This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3139342e352e3135372e302f32342d3234203d3e203437353833.roa File: 3139342e352e3135372e302f32342d3234203d3e203437353833.roa (raw, json) Hash identifier: m+WmfvTHURXw3yc/BDMexOxQhwAuUPCsYCUVr1ity7o= Subject key identifier: 6B:8F:84:D5:F1:E8:92:FD:C3:4A:A1:CC:09:9B:10:4A:F1:89:BB:E2 Certificate issuer: /CN=088469d1a33085ff88b3e599d223ca74c2313a3a Certificate serial: 1DF98A5EAD0F98B8727F59FBB53C2A45CD1DE052 Authority key identifier: 08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3139342e352e3135372e302f32342d3234203d3e203437353833.roa Signing time: Mon 29 Dec 2025 09:50:26 +0000 ROA not before: Mon 29 Dec 2025 09:45:26 +0000 ROA not after: Mon 28 Dec 2026 09:50:26 +0000 asID: 47583 IP address blocks: 194.5.157.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.mft rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 16:55:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:f9:8a:5e:ad:0f:98:b8:72:7f:59:fb:b5:3c:2a:45:cd:1d:e0:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=088469d1a33085ff88b3e599d223ca74c2313a3a Validity Not Before: Dec 29 09:45:26 2025 GMT Not After : Dec 28 09:50:26 2026 GMT Subject: CN=6B8F84D5F1E892FDC34AA1CC099B104AF189BBE2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:0e:04:d8:47:64:68:33:eb:52:ec:c1:16:82: d5:ba:50:6f:f5:36:70:d1:ba:5e:6c:cb:9f:33:2d: da:9d:7c:47:f5:99:ba:54:a8:a3:5d:3b:0c:d1:22: ed:82:38:78:1f:81:4b:1f:6d:1c:d0:1b:77:b6:e6: 2d:dc:5c:0c:ac:c4:e2:f9:ad:d4:b9:57:14:fc:12: b2:4a:13:85:bf:a0:2b:3d:84:f6:cf:b6:cf:8f:60: 5e:1c:b6:d6:70:3a:d0:b7:0a:82:a4:4d:68:8f:ff: f2:88:2e:07:0d:3f:98:5e:8c:3f:be:42:83:0d:f3: 2b:78:3b:1c:3f:81:39:b2:89:32:75:0e:77:6d:8d: 96:f6:44:be:4b:61:ad:f9:75:ea:5f:82:23:27:66: df:d8:9f:fe:13:6f:09:3d:4f:ef:74:12:ae:7c:40: 08:88:05:a7:0a:eb:ac:ff:0f:72:64:43:71:23:3a: ff:1b:50:f7:d0:67:b7:e8:26:47:b5:29:ce:a8:ad: 07:33:a9:8f:0f:59:2c:7c:ff:a4:e7:c0:64:df:7b: 7f:ef:86:f8:cb:42:0d:1f:49:a6:48:ee:33:1c:ae: 1a:25:04:9b:0d:df:b0:02:dc:18:e0:a4:d1:99:18: f0:e6:ba:f3:15:b3:db:a7:38:8a:12:72:d1:fd:c0: f3:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:8F:84:D5:F1:E8:92:FD:C3:4A:A1:CC:09:9B:10:4A:F1:89:BB:E2 X509v3 Authority Key Identifier: keyid:08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3139342e352e3135372e302f32342d3234203d3e203437353833.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.5.157.0/24 Signature Algorithm: sha256WithRSAEncryption 2f:2d:f6:73:b4:b5:ba:bd:5d:db:1e:7f:49:02:98:2c:9f:66: 32:59:35:d1:ca:4d:60:c6:fe:6b:ba:d1:70:62:d4:b4:22:6b: b2:d7:3b:ae:9a:f6:94:32:8a:5e:a8:8b:ec:e7:ad:1b:8a:6c: 21:c3:9a:9c:74:72:b8:84:1a:d6:62:0f:8b:8a:80:47:4f:bc: 2a:b4:5e:6c:11:fc:4f:b5:7b:6f:56:ab:4e:87:c1:73:84:40: 2b:a9:1c:a4:a7:fd:51:b7:69:b5:3e:5e:27:5f:9b:88:6b:f0: 74:61:2a:32:51:14:1b:16:c2:b8:9e:f4:32:1f:fe:2d:22:80: ec:16:e2:4d:41:a4:ec:b1:9e:76:2b:47:1e:00:32:85:66:d5: 08:9f:9a:e4:64:ca:9e:22:43:ae:2f:2e:42:de:f5:72:58:d5: 8e:91:a7:71:15:af:aa:89:88:96:cb:8c:ef:8b:c6:53:03:c7: 3f:d0:3c:ff:1d:99:cf:ba:72:68:d7:a2:36:0b:a9:bb:e9:6f: 16:5a:ad:75:f3:96:65:12:f6:85:15:1f:3d:ec:f6:28:78:c9: b0:d8:f4:be:86:0e:a7:ff:4d:dd:7e:e5:1f:74:c8:b5:df:98: 19:e1:35:4e:ce:83:b1:66:e1:e9:f5:ff:bc:d2:ca:06:ea:f7: e6:3f:c6:30 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUHfmKXq0PmLhyf1n7tTwqRc0d4FIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDg4NDY5ZDFhMzMwODVmZjg4YjNlNTk5ZDIyM2NhNzRj MjMxM2EzYTAeFw0yNTEyMjkwOTQ1MjZaFw0yNjEyMjgwOTUwMjZaMDMxMTAvBgNV BAMTKDZCOEY4NEQ1RjFFODkyRkRDMzRBQTFDQzA5OUIxMDRBRjE4OUJCRTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYDgTYR2RoM+tS7MEWgtW6UG/1 NnDRul5sy58zLdqdfEf1mbpUqKNdOwzRIu2COHgfgUsfbRzQG3e25i3cXAysxOL5 rdS5VxT8ErJKE4W/oCs9hPbPts+PYF4cttZwOtC3CoKkTWiP//KILgcNP5hejD++ QoMN8yt4Oxw/gTmyiTJ1DndtjZb2RL5LYa35depfgiMnZt/Yn/4Tbwk9T+90Eq58 QAiIBacK66z/D3JkQ3EjOv8bUPfQZ7foJke1Kc6orQczqY8PWSx8/6TnwGTfe3/v hvjLQg0fSaZI7jMcrholBJsN37AC3BjgpNGZGPDmuvMVs9unOIoSctH9wPOXAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUa4+E1fHokv3DSqHMCZsQSvGJu+IwHwYDVR0j BBgwFoAUCIRp0aMwhf+Is+WZ0iPKdMIxOjowDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzUvMDg4NDY5RDFBMzMwODVGRjg4QjNFNTk5RDIyM0NBNzRDMjMxM0EzQS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0NJUnAwYU13aGYtSXMtV1owaVBLZE1J eE9qby5jZXIwgasGCCsGAQUFBwELBIGeMIGbMIGYBggrBgEFBQcwC4aBi3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzUvMzEzOTM0MmUzNTJlMzEzNTM3 MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzQzNzM1MzgzMy5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMIF nTANBgkqhkiG9w0BAQsFAAOCAQEALy32c7S1ur1d2x5/SQKYLJ9mMlk10cpNYMb+ a7rRcGLUtCJrstc7rpr2lDKKXqiL7OetG4psIcOanHRyuIQa1mIPi4qAR0+8KrRe bBH8T7V7b1arTofBc4RAK6kcpKf9UbdptT5eJ1+biGvwdGEqMlEUGxbCuJ70Mh/+ LSKA7BbiTUGk7LGeditHHgAyhWbVCJ+a5GTKniJDri8uQt71cljVjpGncRWvqomI lsuM74vGUwPHP9A8/x2Zz7pyaNeiNgupu+lvFlqtdfOWZRL2hRUfPez2KHjJsNj0 voYOp/9N3X7lH3TItd+YGeE1Ts6DsWbh6fX/vNLKBur35j/GMA== -----END CERTIFICATE-----Generated at Mon Jan 19 20:01:55 2026 by rpki-client