This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/34352e3133302e3131322e302f32322d3234203d3e20323033303631.roa File: 34352e3133302e3131322e302f32322d3234203d3e20323033303631.roa (raw, json) Hash identifier: AigJmBCDr23ISQxmsie6ufCNECYv94Ut8HgLdKRoICw= Subject key identifier: 0E:2A:17:2D:37:12:01:DE:D9:7B:05:A3:08:27:8A:05:A6:9C:30:08 Certificate issuer: /CN=088469d1a33085ff88b3e599d223ca74c2313a3a Certificate serial: 390F53B1CCE36EDF8BCCDE26AA7A6002D4A9A22A Authority key identifier: 08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/34352e3133302e3131322e302f32322d3234203d3e20323033303631.roa Signing time: Mon 29 Dec 2025 09:50:31 +0000 ROA not before: Mon 29 Dec 2025 09:45:31 +0000 ROA not after: Mon 28 Dec 2026 09:50:31 +0000 asID: 203061 IP address blocks: 45.130.112.0/22 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.mft rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 16:55:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:0f:53:b1:cc:e3:6e:df:8b:cc:de:26:aa:7a:60:02:d4:a9:a2:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=088469d1a33085ff88b3e599d223ca74c2313a3a Validity Not Before: Dec 29 09:45:31 2025 GMT Not After : Dec 28 09:50:31 2026 GMT Subject: CN=0E2A172D371201DED97B05A308278A05A69C3008 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:51:3a:63:d9:79:e0:93:c5:3f:97:4e:e4:68: ae:7f:73:2a:c1:2b:85:ad:a2:ab:9a:62:4d:62:99: a8:4c:44:ed:2b:af:9d:29:1c:8a:42:2f:77:40:a2: 9c:58:c3:a4:54:e5:98:41:c7:fb:ee:ed:f8:57:dd: 3e:b3:db:10:9f:89:1b:d1:59:7b:81:9b:e9:0d:58: b7:95:2a:bc:1f:3c:8d:e5:a6:ba:ad:3f:26:3d:32: f7:06:f8:33:dd:f6:15:47:0f:57:01:ed:8b:5f:3f: ce:59:e6:2f:e2:61:b4:f8:cc:97:5a:79:0c:ce:b5: 7d:83:21:b1:17:32:1a:2c:fc:5d:0c:82:e8:07:8a: 11:5b:d7:4e:82:96:ec:82:62:7a:15:3e:03:a2:f7: 52:b0:c7:76:a1:a2:37:60:fd:db:29:e4:8d:6d:fe: f6:9e:dd:a3:45:20:82:18:84:d2:e7:f1:ef:83:5a: 25:a1:c4:54:e2:94:88:14:78:84:67:dc:23:57:f8: 73:ab:56:64:e0:04:21:6b:42:2f:22:b3:9c:5f:71: 4a:ce:b0:69:1c:dd:3d:4f:13:ef:44:1f:8a:13:c8: 42:f3:f0:39:41:54:6c:8c:9a:c1:80:c2:db:d5:89: 30:2e:96:88:84:5b:dd:bf:e4:ba:82:ff:49:c8:26: 1e:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:2A:17:2D:37:12:01:DE:D9:7B:05:A3:08:27:8A:05:A6:9C:30:08 X509v3 Authority Key Identifier: keyid:08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/34352e3133302e3131322e302f32322d3234203d3e20323033303631.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.130.112.0/22 Signature Algorithm: sha256WithRSAEncryption 74:71:df:a2:b8:07:c5:78:58:c2:38:55:46:2a:26:89:a0:c3: 3e:4c:e5:1f:6d:70:13:e3:45:fa:ea:04:d5:d8:4e:6c:79:eb: 98:95:cd:30:fd:46:00:f9:95:c3:c9:b2:35:79:e3:46:d4:66: 88:0d:ca:7a:b3:32:44:b7:14:78:5a:eb:5c:21:03:7c:32:ce: d0:c4:31:d6:2c:3f:aa:60:0e:df:53:6b:0d:52:5a:43:c2:d7: 58:bc:51:21:78:3c:ee:d8:c6:e3:c7:36:e6:bf:45:68:c2:21: 4c:9f:4a:3c:a0:b4:49:5c:61:1f:da:82:76:69:75:dc:21:12: 81:98:23:e6:f1:9f:2c:15:fb:e4:61:c6:95:f1:ee:ea:35:5a: 9d:b2:9c:6c:24:52:ce:0c:b9:a1:6a:72:f3:f7:0f:45:03:60: a5:9b:35:74:a5:df:08:c2:ea:a5:37:9f:fe:e0:59:c8:25:f8: 91:c5:91:b1:da:33:d7:3f:18:32:24:03:c6:11:92:b2:66:17: 80:d3:2b:c6:c5:dd:5f:6c:f0:a3:80:17:40:e8:8c:38:60:44: 3b:85:f2:07:d2:d2:1a:f0:8a:e6:68:81:da:1a:e5:49:6c:63: a2:eb:ea:20:7c:9b:63:7e:4c:d0:fc:d5:5e:63:2b:45:d5:12: 24:7d:66:87 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUOQ9Tsczjbt+LzN4mqnpgAtSpoiowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDg4NDY5ZDFhMzMwODVmZjg4YjNlNTk5ZDIyM2NhNzRj MjMxM2EzYTAeFw0yNTEyMjkwOTQ1MzFaFw0yNjEyMjgwOTUwMzFaMDMxMTAvBgNV BAMTKDBFMkExNzJEMzcxMjAxREVEOTdCMDVBMzA4Mjc4QTA1QTY5QzMwMDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGUTpj2Xngk8U/l07kaK5/cyrB K4WtoquaYk1imahMRO0rr50pHIpCL3dAopxYw6RU5ZhBx/vu7fhX3T6z2xCfiRvR WXuBm+kNWLeVKrwfPI3lprqtPyY9MvcG+DPd9hVHD1cB7YtfP85Z5i/iYbT4zJda eQzOtX2DIbEXMhos/F0MgugHihFb106CluyCYnoVPgOi91Kwx3ahojdg/dsp5I1t /vae3aNFIIIYhNLn8e+DWiWhxFTilIgUeIRn3CNX+HOrVmTgBCFrQi8is5xfcUrO sGkc3T1PE+9EH4oTyELz8DlBVGyMmsGAwtvViTAuloiEW92/5LqC/0nIJh7dAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUDioXLTcSAd7ZewWjCCeKBaacMAgwHwYDVR0j BBgwFoAUCIRp0aMwhf+Is+WZ0iPKdMIxOjowDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzUvMDg4NDY5RDFBMzMwODVGRjg4QjNFNTk5RDIyM0NBNzRDMjMxM0EzQS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0NJUnAwYU13aGYtSXMtV1owaVBLZE1J eE9qby5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzUvMzQzNTJlMzEzMzMwMmUzMTMx MzIyZTMwMmYzMjMyMmQzMjM0MjAzZDNlMjAzMjMwMzMzMDM2MzEucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAItgnAwDQYJKoZIhvcNAQELBQADggEBAHRx36K4B8V4WMI4VUYqJomgwz5M5R9t cBPjRfrqBNXYTmx565iVzTD9RgD5lcPJsjV540bUZogNynqzMkS3FHha61whA3wy ztDEMdYsP6pgDt9Taw1SWkPC11i8USF4PO7YxuPHNua/RWjCIUyfSjygtElcYR/a gnZpddwhEoGYI+bxnywV++RhxpXx7uo1Wp2ynGwkUs4MuaFqcvP3D0UDYKWbNXSl 3wjC6qU3n/7gWcgl+JHFkbHaM9c/GDIkA8YRkrJmF4DTK8bF3V9s8KOAF0DojDhg RDuF8gfS0hrwiuZogdoa5UlsY6Lr6iB8m2N+TND81V5jK0XVEiR9Zoc= -----END CERTIFICATE-----Generated at Mon Jan 19 20:02:27 2026 by rpki-client