This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3139342e3135362e3133372e302f32342d3234203d3e20313336373837.roa File: 3139342e3135362e3133372e302f32342d3234203d3e20313336373837.roa (raw, json) Hash identifier: /Dvz30UhRNyCBd3R44F7PFi4JkrAJi0ioXjtV3pPBF0= Subject key identifier: 98:A5:C0:FC:55:C4:85:69:B3:AF:FA:38:10:B3:EC:46:71:FA:32:D1 Certificate issuer: /CN=088469d1a33085ff88b3e599d223ca74c2313a3a Certificate serial: 18FA5D547DA774FC308B9CFE7D77C82C2E52A06B Authority key identifier: 08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3139342e3135362e3133372e302f32342d3234203d3e20313336373837.roa Signing time: Sat 03 Jan 2026 22:51:12 +0000 ROA not before: Sat 03 Jan 2026 22:46:12 +0000 ROA not after: Sat 02 Jan 2027 22:51:12 +0000 asID: 136787 IP address blocks: 194.156.137.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.mft rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 16:55:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:fa:5d:54:7d:a7:74:fc:30:8b:9c:fe:7d:77:c8:2c:2e:52:a0:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=088469d1a33085ff88b3e599d223ca74c2313a3a Validity Not Before: Jan 3 22:46:12 2026 GMT Not After : Jan 2 22:51:12 2027 GMT Subject: CN=98A5C0FC55C48569B3AFFA3810B3EC4671FA32D1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:66:5f:bd:e2:6b:5b:d9:b3:6c:0d:a5:f4:95: f3:b5:68:eb:c4:2e:24:00:9a:65:59:1c:6a:8e:b7: 57:8a:ee:ef:a2:f8:df:84:e5:23:47:ef:15:00:e2: 63:67:0c:03:08:03:fa:8f:96:e2:b3:5c:cc:db:b0: d3:ff:9a:47:a3:2b:04:03:a4:cf:d6:11:0c:d5:37: d3:8c:05:9b:bb:4e:82:92:2b:d7:1a:ee:a8:49:77: 6a:da:ef:86:26:7f:56:45:f8:90:6d:1a:ae:e6:08: ee:3c:7a:1a:d7:cd:2f:80:7b:e9:89:54:ee:e8:ac: fb:e1:c3:97:03:bc:ed:9d:90:30:d4:6e:6d:45:e8: 93:0e:30:c6:2e:17:c6:0e:67:d4:48:3c:fc:3a:88: 8b:a5:d3:e3:a4:1e:8f:e8:50:4a:57:be:e4:84:08: e7:b8:6f:4c:52:2b:4f:bf:fd:bc:87:7e:ac:ba:7e: df:69:3f:be:77:59:56:93:1c:70:53:45:3d:78:18: d8:7b:8d:aa:cf:45:87:94:84:87:38:8c:ab:fc:06: 10:3b:0f:c7:89:cf:02:3d:ee:41:91:65:fe:ea:29: 33:0b:98:98:eb:9b:6f:74:7b:9e:50:94:fc:21:94: 4f:6a:e7:13:bb:59:94:c1:f7:0f:6e:3c:f9:47:d2: 8c:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:A5:C0:FC:55:C4:85:69:B3:AF:FA:38:10:B3:EC:46:71:FA:32:D1 X509v3 Authority Key Identifier: keyid:08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3139342e3135362e3133372e302f32342d3234203d3e20313336373837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.156.137.0/24 Signature Algorithm: sha256WithRSAEncryption 9e:13:5d:fd:3b:2d:6e:35:d6:62:70:8e:d2:1c:6f:96:5e:41: a7:77:56:4d:26:27:39:ca:80:3a:4c:a5:f6:6e:5e:00:e3:f1: 0a:3c:0f:28:fb:bf:96:fb:0a:a7:3f:a1:78:ef:80:0c:7f:28: cc:3d:a2:68:b1:cf:3f:59:9b:a3:1d:8c:69:2b:88:9d:48:f3: 74:a6:b7:53:69:58:70:9b:ca:4c:06:bd:24:72:49:0e:2b:24: 29:cb:a9:b5:12:8f:9e:9e:2c:f5:2a:ec:f1:c1:4e:1a:d3:3e: 40:40:86:e0:44:56:dd:a5:07:a4:3e:6e:8d:c2:5d:a3:07:49: 83:9f:21:fb:97:4c:e9:57:2d:5e:14:f2:19:b7:f0:dc:76:79: d6:78:07:b9:64:67:9b:cf:08:2f:0e:ae:72:2b:60:f0:51:af: 0b:37:fa:ea:f7:9a:97:87:77:bb:19:c8:57:16:cc:7e:c1:88: 0b:67:ae:d4:e5:10:09:b9:5a:96:38:be:29:b0:50:29:d1:28: ba:ff:e5:9e:23:f8:f7:a2:29:1b:ae:9e:fc:38:e7:d9:96:6b: b9:1f:cc:b6:4a:8d:91:01:3f:8c:50:60:c8:6f:c7:06:e9:c9: 6a:6f:63:3b:62:aa:c0:26:7d:1d:00:a1:a7:c8:96:6d:64:ed: a7:b1:a4:26 -----BEGIN CERTIFICATE----- MIIFNzCCBB+gAwIBAgIUGPpdVH2ndPwwi5z+fXfILC5SoGswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDg4NDY5ZDFhMzMwODVmZjg4YjNlNTk5ZDIyM2NhNzRj MjMxM2EzYTAeFw0yNjAxMDMyMjQ2MTJaFw0yNzAxMDIyMjUxMTJaMDMxMTAvBgNV BAMTKDk4QTVDMEZDNTVDNDg1NjlCM0FGRkEzODEwQjNFQzQ2NzFGQTMyRDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD0Zl+94mtb2bNsDaX0lfO1aOvE LiQAmmVZHGqOt1eK7u+i+N+E5SNH7xUA4mNnDAMIA/qPluKzXMzbsNP/mkejKwQD pM/WEQzVN9OMBZu7ToKSK9ca7qhJd2ra74Ymf1ZF+JBtGq7mCO48ehrXzS+Ae+mJ VO7orPvhw5cDvO2dkDDUbm1F6JMOMMYuF8YOZ9RIPPw6iIul0+OkHo/oUEpXvuSE COe4b0xSK0+//byHfqy6ft9pP753WVaTHHBTRT14GNh7jarPRYeUhIc4jKv8BhA7 D8eJzwI97kGRZf7qKTMLmJjrm290e55QlPwhlE9q5xO7WZTB9w9uPPlH0oxRAgMB AAGjggJBMIICPTAdBgNVHQ4EFgQUmKXA/FXEhWmzr/o4ELPsRnH6MtEwHwYDVR0j BBgwFoAUCIRp0aMwhf+Is+WZ0iPKdMIxOjowDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzUvMDg4NDY5RDFBMzMwODVGRjg4QjNFNTk5RDIyM0NBNzRDMjMxM0EzQS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0NJUnAwYU13aGYtSXMtV1owaVBLZE1J eE9qby5jZXIwgbEGCCsGAQUFBwELBIGkMIGhMIGeBggrBgEFBQcwC4aBkXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzUvMzEzOTM0MmUzMTM1MzYyZTMx MzMzNzJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzMzNjM3MzgzNy5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAMKciTANBgkqhkiG9w0BAQsFAAOCAQEAnhNd/TstbjXWYnCO0hxvll5Bp3dW TSYnOcqAOkyl9m5eAOPxCjwPKPu/lvsKpz+heO+ADH8ozD2iaLHPP1mbox2MaSuI nUjzdKa3U2lYcJvKTAa9JHJJDiskKcuptRKPnp4s9Srs8cFOGtM+QECG4ERW3aUH pD5ujcJdowdJg58h+5dM6VctXhTyGbfw3HZ51ngHuWRnm88ILw6ucitg8FGvCzf6 6veal4d3uxnIVxbMfsGIC2eu1OUQCblalji+KbBQKdEouv/lniP496IpG66e/Djn 2ZZruR/MtkqNkQE/jFBgyG/HBunJam9jO2KqwCZ9HQChp8iWbWTtp7GkJg== -----END CERTIFICATE-----Generated at Mon Jan 19 20:02:30 2026 by rpki-client