This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3139342e352e3135392e302f32342d3234203d3e203437353833.roa File: 3139342e352e3135392e302f32342d3234203d3e203437353833.roa (raw, json) Hash identifier: 4uSGdcS/+U57R1p4pnS7+P1BX7qTwpIbS10iBoZu3po= Subject key identifier: 40:85:70:72:27:B8:13:1F:D0:B9:43:43:25:FB:66:26:6D:16:C8:65 Certificate issuer: /CN=088469d1a33085ff88b3e599d223ca74c2313a3a Certificate serial: 4CC7734BE1C078F064DBB872DFCA782DE73D15B9 Authority key identifier: 08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3139342e352e3135392e302f32342d3234203d3e203437353833.roa Signing time: Mon 29 Dec 2025 09:50:24 +0000 ROA not before: Mon 29 Dec 2025 09:45:24 +0000 ROA not after: Mon 28 Dec 2026 09:50:24 +0000 asID: 47583 IP address blocks: 194.5.159.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.mft rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 16:55:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:c7:73:4b:e1:c0:78:f0:64:db:b8:72:df:ca:78:2d:e7:3d:15:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=088469d1a33085ff88b3e599d223ca74c2313a3a Validity Not Before: Dec 29 09:45:24 2025 GMT Not After : Dec 28 09:50:24 2026 GMT Subject: CN=4085707227B8131FD0B9434325FB66266D16C865 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:d6:8a:2a:68:7a:98:0a:f2:c2:8f:58:7b:a2: c2:a8:c8:60:50:58:ac:f0:2c:34:22:9a:a3:13:78: 56:ad:90:82:67:03:b7:26:1e:35:d4:4b:e4:a5:65: ae:a4:ac:d7:d4:e9:3a:0e:b2:d5:3d:0b:94:bd:b2: b8:39:c5:1f:21:ad:49:7e:7f:7e:fc:fa:15:ac:74: f2:ea:71:c4:7c:7f:c0:3d:1a:e0:b1:38:d4:ca:4c: 2f:f7:d5:44:c7:ca:e3:b9:59:c6:c4:12:71:4d:79: da:0e:73:bf:c2:29:b4:cc:2c:50:88:70:44:37:fd: 7b:08:3e:2d:47:b5:21:f8:93:95:6b:c6:83:0a:f9: 93:0e:a1:af:e0:45:91:a8:81:83:e8:6d:98:62:b2: f8:42:cc:98:47:5e:26:4c:8b:cc:f2:5b:32:cf:1c: 5a:65:aa:80:62:12:98:de:02:0c:f5:9b:4d:84:16: a6:d9:35:10:42:ad:db:3c:25:86:b4:f0:d4:ce:3c: 2e:53:64:e5:90:5d:b3:dd:fe:92:c7:fb:0a:00:d9: 9c:25:67:a6:d0:0b:a6:94:1b:79:98:5e:91:47:79: 1b:ff:c9:8a:08:76:a2:12:f6:70:d5:8b:3e:97:b4: 40:9e:89:42:85:d9:5b:e3:6f:f8:80:af:e9:f9:92: f5:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:85:70:72:27:B8:13:1F:D0:B9:43:43:25:FB:66:26:6D:16:C8:65 X509v3 Authority Key Identifier: keyid:08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3139342e352e3135392e302f32342d3234203d3e203437353833.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.5.159.0/24 Signature Algorithm: sha256WithRSAEncryption 8e:28:c6:fe:37:14:da:b5:5a:c5:da:05:00:9d:df:87:76:d1: 43:48:15:26:b6:57:f3:95:55:88:63:9a:1e:d6:98:52:82:98: 46:ff:b0:3c:1b:1a:61:ec:9c:cb:36:2f:1d:27:61:42:85:d9: 01:3d:0f:19:95:ca:e1:ff:b1:0d:d8:81:2e:69:da:a5:c0:e2: ff:db:11:a1:6a:bf:01:1a:3a:c9:b7:57:28:d6:91:2a:6e:fc: b8:7a:ae:a2:e9:48:d6:2c:9e:7b:98:2e:a6:7d:fa:a6:17:f1: b0:16:ef:b6:b7:73:85:13:e3:78:29:46:64:2f:cd:a0:14:3f: 1b:21:a2:f0:95:98:95:33:a8:4f:ca:a7:22:ec:8b:98:fa:aa: 70:6c:95:c5:0e:17:8d:40:68:eb:29:45:6f:b6:5b:b4:26:ec: f0:2f:b3:b9:c0:e3:a9:d8:7f:6d:bf:a3:1a:89:a8:ea:55:98: fa:c5:59:d2:46:3c:e3:be:96:12:c3:79:cd:69:dc:29:15:08: e7:92:d2:02:b3:8f:d7:bf:d0:88:0d:dc:c8:3a:b9:9c:f4:37: f7:b6:95:be:58:c0:41:ff:52:69:60:8e:bc:7b:89:fe:7f:f8: 41:00:1b:bc:d2:54:c5:c3:c4:5c:c9:dc:6e:ad:49:a6:2d:47: 1d:e1:ee:92 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUTMdzS+HAePBk27hy38p4Lec9FbkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDg4NDY5ZDFhMzMwODVmZjg4YjNlNTk5ZDIyM2NhNzRj MjMxM2EzYTAeFw0yNTEyMjkwOTQ1MjRaFw0yNjEyMjgwOTUwMjRaMDMxMTAvBgNV BAMTKDQwODU3MDcyMjdCODEzMUZEMEI5NDM0MzI1RkI2NjI2NkQxNkM4NjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDk1ooqaHqYCvLCj1h7osKoyGBQ WKzwLDQimqMTeFatkIJnA7cmHjXUS+SlZa6krNfU6ToOstU9C5S9srg5xR8hrUl+ f378+hWsdPLqccR8f8A9GuCxONTKTC/31UTHyuO5WcbEEnFNedoOc7/CKbTMLFCI cEQ3/XsIPi1HtSH4k5VrxoMK+ZMOoa/gRZGogYPobZhisvhCzJhHXiZMi8zyWzLP HFplqoBiEpjeAgz1m02EFqbZNRBCrds8JYa08NTOPC5TZOWQXbPd/pLH+woA2Zwl Z6bQC6aUG3mYXpFHeRv/yYoIdqIS9nDViz6XtECeiUKF2Vvjb/iAr+n5kvWVAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUQIVwcie4Ex/QuUNDJftmJm0WyGUwHwYDVR0j BBgwFoAUCIRp0aMwhf+Is+WZ0iPKdMIxOjowDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzUvMDg4NDY5RDFBMzMwODVGRjg4QjNFNTk5RDIyM0NBNzRDMjMxM0EzQS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0NJUnAwYU13aGYtSXMtV1owaVBLZE1J eE9qby5jZXIwgasGCCsGAQUFBwELBIGeMIGbMIGYBggrBgEFBQcwC4aBi3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzUvMzEzOTM0MmUzNTJlMzEzNTM5 MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzQzNzM1MzgzMy5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMIF nzANBgkqhkiG9w0BAQsFAAOCAQEAjijG/jcU2rVaxdoFAJ3fh3bRQ0gVJrZX85VV iGOaHtaYUoKYRv+wPBsaYeycyzYvHSdhQoXZAT0PGZXK4f+xDdiBLmnapcDi/9sR oWq/ARo6ybdXKNaRKm78uHquoulI1iyee5gupn36phfxsBbvtrdzhRPjeClGZC/N oBQ/GyGi8JWYlTOoT8qnIuyLmPqqcGyVxQ4XjUBo6ylFb7ZbtCbs8C+zucDjqdh/ bb+jGomo6lWY+sVZ0kY8476WEsN5zWncKRUI55LSArOP17/QiA3cyDq5nPQ397aV vljAQf9SaWCOvHuJ/n/4QQAbvNJUxcPEXMncbq1Jpi1HHeHukg== -----END CERTIFICATE-----Generated at Mon Jan 19 20:02:26 2026 by rpki-client