This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/34352e382e3133342e302f32332d3234203d3e203631333137.roa File: 34352e382e3133342e302f32332d3234203d3e203631333137.roa (raw, json) Hash identifier: Z+BAlHNlB5IKYneYGD3pwLLaF4wvnyElUX/WJznyNb0= Subject key identifier: 9B:6B:44:37:A9:40:F5:89:19:92:BF:61:96:53:2A:85:34:88:8D:30 Certificate issuer: /CN=088469d1a33085ff88b3e599d223ca74c2313a3a Certificate serial: 4EA0F8AF4E55193C492AD5E2D323EE0DE5B9A9DA Authority key identifier: 08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/34352e382e3133342e302f32332d3234203d3e203631333137.roa Signing time: Mon 29 Dec 2025 09:50:31 +0000 ROA not before: Mon 29 Dec 2025 09:45:31 +0000 ROA not after: Mon 28 Dec 2026 09:50:31 +0000 asID: 61317 IP address blocks: 45.8.134.0/23 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.mft rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 09 Jan 2026 09:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:a0:f8:af:4e:55:19:3c:49:2a:d5:e2:d3:23:ee:0d:e5:b9:a9:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=088469d1a33085ff88b3e599d223ca74c2313a3a Validity Not Before: Dec 29 09:45:31 2025 GMT Not After : Dec 28 09:50:31 2026 GMT Subject: CN=9B6B4437A940F5891992BF6196532A8534888D30 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:5b:2e:e7:57:e4:b7:e9:42:68:0b:0e:01:14: 9f:34:4c:52:e6:7f:8c:4c:30:42:66:ef:7d:2f:aa: 79:4e:16:30:fb:0d:c8:b2:85:48:55:1e:09:e4:17: f6:66:25:8a:27:e4:10:2d:a5:e6:3b:44:81:76:f6: 17:e9:59:51:7d:ad:1d:b1:cf:14:99:5e:3f:d6:91: b4:b9:89:03:6e:27:ff:4b:57:a1:99:d4:d3:3c:0b: d4:be:65:02:04:55:6f:35:2b:25:9d:1a:42:a1:9b: 51:5b:fe:92:ec:07:d8:27:c3:6c:ac:af:62:0a:02: 33:c6:f7:f2:c9:31:63:50:d0:8d:fa:71:53:e8:37: 57:b9:cf:ab:2a:7a:f9:bf:c4:b0:d1:fc:07:f9:0a: 7a:8e:b2:95:b7:e5:37:d1:af:9b:bf:eb:65:e7:7c: 09:f4:9d:a7:f6:88:66:0c:cf:61:3a:61:af:4e:97: 4e:f1:e0:b0:57:50:7b:33:cb:0a:da:4f:49:c1:f8: 68:75:17:27:4b:bb:50:3e:ef:f2:5b:dd:ac:9f:2d: f3:71:14:d6:e5:b9:16:93:54:d6:d6:da:55:61:5f: 82:98:65:e7:40:d3:2a:44:22:3a:6a:e6:f0:b2:bb: ec:95:70:4d:f3:ce:fd:7f:9d:a9:e8:ec:b7:a0:74: 87:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:6B:44:37:A9:40:F5:89:19:92:BF:61:96:53:2A:85:34:88:8D:30 X509v3 Authority Key Identifier: keyid:08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/34352e382e3133342e302f32332d3234203d3e203631333137.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.8.134.0/23 Signature Algorithm: sha256WithRSAEncryption 21:3e:5e:84:16:a9:34:71:07:44:58:d3:9d:ab:2f:8d:14:22: 48:e4:39:75:b2:9b:a1:ad:9d:c3:74:9e:34:df:37:82:cd:53: 39:2f:b6:a8:c3:9d:f0:34:70:89:8f:2b:05:e8:86:dd:72:20: 92:bc:de:bf:77:45:2d:f5:c0:22:51:1d:e9:58:fe:2b:8c:54: c5:6e:b3:ed:33:9a:2e:6c:35:fd:eb:67:11:71:5f:4b:a7:d3: 11:a9:9a:c5:b4:11:4e:eb:39:ab:1b:b4:89:39:e8:fc:a2:3b: 3c:fd:46:d0:11:23:3a:a7:a9:36:24:df:cc:d0:df:e4:46:61: 38:68:31:43:3b:b7:cf:8e:5b:22:25:21:71:50:6a:fa:5b:de: 38:bc:0c:0a:a2:c6:85:5a:10:95:72:c3:4c:e8:da:3b:3a:89: 4c:2e:83:da:45:38:be:aa:20:67:15:4b:82:11:2b:2e:7a:f8: ba:dc:ca:c3:d6:17:d3:a9:2a:b1:18:b2:c0:20:e8:17:34:27: 50:98:de:5f:39:53:cd:5d:c5:aa:b8:50:8e:ac:ea:40:98:d6: 37:a1:13:d0:30:29:a1:5f:1e:14:88:c1:95:1f:aa:e2:7a:6d: 66:76:d2:9e:79:96:c2:7f:f8:73:e9:f6:7f:cc:c2:3d:b9:3f: e9:9b:b1:4f -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUTqD4r05VGTxJKtXi0yPuDeW5qdowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDg4NDY5ZDFhMzMwODVmZjg4YjNlNTk5ZDIyM2NhNzRj MjMxM2EzYTAeFw0yNTEyMjkwOTQ1MzFaFw0yNjEyMjgwOTUwMzFaMDMxMTAvBgNV BAMTKDlCNkI0NDM3QTk0MEY1ODkxOTkyQkY2MTk2NTMyQTg1MzQ4ODhEMzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2Wy7nV+S36UJoCw4BFJ80TFLm f4xMMEJm730vqnlOFjD7DciyhUhVHgnkF/ZmJYon5BAtpeY7RIF29hfpWVF9rR2x zxSZXj/WkbS5iQNuJ/9LV6GZ1NM8C9S+ZQIEVW81KyWdGkKhm1Fb/pLsB9gnw2ys r2IKAjPG9/LJMWNQ0I36cVPoN1e5z6sqevm/xLDR/Af5CnqOspW35TfRr5u/62Xn fAn0naf2iGYMz2E6Ya9Ol07x4LBXUHszywraT0nB+Gh1FydLu1A+7/Jb3ayfLfNx FNbluRaTVNbW2lVhX4KYZedA0ypEIjpq5vCyu+yVcE3zzv1/nano7LegdIeDAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUm2tEN6lA9YkZkr9hllMqhTSIjTAwHwYDVR0j BBgwFoAUCIRp0aMwhf+Is+WZ0iPKdMIxOjowDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzUvMDg4NDY5RDFBMzMwODVGRjg4QjNFNTk5RDIyM0NBNzRDMjMxM0EzQS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0NJUnAwYU13aGYtSXMtV1owaVBLZE1J eE9qby5jZXIwgakGCCsGAQUFBwELBIGcMIGZMIGWBggrBgEFBQcwC4aBiXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzUvMzQzNTJlMzgyZTMxMzMzNDJl MzAyZjMyMzMyZDMyMzQyMDNkM2UyMDM2MzEzMzMxMzcucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAEtCIYw DQYJKoZIhvcNAQELBQADggEBACE+XoQWqTRxB0RY052rL40UIkjkOXWym6GtncN0 njTfN4LNUzkvtqjDnfA0cImPKwXoht1yIJK83r93RS31wCJRHelY/iuMVMVus+0z mi5sNf3rZxFxX0un0xGpmsW0EU7rOasbtIk56PyiOzz9RtARIzqnqTYk38zQ3+RG YThoMUM7t8+OWyIlIXFQavpb3ji8DAqixoVaEJVyw0zo2js6iUwug9pFOL6qIGcV S4IRKy56+LrcysPWF9OpKrEYssAg6Bc0J1CY3l85U81dxaq4UI6s6kCY1jehE9Aw KaFfHhSIwZUfquJ6bWZ20p55lsJ/+HPp9n/Mwj25P+mbsU8= -----END CERTIFICATE-----Generated at Thu Jan 8 12:58:19 2026 by rpki-client