial: 079EE8377130A907A66F2DAF356E676B355DA096 Authority key identifier: 08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3139342e3134362e31332e302f32342d3332203d3e203531313637.roa Signing time: Mon 29 Dec 2025 09:50:26 +0000 ROA not before: Mon 29 Dec 2025 09:45:26 +0000 ROA not after: Mon 28 Dec 2026 09:50:26 +0000 asID: 51167 IP address blocks: 194.146.13.0/24 maxlen: 32 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.mft rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 17:47:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:9e:e8:37:71:30:a9:07:a6:6f:2d:af:35:6e:67:6b:35:5d:a0:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=088469d1a33085ff88b3e599d223ca74c2313a3a Validity Not Before: Dec 29 09:45:26 2025 GMT Not After : Dec 28 09:50:26 2026 GMT Subject: CN=D064C8BEF3EFAB2D5DF0F9B318FDB75533AD62C8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:55:e7:27:61:0e:93:31:cc:96:8d:d5:8a:81: 98:10:c1:2a:a1:78:46:a6:c4:ce:ab:78:f2:23:50: 85:ec:43:e4:33:4e:ca:38:23:4e:d9:00:6a:38:e9: 0e:5c:b6:08:ba:59:8e:58:5c:d8:bf:33:2a:53:74: 0c:c0:0c:3c:ee:66:64:29:e5:e7:65:db:c2:e1:14: f1:7f:b7:5e:56:36:d8:68:e3:ae:35:cf:c2:7d:08: c9:d6:b8:11:6d:87:7a:64:75:b0:f2:19:b7:c9:3a: 08:cb:16:f1:6d:eb:7b:de:ed:a8:82:23:be:9e:ac: a3:89:8c:bc:cf:ca:a7:4d:f5:cc:9d:ae:d6:b8:82: bf:b3:1a:53:8f:2f:44:4a:40:2f:78:62:e0:4d:b7: 85:20:bb:96:25:a3:3e:41:8d:e0:92:79:9d:d8:b8: 46:88:51:79:77:7f:c3:bc:5c:8e:a0:ca:13:18:5d: 3d:2e:53:2d:b3:1a:04:71:bd:9a:4b:53:a0:ab:6b: 79:24:5f:c4:85:68:42:88:6e:72:c7:6d:fa:f2:6b: 1e:c5:85:3a:85:13:c1:82:37:68:a7:45:68:e6:3f: 75:60:b5:69:8a:b3:19:d6:0f:e2:c3:f4:0a:9e:2e: d4:4f:a2:63:6c:44:7d:dd:04:91:56:e3:a4:2e:a4: 5e:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:64:C8:BE:F3:EF:AB:2D:5D:F0:F9:B3:18:FD:B7:55:33:AD:62:C8 X509v3 Authority Key Identifier: keyid:08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3139342e3134362e31332e302f32342d3332203d3e203531313637.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.146.13.0/24 Signature Algorithm: sha256WithRSAEncryption 98:d9:08:db:d1:5c:22:3b:db:5e:b4:86:ce:18:cd:a7:3d:8a: ad:ba:94:e2:72:cc:97:4f:e2:90:99:1e:c5:78:0b:ef:d4:8c: 47:4f:17:1f:59:e9:b1:17:54:a9:7f:ad:f1:06:8c:7c:f7:b5: 15:2d:ab:c7:cd:61:e4:c8:8b:6f:0a:b2:24:dc:96:f3:a2:ac: 66:43:8a:94:b4:95:c7:21:86:bb:d0:c7:dc:af:f7:78:ed:8b: 07:a3:ec:d4:5f:4f:00:4e:e2:e5:f5:68:25:3e:f3:c5:96:08: 7c:ad:74:5b:93:43:50:ee:08:95:79:02:1d:b7:21:95:35:b2: 9e:17:98:04:e1:2d:21:f3:92:67:cb:f5:af:da:fe:16:5b:2c: 94:00:29:02:99:0f:b4:38:83:11:2a:d6:5b:7c:b5:51:68:38: 3c:50:65:a4:9f:d5:66:fc:c3:c4:9f:e6:20:6e:4e:88:0e:8e: 69:26:18:be:fe:69:65:99:f5:36:90:70:b4:2c:ae:dd:5d:1e: 2d:a8:81:b0:76:87:aa:d7:4b:ac:89:ec:1f:28:fd:9e:a4:26: 71:7b:7a:5f:27:7e:f6:99:57:39:c3:76:19:cf:b4:89:64:6a: 04:6f:e5:e1:7a:70:a4:5c:d0:4b:d6:52:6b:6c:ff:71:7d:2e: ef:6f:94:4b -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUB57oN3EwqQemby2vNW5nazVdoJYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDg4NDY5ZDFhMzMwODVmZjg4YjNlNTk5ZDIyM2NhNzRj MjMxM2EzYTAeFw0yNTEyMjkwOTQ1MjZaFw0yNjEyMjgwOTUwMjZaMDMxMTAvBgNV BAMTKEQwNjRDOEJFRjNFRkFCMkQ1REYwRjlCMzE4RkRCNzU1MzNBRDYyQzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtVecnYQ6TMcyWjdWKgZgQwSqh eEamxM6rePIjUIXsQ+QzTso4I07ZAGo46Q5ctgi6WY5YXNi/MypTdAzADDzuZmQp 5edl28LhFPF/t15WNtho4641z8J9CMnWuBFth3pkdbDyGbfJOgjLFvFt63ve7aiC I76erKOJjLzPyqdN9cydrta4gr+zGlOPL0RKQC94YuBNt4Ugu5Yloz5BjeCSeZ3Y uEaIUXl3f8O8XI6gyhMYXT0uUy2zGgRxvZpLU6Cra3kkX8SFaEKIbnLHbfryax7F hTqFE8GCN2inRWjmP3VgtWmKsxnWD+LD9AqeLtRPomNsRH3dBJFW46QupF7BAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU0GTIvvPvqy1d8PmzGP23VTOtYsgwHwYDVR0j BBgwFoAUCIRp0aMwhf+Is+WZ0iPKdMIxOjowDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzUvMDg4NDY5RDFBMzMwODVGRjg4QjNFNTk5RDIyM0NBNzRDMjMxM0EzQS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0NJUnAwYU13aGYtSXMtV1owaVBLZE1J eE9qby5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzUvMzEzOTM0MmUzMTM0MzYyZTMx MzMyZTMwMmYzMjM0MmQzMzMyMjAzZDNlMjAzNTMxMzEzNjM3LnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA wpINMA0GCSqGSIb3DQEBCwUAA4IBAQCY2Qjb0VwiO9tetIbOGM2nPYqtupTicsyX T+KQmR7FeAvv1IxHTxcfWemxF1Spf63xBox897UVLavHzWHkyItvCrIk3Jbzoqxm Q4qUtJXHIYa70Mfcr/d47YsHo+zUX08ATuLl9WglPvPFlgh8rXRbk0NQ7giVeQId tyGVNbKeF5gE4S0h85Jny/Wv2v4WWyyUACkCmQ+0OIMRKtZbfLVRaDg8UGWkn9Vm /MPEn+Ygbk6IDo5pJhi+/mllmfU2kHC0LK7dXR4tqIGwdoeq10usiewfKP2epCZx e3pfJ372mVc5w3YZz7SJZGoEb+XhenCkXNBL1lJrbP9xfS7vb5RL -----END CERTIFICATE-----Generated at Tue Feb 10 06:10:46 2026 by rpki-client