This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/322e35382e33322e302f32322d3234203d3e20323033303631.roa File: 322e35382e33322e302f32322d3234203d3e20323033303631.roa (raw, json) Hash identifier: jMixhtrlLW0Hl0iD+U5kn30RIJyRhNvXxLFtPtVaXhI= Subject key identifier: 7E:B2:83:13:7A:29:DF:F5:99:27:E3:62:ED:76:FA:08:23:E0:B7:30 Certificate issuer: /CN=088469d1a33085ff88b3e599d223ca74c2313a3a Certificate serial: 7516279F3EE4DEBA579F6E1309A8199F6790D2A0 Authority key identifier: 08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/322e35382e33322e302f32322d3234203d3e20323033303631.roa Signing time: Mon 29 Dec 2025 09:50:28 +0000 ROA not before: Mon 29 Dec 2025 09:45:28 +0000 ROA not after: Mon 28 Dec 2026 09:50:28 +0000 asID: 203061 IP address blocks: 2.58.32.0/22 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.mft rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 16:55:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:16:27:9f:3e:e4:de:ba:57:9f:6e:13:09:a8:19:9f:67:90:d2:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=088469d1a33085ff88b3e599d223ca74c2313a3a Validity Not Before: Dec 29 09:45:28 2025 GMT Not After : Dec 28 09:50:28 2026 GMT Subject: CN=7EB283137A29DFF59927E362ED76FA0823E0B730 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:75:62:86:00:d8:ee:65:d7:a5:91:5d:32:07: d4:5a:88:44:c3:30:0c:39:2f:0b:f4:50:cd:81:e4: 92:a1:4d:fa:06:98:8d:c6:23:ad:c8:62:1f:c7:16: 57:16:ac:17:50:31:cc:cf:14:c7:01:e6:04:8a:35: 72:d2:7a:d5:98:14:a5:6e:a5:5a:7d:25:1d:18:6c: e7:e9:cf:e8:89:8b:d8:76:ca:ba:3e:8e:13:42:7b: f8:ac:56:3f:b3:e8:f7:8e:be:d4:f0:e0:22:6d:61: 59:20:f6:31:4b:33:20:7d:68:63:e3:27:bd:40:14: 4f:81:cc:da:b3:55:ba:12:7c:48:c3:fb:8e:58:fc: 66:f9:63:15:1e:e4:cc:74:55:f6:50:82:82:e3:00: f2:07:49:59:50:9e:09:60:55:95:a2:97:9f:e8:50: 71:87:01:7f:77:fa:72:2b:1a:bc:f3:1a:58:fa:4c: e6:06:e7:eb:53:8a:8c:a9:53:e2:31:71:97:97:77: c1:1d:e0:b7:e3:17:53:76:d2:94:68:29:12:96:b1: c6:77:c2:f9:a1:4b:ed:1e:50:03:a9:40:e0:31:fe: ff:fd:e2:79:a9:53:08:3a:cd:07:d2:35:df:06:d8: 68:bd:a3:65:ff:03:78:83:78:bd:f0:16:3a:74:ce: 5d:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:B2:83:13:7A:29:DF:F5:99:27:E3:62:ED:76:FA:08:23:E0:B7:30 X509v3 Authority Key Identifier: keyid:08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/322e35382e33322e302f32322d3234203d3e20323033303631.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 2.58.32.0/22 Signature Algorithm: sha256WithRSAEncryption 83:38:49:79:87:ed:03:a8:7a:81:f3:bc:56:78:34:06:86:b5: 38:86:c1:a8:89:6f:0d:9a:f7:5d:0f:df:23:ae:28:df:63:28: 4c:d7:1a:06:54:76:1a:e0:35:91:fa:32:99:fa:82:bb:d3:d6: 29:27:26:f3:0c:c2:56:2a:75:e6:28:7a:e0:6c:a1:08:61:85: b1:1a:0f:a6:40:0d:7b:b3:5b:19:40:0b:e0:bd:1a:2e:7e:2e: 88:4e:19:5e:82:86:4a:a6:77:be:2c:a7:b4:f2:e1:a8:90:bd: ce:18:dd:4e:83:7b:e4:b7:e0:8d:14:a7:39:41:58:d9:db:c1: bc:9c:fb:4d:3f:0c:6c:87:3f:d1:29:16:54:4c:88:4c:1f:28: bc:2b:1c:6c:df:c1:31:99:47:de:70:78:8b:ae:45:01:b7:10: 01:d7:d9:87:25:5f:51:d6:45:2a:aa:2c:78:8f:dd:10:be:07: 0d:4b:c6:67:26:75:56:b0:87:3d:71:55:ed:03:5d:d6:82:d7: 27:59:19:66:d0:da:e8:8f:52:ed:74:77:71:3a:67:3f:06:b9: 29:25:a2:b5:c1:83:dc:b0:4c:22:71:ac:2c:f2:cb:8b:32:55: 66:8f:ec:67:07:f2:9a:dd:0d:80:ab:e7:46:9f:7a:e5:24:42: 23:ad:b5:46 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUdRYnnz7k3rpXn24TCagZn2eQ0qAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDg4NDY5ZDFhMzMwODVmZjg4YjNlNTk5ZDIyM2NhNzRj MjMxM2EzYTAeFw0yNTEyMjkwOTQ1MjhaFw0yNjEyMjgwOTUwMjhaMDMxMTAvBgNV BAMTKDdFQjI4MzEzN0EyOURGRjU5OTI3RTM2MkVENzZGQTA4MjNFMEI3MzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDbdWKGANjuZdelkV0yB9RaiETD MAw5Lwv0UM2B5JKhTfoGmI3GI63IYh/HFlcWrBdQMczPFMcB5gSKNXLSetWYFKVu pVp9JR0YbOfpz+iJi9h2yro+jhNCe/isVj+z6PeOvtTw4CJtYVkg9jFLMyB9aGPj J71AFE+BzNqzVboSfEjD+45Y/Gb5YxUe5Mx0VfZQgoLjAPIHSVlQnglgVZWil5/o UHGHAX93+nIrGrzzGlj6TOYG5+tTioypU+IxcZeXd8Ed4LfjF1N20pRoKRKWscZ3 wvmhS+0eUAOpQOAx/v/94nmpUwg6zQfSNd8G2Gi9o2X/A3iDeL3wFjp0zl1VAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUfrKDE3op3/WZJ+Ni7Xb6CCPgtzAwHwYDVR0j BBgwFoAUCIRp0aMwhf+Is+WZ0iPKdMIxOjowDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzUvMDg4NDY5RDFBMzMwODVGRjg4QjNFNTk5RDIyM0NBNzRDMjMxM0EzQS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0NJUnAwYU13aGYtSXMtV1owaVBLZE1J eE9qby5jZXIwgakGCCsGAQUFBwELBIGcMIGZMIGWBggrBgEFBQcwC4aBiXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzUvMzIyZTM1MzgyZTMzMzIyZTMw MmYzMjMyMmQzMjM0MjAzZDNlMjAzMjMwMzMzMDM2MzEucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAICOiAw DQYJKoZIhvcNAQELBQADggEBAIM4SXmH7QOoeoHzvFZ4NAaGtTiGwaiJbw2a910P 3yOuKN9jKEzXGgZUdhrgNZH6Mpn6grvT1iknJvMMwlYqdeYoeuBsoQhhhbEaD6ZA DXuzWxlAC+C9Gi5+LohOGV6Chkqmd74sp7Ty4aiQvc4Y3U6De+S34I0UpzlBWNnb wbyc+00/DGyHP9EpFlRMiEwfKLwrHGzfwTGZR95weIuuRQG3EAHX2YclX1HWRSqq LHiP3RC+Bw1LxmcmdVawhz1xVe0DXdaC1ydZGWbQ2uiPUu10d3E6Zz8GuSklorXB g9ywTCJxrCzyy4syVWaP7GcH8prdDYCr50afeuUkQiOttUY= -----END CERTIFICATE-----Generated at Mon Jan 19 20:01:58 2026 by rpki-client