This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/34352e3134312e3132302e302f32342d3234203d3e20313336373837.roa File: 34352e3134312e3132302e302f32342d3234203d3e20313336373837.roa (raw, json) Hash identifier: LtpeAf41DiwfHON+TZEqyTC7b8NdJb3qYdObxEq5+y4= Subject key identifier: 15:C3:CA:86:6D:86:F1:12:A4:C8:CA:72:7D:A2:FF:79:C4:70:0C:3B Certificate issuer: /CN=088469d1a33085ff88b3e599d223ca74c2313a3a Certificate serial: 24FCAC5E762ECB342A32A37A910B3FFBC0125071 Authority key identifier: 08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/34352e3134312e3132302e302f32342d3234203d3e20313336373837.roa Signing time: Sat 03 Jan 2026 22:51:12 +0000 ROA not before: Sat 03 Jan 2026 22:46:12 +0000 ROA not after: Sat 02 Jan 2027 22:51:12 +0000 asID: 136787 IP address blocks: 45.141.120.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.mft rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 16:55:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:fc:ac:5e:76:2e:cb:34:2a:32:a3:7a:91:0b:3f:fb:c0:12:50:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=088469d1a33085ff88b3e599d223ca74c2313a3a Validity Not Before: Jan 3 22:46:12 2026 GMT Not After : Jan 2 22:51:12 2027 GMT Subject: CN=15C3CA866D86F112A4C8CA727DA2FF79C4700C3B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:09:3a:7d:1b:53:cf:c8:be:6b:25:1d:ad:01: a5:09:77:db:b7:81:90:51:f0:92:92:62:11:cc:e5: 27:1a:0f:f1:82:8e:0c:d9:e6:4e:17:cc:fe:5c:c1: ba:d9:1b:43:d4:82:b8:06:ef:40:9f:0d:59:d9:41: 74:32:52:d1:a7:03:76:5d:96:f4:d5:51:50:29:ad: e0:fb:0c:2a:22:d1:bd:06:56:08:3b:fd:bf:c3:c2: 4d:29:14:51:69:92:0e:5a:86:a7:f3:d5:9a:81:ee: 5f:7d:4a:28:e6:fe:c1:1c:a0:3e:20:e0:60:4d:be: 5c:a3:ae:cc:b8:5a:e1:1d:2f:db:93:9d:1c:25:4b: e9:11:c0:02:72:27:26:01:d4:4d:66:74:29:7d:94: 38:52:b8:41:89:d4:4d:ba:d7:6a:42:88:69:58:bb: 97:63:73:f0:c8:35:35:52:fb:d8:6b:82:ce:8e:b6: 22:ff:d8:a3:b0:2f:9b:75:d9:fb:5d:63:77:4f:c2: ef:15:0c:8e:e7:01:e7:42:50:7e:6c:99:e1:9e:9b: de:d6:12:87:52:67:4c:50:2b:ec:12:eb:e4:3e:2e: c4:5c:0c:e8:a7:3a:34:0d:e4:75:52:d2:f6:6f:83: a7:2c:0c:a7:1c:dc:35:0b:26:f1:07:bf:ba:59:e0: e6:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:C3:CA:86:6D:86:F1:12:A4:C8:CA:72:7D:A2:FF:79:C4:70:0C:3B X509v3 Authority Key Identifier: keyid:08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/34352e3134312e3132302e302f32342d3234203d3e20313336373837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.141.120.0/24 Signature Algorithm: sha256WithRSAEncryption 8f:20:dc:d9:cc:e3:32:be:84:f5:37:02:00:c9:34:00:f3:99: b6:86:16:2c:0b:30:e2:62:42:e6:c2:c6:4e:d7:ae:de:81:92: 4e:eb:f8:31:2e:dc:88:2a:98:5c:44:5d:9f:45:5c:dc:de:50: 5a:0a:db:d5:2e:6c:b3:2c:05:7f:ae:ad:d7:c3:b2:f5:36:bd: 95:9e:a4:02:b2:48:38:31:0d:a7:d9:d4:28:64:49:07:9a:8a: 2c:b9:0b:a0:83:92:79:22:90:b7:00:9e:0f:fb:1e:27:f1:a5: ba:eb:32:c9:34:ec:52:3e:b9:0b:79:56:18:e2:78:cf:1b:0c: 54:6d:31:08:de:4b:ec:a1:96:2e:d3:85:ed:01:d6:09:24:08: 8f:46:c6:7c:c8:ad:ea:db:d2:f8:43:a0:08:c3:12:70:6a:b7: f4:0a:70:67:41:db:0e:07:eb:b9:d6:72:69:86:b2:28:ad:2c: 8b:cd:26:c9:f4:dd:98:00:c3:b6:dc:a1:7c:fd:66:61:e9:99: b1:33:8a:b6:3f:7f:05:49:5c:99:36:71:98:a6:39:2c:76:49: b7:18:82:83:ef:1c:d2:ee:04:0a:98:51:12:9c:64:c6:82:8f: 27:29:88:7e:b7:27:57:d5:71:e0:eb:95:81:c8:d8:0e:03:ac: 90:dc:87:8f -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUJPysXnYuyzQqMqN6kQs/+8ASUHEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDg4NDY5ZDFhMzMwODVmZjg4YjNlNTk5ZDIyM2NhNzRj MjMxM2EzYTAeFw0yNjAxMDMyMjQ2MTJaFw0yNzAxMDIyMjUxMTJaMDMxMTAvBgNV BAMTKDE1QzNDQTg2NkQ4NkYxMTJBNEM4Q0E3MjdEQTJGRjc5QzQ3MDBDM0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDECTp9G1PPyL5rJR2tAaUJd9u3 gZBR8JKSYhHM5ScaD/GCjgzZ5k4XzP5cwbrZG0PUgrgG70CfDVnZQXQyUtGnA3Zd lvTVUVApreD7DCoi0b0GVgg7/b/Dwk0pFFFpkg5ahqfz1ZqB7l99Sijm/sEcoD4g 4GBNvlyjrsy4WuEdL9uTnRwlS+kRwAJyJyYB1E1mdCl9lDhSuEGJ1E2612pCiGlY u5djc/DINTVS+9hrgs6OtiL/2KOwL5t12ftdY3dPwu8VDI7nAedCUH5smeGem97W EodSZ0xQK+wS6+Q+LsRcDOinOjQN5HVS0vZvg6csDKcc3DULJvEHv7pZ4ObJAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUFcPKhm2G8RKkyMpyfaL/ecRwDDswHwYDVR0j BBgwFoAUCIRp0aMwhf+Is+WZ0iPKdMIxOjowDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzUvMDg4NDY5RDFBMzMwODVGRjg4QjNFNTk5RDIyM0NBNzRDMjMxM0EzQS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0NJUnAwYU13aGYtSXMtV1owaVBLZE1J eE9qby5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzUvMzQzNTJlMzEzNDMxMmUzMTMy MzAyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMTMzMzYzNzM4Mzcucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAAtjXgwDQYJKoZIhvcNAQELBQADggEBAI8g3NnM4zK+hPU3AgDJNADzmbaGFiwL MOJiQubCxk7Xrt6Bkk7r+DEu3IgqmFxEXZ9FXNzeUFoK29UubLMsBX+urdfDsvU2 vZWepAKySDgxDafZ1ChkSQeaiiy5C6CDknkikLcAng/7HifxpbrrMsk07FI+uQt5 VhjieM8bDFRtMQjeS+yhli7The0B1gkkCI9GxnzIrerb0vhDoAjDEnBqt/QKcGdB 2w4H67nWcmmGsiitLIvNJsn03ZgAw7bcoXz9ZmHpmbEzirY/fwVJXJk2cZimOSx2 SbcYgoPvHNLuBAqYURKcZMaCjycpiH63J1fVceDrlYHI2A4DrJDch48= -----END CERTIFICATE-----Generated at Mon Jan 19 20:02:28 2026 by rpki-client