This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3139342e33312e35322e302f32342d3234203d3e203437353833.roa File: 3139342e33312e35322e302f32342d3234203d3e203437353833.roa (raw, json) Hash identifier: ArOZDS2+qwkjWAAj0WvvJQm0n9YJuEA1AAsuW3r9ypQ= Subject key identifier: 09:2E:F4:89:01:AE:CD:7E:26:04:6D:97:E6:96:6E:B2:FF:41:7E:ED Certificate issuer: /CN=088469d1a33085ff88b3e599d223ca74c2313a3a Certificate serial: 3BC5AC288553D22BF02383B7CF33F0CF879AA591 Authority key identifier: 08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3139342e33312e35322e302f32342d3234203d3e203437353833.roa Signing time: Mon 01 Dec 2025 15:50:05 +0000 ROA not before: Mon 01 Dec 2025 15:45:05 +0000 ROA not after: Mon 30 Nov 2026 15:50:05 +0000 asID: 47583 IP address blocks: 194.31.52.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.mft rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 05:02:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:c5:ac:28:85:53:d2:2b:f0:23:83:b7:cf:33:f0:cf:87:9a:a5:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=088469d1a33085ff88b3e599d223ca74c2313a3a Validity Not Before: Dec 1 15:45:05 2025 GMT Not After : Nov 30 15:50:05 2026 GMT Subject: CN=092EF48901AECD7E26046D97E6966EB2FF417EED Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:22:6f:74:63:4d:65:3d:98:e7:37:8d:65:9d: af:84:3e:2c:4e:1b:02:5c:3d:7d:59:88:bb:6f:69: 7e:03:e3:ac:3d:d5:0c:35:ae:7c:da:25:67:a0:e8: f2:82:73:85:5c:e7:f3:a8:6e:3b:7d:b6:8d:1d:fa: e4:48:c9:42:08:fa:6e:45:c8:26:9d:6b:c8:12:b3: e3:60:fc:c2:2d:d1:29:e8:65:d8:9d:4e:fb:d6:a1: db:26:78:b6:f9:cc:3e:35:93:b9:b3:46:0e:7c:33: 02:fa:25:d2:dd:9e:fe:64:30:5b:f8:41:17:c5:3e: da:bf:e7:2a:a2:6d:23:f9:67:43:7c:1a:ca:b5:de: 25:9c:85:73:19:06:6f:cc:06:e9:4a:22:76:3a:1b: 9c:7c:f1:91:6c:59:75:1c:02:d3:0e:fb:d9:ac:1a: dd:ab:30:e7:05:a7:a9:5f:19:68:8b:32:ee:05:c7: 4b:96:a4:3f:23:32:fc:d9:c7:d5:e4:60:a6:ea:e9: 1c:df:44:3c:a5:04:0e:12:ec:dd:2f:2c:be:e3:94: 16:c1:e4:12:bb:9e:12:6a:66:a3:61:be:28:6c:10: d5:2d:d0:ca:59:f6:8f:b5:4f:ef:90:88:d7:93:71: e7:0e:5a:74:64:73:ea:67:ea:1a:48:dd:f2:17:8a: c0:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:2E:F4:89:01:AE:CD:7E:26:04:6D:97:E6:96:6E:B2:FF:41:7E:ED X509v3 Authority Key Identifier: keyid:08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3139342e33312e35322e302f32342d3234203d3e203437353833.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.31.52.0/24 Signature Algorithm: sha256WithRSAEncryption 8e:37:07:10:d5:6e:ec:6e:3a:75:ce:af:22:92:10:27:f3:69: d8:67:64:64:f6:fb:05:d5:4d:e3:1d:f8:75:1e:8c:e3:eb:ee: d4:9f:4d:a9:bd:4c:1f:bd:4a:58:74:a0:d2:e3:b8:b8:a1:71: 9a:f3:b3:86:f5:f7:0a:59:fe:a3:b1:06:b3:de:1d:61:68:a9: fd:b2:3d:61:68:54:e6:4b:bf:7c:80:08:75:88:07:da:a2:34: ae:e1:a9:b0:0d:9f:f4:c1:74:42:4a:8f:9d:ef:9a:fe:46:ce: 75:e5:38:43:2f:8e:ff:63:45:4b:f9:02:73:90:22:e3:fb:56: be:07:07:a9:fb:cf:91:4a:42:f5:d6:48:4c:1e:b2:0b:e0:3a: 26:57:30:65:38:5a:4e:68:68:95:5b:0c:ee:8d:8e:0f:5a:0c: 13:de:39:b0:7a:91:61:a0:47:c9:d9:79:90:44:65:c9:19:41: db:40:7f:1a:6a:da:0c:67:9b:da:20:91:72:bd:02:46:96:a4: 98:6a:23:cd:25:87:8d:f3:7f:23:03:2f:27:86:0b:88:9c:db: bd:ef:1c:ab:16:3b:48:de:14:f8:e8:7f:18:c4:9b:7b:ce:3b: d4:de:5d:7f:d5:90:31:c1:0b:0b:eb:f5:79:18:da:1d:9a:86: 16:0e:1d:b1 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUO8WsKIVT0ivwI4O3zzPwz4eapZEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDg4NDY5ZDFhMzMwODVmZjg4YjNlNTk5ZDIyM2NhNzRj MjMxM2EzYTAeFw0yNTEyMDExNTQ1MDVaFw0yNjExMzAxNTUwMDVaMDMxMTAvBgNV BAMTKDA5MkVGNDg5MDFBRUNEN0UyNjA0NkQ5N0U2OTY2RUIyRkY0MTdFRUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDbIm90Y01lPZjnN41lna+EPixO GwJcPX1ZiLtvaX4D46w91Qw1rnzaJWeg6PKCc4Vc5/Oobjt9to0d+uRIyUII+m5F yCada8gSs+Ng/MIt0SnoZdidTvvWodsmeLb5zD41k7mzRg58MwL6JdLdnv5kMFv4 QRfFPtq/5yqibSP5Z0N8Gsq13iWchXMZBm/MBulKInY6G5x88ZFsWXUcAtMO+9ms Gt2rMOcFp6lfGWiLMu4Fx0uWpD8jMvzZx9XkYKbq6RzfRDylBA4S7N0vLL7jlBbB 5BK7nhJqZqNhvihsENUt0MpZ9o+1T++QiNeTcecOWnRkc+pn6hpI3fIXisAXAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUCS70iQGuzX4mBG2X5pZusv9Bfu0wHwYDVR0j BBgwFoAUCIRp0aMwhf+Is+WZ0iPKdMIxOjowDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzUvMDg4NDY5RDFBMzMwODVGRjg4QjNFNTk5RDIyM0NBNzRDMjMxM0EzQS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0NJUnAwYU13aGYtSXMtV1owaVBLZE1J eE9qby5jZXIwgasGCCsGAQUFBwELBIGeMIGbMIGYBggrBgEFBQcwC4aBi3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzUvMzEzOTM0MmUzMzMxMmUzNTMy MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzQzNzM1MzgzMy5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMIf NDANBgkqhkiG9w0BAQsFAAOCAQEAjjcHENVu7G46dc6vIpIQJ/Np2GdkZPb7BdVN 4x34dR6M4+vu1J9Nqb1MH71KWHSg0uO4uKFxmvOzhvX3Cln+o7EGs94dYWip/bI9 YWhU5ku/fIAIdYgH2qI0ruGpsA2f9MF0QkqPne+a/kbOdeU4Qy+O/2NFS/kCc5Ai 4/tWvgcHqfvPkUpC9dZITB6yC+A6JlcwZThaTmholVsM7o2OD1oME945sHqRYaBH ydl5kERlyRlB20B/GmraDGeb2iCRcr0CRpakmGojzSWHjfN/IwMvJ4YLiJzbve8c qxY7SN4U+Oh/GMSbe8471N5df9WQMcELC+v1eRjaHZqGFg4dsQ== -----END CERTIFICATE-----Generated at Fri Dec 5 13:08:15 2025 by rpki-client