This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/33372e34342e3234342e302f32332d3234203d3e203437353833.roa File: 33372e34342e3234342e302f32332d3234203d3e203437353833.roa (raw, json) Hash identifier: 5TzhuQYR+4Lz9RvlDJ000hBCr3COf8Du1bM3/Tldi8g= Subject key identifier: 37:9C:CA:35:04:35:A1:F1:4A:FD:05:1A:AE:94:02:B9:A1:99:9D:7E Certificate issuer: /CN=088469d1a33085ff88b3e599d223ca74c2313a3a Certificate serial: 4997FD65E132E4A3EA9CDD5C866360068560C79D Authority key identifier: 08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/33372e34342e3234342e302f32332d3234203d3e203437353833.roa Signing time: Mon 29 Dec 2025 09:50:27 +0000 ROA not before: Mon 29 Dec 2025 09:45:27 +0000 ROA not after: Mon 28 Dec 2026 09:50:27 +0000 asID: 47583 IP address blocks: 37.44.244.0/23 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.mft rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 16:55:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:97:fd:65:e1:32:e4:a3:ea:9c:dd:5c:86:63:60:06:85:60:c7:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=088469d1a33085ff88b3e599d223ca74c2313a3a Validity Not Before: Dec 29 09:45:27 2025 GMT Not After : Dec 28 09:50:27 2026 GMT Subject: CN=379CCA350435A1F14AFD051AAE9402B9A1999D7E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:85:af:4e:a4:b3:6d:ba:ea:41:97:03:43:38: 92:26:85:3c:d0:c2:8b:27:74:b5:35:5b:be:b1:6b: 8f:0d:af:cc:69:24:a9:22:35:69:02:4d:b4:84:37: 29:fa:1d:32:4f:7b:40:74:bb:79:5f:b7:40:92:ee: b7:e9:83:ba:0d:7f:6e:2e:4c:08:04:d9:75:f7:9e: 2e:a5:dd:4e:8d:d0:9f:ae:2e:b7:c1:1d:92:de:5a: 35:87:d3:aa:eb:72:5b:f7:48:bd:ff:b6:37:10:36: 6c:7d:fd:9b:e4:a7:e5:c3:8c:95:67:b7:65:51:30: 2f:4b:e2:0c:2d:97:e0:9a:88:48:ee:b4:b0:61:5e: 39:0a:49:57:d1:e2:bc:7e:23:bb:1d:7b:db:d6:8c: 1e:d5:77:d7:d4:db:3b:04:4b:1a:6e:8f:0b:12:91: 96:43:f7:96:5d:46:38:54:8c:15:c0:b9:0a:a2:77: df:59:ad:33:f4:fe:b4:7a:ae:e9:ae:09:f3:dd:49: 83:14:7e:bf:17:b0:6f:ad:05:00:42:0e:3e:58:c3: 36:4b:bb:03:6d:2c:77:a5:f9:f7:5c:69:ba:42:b9: fb:88:61:b5:2b:fd:43:ca:0b:47:8e:2e:e5:66:fb: 31:3e:9a:9c:ff:40:c5:0e:45:34:01:8a:ca:1e:6d: 36:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:9C:CA:35:04:35:A1:F1:4A:FD:05:1A:AE:94:02:B9:A1:99:9D:7E X509v3 Authority Key Identifier: keyid:08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/33372e34342e3234342e302f32332d3234203d3e203437353833.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.44.244.0/23 Signature Algorithm: sha256WithRSAEncryption 5e:2c:43:47:fe:d0:8a:8f:93:b4:1c:a7:e2:f5:72:32:a7:cf: 92:c9:62:e7:09:3b:e7:55:63:fe:9b:ef:4a:51:81:e7:d0:10: 91:ad:b2:e2:35:48:e7:4b:58:f8:2b:44:b9:b9:06:19:11:76: 64:5b:8b:5d:2a:b2:a9:12:9c:9b:2b:87:9f:44:0c:87:01:c3: 6e:1a:75:c1:da:e4:39:8d:67:d4:b9:8c:3b:87:94:75:be:fa: e1:2c:8b:b5:c9:13:1f:0c:a5:f2:27:05:87:49:0d:37:73:2e: 72:27:a3:1b:1a:2f:e3:47:00:3e:12:ad:e6:97:1d:4a:00:d7: 84:0e:3e:8e:15:63:00:f2:2d:df:99:a4:41:c5:e7:a3:b8:69: a8:af:c1:69:2f:68:bc:dc:49:fa:05:5d:77:61:c1:e7:da:18: 80:be:9c:28:92:aa:20:91:15:6b:2d:7e:d8:ff:01:ba:ce:12: 9d:97:bb:32:13:c0:6e:f8:18:af:c8:5e:d3:ca:a0:fc:ad:9a: 87:2a:18:6e:43:3b:25:12:e1:f8:3e:33:3e:6d:c9:7e:99:1e: c4:86:17:d9:a0:b2:f0:1f:17:f7:d8:1b:41:d4:77:f4:63:10: 35:f8:1e:91:54:97:d4:07:b0:26:5d:c4:4a:44:9d:97:9f:77: eb:a7:5b:d2 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUSZf9ZeEy5KPqnN1chmNgBoVgx50wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDg4NDY5ZDFhMzMwODVmZjg4YjNlNTk5ZDIyM2NhNzRj MjMxM2EzYTAeFw0yNTEyMjkwOTQ1MjdaFw0yNjEyMjgwOTUwMjdaMDMxMTAvBgNV BAMTKDM3OUNDQTM1MDQzNUExRjE0QUZEMDUxQUFFOTQwMkI5QTE5OTlEN0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCha9OpLNtuupBlwNDOJImhTzQ wosndLU1W76xa48Nr8xpJKkiNWkCTbSENyn6HTJPe0B0u3lft0CS7rfpg7oNf24u TAgE2XX3ni6l3U6N0J+uLrfBHZLeWjWH06rrclv3SL3/tjcQNmx9/Zvkp+XDjJVn t2VRMC9L4gwtl+CaiEjutLBhXjkKSVfR4rx+I7sde9vWjB7Vd9fU2zsESxpujwsS kZZD95ZdRjhUjBXAuQqid99ZrTP0/rR6rumuCfPdSYMUfr8XsG+tBQBCDj5YwzZL uwNtLHel+fdcabpCufuIYbUr/UPKC0eOLuVm+zE+mpz/QMUORTQBisoebTY5AgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUN5zKNQQ1ofFK/QUarpQCuaGZnX4wHwYDVR0j BBgwFoAUCIRp0aMwhf+Is+WZ0iPKdMIxOjowDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzUvMDg4NDY5RDFBMzMwODVGRjg4QjNFNTk5RDIyM0NBNzRDMjMxM0EzQS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0NJUnAwYU13aGYtSXMtV1owaVBLZE1J eE9qby5jZXIwgasGCCsGAQUFBwELBIGeMIGbMIGYBggrBgEFBQcwC4aBi3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzUvMzMzNzJlMzQzNDJlMzIzNDM0 MmUzMDJmMzIzMzJkMzIzNDIwM2QzZTIwMzQzNzM1MzgzMy5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEASUs 9DANBgkqhkiG9w0BAQsFAAOCAQEAXixDR/7Qio+TtByn4vVyMqfPksli5wk751Vj /pvvSlGB59AQka2y4jVI50tY+CtEubkGGRF2ZFuLXSqyqRKcmyuHn0QMhwHDbhp1 wdrkOY1n1LmMO4eUdb764SyLtckTHwyl8icFh0kNN3MuciejGxov40cAPhKt5pcd SgDXhA4+jhVjAPIt35mkQcXno7hpqK/BaS9ovNxJ+gVdd2HB59oYgL6cKJKqIJEV ay1+2P8Bus4SnZe7MhPAbvgYr8he08qg/K2ahyoYbkM7JRLh+D4zPm3JfpkexIYX 2aCy8B8X99gbQdR39GMQNfgekVSX1AewJl3ESkSdl59366db0g== -----END CERTIFICATE-----Generated at Mon Jan 19 20:01:57 2026 by rpki-client