This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3139342e33312e3135312e302f32342d3234203d3e20313336373837.roa File: 3139342e33312e3135312e302f32342d3234203d3e20313336373837.roa (raw, json) Hash identifier: 4iaYmqNTIvhs+45vx7G6IuFDOn7cHo/+RAtIi0YEvls= Subject key identifier: 85:E4:60:41:F8:29:E8:94:0F:A6:E4:ED:DD:43:36:52:42:A3:42:ED Certificate issuer: /CN=088469d1a33085ff88b3e599d223ca74c2313a3a Certificate serial: 781CC88E84F5FB5964FD5A1C0B2AC6AD7304A98F Authority key identifier: 08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3139342e33312e3135312e302f32342d3234203d3e20313336373837.roa Signing time: Sat 03 Jan 2026 22:51:12 +0000 ROA not before: Sat 03 Jan 2026 22:46:12 +0000 ROA not after: Sat 02 Jan 2027 22:51:12 +0000 asID: 136787 IP address blocks: 194.31.151.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.mft rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 16:55:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:1c:c8:8e:84:f5:fb:59:64:fd:5a:1c:0b:2a:c6:ad:73:04:a9:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=088469d1a33085ff88b3e599d223ca74c2313a3a Validity Not Before: Jan 3 22:46:12 2026 GMT Not After : Jan 2 22:51:12 2027 GMT Subject: CN=85E46041F829E8940FA6E4EDDD43365242A342ED Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:49:00:72:92:6f:8f:20:59:62:6b:03:0c:c7: a7:66:29:6b:b4:71:d6:ea:66:16:74:9a:b3:dd:37: 2f:48:4f:58:8b:9a:a7:6f:16:4d:db:07:d2:89:35: 15:cc:1a:04:4f:af:c3:23:39:f7:97:af:d3:d3:18: ba:c3:f0:6e:0e:81:3f:eb:73:95:40:0b:4f:29:ea: d5:26:0e:20:db:37:d6:e3:9f:0b:06:b9:d8:c9:4f: e7:ce:24:f0:1d:fa:f6:41:18:07:9c:01:31:32:14: d0:1a:25:57:6b:54:66:9b:86:88:c7:a6:67:ed:84: c6:d5:e7:49:17:d3:69:a2:f0:14:86:39:f2:84:0e: 41:d6:95:8c:b0:e7:67:2b:98:8d:d1:90:d8:14:8b: 00:54:72:9c:d0:3f:98:0a:a4:7a:ba:ea:87:52:28: fa:ca:79:49:7b:fc:b8:a6:b2:68:a8:bd:a2:d5:9f: d3:5a:3b:21:d5:b8:1a:cd:e8:49:c9:49:bf:57:68: 84:83:9f:94:bc:ff:28:1d:60:ee:88:ce:82:1f:d8: c8:11:04:ea:9f:c2:6a:e6:10:49:45:71:31:f7:55: 28:89:73:36:7e:0b:73:17:96:94:b8:6b:00:12:88: 77:98:a8:f9:71:a8:d6:a9:7d:9b:96:4d:7a:ed:b5: 38:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:E4:60:41:F8:29:E8:94:0F:A6:E4:ED:DD:43:36:52:42:A3:42:ED X509v3 Authority Key Identifier: keyid:08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3139342e33312e3135312e302f32342d3234203d3e20313336373837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.31.151.0/24 Signature Algorithm: sha256WithRSAEncryption 9d:c5:eb:44:3d:c3:af:49:23:c0:8b:6f:aa:dd:7c:23:ef:56: d4:0d:b9:e8:6c:5c:db:5a:96:61:ee:33:44:23:c1:46:c0:3b: a3:c6:dc:62:ee:48:3d:44:ca:83:f1:f6:ae:73:ec:37:a2:ac: fe:26:49:ff:bd:11:26:1a:f4:5c:17:0e:4a:51:5d:d4:de:25: 5b:57:a7:72:67:42:4e:86:6b:4c:21:5f:75:97:3c:c7:51:ca: 21:e9:ca:4a:db:d3:85:1e:e5:06:c8:ce:b4:4d:08:06:69:92: 32:d7:3f:11:05:01:5d:2b:01:4b:70:a6:51:cd:ab:b6:5e:bb: 2f:48:a6:15:6f:3d:2a:88:c3:93:87:4e:0e:d5:f2:4b:e9:af: 0d:a5:7e:e5:90:97:68:f5:8d:32:99:54:0c:e5:a0:3b:2b:9c: fe:f6:f9:a6:7c:f8:9d:2f:6e:a9:36:70:85:92:af:07:c9:1f: 4e:c6:7b:f9:0a:78:4e:d8:14:46:98:aa:1f:e6:e0:8c:ad:26: 43:60:c4:fb:1a:6a:18:04:a1:f2:98:db:a1:20:b8:db:83:93: 4b:99:77:79:ec:dc:b4:5f:60:3c:89:8c:6b:00:7f:dc:58:2d: 77:76:4a:16:4b:d2:e8:44:3a:95:7b:f9:5c:ab:9d:90:e3:62: 6c:96:03:94 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUeBzIjoT1+1lk/VocCyrGrXMEqY8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDg4NDY5ZDFhMzMwODVmZjg4YjNlNTk5ZDIyM2NhNzRj MjMxM2EzYTAeFw0yNjAxMDMyMjQ2MTJaFw0yNzAxMDIyMjUxMTJaMDMxMTAvBgNV BAMTKDg1RTQ2MDQxRjgyOUU4OTQwRkE2RTRFRERENDMzNjUyNDJBMzQyRUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCgSQBykm+PIFliawMMx6dmKWu0 cdbqZhZ0mrPdNy9IT1iLmqdvFk3bB9KJNRXMGgRPr8MjOfeXr9PTGLrD8G4OgT/r c5VAC08p6tUmDiDbN9bjnwsGudjJT+fOJPAd+vZBGAecATEyFNAaJVdrVGabhojH pmfthMbV50kX02mi8BSGOfKEDkHWlYyw52crmI3RkNgUiwBUcpzQP5gKpHq66odS KPrKeUl7/LimsmiovaLVn9NaOyHVuBrN6EnJSb9XaISDn5S8/ygdYO6IzoIf2MgR BOqfwmrmEElFcTH3VSiJczZ+C3MXlpS4awASiHeYqPlxqNapfZuWTXrttTixAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUheRgQfgp6JQPpuTt3UM2UkKjQu0wHwYDVR0j BBgwFoAUCIRp0aMwhf+Is+WZ0iPKdMIxOjowDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzUvMDg4NDY5RDFBMzMwODVGRjg4QjNFNTk5RDIyM0NBNzRDMjMxM0EzQS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0NJUnAwYU13aGYtSXMtV1owaVBLZE1J eE9qby5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzUvMzEzOTM0MmUzMzMxMmUzMTM1 MzEyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMTMzMzYzNzM4Mzcucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BADCH5cwDQYJKoZIhvcNAQELBQADggEBAJ3F60Q9w69JI8CLb6rdfCPvVtQNuehs XNtalmHuM0QjwUbAO6PG3GLuSD1EyoPx9q5z7DeirP4mSf+9ESYa9FwXDkpRXdTe JVtXp3JnQk6Ga0whX3WXPMdRyiHpykrb04Ue5QbIzrRNCAZpkjLXPxEFAV0rAUtw plHNq7Zeuy9IphVvPSqIw5OHTg7V8kvprw2lfuWQl2j1jTKZVAzloDsrnP72+aZ8 +J0vbqk2cIWSrwfJH07Ge/kKeE7YFEaYqh/m4IytJkNgxPsaahgEofKY26EguNuD k0uZd3ns3LRfYDyJjGsAf9xYLXd2ShZL0uhEOpV7+VyrnZDjYmyWA5Q= -----END CERTIFICATE-----Generated at Mon Jan 19 20:02:38 2026 by rpki-client