This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/34352e3134342e38312e302f32342d3332203d3e20313336373837.roa File: 34352e3134342e38312e302f32342d3332203d3e20313336373837.roa (raw, json) Hash identifier: OMo8Cv1zUCa513DuwAF6jUZhrlYaJBZNAmPQFdtp8Ps= Subject key identifier: 7E:DE:4E:EE:C4:68:EB:80:73:C4:1B:EC:5B:75:2C:18:E5:24:FF:9C Certificate issuer: /CN=088469d1a33085ff88b3e599d223ca74c2313a3a Certificate serial: 497A74F325B2EA02758229645B63B58C0980D999 Authority key identifier: 08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/34352e3134342e38312e302f32342d3332203d3e20313336373837.roa Signing time: Mon 29 Dec 2025 09:50:30 +0000 ROA not before: Mon 29 Dec 2025 09:45:30 +0000 ROA not after: Mon 28 Dec 2026 09:50:30 +0000 asID: 136787 IP address blocks: 45.144.81.0/24 maxlen: 32 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.mft rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 16:55:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:7a:74:f3:25:b2:ea:02:75:82:29:64:5b:63:b5:8c:09:80:d9:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=088469d1a33085ff88b3e599d223ca74c2313a3a Validity Not Before: Dec 29 09:45:30 2025 GMT Not After : Dec 28 09:50:30 2026 GMT Subject: CN=7EDE4EEEC468EB8073C41BEC5B752C18E524FF9C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:da:b0:a2:86:ad:fc:52:a0:a0:d2:f1:3a:ef: 53:c3:3b:b0:e7:00:da:08:19:17:b3:f3:a2:c5:b6: 6e:2d:ce:e7:4e:0b:cd:63:a0:1e:af:fb:ba:a4:2c: 95:5c:dc:19:dd:63:c0:c2:7a:41:e6:3e:3f:00:dc: e3:43:79:85:a4:8b:d3:80:a2:7f:ea:ef:26:ae:e3: 01:56:89:9a:cd:3b:14:b9:24:33:88:97:6f:d9:79: ee:24:e2:55:84:bf:ff:f1:f5:64:39:95:27:ae:20: 70:5b:1e:7f:80:b7:3e:09:6e:cf:42:4a:b5:e0:cf: 61:ab:f8:87:35:86:33:0b:74:eb:55:3f:af:82:15: c4:48:80:22:22:fd:71:8a:da:ff:fd:a7:80:f4:16: 83:50:0b:f0:4c:6c:96:18:b5:5a:af:eb:be:f6:52: 81:2e:71:80:bd:38:a1:85:ae:7c:31:5f:a3:a1:d6: 63:c0:1f:06:9d:26:2e:a5:f7:c7:0f:2e:e4:ef:c4: 69:c4:51:9f:ff:d3:71:de:c5:4e:4b:31:b5:74:9f: fe:eb:67:05:09:82:79:af:1b:74:cd:d6:21:07:6b: 3b:11:3a:b1:1a:d6:58:07:34:b5:03:8c:34:c8:6b: 07:80:e8:59:8d:ed:24:35:b0:72:5c:e7:1b:14:9b: 10:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:DE:4E:EE:C4:68:EB:80:73:C4:1B:EC:5B:75:2C:18:E5:24:FF:9C X509v3 Authority Key Identifier: keyid:08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/34352e3134342e38312e302f32342d3332203d3e20313336373837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.144.81.0/24 Signature Algorithm: sha256WithRSAEncryption 04:f3:b2:76:d5:b2:00:7a:0e:89:f1:9b:92:4c:62:f1:3d:59: 65:8e:55:2c:35:84:07:46:89:66:e6:ce:97:00:0d:9c:f0:b3: 46:1e:16:84:fb:02:49:fa:bc:24:d0:1d:e1:6f:c2:57:97:0b: fe:cf:1c:ef:a5:ad:68:2c:48:79:46:db:8f:60:51:07:70:f8: d4:1d:9c:bc:4a:cb:de:22:49:8a:5a:b9:6f:f8:0c:fe:d6:59: a6:76:ca:f5:4d:dd:6d:bb:83:13:be:75:50:e5:4c:47:86:58: e1:93:d8:4d:80:e7:b7:2e:ea:72:29:c6:92:54:23:68:4d:22: 87:7f:46:37:cc:05:bf:17:e0:20:c1:a8:fa:56:44:44:7c:00: 25:46:bd:60:31:0c:b4:12:70:a4:5b:33:10:3d:ff:c5:4d:2f: ce:58:25:01:68:77:26:73:cd:4a:c7:63:51:c4:69:e4:08:9f: 23:bd:bb:6c:70:29:ac:45:d7:1c:48:69:a6:d1:be:b7:a8:48: 24:4a:ef:ef:52:f8:3e:fb:73:23:e3:a4:ce:fc:54:60:fc:d0: ba:bf:d3:12:78:97:ae:3b:97:c3:3d:67:94:57:d1:9e:29:0f: 3f:1f:6b:81:65:de:eb:84:2c:11:71:c2:d2:fb:36:30:12:5d: 6e:61:78:88 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUSXp08yWy6gJ1gilkW2O1jAmA2ZkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDg4NDY5ZDFhMzMwODVmZjg4YjNlNTk5ZDIyM2NhNzRj MjMxM2EzYTAeFw0yNTEyMjkwOTQ1MzBaFw0yNjEyMjgwOTUwMzBaMDMxMTAvBgNV BAMTKDdFREU0RUVFQzQ2OEVCODA3M0M0MUJFQzVCNzUyQzE4RTUyNEZGOUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCp2rCihq38UqCg0vE671PDO7Dn ANoIGRez86LFtm4tzudOC81joB6v+7qkLJVc3BndY8DCekHmPj8A3ONDeYWki9OA on/q7yau4wFWiZrNOxS5JDOIl2/Zee4k4lWEv//x9WQ5lSeuIHBbHn+Atz4Jbs9C SrXgz2Gr+Ic1hjMLdOtVP6+CFcRIgCIi/XGK2v/9p4D0FoNQC/BMbJYYtVqv6772 UoEucYC9OKGFrnwxX6Oh1mPAHwadJi6l98cPLuTvxGnEUZ//03HexU5LMbV0n/7r ZwUJgnmvG3TN1iEHazsROrEa1lgHNLUDjDTIaweA6FmN7SQ1sHJc5xsUmxBXAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUft5O7sRo64BzxBvsW3UsGOUk/5wwHwYDVR0j BBgwFoAUCIRp0aMwhf+Is+WZ0iPKdMIxOjowDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzUvMDg4NDY5RDFBMzMwODVGRjg4QjNFNTk5RDIyM0NBNzRDMjMxM0EzQS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0NJUnAwYU13aGYtSXMtV1owaVBLZE1J eE9qby5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzUvMzQzNTJlMzEzNDM0MmUzODMx MmUzMDJmMzIzNDJkMzMzMjIwM2QzZTIwMzEzMzM2MzczODM3LnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA LZBRMA0GCSqGSIb3DQEBCwUAA4IBAQAE87J21bIAeg6J8ZuSTGLxPVlljlUsNYQH Rolm5s6XAA2c8LNGHhaE+wJJ+rwk0B3hb8JXlwv+zxzvpa1oLEh5RtuPYFEHcPjU HZy8SsveIkmKWrlv+Az+1lmmdsr1Td1tu4MTvnVQ5UxHhljhk9hNgOe3LupyKcaS VCNoTSKHf0Y3zAW/F+Agwaj6VkREfAAlRr1gMQy0EnCkWzMQPf/FTS/OWCUBaHcm c81Kx2NRxGnkCJ8jvbtscCmsRdccSGmm0b63qEgkSu/vUvg++3Mj46TO/FRg/NC6 v9MSeJeuO5fDPWeUV9GeKQ8/H2uBZd7rhCwRccLS+zYwEl1uYXiI -----END CERTIFICATE-----Generated at Mon Jan 19 20:02:31 2026 by rpki-client