This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/34352e3134342e38302e302f32342d3332203d3e20313336373837.roa File: 34352e3134342e38302e302f32342d3332203d3e20313336373837.roa (raw, json) Hash identifier: Q01jpBPDLmZ0j5MnHu87b1oIDcoVmnLLWJvudR53Gn4= Subject key identifier: 72:71:77:E2:4C:2A:EB:CE:9D:09:22:7A:F2:38:E3:B5:CD:12:2A:12 Certificate issuer: /CN=088469d1a33085ff88b3e599d223ca74c2313a3a Certificate serial: 0D96C7A6DD88ED9A93A31604CA32C70B80BEF009 Authority key identifier: 08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/34352e3134342e38302e302f32342d3332203d3e20313336373837.roa Signing time: Mon 29 Dec 2025 09:50:25 +0000 ROA not before: Mon 29 Dec 2025 09:45:25 +0000 ROA not after: Mon 28 Dec 2026 09:50:25 +0000 asID: 136787 IP address blocks: 45.144.80.0/24 maxlen: 32 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.mft rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 16:55:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:96:c7:a6:dd:88:ed:9a:93:a3:16:04:ca:32:c7:0b:80:be:f0:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=088469d1a33085ff88b3e599d223ca74c2313a3a Validity Not Before: Dec 29 09:45:25 2025 GMT Not After : Dec 28 09:50:25 2026 GMT Subject: CN=727177E24C2AEBCE9D09227AF238E3B5CD122A12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:d1:15:e2:c5:86:f8:64:95:4e:90:bd:12:80: 11:45:89:bd:31:f3:64:cf:6f:65:c3:b4:cf:d8:49: 39:17:d7:d6:56:e0:91:e4:4b:78:b6:9b:08:52:50: 48:e3:54:13:c7:c6:00:56:06:64:78:65:f8:1a:dc: 72:d9:06:42:2a:7b:d0:d7:ff:4a:d1:f8:01:14:6a: 32:92:7b:40:98:cd:cf:01:18:8b:70:9a:32:70:22: 0e:48:c4:78:45:ad:be:bd:cb:55:02:a7:a8:98:18: 4d:15:7b:8a:ba:b8:7f:a9:19:86:13:4a:f7:ff:e7: 07:33:16:00:4d:f8:a2:25:1b:ba:95:7e:76:f6:62: d8:8f:94:26:26:7c:df:c5:ae:97:30:ed:43:fa:c3: 32:4a:8b:da:bd:cc:91:05:cd:dc:f9:9a:3e:9d:f0: f2:cd:03:c6:40:06:85:ed:23:fc:51:1b:3d:13:53: 16:16:e1:53:93:9b:32:2a:9a:67:a5:18:df:a5:40: 4b:92:6a:96:38:21:d9:52:ad:8f:7a:d7:0d:40:36: 52:db:ab:d2:ee:47:a9:42:f8:88:65:76:09:ac:51: 71:f8:e2:a0:12:8f:f1:dc:64:f1:a8:0e:90:a1:fb: 5e:9b:d2:25:4e:aa:c7:d6:02:65:00:ca:29:0f:65: de:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:71:77:E2:4C:2A:EB:CE:9D:09:22:7A:F2:38:E3:B5:CD:12:2A:12 X509v3 Authority Key Identifier: keyid:08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/34352e3134342e38302e302f32342d3332203d3e20313336373837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.144.80.0/24 Signature Algorithm: sha256WithRSAEncryption 97:ca:89:59:e1:2a:89:ae:ae:3c:46:21:2d:ca:38:98:55:50: 9f:6b:91:d9:63:a9:6d:63:2c:27:5c:ea:59:c0:ac:59:b7:26: 47:69:09:ab:33:cf:7a:06:b8:9b:78:39:e1:f1:fe:e8:57:33: 17:80:a0:95:76:33:43:00:50:21:4d:20:32:e4:96:4f:dd:76: c4:ec:18:7b:56:6b:0e:8a:e2:87:1f:25:3b:1b:d9:24:cb:07: 8e:53:e9:9e:72:05:41:30:0a:19:53:6a:34:19:b8:14:01:a8: 8f:2d:1e:4e:49:f4:77:2c:02:83:d2:b3:96:f4:9e:84:24:2a: 2a:f9:c5:cb:83:36:c1:db:ae:34:ee:58:38:8e:74:e6:8d:6f: 66:b5:17:88:7e:fc:72:4d:2a:74:12:13:e8:d5:d8:45:1e:fa: 71:a8:89:67:f9:61:ed:ea:e5:e3:43:aa:3b:75:f5:7a:28:5b: d5:f1:cc:09:6c:71:87:7d:81:99:03:4d:07:05:4b:76:88:2b: f3:fd:03:f0:d8:37:0d:5c:31:35:14:87:d8:66:f9:c8:65:56: b5:82:71:01:02:e0:8b:31:e9:50:3a:8b:fb:33:46:c3:27:02: a6:cb:12:33:35:69:e1:27:76:2d:ab:7d:d8:d1:94:e8:1a:83: 96:b7:02:3e -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUDZbHpt2I7ZqToxYEyjLHC4C+8AkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDg4NDY5ZDFhMzMwODVmZjg4YjNlNTk5ZDIyM2NhNzRj MjMxM2EzYTAeFw0yNTEyMjkwOTQ1MjVaFw0yNjEyMjgwOTUwMjVaMDMxMTAvBgNV BAMTKDcyNzE3N0UyNEMyQUVCQ0U5RDA5MjI3QUYyMzhFM0I1Q0QxMjJBMTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC30RXixYb4ZJVOkL0SgBFFib0x 82TPb2XDtM/YSTkX19ZW4JHkS3i2mwhSUEjjVBPHxgBWBmR4Zfga3HLZBkIqe9DX /0rR+AEUajKSe0CYzc8BGItwmjJwIg5IxHhFrb69y1UCp6iYGE0Ve4q6uH+pGYYT Svf/5wczFgBN+KIlG7qVfnb2YtiPlCYmfN/Frpcw7UP6wzJKi9q9zJEFzdz5mj6d 8PLNA8ZABoXtI/xRGz0TUxYW4VOTmzIqmmelGN+lQEuSapY4IdlSrY961w1ANlLb q9LuR6lC+IhldgmsUXH44qASj/HcZPGoDpCh+16b0iVOqsfWAmUAyikPZd4dAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUcnF34kwq686dCSJ68jjjtc0SKhIwHwYDVR0j BBgwFoAUCIRp0aMwhf+Is+WZ0iPKdMIxOjowDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzUvMDg4NDY5RDFBMzMwODVGRjg4QjNFNTk5RDIyM0NBNzRDMjMxM0EzQS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0NJUnAwYU13aGYtSXMtV1owaVBLZE1J eE9qby5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzUvMzQzNTJlMzEzNDM0MmUzODMw MmUzMDJmMzIzNDJkMzMzMjIwM2QzZTIwMzEzMzM2MzczODM3LnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA LZBQMA0GCSqGSIb3DQEBCwUAA4IBAQCXyolZ4SqJrq48RiEtyjiYVVCfa5HZY6lt YywnXOpZwKxZtyZHaQmrM896BribeDnh8f7oVzMXgKCVdjNDAFAhTSAy5JZP3XbE 7Bh7VmsOiuKHHyU7G9kkyweOU+mecgVBMAoZU2o0GbgUAaiPLR5OSfR3LAKD0rOW 9J6EJCoq+cXLgzbB26407lg4jnTmjW9mtReIfvxyTSp0EhPo1dhFHvpxqIln+WHt 6uXjQ6o7dfV6KFvV8cwJbHGHfYGZA00HBUt2iCvz/QPw2DcNXDE1FIfYZvnIZVa1 gnEBAuCLMelQOov7M0bDJwKmyxIzNWnhJ3Ytq33Y0ZToGoOWtwI+ -----END CERTIFICATE-----Generated at Mon Jan 19 20:02:33 2026 by rpki-client