This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3139342e352e3135362e302f32342d3234203d3e203437353833.roa File: 3139342e352e3135362e302f32342d3234203d3e203437353833.roa (raw, json) Hash identifier: blfXaTk8k9uSNTVJ15tVyReYNDM+DTrnaBedKRj/ya4= Subject key identifier: EB:C2:DB:7E:D2:9B:81:D9:B4:5C:20:92:99:DA:E6:45:39:36:22:90 Certificate issuer: /CN=088469d1a33085ff88b3e599d223ca74c2313a3a Certificate serial: 503D935B599F5D0B9EC773B20F06ACEDD7533C5D Authority key identifier: 08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3139342e352e3135362e302f32342d3234203d3e203437353833.roa Signing time: Mon 29 Dec 2025 09:50:27 +0000 ROA not before: Mon 29 Dec 2025 09:45:27 +0000 ROA not after: Mon 28 Dec 2026 09:50:27 +0000 asID: 47583 IP address blocks: 194.5.156.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.mft rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 16:55:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:3d:93:5b:59:9f:5d:0b:9e:c7:73:b2:0f:06:ac:ed:d7:53:3c:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=088469d1a33085ff88b3e599d223ca74c2313a3a Validity Not Before: Dec 29 09:45:27 2025 GMT Not After : Dec 28 09:50:27 2026 GMT Subject: CN=EBC2DB7ED29B81D9B45C209299DAE64539362290 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:ef:94:66:d4:29:f0:bb:80:e4:22:78:0b:25: 7c:8a:c4:dd:25:cf:a8:73:59:30:32:24:31:ab:71: 89:be:55:b0:e3:df:9b:3b:9e:6b:cf:02:63:51:f4: 19:22:44:1a:b1:ae:9d:46:f6:0a:33:4b:bb:ad:44: 4f:91:c4:24:58:9d:91:60:71:33:df:98:94:2f:5c: 92:6a:47:c3:14:72:65:d7:a5:59:3c:36:82:d4:f8: b2:f0:fd:4c:ce:d3:d8:9a:71:3d:40:6f:83:3f:17: bd:ee:4f:d4:0f:3f:f0:c9:63:8a:c7:b6:29:fb:71: 95:41:41:6b:e5:ce:5c:d1:4f:06:3c:72:6c:69:ed: 37:74:08:ae:d0:2e:82:71:65:bc:15:64:19:e3:a5: 29:46:0e:cc:d5:e3:0a:64:86:34:54:a4:c0:3b:58: 59:cf:68:36:00:65:ef:d9:32:34:87:7f:b0:e6:e0: 0e:0e:34:21:ff:9e:9e:f5:21:a3:74:7a:26:9d:3c: 0c:6f:71:ce:42:fe:a4:54:81:8b:0e:3d:46:ba:f3: 78:01:2d:26:ae:ea:b2:fd:88:12:9b:05:7e:a0:4a: e1:e3:a3:e5:99:42:12:e1:ce:8c:dc:eb:b4:e6:a1: fc:08:90:fc:bd:c8:21:01:62:da:28:cc:fc:2e:ad: 45:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:C2:DB:7E:D2:9B:81:D9:B4:5C:20:92:99:DA:E6:45:39:36:22:90 X509v3 Authority Key Identifier: keyid:08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3139342e352e3135362e302f32342d3234203d3e203437353833.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.5.156.0/24 Signature Algorithm: sha256WithRSAEncryption 69:b5:62:09:8b:02:a9:a7:3c:12:21:46:41:28:75:93:9c:55: 1f:e0:71:fa:6b:dd:d4:87:6a:49:2e:64:ce:88:37:94:d5:d2: 3d:bb:63:48:df:f5:f4:e3:c6:b0:ec:82:2f:91:6f:72:25:41: 30:97:92:42:17:4d:63:7e:95:f5:ab:eb:d8:30:99:45:36:8a: 40:6b:02:2b:31:3d:63:9f:cd:e6:f2:e2:95:56:03:b0:b9:dc: ad:08:66:4b:1b:68:f3:56:ac:18:df:33:ef:cf:1d:a1:8c:f1: ae:d4:57:71:36:20:99:55:e2:d6:c4:80:2a:b0:05:1b:1c:c4: 76:00:19:97:9f:96:0b:3d:62:f7:3c:2f:f7:2b:a2:8b:99:40: d5:c3:bf:8d:e6:36:40:d6:c4:5f:0b:b6:a5:10:fa:bf:4b:14: 8b:f4:06:f3:2c:54:e2:a9:c9:67:54:5b:6b:d1:8c:a3:81:cf: e3:b7:27:36:5d:bc:d1:82:9d:dc:41:6c:c0:13:c4:26:4d:4e: e2:9a:f9:e0:a4:17:a4:e8:08:79:03:f4:d3:cb:42:f5:cd:7e: a7:a6:3d:f7:b3:5d:e1:73:79:b5:47:56:5e:4a:20:38:d8:bb: bb:8e:95:c1:f3:c0:69:a4:f5:28:87:9d:94:68:18:28:fb:f6: c5:fe:3b:68 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUUD2TW1mfXQuex3OyDwas7ddTPF0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDg4NDY5ZDFhMzMwODVmZjg4YjNlNTk5ZDIyM2NhNzRj MjMxM2EzYTAeFw0yNTEyMjkwOTQ1MjdaFw0yNjEyMjgwOTUwMjdaMDMxMTAvBgNV BAMTKEVCQzJEQjdFRDI5QjgxRDlCNDVDMjA5Mjk5REFFNjQ1MzkzNjIyOTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDP75Rm1Cnwu4DkIngLJXyKxN0l z6hzWTAyJDGrcYm+VbDj35s7nmvPAmNR9BkiRBqxrp1G9gozS7utRE+RxCRYnZFg cTPfmJQvXJJqR8MUcmXXpVk8NoLU+LLw/UzO09iacT1Ab4M/F73uT9QPP/DJY4rH tin7cZVBQWvlzlzRTwY8cmxp7Td0CK7QLoJxZbwVZBnjpSlGDszV4wpkhjRUpMA7 WFnPaDYAZe/ZMjSHf7Dm4A4ONCH/np71IaN0eiadPAxvcc5C/qRUgYsOPUa683gB LSau6rL9iBKbBX6gSuHjo+WZQhLhzozc67TmofwIkPy9yCEBYtoozPwurUXJAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQU68LbftKbgdm0XCCSmdrmRTk2IpAwHwYDVR0j BBgwFoAUCIRp0aMwhf+Is+WZ0iPKdMIxOjowDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzUvMDg4NDY5RDFBMzMwODVGRjg4QjNFNTk5RDIyM0NBNzRDMjMxM0EzQS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0NJUnAwYU13aGYtSXMtV1owaVBLZE1J eE9qby5jZXIwgasGCCsGAQUFBwELBIGeMIGbMIGYBggrBgEFBQcwC4aBi3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzUvMzEzOTM0MmUzNTJlMzEzNTM2 MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzQzNzM1MzgzMy5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMIF nDANBgkqhkiG9w0BAQsFAAOCAQEAabViCYsCqac8EiFGQSh1k5xVH+Bx+mvd1Idq SS5kzog3lNXSPbtjSN/19OPGsOyCL5FvciVBMJeSQhdNY36V9avr2DCZRTaKQGsC KzE9Y5/N5vLilVYDsLncrQhmSxto81asGN8z788doYzxrtRXcTYgmVXi1sSAKrAF GxzEdgAZl5+WCz1i9zwv9yuii5lA1cO/jeY2QNbEXwu2pRD6v0sUi/QG8yxU4qnJ Z1Rba9GMo4HP47cnNl280YKd3EFswBPEJk1O4pr54KQXpOgIeQP008tC9c1+p6Y9 97Nd4XN5tUdWXkogONi7u46VwfPAaaT1KIedlGgYKPv2xf47aA== -----END CERTIFICATE-----Generated at Mon Jan 19 20:01:53 2026 by rpki-client