This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/352e3138302e36302e302f32342d3234203d3e203437353833.roa File: 352e3138302e36302e302f32342d3234203d3e203437353833.roa (raw, json) Hash identifier: 1wdSmcDWxzDY0lESKnVj1EA69neJv/Zq1VjPzfQvW40= Subject key identifier: 44:45:0F:CA:CF:FD:94:EB:AB:A9:ED:BF:01:0A:AA:AA:00:B9:37:5F Certificate issuer: /CN=088469d1a33085ff88b3e599d223ca74c2313a3a Certificate serial: 4085ECAC48321237A64FBB31A1C7B595B4CD641A Authority key identifier: 08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/352e3138302e36302e302f32342d3234203d3e203437353833.roa Signing time: Mon 29 Dec 2025 09:50:25 +0000 ROA not before: Mon 29 Dec 2025 09:45:25 +0000 ROA not after: Mon 28 Dec 2026 09:50:25 +0000 asID: 47583 IP address blocks: 5.180.60.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.mft rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 16:55:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:85:ec:ac:48:32:12:37:a6:4f:bb:31:a1:c7:b5:95:b4:cd:64:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=088469d1a33085ff88b3e599d223ca74c2313a3a Validity Not Before: Dec 29 09:45:25 2025 GMT Not After : Dec 28 09:50:25 2026 GMT Subject: CN=44450FCACFFD94EBABA9EDBF010AAAAA00B9375F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:44:4d:56:23:55:17:37:29:84:bb:27:6d:1e: b3:bb:c2:40:95:65:55:81:22:49:17:95:bf:c3:de: de:01:ae:00:bf:22:40:ae:22:74:f5:67:83:06:e7: 56:70:1d:90:a1:14:0d:48:3f:aa:50:52:ec:1c:65: d3:4b:2c:0f:0b:35:d3:92:ba:ee:52:3e:c8:62:da: 78:7c:93:af:10:3f:2b:5c:c4:c1:ca:db:a3:1c:cd: 1f:bd:e8:56:b7:ea:06:4e:c3:e8:9a:a5:8a:d1:5d: 6b:e1:87:dc:2f:a3:21:25:b0:30:02:f5:b9:20:2e: 81:5d:2c:58:09:54:49:8d:89:80:c2:4a:11:d3:04: dc:34:20:7c:61:1e:b9:c6:87:82:af:51:25:7c:8f: 42:d2:2e:2f:8a:17:b8:16:48:2d:f7:ec:b7:37:db: 52:73:28:b6:ae:3f:a1:7f:93:d0:0b:db:1a:34:81: c8:da:8a:e5:55:b5:11:88:35:48:5b:64:c2:5e:d9: cb:24:e8:89:c6:4c:d9:45:cb:58:df:e4:ba:aa:31: 2c:d6:7a:ca:55:44:ba:b0:c7:84:c7:32:e0:f3:a3: 0f:ed:cd:aa:c3:01:ef:5b:e3:8a:43:20:f7:d2:1c: 8e:87:f3:93:b9:ee:9a:67:9c:8c:6d:65:61:4b:71: af:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:45:0F:CA:CF:FD:94:EB:AB:A9:ED:BF:01:0A:AA:AA:00:B9:37:5F X509v3 Authority Key Identifier: keyid:08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/352e3138302e36302e302f32342d3234203d3e203437353833.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.180.60.0/24 Signature Algorithm: sha256WithRSAEncryption b1:60:20:26:d8:af:7d:49:f9:35:e5:71:45:96:dd:7c:cd:5f: ba:84:0b:dd:74:71:9f:e9:77:df:31:32:59:d7:14:15:ba:a9: 16:fc:35:11:0e:66:02:96:13:4b:ff:33:65:d9:8b:1c:17:e0: 74:a4:e6:2a:f7:4b:7f:f4:c4:b6:dc:a2:3d:c8:61:66:90:b4: 45:f6:bd:bf:d7:70:f8:70:30:d4:b9:d3:24:2d:12:a7:ef:71: f9:71:1c:5e:7f:3f:7d:2d:da:3c:13:2b:4b:03:df:31:5b:36: 95:9c:fd:eb:a1:24:82:24:15:ee:ca:cc:51:e3:03:39:2b:c1: 93:71:25:6d:32:ff:fb:38:8a:6f:7a:c4:bd:83:e1:b6:b1:a1: 6d:75:54:f9:87:59:e1:32:67:4b:06:f0:da:0c:d4:08:11:7d: 60:20:3e:44:5f:ff:27:10:07:37:a3:74:c1:03:2f:a9:66:51: ed:7b:ce:73:de:60:b6:bc:ca:f9:0b:b2:33:1f:4f:94:43:51: 2f:6f:c0:b9:28:fe:06:ff:81:2b:3a:9e:ff:87:e0:12:aa:a3: 81:d7:87:47:5d:06:d8:1b:73:46:f6:72:0b:f7:4f:61:9c:72: cc:3e:29:83:d9:3c:70:e5:0b:7e:3f:5d:9e:5b:42:d8:92:63: 06:ba:4b:0e -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUQIXsrEgyEjemT7sxoce1lbTNZBowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDg4NDY5ZDFhMzMwODVmZjg4YjNlNTk5ZDIyM2NhNzRj MjMxM2EzYTAeFw0yNTEyMjkwOTQ1MjVaFw0yNjEyMjgwOTUwMjVaMDMxMTAvBgNV BAMTKDQ0NDUwRkNBQ0ZGRDk0RUJBQkE5RURCRjAxMEFBQUFBMDBCOTM3NUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDARE1WI1UXNymEuydtHrO7wkCV ZVWBIkkXlb/D3t4BrgC/IkCuInT1Z4MG51ZwHZChFA1IP6pQUuwcZdNLLA8LNdOS uu5SPshi2nh8k68QPytcxMHK26MczR+96Fa36gZOw+iapYrRXWvhh9wvoyElsDAC 9bkgLoFdLFgJVEmNiYDCShHTBNw0IHxhHrnGh4KvUSV8j0LSLi+KF7gWSC337Lc3 21JzKLauP6F/k9AL2xo0gcjaiuVVtRGINUhbZMJe2csk6InGTNlFy1jf5LqqMSzW espVRLqwx4THMuDzow/tzarDAe9b44pDIPfSHI6H85O57ppnnIxtZWFLca9BAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUREUPys/9lOurqe2/AQqqqgC5N18wHwYDVR0j BBgwFoAUCIRp0aMwhf+Is+WZ0iPKdMIxOjowDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzUvMDg4NDY5RDFBMzMwODVGRjg4QjNFNTk5RDIyM0NBNzRDMjMxM0EzQS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0NJUnAwYU13aGYtSXMtV1owaVBLZE1J eE9qby5jZXIwgakGCCsGAQUFBwELBIGcMIGZMIGWBggrBgEFBQcwC4aBiXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzUvMzUyZTMxMzgzMDJlMzYzMDJl MzAyZjMyMzQyZDMyMzQyMDNkM2UyMDM0MzczNTM4MzMucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAFtDww DQYJKoZIhvcNAQELBQADggEBALFgICbYr31J+TXlcUWW3XzNX7qEC910cZ/pd98x MlnXFBW6qRb8NREOZgKWE0v/M2XZixwX4HSk5ir3S3/0xLbcoj3IYWaQtEX2vb/X cPhwMNS50yQtEqfvcflxHF5/P30t2jwTK0sD3zFbNpWc/euhJIIkFe7KzFHjAzkr wZNxJW0y//s4im96xL2D4baxoW11VPmHWeEyZ0sG8NoM1AgRfWAgPkRf/ycQBzej dMEDL6lmUe17znPeYLa8yvkLsjMfT5RDUS9vwLko/gb/gSs6nv+H4BKqo4HXh0dd Btgbc0b2cgv3T2Gccsw+KYPZPHDlC34/XZ5bQtiSYwa6Sw4= -----END CERTIFICATE-----Generated at Mon Jan 19 20:01:57 2026 by rpki-client