This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3139342e3135362e3133362e302f32342d3234203d3e20313437303439.roa File: 3139342e3135362e3133362e302f32342d3234203d3e20313437303439.roa (raw, json) Hash identifier: FPr88RMcjBVPDOgug9c//kP8PLfKO1biGmhemOp5uOE= Subject key identifier: 0A:C2:3F:AD:5D:71:25:7A:F3:BA:78:44:F3:16:86:6B:DC:B3:00:90 Certificate issuer: /CN=088469d1a33085ff88b3e599d223ca74c2313a3a Certificate serial: 3310B55323F070BA3ABD43D267B895A02F72B49C Authority key identifier: 08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3139342e3135362e3133362e302f32342d3234203d3e20313437303439.roa Signing time: Mon 29 Dec 2025 09:50:30 +0000 ROA not before: Mon 29 Dec 2025 09:45:30 +0000 ROA not after: Mon 28 Dec 2026 09:50:30 +0000 asID: 147049 IP address blocks: 194.156.136.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.mft rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 09:01:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:10:b5:53:23:f0:70:ba:3a:bd:43:d2:67:b8:95:a0:2f:72:b4:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=088469d1a33085ff88b3e599d223ca74c2313a3a Validity Not Before: Dec 29 09:45:30 2025 GMT Not After : Dec 28 09:50:30 2026 GMT Subject: CN=0AC23FAD5D71257AF3BA7844F316866BDCB30090 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:c7:82:9f:1c:36:90:67:b3:d0:e6:61:7f:c3: 9b:d2:98:d1:d1:87:a0:8c:84:29:5b:87:8b:75:3f: 9b:8f:17:fb:a7:74:5b:36:ad:dc:84:a7:11:1f:8b: e1:03:dc:b1:4d:a2:86:e6:39:1a:91:6b:00:5b:30: c9:68:2b:4c:bd:d6:b0:7c:87:fd:e1:e4:38:72:87: ea:7e:af:94:ec:dc:07:8d:2f:6e:93:1a:83:8e:50: bf:99:44:75:9a:62:da:71:07:f0:6f:5b:06:92:8d: f9:91:99:5b:1f:7a:41:a2:64:28:36:96:ba:c9:f6: f3:cf:0c:0a:50:a2:40:15:a5:0b:2f:63:93:87:50: fe:fa:fa:6b:71:6c:59:7d:7a:32:b7:16:9f:c4:1b: 32:43:0b:2d:0d:97:a8:03:1a:eb:63:85:49:e8:d2: a1:2f:8e:23:54:ca:85:ea:91:7e:4e:94:00:fa:6a: 88:11:7d:b2:1f:6e:3d:61:69:86:c6:a4:2f:20:b6: 94:b3:5a:66:fa:d0:81:78:1e:ba:fa:70:19:d6:e9: ad:99:b9:a5:87:1c:42:29:db:c5:d8:1c:17:ef:77: ed:5f:cf:3e:cf:50:19:12:15:e0:c6:e0:ce:ce:f9: 5b:19:f5:1d:3e:91:cc:93:64:8c:1d:c7:42:e6:c4: df:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:C2:3F:AD:5D:71:25:7A:F3:BA:78:44:F3:16:86:6B:DC:B3:00:90 X509v3 Authority Key Identifier: keyid:08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3139342e3135362e3133362e302f32342d3234203d3e20313437303439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.156.136.0/24 Signature Algorithm: sha256WithRSAEncryption a7:3c:79:97:95:fe:58:7d:88:fb:10:f3:8d:1c:14:33:a1:2d: bd:04:c4:e4:eb:32:be:16:ec:01:15:b7:8b:c2:50:15:69:d0: 68:aa:c9:b1:fa:ae:14:e1:d0:5b:03:ea:02:96:2c:71:9b:eb: 28:43:46:b2:85:6a:e3:27:ed:56:7d:75:59:eb:3a:8b:1e:ad: 99:ad:aa:5b:18:e4:de:fe:c4:d3:f2:32:e7:a2:6d:35:ee:a8: d3:d2:13:3f:cc:82:ec:80:ad:94:2b:db:34:86:71:24:9a:e2: 61:30:8d:5b:2e:36:aa:bd:cd:4f:50:2a:68:7b:20:0c:ab:db: c5:af:39:8c:1d:73:ab:ac:15:6c:03:20:b3:77:92:a1:b1:13: 9c:03:d6:03:31:b6:7c:cd:1a:ae:2a:e4:75:34:83:a8:6b:d4: 68:e0:6f:e5:6a:0b:da:97:eb:bd:ca:8d:4b:19:21:27:fc:3a: 48:c4:ab:9d:2e:b3:1d:2c:05:9b:f9:c6:d9:af:a0:ee:63:84: 3d:b9:d3:71:1e:ba:7a:78:27:3e:f6:26:a8:c2:30:6c:71:63: 66:60:da:1a:f0:af:76:f7:03:bc:3a:21:c1:00:23:90:70:7e: ca:73:2f:9a:1b:62:43:d7:3d:27:f8:f6:9e:36:4e:c8:c4:65: dd:81:db:3d -----BEGIN CERTIFICATE----- MIIFNzCCBB+gAwIBAgIUMxC1UyPwcLo6vUPSZ7iVoC9ytJwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDg4NDY5ZDFhMzMwODVmZjg4YjNlNTk5ZDIyM2NhNzRj MjMxM2EzYTAeFw0yNTEyMjkwOTQ1MzBaFw0yNjEyMjgwOTUwMzBaMDMxMTAvBgNV BAMTKDBBQzIzRkFENUQ3MTI1N0FGM0JBNzg0NEYzMTY4NjZCRENCMzAwOTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDfx4KfHDaQZ7PQ5mF/w5vSmNHR h6CMhClbh4t1P5uPF/undFs2rdyEpxEfi+ED3LFNoobmORqRawBbMMloK0y91rB8 h/3h5Dhyh+p+r5Ts3AeNL26TGoOOUL+ZRHWaYtpxB/BvWwaSjfmRmVsfekGiZCg2 lrrJ9vPPDApQokAVpQsvY5OHUP76+mtxbFl9ejK3Fp/EGzJDCy0Nl6gDGutjhUno 0qEvjiNUyoXqkX5OlAD6aogRfbIfbj1haYbGpC8gtpSzWmb60IF4Hrr6cBnW6a2Z uaWHHEIp28XYHBfvd+1fzz7PUBkSFeDG4M7O+VsZ9R0+kcyTZIwdx0LmxN//AgMB AAGjggJBMIICPTAdBgNVHQ4EFgQUCsI/rV1xJXrzunhE8xaGa9yzAJAwHwYDVR0j BBgwFoAUCIRp0aMwhf+Is+WZ0iPKdMIxOjowDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzUvMDg4NDY5RDFBMzMwODVGRjg4QjNFNTk5RDIyM0NBNzRDMjMxM0EzQS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0NJUnAwYU13aGYtSXMtV1owaVBLZE1J eE9qby5jZXIwgbEGCCsGAQUFBwELBIGkMIGhMIGeBggrBgEFBQcwC4aBkXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzUvMzEzOTM0MmUzMTM1MzYyZTMx MzMzNjJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzQzNzMwMzQzOS5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAMKciDANBgkqhkiG9w0BAQsFAAOCAQEApzx5l5X+WH2I+xDzjRwUM6EtvQTE 5OsyvhbsARW3i8JQFWnQaKrJsfquFOHQWwPqApYscZvrKENGsoVq4yftVn11Wes6 ix6tma2qWxjk3v7E0/Iy56JtNe6o09ITP8yC7ICtlCvbNIZxJJriYTCNWy42qr3N T1AqaHsgDKvbxa85jB1zq6wVbAMgs3eSobETnAPWAzG2fM0arirkdTSDqGvUaOBv 5WoL2pfrvcqNSxkhJ/w6SMSrnS6zHSwFm/nG2a+g7mOEPbnTcR66engnPvYmqMIw bHFjZmDaGvCvdvcDvDohwQAjkHB+ynMvmhtiQ9c9J/j2njZOyMRl3YHbPQ== -----END CERTIFICATE-----Generated at Mon Jan 19 17:36:19 2026 by rpki-client