This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3139342e3134362e31342e302f32342d3234203d3e20313431303339.roa File: 3139342e3134362e31342e302f32342d3234203d3e20313431303339.roa (raw, json) Hash identifier: RDOWGIrhm2PX/US78Tv+1/RYqKDXcCqY806ZU1MvuEo= Subject key identifier: 72:81:B0:A6:7F:B6:08:D5:EA:BC:59:0D:B4:79:24:4F:4C:F6:01:C4 Certificate issuer: /CN=088469d1a33085ff88b3e599d223ca74c2313a3a Certificate serial: 33C153E16A63FF575F2DA3A5F98B5D10A0BEECED Authority key identifier: 08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3139342e3134362e31342e302f32342d3234203d3e20313431303339.roa Signing time: Mon 29 Dec 2025 09:50:31 +0000 ROA not before: Mon 29 Dec 2025 09:45:31 +0000 ROA not after: Mon 28 Dec 2026 09:50:31 +0000 asID: 141039 IP address blocks: 194.146.14.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.mft rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 16:55:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:c1:53:e1:6a:63:ff:57:5f:2d:a3:a5:f9:8b:5d:10:a0:be:ec:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=088469d1a33085ff88b3e599d223ca74c2313a3a Validity Not Before: Dec 29 09:45:31 2025 GMT Not After : Dec 28 09:50:31 2026 GMT Subject: CN=7281B0A67FB608D5EABC590DB479244F4CF601C4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:61:61:d3:b6:c7:09:21:51:2f:db:30:b5:14: e8:8b:c3:8b:bf:3b:34:af:f0:6b:09:bf:b6:b0:e4: bd:d6:53:ad:6b:8c:5b:e3:f4:02:8d:b5:23:55:dc: 5c:5c:32:98:f1:d4:6e:5b:f3:15:6e:be:4b:a7:33: 42:c5:1d:e9:80:e6:a6:f3:d6:18:66:70:b0:bc:39: 1c:de:9a:a5:22:99:6a:07:dd:7f:11:e5:00:7e:d0: 21:80:8b:8f:15:e3:11:8a:c6:56:5b:50:cf:3c:e5: d7:bc:f8:60:ec:e5:d2:9f:b4:36:4e:5f:70:4f:51: 8b:19:4e:6a:8f:9f:8d:d0:d6:2e:ed:29:8e:29:b3: c3:45:d7:76:36:3c:d0:77:d5:db:73:b8:61:65:8b: 88:64:ed:0a:99:c7:07:03:4a:b0:6f:a4:19:01:af: f8:0a:70:34:3e:1f:46:1f:99:92:a3:ce:f5:84:01: a3:99:65:fc:3a:3a:e8:e5:e5:29:fb:0e:c7:fc:f1: a2:94:f8:c9:2a:f9:42:93:6f:31:d7:4f:88:46:9f: 05:9b:04:46:1c:56:62:26:67:7d:4a:2b:76:3e:3a: 0e:70:4d:6c:c6:7e:d6:a7:a5:06:fb:a8:2c:ba:f0: c2:e2:eb:c6:4e:87:db:df:ff:b8:25:35:3b:06:2c: 41:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:81:B0:A6:7F:B6:08:D5:EA:BC:59:0D:B4:79:24:4F:4C:F6:01:C4 X509v3 Authority Key Identifier: keyid:08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3139342e3134362e31342e302f32342d3234203d3e20313431303339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.146.14.0/24 Signature Algorithm: sha256WithRSAEncryption a6:5d:93:10:76:a9:1a:60:97:4b:00:5c:81:09:7b:48:13:fd: 76:80:fd:53:0c:69:10:85:2e:f7:c9:c2:a8:7f:fa:84:a8:17: 5a:20:ea:ce:16:6e:d7:74:1c:3a:6d:d9:47:4d:5b:24:ca:56: 2b:f2:99:29:d4:20:a6:77:bd:de:c8:35:a3:de:92:45:8e:bc: a1:fe:ef:94:82:00:a1:61:dd:9b:48:89:3b:26:58:96:7a:38: 22:18:77:e9:d8:12:30:f7:60:6f:1c:9a:85:4a:32:e0:f5:7b: b3:80:94:dc:e0:64:be:b7:d5:94:04:cb:2e:d0:b4:0a:66:bc: 92:5c:b6:32:30:c1:0f:61:81:e2:0d:75:03:c5:f3:e5:7a:1a: ac:de:56:f1:e4:f2:ac:3f:6a:f1:59:03:32:07:e2:a3:31:fc: 57:47:98:55:6a:33:5a:d8:c4:da:88:54:5d:d5:7b:cf:39:82: e5:13:9e:08:e2:5e:93:d2:f3:83:19:04:6f:bd:3b:5c:c5:ba: ea:b4:bf:26:b5:7a:3a:2d:8e:33:62:27:98:50:57:f7:5d:4c: 05:a3:21:e6:ec:c1:dd:bd:50:c9:e7:e0:98:87:a6:30:46:7d: 53:1d:06:9b:4b:bd:78:e4:6c:db:8b:f3:4c:07:c2:60:05:13: 6f:5b:73:bc -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUM8FT4Wpj/1dfLaOl+YtdEKC+7O0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDg4NDY5ZDFhMzMwODVmZjg4YjNlNTk5ZDIyM2NhNzRj MjMxM2EzYTAeFw0yNTEyMjkwOTQ1MzFaFw0yNjEyMjgwOTUwMzFaMDMxMTAvBgNV BAMTKDcyODFCMEE2N0ZCNjA4RDVFQUJDNTkwREI0NzkyNDRGNENGNjAxQzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDeYWHTtscJIVEv2zC1FOiLw4u/ OzSv8GsJv7aw5L3WU61rjFvj9AKNtSNV3FxcMpjx1G5b8xVuvkunM0LFHemA5qbz 1hhmcLC8ORzemqUimWoH3X8R5QB+0CGAi48V4xGKxlZbUM885de8+GDs5dKftDZO X3BPUYsZTmqPn43Q1i7tKY4ps8NF13Y2PNB31dtzuGFli4hk7QqZxwcDSrBvpBkB r/gKcDQ+H0YfmZKjzvWEAaOZZfw6Oujl5Sn7Dsf88aKU+Mkq+UKTbzHXT4hGnwWb BEYcVmImZ31KK3Y+Og5wTWzGftanpQb7qCy68MLi68ZOh9vf/7glNTsGLEF5AgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUcoGwpn+2CNXqvFkNtHkkT0z2AcQwHwYDVR0j BBgwFoAUCIRp0aMwhf+Is+WZ0iPKdMIxOjowDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzUvMDg4NDY5RDFBMzMwODVGRjg4QjNFNTk5RDIyM0NBNzRDMjMxM0EzQS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0NJUnAwYU13aGYtSXMtV1owaVBLZE1J eE9qby5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzUvMzEzOTM0MmUzMTM0MzYyZTMx MzQyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzMDMzMzkucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BADCkg4wDQYJKoZIhvcNAQELBQADggEBAKZdkxB2qRpgl0sAXIEJe0gT/XaA/VMM aRCFLvfJwqh/+oSoF1og6s4Wbtd0HDpt2UdNWyTKVivymSnUIKZ3vd7INaPekkWO vKH+75SCAKFh3ZtIiTsmWJZ6OCIYd+nYEjD3YG8cmoVKMuD1e7OAlNzgZL631ZQE yy7QtApmvJJctjIwwQ9hgeINdQPF8+V6GqzeVvHk8qw/avFZAzIH4qMx/FdHmFVq M1rYxNqIVF3Ve885guUTngjiXpPS84MZBG+9O1zFuuq0vya1ejotjjNiJ5hQV/dd TAWjIebswd29UMnn4JiHpjBGfVMdBptLvXjkbNuL80wHwmAFE29bc7w= -----END CERTIFICATE-----Generated at Mon Jan 19 20:01:55 2026 by rpki-client