This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/34352e3133392e3131362e302f32322d3234203d3e20323033303631.roa File: 34352e3133392e3131362e302f32322d3234203d3e20323033303631.roa (raw, json) Hash identifier: kBFC+rgBsjuL5IOm8V85+FxkIbtYBxdeKhIC/yHiGGg= Subject key identifier: E7:CA:37:48:33:AB:99:0C:7E:AB:F5:E9:E9:60:A5:19:85:43:A0:00 Certificate issuer: /CN=088469d1a33085ff88b3e599d223ca74c2313a3a Certificate serial: 040DB09235D8210B44D002722E5B2E6AFDAB4C20 Authority key identifier: 08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/34352e3133392e3131362e302f32322d3234203d3e20323033303631.roa Signing time: Mon 29 Dec 2025 09:50:25 +0000 ROA not before: Mon 29 Dec 2025 09:45:25 +0000 ROA not after: Mon 28 Dec 2026 09:50:25 +0000 asID: 203061 IP address blocks: 45.139.116.0/22 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.mft rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 16:55:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:0d:b0:92:35:d8:21:0b:44:d0:02:72:2e:5b:2e:6a:fd:ab:4c:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=088469d1a33085ff88b3e599d223ca74c2313a3a Validity Not Before: Dec 29 09:45:25 2025 GMT Not After : Dec 28 09:50:25 2026 GMT Subject: CN=E7CA374833AB990C7EABF5E9E960A5198543A000 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:97:10:0e:9b:af:0a:d0:87:63:dd:39:7a:67: f5:22:d6:80:49:e4:cc:09:56:4f:ed:f9:c6:78:7e: f1:df:a2:8b:21:01:39:a5:16:dc:be:a5:7e:22:eb: 92:ce:62:69:a6:8c:66:eb:10:ea:ea:f3:f8:b9:7a: e9:4a:eb:8d:60:da:e4:44:43:9c:f5:58:5a:5a:50: f2:08:8d:b3:fb:9e:b0:30:93:7f:1d:37:4b:94:9d: fd:5e:8b:79:d5:2a:71:c8:56:93:e6:ba:ba:6c:c3: af:18:68:4c:d1:b0:49:3d:f4:9f:89:f2:6b:6a:3c: fe:b3:86:cd:47:30:24:e5:3b:eb:65:8c:2b:33:8b: fd:f2:f0:33:e6:04:55:57:f2:7c:00:72:da:e9:46: b5:5e:61:60:f5:2d:39:9b:b4:e3:a0:26:e0:e4:19: 15:8f:86:cd:de:53:b7:0a:c8:b2:c2:de:20:71:a0: 3d:e4:70:63:33:25:bc:78:46:93:9b:bc:b8:35:f7: ff:59:bf:68:ad:d6:72:96:51:6b:24:cd:38:78:b6: 04:e3:33:a6:39:7e:f8:8e:46:b0:db:fa:f5:6d:55: cf:fa:57:e7:82:97:72:7a:f9:5c:e9:2f:9f:1f:73: f9:92:96:06:7c:a3:3b:ff:de:f7:7c:84:fc:8d:f7: 42:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:CA:37:48:33:AB:99:0C:7E:AB:F5:E9:E9:60:A5:19:85:43:A0:00 X509v3 Authority Key Identifier: keyid:08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/34352e3133392e3131362e302f32322d3234203d3e20323033303631.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.139.116.0/22 Signature Algorithm: sha256WithRSAEncryption 24:b3:82:ed:15:df:76:40:1c:8b:95:06:fe:cf:1d:50:f4:2c: 28:62:4f:32:4f:20:9e:bf:5c:93:2c:37:1f:45:2c:6a:48:35: cf:44:41:8e:2b:de:44:1e:b2:da:ae:bc:67:04:2f:2b:fb:91: f6:f5:67:4b:52:58:df:e0:0f:13:d7:bc:3d:5a:f1:0b:10:65: 60:d6:45:78:b9:9d:73:c4:62:b9:c8:1c:41:35:2b:d4:3d:82: 5f:4e:08:ea:9b:79:2d:74:ff:cf:73:9c:af:a4:37:81:ee:4c: 81:c1:e2:c8:11:50:b5:78:59:73:61:70:09:d3:8b:08:cb:68: b2:bd:de:d4:d0:35:44:8c:25:ad:40:84:76:e0:36:66:63:f7: 12:11:01:d2:f9:30:b8:6e:b0:33:58:47:96:27:59:a5:05:ff: df:c5:3f:53:b4:19:a0:1b:d9:d6:ca:7c:35:e7:b1:5b:a5:f3: 8c:20:3a:e2:8d:13:1b:34:8e:86:4c:97:4f:65:5a:53:64:e5: 84:17:b3:97:5a:48:85:d7:8f:43:ca:30:f5:90:df:cc:8d:0f: d2:95:a4:35:08:64:11:fd:38:93:4b:65:79:13:63:ff:6f:4d: e0:0c:bc:5f:a7:f5:51:67:1d:14:eb:30:42:d9:91:45:ae:fd: aa:13:30:ea -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUBA2wkjXYIQtE0AJyLlsuav2rTCAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDg4NDY5ZDFhMzMwODVmZjg4YjNlNTk5ZDIyM2NhNzRj MjMxM2EzYTAeFw0yNTEyMjkwOTQ1MjVaFw0yNjEyMjgwOTUwMjVaMDMxMTAvBgNV BAMTKEU3Q0EzNzQ4MzNBQjk5MEM3RUFCRjVFOUU5NjBBNTE5ODU0M0EwMDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7lxAOm68K0Idj3Tl6Z/Ui1oBJ 5MwJVk/t+cZ4fvHfooshATmlFty+pX4i65LOYmmmjGbrEOrq8/i5eulK641g2uRE Q5z1WFpaUPIIjbP7nrAwk38dN0uUnf1ei3nVKnHIVpPmurpsw68YaEzRsEk99J+J 8mtqPP6zhs1HMCTlO+tljCszi/3y8DPmBFVX8nwActrpRrVeYWD1LTmbtOOgJuDk GRWPhs3eU7cKyLLC3iBxoD3kcGMzJbx4RpObvLg19/9Zv2it1nKWUWskzTh4tgTj M6Y5fviORrDb+vVtVc/6V+eCl3J6+VzpL58fc/mSlgZ8ozv/3vd8hPyN90I/AgMB AAGjggI/MIICOzAdBgNVHQ4EFgQU58o3SDOrmQx+q/Xp6WClGYVDoAAwHwYDVR0j BBgwFoAUCIRp0aMwhf+Is+WZ0iPKdMIxOjowDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzUvMDg4NDY5RDFBMzMwODVGRjg4QjNFNTk5RDIyM0NBNzRDMjMxM0EzQS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0NJUnAwYU13aGYtSXMtV1owaVBLZE1J eE9qby5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzUvMzQzNTJlMzEzMzM5MmUzMTMx MzYyZTMwMmYzMjMyMmQzMjM0MjAzZDNlMjAzMjMwMzMzMDM2MzEucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAIti3QwDQYJKoZIhvcNAQELBQADggEBACSzgu0V33ZAHIuVBv7PHVD0LChiTzJP IJ6/XJMsNx9FLGpINc9EQY4r3kQestquvGcELyv7kfb1Z0tSWN/gDxPXvD1a8QsQ ZWDWRXi5nXPEYrnIHEE1K9Q9gl9OCOqbeS10/89znK+kN4HuTIHB4sgRULV4WXNh cAnTiwjLaLK93tTQNUSMJa1AhHbgNmZj9xIRAdL5MLhusDNYR5YnWaUF/9/FP1O0 GaAb2dbKfDXnsVul84wgOuKNExs0joZMl09lWlNk5YQXs5daSIXXj0PKMPWQ38yN D9KVpDUIZBH9OJNLZXkTY/9vTeAMvF+n9VFnHRTrMELZkUWu/aoTMOo= -----END CERTIFICATE-----Generated at Mon Jan 19 20:01:53 2026 by rpki-client