This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/34352e36372e3231362e302f32332d3332203d3e203531313637.roa File: 34352e36372e3231362e302f32332d3332203d3e203531313637.roa (raw, json) Hash identifier: V3eRBKm8C6S7E8CP90k1GLFZ3lVb8QSHZrb2usDioaE= Subject key identifier: 22:55:6E:AC:46:88:A0:36:11:F4:F4:37:37:63:37:FD:86:E2:49:7E Certificate issuer: /CN=088469d1a33085ff88b3e599d223ca74c2313a3a Certificate serial: 48DACA6CB3481410D2A64B62451F2E55977021EC Authority key identifier: 08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/34352e36372e3231362e302f32332d3332203d3e203531313637.roa Signing time: Mon 29 Dec 2025 09:50:25 +0000 ROA not before: Mon 29 Dec 2025 09:45:25 +0000 ROA not after: Mon 28 Dec 2026 09:50:25 +0000 asID: 51167 IP address blocks: 45.67.216.0/23 maxlen: 32 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.mft rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 17:47:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:da:ca:6c:b3:48:14:10:d2:a6:4b:62:45:1f:2e:55:97:70:21:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=088469d1a33085ff88b3e599d223ca74c2313a3a Validity Not Before: Dec 29 09:45:25 2025 GMT Not After : Dec 28 09:50:25 2026 GMT Subject: CN=22556EAC4688A03611F4F437376337FD86E2497E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fa:cf:fc:bc:b7:2e:ba:e6:0f:ae:33:61:c6:19: 16:10:e9:fe:2e:bf:96:e0:a9:f2:87:1a:aa:c7:9f: 56:34:85:00:f8:96:f8:56:0d:2b:ca:15:e0:3f:48: 34:e9:be:7b:5e:fa:e1:4d:8c:f4:1f:f1:eb:0f:92: 97:94:c5:b7:58:69:2c:0a:86:6c:7c:6f:98:de:bd: c4:e3:db:e2:e4:42:e8:57:45:76:7a:e9:67:2c:59: 04:97:7d:19:09:4c:14:46:68:7c:05:e3:af:b3:e3: 05:d4:d0:3b:e8:dd:57:5b:d9:45:e5:45:dd:c9:15: 39:c6:e5:39:04:e6:c9:24:ea:59:60:53:a9:c1:46: 67:14:59:11:37:34:29:30:d7:9c:52:bb:b0:0e:80: 76:68:6a:6a:8f:f7:f7:17:c7:3a:6b:e2:6d:97:90: 9c:79:19:56:e6:d5:94:a3:1e:3f:ab:c1:75:98:77: 92:e5:e4:51:b5:c6:14:21:70:59:53:cc:66:9f:03: a8:de:65:cf:ba:ee:67:e3:b6:87:db:51:ed:0f:9f: 70:20:57:b3:6a:b8:d8:a1:65:a7:3c:9c:ac:c3:1d: 47:d6:ca:3f:cc:19:bf:9a:b7:2f:ca:4c:bd:6a:3c: c6:09:f1:ad:1a:4d:74:f6:4f:99:8a:70:34:61:25: d0:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:55:6E:AC:46:88:A0:36:11:F4:F4:37:37:63:37:FD:86:E2:49:7E X509v3 Authority Key Identifier: keyid:08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/34352e36372e3231362e302f32332d3332203d3e203531313637.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.67.216.0/23 Signature Algorithm: sha256WithRSAEncryption 9b:f5:37:f0:0f:55:a3:b0:2a:0f:cd:57:87:ad:fb:60:59:3f: d3:49:51:de:2f:ae:50:69:3e:3d:16:d2:24:27:f4:31:ea:f6: 33:2b:50:7b:df:76:e6:40:e2:ed:f0:fb:01:1d:46:1b:0c:75: cf:f1:f3:e4:c5:0c:fc:a8:58:e9:29:33:d9:ec:b2:43:1d:4f: 6a:10:d0:e7:9b:03:78:f2:10:da:4b:d4:52:32:98:d9:53:33: ec:48:20:65:5b:86:40:b0:63:2e:f1:88:d8:1c:73:e3:4e:14: a4:d9:21:bd:80:75:87:5e:c1:bb:37:61:b5:1f:10:86:c8:69: 60:41:01:6a:dd:9a:bd:66:ff:de:71:0a:4f:24:86:3e:e7:74: cc:9d:b8:8a:f7:c9:aa:e4:c7:40:0b:7c:9c:17:ad:af:50:d3: ee:ac:5c:fc:29:fd:0a:08:23:75:50:25:99:d3:5c:c0:68:4c: eb:f0:df:a1:af:cd:a3:a4:4a:24:94:05:e0:20:27:f5:99:c6: b7:5a:32:9f:6f:fc:58:ff:96:c4:de:f3:3b:69:96:63:cb:a0: d2:33:b3:90:1f:09:db:fc:e6:dc:2f:5c:66:90:85:d0:f8:36: b4:c4:ed:4d:68:51:ae:25:fd:28:98:0e:c4:74:d1:a7:71:09: 76:2b:68:67 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUSNrKbLNIFBDSpktiRR8uVZdwIewwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDg4NDY5ZDFhMzMwODVmZjg4YjNlNTk5ZDIyM2NhNzRj MjMxM2EzYTAeFw0yNTEyMjkwOTQ1MjVaFw0yNjEyMjgwOTUwMjVaMDMxMTAvBgNV BAMTKDIyNTU2RUFDNDY4OEEwMzYxMUY0RjQzNzM3NjMzN0ZEODZFMjQ5N0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD6z/y8ty665g+uM2HGGRYQ6f4u v5bgqfKHGqrHn1Y0hQD4lvhWDSvKFeA/SDTpvnte+uFNjPQf8esPkpeUxbdYaSwK hmx8b5jevcTj2+LkQuhXRXZ66WcsWQSXfRkJTBRGaHwF46+z4wXU0Dvo3Vdb2UXl Rd3JFTnG5TkE5skk6llgU6nBRmcUWRE3NCkw15xSu7AOgHZoamqP9/cXxzpr4m2X kJx5GVbm1ZSjHj+rwXWYd5Ll5FG1xhQhcFlTzGafA6jeZc+67mfjtofbUe0Pn3Ag V7NquNihZac8nKzDHUfWyj/MGb+aty/KTL1qPMYJ8a0aTXT2T5mKcDRhJdBxAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUIlVurEaIoDYR9PQ3N2M3/YbiSX4wHwYDVR0j BBgwFoAUCIRp0aMwhf+Is+WZ0iPKdMIxOjowDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzUvMDg4NDY5RDFBMzMwODVGRjg4QjNFNTk5RDIyM0NBNzRDMjMxM0EzQS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0NJUnAwYU13aGYtSXMtV1owaVBLZE1J eE9qby5jZXIwgasGCCsGAQUFBwELBIGeMIGbMIGYBggrBgEFBQcwC4aBi3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzUvMzQzNTJlMzYzNzJlMzIzMTM2 MmUzMDJmMzIzMzJkMzMzMjIwM2QzZTIwMzUzMTMxMzYzNy5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAS1D 2DANBgkqhkiG9w0BAQsFAAOCAQEAm/U38A9Vo7AqD81Xh637YFk/00lR3i+uUGk+ PRbSJCf0Mer2MytQe9925kDi7fD7AR1GGwx1z/Hz5MUM/KhY6Skz2eyyQx1PahDQ 55sDePIQ2kvUUjKY2VMz7EggZVuGQLBjLvGI2Bxz404UpNkhvYB1h17BuzdhtR8Q hshpYEEBat2avWb/3nEKTySGPud0zJ24ivfJquTHQAt8nBetr1DT7qxc/Cn9Cggj dVAlmdNcwGhM6/Dfoa/No6RKJJQF4CAn9ZnGt1oyn2/8WP+WxN7zO2mWY8ug0jOz kB8J2/zm3C9cZpCF0Pg2tMTtTWhRriX9KJgOxHTRp3EJditoZw== -----END CERTIFICATE-----Generated at Tue Feb 10 06:10:08 2026 by rpki-client