This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/34352e3134312e3132312e302f32342d3234203d3e20313336373837.roa File: 34352e3134312e3132312e302f32342d3234203d3e20313336373837.roa (raw, json) Hash identifier: 2X15Y1Q0x3AUA0iE+fINZo+tw1cm7chzgeMCxaFFyI0= Subject key identifier: 25:A1:8D:F7:F4:10:50:A5:66:5C:46:7A:34:D0:AA:B9:A7:7D:27:6F Certificate issuer: /CN=088469d1a33085ff88b3e599d223ca74c2313a3a Certificate serial: 44916B57F3D7715D0FD2FE0A4B30D6D3A34FC2C1 Authority key identifier: 08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/34352e3134312e3132312e302f32342d3234203d3e20313336373837.roa Signing time: Sat 03 Jan 2026 22:51:12 +0000 ROA not before: Sat 03 Jan 2026 22:46:12 +0000 ROA not after: Sat 02 Jan 2027 22:51:12 +0000 asID: 136787 IP address blocks: 45.141.121.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.mft rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 16:55:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:91:6b:57:f3:d7:71:5d:0f:d2:fe:0a:4b:30:d6:d3:a3:4f:c2:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=088469d1a33085ff88b3e599d223ca74c2313a3a Validity Not Before: Jan 3 22:46:12 2026 GMT Not After : Jan 2 22:51:12 2027 GMT Subject: CN=25A18DF7F41050A5665C467A34D0AAB9A77D276F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:1d:6d:5e:a8:fe:14:dc:12:40:1b:4a:4f:43: d8:c9:4c:3a:4b:5c:4d:8a:45:c6:2a:6c:ca:35:b8: 52:a3:8e:cd:6d:11:81:58:f8:b5:19:82:db:82:36: 43:70:3e:fa:a6:86:61:a2:f0:7f:dd:35:9b:24:ec: ef:07:0c:c9:14:f9:e4:f5:97:05:7b:80:cb:13:ae: 62:34:74:b3:26:0d:95:66:42:a1:03:e8:e8:01:a1: bc:ff:af:66:1d:5d:19:73:c3:8e:d4:1a:f6:b6:11: 8b:4d:7d:6a:5f:62:03:d5:95:61:2a:05:5e:f8:60: 83:1b:01:e3:63:1f:42:2a:d4:a5:d2:7c:cd:d4:3e: b3:03:dc:8b:23:b1:1d:88:c3:cd:81:e6:f9:22:5a: 41:94:12:4e:25:b8:2d:83:a2:5b:96:bc:86:ec:d3: 39:a7:5e:19:12:27:e9:6e:1a:ea:05:af:96:3a:eb: 97:ae:b0:fd:ae:ac:e2:e4:a0:ae:e6:b3:96:13:33: 26:08:c0:e5:ab:42:88:59:6c:20:67:4e:b1:6c:79: 56:a3:be:52:e0:da:15:76:ff:55:83:d0:3d:6b:97: 86:3b:fb:6e:f6:01:16:84:a3:45:11:ae:f4:6a:dd: 77:6d:57:3b:2d:23:f9:0a:d9:86:df:e6:30:8f:73: 73:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:A1:8D:F7:F4:10:50:A5:66:5C:46:7A:34:D0:AA:B9:A7:7D:27:6F X509v3 Authority Key Identifier: keyid:08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/34352e3134312e3132312e302f32342d3234203d3e20313336373837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.141.121.0/24 Signature Algorithm: sha256WithRSAEncryption 74:f7:b8:cf:f5:49:16:a1:5f:a6:51:ac:37:2f:bd:1c:d8:58: 28:66:d2:3b:eb:be:91:39:a7:5b:1b:ca:d9:9d:f0:ff:58:b0: f9:ab:35:62:81:73:57:3c:5e:e6:a5:85:9a:b4:fa:f0:f3:e3: c0:b4:96:9c:a4:41:44:2e:2e:63:19:15:79:20:72:93:50:b6: 3c:05:64:42:d0:c7:34:46:df:c1:ad:68:31:16:36:aa:c3:57: 29:00:65:fa:d8:c9:91:84:27:a4:f0:d8:c0:fd:07:52:a6:58: 57:95:eb:8b:27:1f:17:54:99:86:f0:11:0a:d8:88:60:ed:bd: 8b:f6:b7:c7:f7:0e:aa:19:bc:13:dc:96:6c:e6:af:ed:2b:c7: 90:15:0a:5e:c2:74:f0:bb:57:57:56:3c:13:73:da:24:d0:d4: 6c:04:fe:d9:cb:33:6b:2f:43:4c:5c:b8:06:b7:c8:8d:b9:d9: f7:73:3f:1a:51:e0:d3:65:1e:85:0f:70:e3:48:e5:ac:67:2f: ce:ea:55:1b:a9:d1:82:ab:d6:d7:a0:36:c3:37:02:7f:2b:b6: 55:bd:ec:b9:30:25:c7:ff:36:25:4a:dc:50:92:cb:64:00:47: e7:e9:3b:d7:7d:2a:1e:cc:5e:ab:89:fd:a8:b8:78:48:28:e4: 78:e7:d5:ea -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIURJFrV/PXcV0P0v4KSzDW06NPwsEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDg4NDY5ZDFhMzMwODVmZjg4YjNlNTk5ZDIyM2NhNzRj MjMxM2EzYTAeFw0yNjAxMDMyMjQ2MTJaFw0yNzAxMDIyMjUxMTJaMDMxMTAvBgNV BAMTKDI1QTE4REY3RjQxMDUwQTU2NjVDNDY3QTM0RDBBQUI5QTc3RDI3NkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsHW1eqP4U3BJAG0pPQ9jJTDpL XE2KRcYqbMo1uFKjjs1tEYFY+LUZgtuCNkNwPvqmhmGi8H/dNZsk7O8HDMkU+eT1 lwV7gMsTrmI0dLMmDZVmQqED6OgBobz/r2YdXRlzw47UGva2EYtNfWpfYgPVlWEq BV74YIMbAeNjH0Iq1KXSfM3UPrMD3IsjsR2Iw82B5vkiWkGUEk4luC2DoluWvIbs 0zmnXhkSJ+luGuoFr5Y665eusP2urOLkoK7ms5YTMyYIwOWrQohZbCBnTrFseVaj vlLg2hV2/1WD0D1rl4Y7+272ARaEo0URrvRq3XdtVzstI/kK2Ybf5jCPc3PBAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUJaGN9/QQUKVmXEZ6NNCquad9J28wHwYDVR0j BBgwFoAUCIRp0aMwhf+Is+WZ0iPKdMIxOjowDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzUvMDg4NDY5RDFBMzMwODVGRjg4QjNFNTk5RDIyM0NBNzRDMjMxM0EzQS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0NJUnAwYU13aGYtSXMtV1owaVBLZE1J eE9qby5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzUvMzQzNTJlMzEzNDMxMmUzMTMy MzEyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMTMzMzYzNzM4Mzcucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAAtjXkwDQYJKoZIhvcNAQELBQADggEBAHT3uM/1SRahX6ZRrDcvvRzYWChm0jvr vpE5p1sbytmd8P9YsPmrNWKBc1c8XualhZq0+vDz48C0lpykQUQuLmMZFXkgcpNQ tjwFZELQxzRG38GtaDEWNqrDVykAZfrYyZGEJ6Tw2MD9B1KmWFeV64snHxdUmYbw EQrYiGDtvYv2t8f3DqoZvBPclmzmr+0rx5AVCl7CdPC7V1dWPBNz2iTQ1GwE/tnL M2svQ0xcuAa3yI252fdzPxpR4NNlHoUPcONI5axnL87qVRup0YKr1tegNsM3An8r tlW97LkwJcf/NiVK3FCSy2QAR+fpO9d9Kh7MXquJ/ai4eEgo5Hjn1eo= -----END CERTIFICATE-----Generated at Mon Jan 19 20:02:26 2026 by rpki-client