This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/34352e39302e3131322e302f32322d3234203d3e20323033303631.roa File: 34352e39302e3131322e302f32322d3234203d3e20323033303631.roa (raw, json) Hash identifier: MV8v1aeV07VkB+7YByQh6n84G9zixd5ENAv2nmI9TRo= Subject key identifier: 83:3F:BB:D4:29:83:0D:50:CF:6B:AF:FB:A5:A6:E3:23:A9:AB:80:C6 Certificate issuer: /CN=088469d1a33085ff88b3e599d223ca74c2313a3a Certificate serial: 3F6D7A4736636AFC09D52C8F5CE9422A88F9052A Authority key identifier: 08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/34352e39302e3131322e302f32322d3234203d3e20323033303631.roa Signing time: Mon 29 Dec 2025 09:50:28 +0000 ROA not before: Mon 29 Dec 2025 09:45:28 +0000 ROA not after: Mon 28 Dec 2026 09:50:28 +0000 asID: 203061 IP address blocks: 45.90.112.0/22 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.mft rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 16:55:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:6d:7a:47:36:63:6a:fc:09:d5:2c:8f:5c:e9:42:2a:88:f9:05:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=088469d1a33085ff88b3e599d223ca74c2313a3a Validity Not Before: Dec 29 09:45:28 2025 GMT Not After : Dec 28 09:50:28 2026 GMT Subject: CN=833FBBD429830D50CF6BAFFBA5A6E323A9AB80C6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:db:ff:2c:c4:6c:ee:48:c5:56:14:7b:5d:93: 47:f7:85:af:86:f5:ba:f0:d9:53:8c:3d:89:52:fd: c3:83:48:8a:e6:68:90:dd:37:78:35:12:ca:0e:82: af:af:7b:55:92:cb:8b:56:d7:57:8f:38:2f:8d:65: a1:81:88:ee:02:3e:2d:87:e2:c0:9a:e3:29:89:b8: df:a1:5b:c2:36:9e:26:f9:32:c7:11:71:07:9f:6f: b2:8c:68:14:e3:9b:a6:22:af:2a:b4:3c:5e:5d:7b: 93:86:2f:0f:8b:fe:e6:0b:fc:0c:cd:6b:3d:7c:a5: f8:46:16:23:29:e1:fc:36:9f:a5:00:2d:65:ab:94: 29:3a:a1:4d:34:70:c3:8a:df:cf:ea:34:3e:0d:08: 9a:53:fd:01:f7:3e:7b:92:95:43:8e:98:df:97:7a: f0:f9:b9:ab:17:70:0a:cf:7e:80:a0:e3:01:2a:38: b4:a0:68:c4:e1:0b:ee:d5:36:25:07:fc:5f:dd:fa: f3:d2:46:4a:36:e4:03:fa:bf:69:30:3d:c6:76:b5: 0d:82:d9:b6:63:74:60:dc:57:a1:46:19:a1:54:b6: 06:e5:b0:d3:16:e9:08:5b:7b:9d:d2:5f:4f:87:1e: c6:5f:db:92:90:bd:7f:7b:c4:2d:79:60:2b:ef:02: 32:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:3F:BB:D4:29:83:0D:50:CF:6B:AF:FB:A5:A6:E3:23:A9:AB:80:C6 X509v3 Authority Key Identifier: keyid:08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/34352e39302e3131322e302f32322d3234203d3e20323033303631.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.90.112.0/22 Signature Algorithm: sha256WithRSAEncryption 09:cf:92:6d:9f:85:b1:52:d8:83:ba:73:3e:30:cf:4a:95:34: 0e:80:6a:34:51:c5:1f:2a:bd:c4:1b:45:51:e8:c6:ff:97:d3: cc:c6:db:af:f6:14:ca:15:88:bf:92:08:74:2e:f5:0b:db:06: 6c:78:63:3e:ad:82:f6:7e:56:3c:57:46:8a:aa:91:f0:89:f2: 32:f7:12:fe:43:cc:4f:4e:88:3f:e4:1b:4c:e5:94:00:50:37: f0:f6:3e:82:da:7b:59:b9:a9:cc:31:8e:45:85:ad:4c:e2:40: e9:9e:75:ba:0e:32:8c:59:be:80:0b:f8:1b:8e:ac:84:bf:6e: 24:c0:a7:d1:ff:68:54:75:fe:f8:83:c6:2d:21:fa:08:e4:d9: d5:db:5c:50:d0:ac:51:28:d1:3b:0d:05:29:6d:37:f0:27:14: 34:39:a5:38:17:fb:4e:ee:50:c4:f0:17:cd:e6:8a:75:e9:b9: 2d:75:e7:20:43:2b:1a:0c:21:69:c3:90:ee:cd:df:a6:b8:fa: 5c:31:e9:ce:ef:72:34:80:d2:e1:e7:f7:6c:57:53:7d:f9:a7: 89:1c:79:b6:52:ab:04:0e:51:45:f6:f0:1f:0d:85:07:89:a9: 36:c3:ec:75:ad:fc:5a:12:bf:f4:b6:a5:a1:fc:e6:16:98:27: ce:d2:1e:0a -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUP216RzZjavwJ1SyPXOlCKoj5BSowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDg4NDY5ZDFhMzMwODVmZjg4YjNlNTk5ZDIyM2NhNzRj MjMxM2EzYTAeFw0yNTEyMjkwOTQ1MjhaFw0yNjEyMjgwOTUwMjhaMDMxMTAvBgNV BAMTKDgzM0ZCQkQ0Mjk4MzBENTBDRjZCQUZGQkE1QTZFMzIzQTlBQjgwQzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDA2/8sxGzuSMVWFHtdk0f3ha+G 9brw2VOMPYlS/cODSIrmaJDdN3g1EsoOgq+ve1WSy4tW11ePOC+NZaGBiO4CPi2H 4sCa4ymJuN+hW8I2nib5MscRcQefb7KMaBTjm6Yiryq0PF5de5OGLw+L/uYL/AzN az18pfhGFiMp4fw2n6UALWWrlCk6oU00cMOK38/qND4NCJpT/QH3PnuSlUOOmN+X evD5uasXcArPfoCg4wEqOLSgaMThC+7VNiUH/F/d+vPSRko25AP6v2kwPcZ2tQ2C 2bZjdGDcV6FGGaFUtgblsNMW6Qhbe53SX0+HHsZf25KQvX97xC15YCvvAjIFAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUgz+71CmDDVDPa6/7pabjI6mrgMYwHwYDVR0j BBgwFoAUCIRp0aMwhf+Is+WZ0iPKdMIxOjowDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzUvMDg4NDY5RDFBMzMwODVGRjg4QjNFNTk5RDIyM0NBNzRDMjMxM0EzQS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0NJUnAwYU13aGYtSXMtV1owaVBLZE1J eE9qby5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzUvMzQzNTJlMzkzMDJlMzEzMTMy MmUzMDJmMzIzMjJkMzIzNDIwM2QzZTIwMzIzMDMzMzAzNjMxLnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQC LVpwMA0GCSqGSIb3DQEBCwUAA4IBAQAJz5Jtn4WxUtiDunM+MM9KlTQOgGo0UcUf Kr3EG0VR6Mb/l9PMxtuv9hTKFYi/kgh0LvUL2wZseGM+rYL2flY8V0aKqpHwifIy 9xL+Q8xPTog/5BtM5ZQAUDfw9j6C2ntZuanMMY5Fha1M4kDpnnW6DjKMWb6AC/gb jqyEv24kwKfR/2hUdf74g8YtIfoI5NnV21xQ0KxRKNE7DQUpbTfwJxQ0OaU4F/tO 7lDE8BfN5op16bktdecgQysaDCFpw5Duzd+muPpcMenO73I0gNLh5/dsV1N9+aeJ HHm2UqsEDlFF9vAfDYUHiak2w+x1rfxaEr/0tqWh/OYWmCfO0h4K -----END CERTIFICATE-----Generated at Mon Jan 19 20:01:56 2026 by rpki-client