This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/34352e38342e3136302e302f32322d3234203d3e20323033303631.roa File: 34352e38342e3136302e302f32322d3234203d3e20323033303631.roa (raw, json) Hash identifier: BjdkG2MzF0E3KvrPuu3gTV63lg8JmpD6lmfedjO6Eb4= Subject key identifier: 9B:F8:F6:AA:06:57:21:4F:44:3F:3F:57:0B:75:B1:B8:D3:21:F0:56 Certificate issuer: /CN=088469d1a33085ff88b3e599d223ca74c2313a3a Certificate serial: 4A7A15E8A6B11D28F124774B43F82F58E2FA35D0 Authority key identifier: 08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/34352e38342e3136302e302f32322d3234203d3e20323033303631.roa Signing time: Mon 29 Dec 2025 09:50:28 +0000 ROA not before: Mon 29 Dec 2025 09:45:28 +0000 ROA not after: Mon 28 Dec 2026 09:50:28 +0000 asID: 203061 IP address blocks: 45.84.160.0/22 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.mft rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 16:55:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:7a:15:e8:a6:b1:1d:28:f1:24:77:4b:43:f8:2f:58:e2:fa:35:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=088469d1a33085ff88b3e599d223ca74c2313a3a Validity Not Before: Dec 29 09:45:28 2025 GMT Not After : Dec 28 09:50:28 2026 GMT Subject: CN=9BF8F6AA0657214F443F3F570B75B1B8D321F056 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:41:c1:62:e7:f6:5a:e6:e4:02:6e:d7:a3:d5: 0a:87:46:89:0a:ee:35:f4:4b:a3:b1:d7:f3:9f:b5: 51:c5:4d:95:0a:36:72:83:53:09:95:b1:32:fb:43: 80:2d:d2:35:ae:21:22:94:79:01:a8:4b:99:8b:d7: 58:11:6a:da:a0:8e:f3:f8:44:ad:9e:38:ab:f2:0b: 77:12:e5:2f:49:5c:dd:8f:67:ec:35:d7:a0:b9:02: 1f:9a:59:b2:42:17:d4:9d:25:00:28:53:ce:76:19: 5e:fa:bb:cc:7d:44:8b:1a:d1:d9:db:14:79:5b:09: 3a:f3:e7:8b:90:1d:22:8f:5d:86:22:b4:57:4f:d9: a7:b1:a8:df:cc:ca:de:73:40:a0:88:cd:bb:5b:30: 4b:12:9a:21:73:57:13:ef:ae:08:28:8b:5a:ae:23: 19:14:af:1b:b2:ec:7d:f7:f5:56:82:81:6c:04:d9: 78:72:25:03:6f:d3:de:84:f4:b7:b7:18:be:39:ce: 33:c9:f7:fe:e4:bb:17:fc:31:2b:7c:d3:66:99:71: 60:44:86:b4:1b:0c:55:26:cc:52:ff:bd:c2:09:4b: 6e:a4:b3:df:99:49:e3:5f:bb:49:da:8f:f1:ec:c9: 03:ec:db:59:b1:de:0b:d0:f5:01:01:d5:78:5c:1a: 63:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:F8:F6:AA:06:57:21:4F:44:3F:3F:57:0B:75:B1:B8:D3:21:F0:56 X509v3 Authority Key Identifier: keyid:08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/34352e38342e3136302e302f32322d3234203d3e20323033303631.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.84.160.0/22 Signature Algorithm: sha256WithRSAEncryption 02:d2:c7:1f:42:e2:27:5d:b7:8e:ad:f1:12:ed:b7:af:93:25: 29:d9:df:a6:0e:77:70:58:2d:29:b4:59:69:1b:49:da:9c:45: 17:73:6c:38:f0:28:12:68:d5:a8:c8:8c:fe:de:ab:38:a8:16: c2:1b:e0:f3:77:2b:2f:3b:f5:55:32:cc:ca:1c:51:81:f8:40: a4:c5:79:ae:ba:27:fa:a0:3c:cf:71:f9:88:7a:57:77:3f:5a: f9:bf:de:3d:20:b7:a8:4e:2f:a4:af:1d:2c:2b:cb:1d:6f:4e: f6:6c:dd:a6:ac:f7:d7:d7:99:ed:bc:34:da:8e:db:25:c7:ab: 19:6e:cc:df:ba:cd:91:ac:e9:b8:27:e4:01:d0:f8:67:d5:90: 2e:3a:11:5a:4d:aa:a0:06:74:2b:a2:36:20:cf:d7:96:2d:22: 63:6b:c3:49:89:94:2e:bb:c9:2b:2f:d8:e2:4b:04:97:42:05: b6:e3:5d:22:99:f9:63:27:00:9b:19:14:1c:c6:93:a7:0e:34: 97:8e:ba:65:73:64:87:81:55:b1:75:6f:0f:c8:a9:5a:2f:4d: 3d:ab:0d:4f:32:2d:31:8e:64:59:f1:4a:85:4a:0c:3a:ee:f0: a9:fd:ac:57:e1:b6:55:e5:6c:a5:78:dc:37:fb:b4:7f:2e:cb: 00:29:56:ce -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUSnoV6KaxHSjxJHdLQ/gvWOL6NdAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDg4NDY5ZDFhMzMwODVmZjg4YjNlNTk5ZDIyM2NhNzRj MjMxM2EzYTAeFw0yNTEyMjkwOTQ1MjhaFw0yNjEyMjgwOTUwMjhaMDMxMTAvBgNV BAMTKDlCRjhGNkFBMDY1NzIxNEY0NDNGM0Y1NzBCNzVCMUI4RDMyMUYwNTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChQcFi5/Za5uQCbtej1QqHRokK 7jX0S6Ox1/OftVHFTZUKNnKDUwmVsTL7Q4At0jWuISKUeQGoS5mL11gRatqgjvP4 RK2eOKvyC3cS5S9JXN2PZ+w116C5Ah+aWbJCF9SdJQAoU852GV76u8x9RIsa0dnb FHlbCTrz54uQHSKPXYYitFdP2aexqN/Myt5zQKCIzbtbMEsSmiFzVxPvrggoi1qu IxkUrxuy7H339VaCgWwE2XhyJQNv096E9Le3GL45zjPJ9/7kuxf8MSt802aZcWBE hrQbDFUmzFL/vcIJS26ks9+ZSeNfu0naj/HsyQPs21mx3gvQ9QEB1XhcGmOxAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUm/j2qgZXIU9EPz9XC3WxuNMh8FYwHwYDVR0j BBgwFoAUCIRp0aMwhf+Is+WZ0iPKdMIxOjowDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzUvMDg4NDY5RDFBMzMwODVGRjg4QjNFNTk5RDIyM0NBNzRDMjMxM0EzQS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0NJUnAwYU13aGYtSXMtV1owaVBLZE1J eE9qby5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzUvMzQzNTJlMzgzNDJlMzEzNjMw MmUzMDJmMzIzMjJkMzIzNDIwM2QzZTIwMzIzMDMzMzAzNjMxLnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQC LVSgMA0GCSqGSIb3DQEBCwUAA4IBAQAC0scfQuInXbeOrfES7bevkyUp2d+mDndw WC0ptFlpG0nanEUXc2w48CgSaNWoyIz+3qs4qBbCG+DzdysvO/VVMszKHFGB+ECk xXmuuif6oDzPcfmIeld3P1r5v949ILeoTi+krx0sK8sdb072bN2mrPfX15ntvDTa jtslx6sZbszfus2RrOm4J+QB0Phn1ZAuOhFaTaqgBnQrojYgz9eWLSJja8NJiZQu u8krL9jiSwSXQgW2410imfljJwCbGRQcxpOnDjSXjrplc2SHgVWxdW8PyKlaL009 qw1PMi0xjmRZ8UqFSgw67vCp/axX4bZV5WyleNw3+7R/LssAKVbO -----END CERTIFICATE-----Generated at Mon Jan 19 20:01:57 2026 by rpki-client