This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/34352e3132382e34342e302f32322d3234203d3e20323033303631.roa File: 34352e3132382e34342e302f32322d3234203d3e20323033303631.roa (raw, json) Hash identifier: e1rRA293qlefed09ApDV+Dtsx0Hpt3VYPlW2Obu9sb4= Subject key identifier: 77:42:87:3E:6C:2F:13:4E:7D:E7:1D:15:88:08:AD:59:6D:52:C3:68 Certificate issuer: /CN=088469d1a33085ff88b3e599d223ca74c2313a3a Certificate serial: 6D6F2B0E8A372979B6B621F3F28CF101078906A2 Authority key identifier: 08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/34352e3132382e34342e302f32322d3234203d3e20323033303631.roa Signing time: Mon 29 Dec 2025 09:50:30 +0000 ROA not before: Mon 29 Dec 2025 09:45:30 +0000 ROA not after: Mon 28 Dec 2026 09:50:30 +0000 asID: 203061 IP address blocks: 45.128.44.0/22 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.mft rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 16:55:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:6f:2b:0e:8a:37:29:79:b6:b6:21:f3:f2:8c:f1:01:07:89:06:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=088469d1a33085ff88b3e599d223ca74c2313a3a Validity Not Before: Dec 29 09:45:30 2025 GMT Not After : Dec 28 09:50:30 2026 GMT Subject: CN=7742873E6C2F134E7DE71D158808AD596D52C368 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:f1:2d:ed:23:fe:de:a3:c0:41:5c:51:c8:65: 1f:b1:69:29:9a:53:fc:ff:ae:48:13:da:0b:97:60: 83:d6:2f:c9:d3:b5:bb:5b:cc:95:51:7e:a3:6c:39: 12:5b:d3:4a:8b:b8:0c:80:ed:e3:6b:e4:22:15:45: bc:54:88:d1:b9:7d:e4:4a:f4:34:d3:83:94:ff:66: 48:ca:81:58:bc:a8:0f:58:3e:76:4a:19:11:e1:23: f5:96:0b:5b:3e:35:ac:72:1f:f9:84:15:21:36:85: ac:1d:cd:32:58:85:b4:41:6e:f2:a0:01:ff:8c:43: 8b:99:d0:2a:48:53:fb:a3:27:1f:09:d8:fb:8d:a8: ec:0b:0b:0f:a6:33:43:4d:9d:69:0b:cc:e7:f0:5f: 8a:d1:c3:5e:1a:e9:80:f8:c8:aa:45:3a:dc:8e:7c: fa:8b:55:6e:50:56:30:b4:e5:d8:fe:1c:c8:72:3b: 7e:0f:dd:b1:6d:50:ca:03:61:98:4f:c8:6a:59:3c: 1f:75:cd:e4:04:1d:c8:5d:29:b2:83:79:29:d3:fa: d3:a4:f7:42:26:45:2f:51:27:d1:7b:11:8b:6b:d4: 6a:97:2f:45:17:21:76:f0:28:46:a4:db:74:48:d3: ba:5c:d4:2c:9f:4f:d6:8a:7e:d6:47:a4:06:45:26: 8f:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:42:87:3E:6C:2F:13:4E:7D:E7:1D:15:88:08:AD:59:6D:52:C3:68 X509v3 Authority Key Identifier: keyid:08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/34352e3132382e34342e302f32322d3234203d3e20323033303631.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.128.44.0/22 Signature Algorithm: sha256WithRSAEncryption 82:95:5c:55:bf:77:15:d0:81:7d:1f:b9:42:88:11:07:d4:2a: af:05:05:19:3d:bb:a4:2b:ea:71:f5:fb:02:23:b9:d4:93:76: be:cc:48:9e:a7:3f:a4:9c:d0:32:01:89:38:95:34:52:46:94: 0b:5f:52:0a:f1:a0:63:65:24:9e:8b:df:f0:dc:0a:82:db:6b: cb:e5:6c:20:c6:3f:8c:75:b7:3b:ac:4e:5a:3f:a0:5f:42:1f: ae:8e:9d:35:64:e1:ff:33:af:2e:e4:f4:a3:c7:08:b9:d6:b0: 8e:e6:c0:e3:7a:16:8c:b0:11:80:25:23:d4:63:6c:ef:5b:3d: 27:bf:35:c7:62:93:03:cd:bb:c0:ec:52:94:e3:19:f2:66:96: b0:b0:e4:68:61:80:c3:05:71:29:74:72:a3:af:04:bc:39:2a: 86:ba:ac:29:97:e5:29:03:2e:83:51:b1:9d:c2:ff:c4:ec:c4: 07:e8:f5:0a:7d:d6:ca:90:fa:20:43:81:97:83:d2:d1:75:4f: 86:5e:ca:6e:05:49:a8:84:73:e8:f3:77:2b:e9:27:52:03:35: 58:80:7b:62:d3:6e:4d:e5:f4:35:92:30:10:55:6a:8f:ee:b3: f3:5f:0d:80:63:9c:7a:f6:60:93:69:2d:b2:da:15:01:db:f6: f3:dc:4a:c9 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUbW8rDoo3KXm2tiHz8ozxAQeJBqIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDg4NDY5ZDFhMzMwODVmZjg4YjNlNTk5ZDIyM2NhNzRj MjMxM2EzYTAeFw0yNTEyMjkwOTQ1MzBaFw0yNjEyMjgwOTUwMzBaMDMxMTAvBgNV BAMTKDc3NDI4NzNFNkMyRjEzNEU3REU3MUQxNTg4MDhBRDU5NkQ1MkMzNjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDS8S3tI/7eo8BBXFHIZR+xaSma U/z/rkgT2guXYIPWL8nTtbtbzJVRfqNsORJb00qLuAyA7eNr5CIVRbxUiNG5feRK 9DTTg5T/ZkjKgVi8qA9YPnZKGRHhI/WWC1s+NaxyH/mEFSE2hawdzTJYhbRBbvKg Af+MQ4uZ0CpIU/ujJx8J2PuNqOwLCw+mM0NNnWkLzOfwX4rRw14a6YD4yKpFOtyO fPqLVW5QVjC05dj+HMhyO34P3bFtUMoDYZhPyGpZPB91zeQEHchdKbKDeSnT+tOk 90ImRS9RJ9F7EYtr1GqXL0UXIXbwKEak23RI07pc1CyfT9aKftZHpAZFJo/XAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUd0KHPmwvE0595x0ViAitWW1Sw2gwHwYDVR0j BBgwFoAUCIRp0aMwhf+Is+WZ0iPKdMIxOjowDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzUvMDg4NDY5RDFBMzMwODVGRjg4QjNFNTk5RDIyM0NBNzRDMjMxM0EzQS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0NJUnAwYU13aGYtSXMtV1owaVBLZE1J eE9qby5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzUvMzQzNTJlMzEzMjM4MmUzNDM0 MmUzMDJmMzIzMjJkMzIzNDIwM2QzZTIwMzIzMDMzMzAzNjMxLnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQC LYAsMA0GCSqGSIb3DQEBCwUAA4IBAQCClVxVv3cV0IF9H7lCiBEH1CqvBQUZPbuk K+px9fsCI7nUk3a+zEiepz+knNAyAYk4lTRSRpQLX1IK8aBjZSSei9/w3AqC22vL 5Wwgxj+Mdbc7rE5aP6BfQh+ujp01ZOH/M68u5PSjxwi51rCO5sDjehaMsBGAJSPU Y2zvWz0nvzXHYpMDzbvA7FKU4xnyZpawsORoYYDDBXEpdHKjrwS8OSqGuqwpl+Up Ay6DUbGdwv/E7MQH6PUKfdbKkPogQ4GXg9LRdU+GXspuBUmohHPo83cr6SdSAzVY gHti025N5fQ1kjAQVWqP7rPzXw2AY5x69mCTaS2y2hUB2/bz3ErJ -----END CERTIFICATE-----Generated at Mon Jan 19 20:01:57 2026 by rpki-client