This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/34352e38322e37322e302f32322d3234203d3e203437353833.roa File: 34352e38322e37322e302f32322d3234203d3e203437353833.roa (raw, json) Hash identifier: b1UFqSUTvtVAOESiidsTbbR58qluhmv7AspnG1+4eTs= Subject key identifier: FD:52:A4:81:5B:B1:FA:D1:4C:0F:F1:4C:70:97:2C:E2:69:8E:6F:67 Certificate issuer: /CN=088469d1a33085ff88b3e599d223ca74c2313a3a Certificate serial: 796F537E4E549FD46F4C49E210A24B48DD2D84E4 Authority key identifier: 08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/34352e38322e37322e302f32322d3234203d3e203437353833.roa Signing time: Mon 29 Dec 2025 09:50:25 +0000 ROA not before: Mon 29 Dec 2025 09:45:25 +0000 ROA not after: Mon 28 Dec 2026 09:50:25 +0000 asID: 47583 IP address blocks: 45.82.72.0/22 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.mft rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 16:55:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:6f:53:7e:4e:54:9f:d4:6f:4c:49:e2:10:a2:4b:48:dd:2d:84:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=088469d1a33085ff88b3e599d223ca74c2313a3a Validity Not Before: Dec 29 09:45:25 2025 GMT Not After : Dec 28 09:50:25 2026 GMT Subject: CN=FD52A4815BB1FAD14C0FF14C70972CE2698E6F67 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:25:cd:5a:72:66:73:e8:13:8e:73:7d:bc:b0: 75:f4:9f:b9:d9:7f:42:47:82:8b:6e:23:c9:d6:f7: 5d:b2:d7:12:f2:42:0e:6a:3e:b4:89:4f:54:35:be: d1:0e:a8:b0:51:29:2b:25:a1:73:af:9c:a0:42:ac: 5e:c4:e4:11:fc:96:5b:b8:70:c4:72:63:6d:29:24: 40:9b:67:f2:0b:a9:9d:ab:90:7a:26:8e:26:49:09: 89:b4:40:ca:f2:fc:b4:85:3d:75:e1:94:83:7d:26: a3:2d:ee:58:93:1c:31:03:02:67:ff:3a:50:5d:10: ad:42:2d:f8:ae:94:68:2a:09:60:1e:43:5b:03:b8: 0b:c2:58:83:84:f5:ad:dc:54:59:6a:b5:f2:53:f0: 73:0f:8e:0d:5d:e8:8b:be:f9:0e:6f:4f:d4:16:aa: d5:57:54:a3:78:91:34:d4:49:8b:b9:71:3c:8c:fb: 66:48:0d:56:96:e1:9e:43:6a:6c:d7:27:1b:43:c0: f9:31:35:30:be:20:29:c9:a2:fe:cc:39:9c:d2:f6: db:e3:d6:fb:1c:df:d8:fe:de:db:bc:74:c8:79:dd: 2e:fe:f8:1b:00:23:95:fa:bf:13:cb:6b:14:23:ed: 99:21:39:81:c4:71:03:39:ac:4a:9b:c4:c4:5b:af: bf:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:52:A4:81:5B:B1:FA:D1:4C:0F:F1:4C:70:97:2C:E2:69:8E:6F:67 X509v3 Authority Key Identifier: keyid:08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/34352e38322e37322e302f32322d3234203d3e203437353833.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.82.72.0/22 Signature Algorithm: sha256WithRSAEncryption 35:f3:a8:80:25:79:3c:6d:30:fa:a9:c4:71:4f:81:45:27:99: e7:0c:2c:0f:35:38:04:a1:af:6b:c7:cc:88:65:5b:34:24:c6: 94:a5:0d:e3:42:d0:d9:1d:1a:db:2f:ca:9c:29:c2:7b:b6:05: e5:b9:d5:e7:61:80:47:98:e1:a6:28:3a:84:e9:b4:10:79:57: 68:0f:36:68:d3:53:f5:9b:45:c0:63:c2:ae:4d:ed:56:0c:7f: 3c:d1:b6:f8:2e:86:89:ef:91:1c:09:d0:b6:95:58:91:a8:30: 1a:6a:62:b5:39:20:1c:db:88:76:a8:8a:c1:aa:08:0b:18:74: cd:46:6b:84:a6:41:60:b2:d9:38:08:9c:7a:da:8a:c7:e5:9d: 30:f9:14:cb:52:19:be:b3:b5:13:cb:49:d6:26:87:4c:b7:e2: 7b:87:3d:dc:49:cc:43:74:79:8b:02:d7:20:09:1f:38:fa:af: c0:20:65:57:b7:8c:94:78:83:bc:5d:9b:5e:87:bb:3e:0a:6e: 77:0b:1e:97:e0:88:cf:04:06:2c:82:36:a9:85:1e:a1:95:4f: 1c:5e:34:39:18:a2:f5:d8:f3:27:b9:a2:48:bc:28:d6:c1:b4: 5d:8f:af:c8:29:ae:ad:60:80:eb:dc:49:50:d2:17:f9:39:0a: d9:21:51:1b -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUeW9Tfk5Un9RvTEniEKJLSN0thOQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDg4NDY5ZDFhMzMwODVmZjg4YjNlNTk5ZDIyM2NhNzRj MjMxM2EzYTAeFw0yNTEyMjkwOTQ1MjVaFw0yNjEyMjgwOTUwMjVaMDMxMTAvBgNV BAMTKEZENTJBNDgxNUJCMUZBRDE0QzBGRjE0QzcwOTcyQ0UyNjk4RTZGNjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/Jc1acmZz6BOOc328sHX0n7nZ f0JHgotuI8nW912y1xLyQg5qPrSJT1Q1vtEOqLBRKSsloXOvnKBCrF7E5BH8llu4 cMRyY20pJECbZ/ILqZ2rkHomjiZJCYm0QMry/LSFPXXhlIN9JqMt7liTHDEDAmf/ OlBdEK1CLfiulGgqCWAeQ1sDuAvCWIOE9a3cVFlqtfJT8HMPjg1d6Iu++Q5vT9QW qtVXVKN4kTTUSYu5cTyM+2ZIDVaW4Z5DamzXJxtDwPkxNTC+ICnJov7MOZzS9tvj 1vsc39j+3tu8dMh53S7++BsAI5X6vxPLaxQj7ZkhOYHEcQM5rEqbxMRbr7/TAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQU/VKkgVux+tFMD/FMcJcs4mmOb2cwHwYDVR0j BBgwFoAUCIRp0aMwhf+Is+WZ0iPKdMIxOjowDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzUvMDg4NDY5RDFBMzMwODVGRjg4QjNFNTk5RDIyM0NBNzRDMjMxM0EzQS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0NJUnAwYU13aGYtSXMtV1owaVBLZE1J eE9qby5jZXIwgakGCCsGAQUFBwELBIGcMIGZMIGWBggrBgEFBQcwC4aBiXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzUvMzQzNTJlMzgzMjJlMzczMjJl MzAyZjMyMzIyZDMyMzQyMDNkM2UyMDM0MzczNTM4MzMucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAItUkgw DQYJKoZIhvcNAQELBQADggEBADXzqIAleTxtMPqpxHFPgUUnmecMLA81OAShr2vH zIhlWzQkxpSlDeNC0NkdGtsvypwpwnu2BeW51edhgEeY4aYoOoTptBB5V2gPNmjT U/WbRcBjwq5N7VYMfzzRtvguhonvkRwJ0LaVWJGoMBpqYrU5IBzbiHaoisGqCAsY dM1Ga4SmQWCy2TgInHraisflnTD5FMtSGb6ztRPLSdYmh0y34nuHPdxJzEN0eYsC 1yAJHzj6r8AgZVe3jJR4g7xdm16Huz4KbncLHpfgiM8EBiyCNqmFHqGVTxxeNDkY ovXY8ye5oki8KNbBtF2Pr8gprq1ggOvcSVDSF/k5CtkhURs= -----END CERTIFICATE-----Generated at Mon Jan 19 20:01:54 2026 by rpki-client