This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/352e3138302e36312e302f32342d3234203d3e20313437303439.roa File: 352e3138302e36312e302f32342d3234203d3e20313437303439.roa (raw, json) Hash identifier: Set+SZSELU7BwRv3Bka9IKQlF347/OvfgEelmRSb9XQ= Subject key identifier: 1D:A5:16:F3:91:83:DB:1E:24:DD:54:DD:9E:86:E8:4E:DC:9A:D5:3B Certificate issuer: /CN=088469d1a33085ff88b3e599d223ca74c2313a3a Certificate serial: 6A35855E59DFD51FE98D3305E9376AFEBB7E5A28 Authority key identifier: 08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/352e3138302e36312e302f32342d3234203d3e20313437303439.roa Signing time: Mon 29 Dec 2025 09:50:31 +0000 ROA not before: Mon 29 Dec 2025 09:45:31 +0000 ROA not after: Mon 28 Dec 2026 09:50:31 +0000 asID: 147049 IP address blocks: 5.180.61.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.mft rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 09:01:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:35:85:5e:59:df:d5:1f:e9:8d:33:05:e9:37:6a:fe:bb:7e:5a:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=088469d1a33085ff88b3e599d223ca74c2313a3a Validity Not Before: Dec 29 09:45:31 2025 GMT Not After : Dec 28 09:50:31 2026 GMT Subject: CN=1DA516F39183DB1E24DD54DD9E86E84EDC9AD53B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:32:06:ff:67:61:7a:4f:98:51:56:6f:26:47: ae:6b:e9:a6:ca:0a:94:05:04:84:d9:e9:0c:b4:37: e1:1f:bc:9f:33:8f:c6:d1:e6:07:d6:26:87:dd:ad: 33:62:93:c4:ef:70:1d:40:7e:5f:6e:be:48:79:be: 3d:48:f7:47:fa:55:44:b2:dd:be:97:8c:d1:af:1f: 4c:0f:51:38:c1:3d:15:87:e7:52:1b:71:b6:fd:86: ed:1f:26:ce:aa:8e:f8:a2:df:91:03:5b:d2:ca:da: f7:94:03:f6:38:1a:e6:65:b7:a4:11:ca:b0:a3:08: ab:de:97:b3:7a:9a:e6:a6:cd:3d:6a:1d:97:76:a5: 97:7a:a4:a2:8b:8a:58:f4:9d:f8:4b:dc:b3:4d:cb: d8:b8:4c:b6:29:15:ff:f4:6f:e2:7f:9a:af:78:a0: 03:52:e7:f0:0e:2a:7a:e9:b8:57:42:3a:2e:ae:bb: 84:50:39:be:be:37:19:a4:07:99:0d:37:0c:fd:a4: 7c:12:0b:27:e6:07:f5:52:cc:b1:c7:05:94:c6:be: 2d:42:82:2b:84:3c:7a:a1:96:f8:be:0e:09:83:75: 3c:0e:ed:98:ff:84:ea:8e:a4:9e:a7:de:ac:e1:9c: 25:16:4a:ed:d8:b9:86:96:4a:13:3e:0c:7e:5e:8a: 52:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:A5:16:F3:91:83:DB:1E:24:DD:54:DD:9E:86:E8:4E:DC:9A:D5:3B X509v3 Authority Key Identifier: keyid:08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/352e3138302e36312e302f32342d3234203d3e20313437303439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.180.61.0/24 Signature Algorithm: sha256WithRSAEncryption 35:e1:0a:1a:fb:29:0c:b8:e5:be:bb:14:11:e5:ca:7b:88:f5: 0c:a2:18:ef:23:e0:1b:a2:0c:92:8b:c9:f2:13:f9:8c:9b:9d: 78:98:77:05:19:80:21:f0:7e:3e:00:40:e5:2d:78:dd:ec:cd: 3e:ce:ec:c6:73:27:5d:67:df:53:0f:ca:a4:31:fd:65:e5:39: d0:cd:83:84:e6:86:2f:c8:08:6a:48:d2:c9:04:95:db:0f:db: 65:36:fe:56:28:e1:fd:cf:f7:dd:aa:2f:d5:bd:14:ea:26:75: 17:c2:3e:52:9c:0d:2f:c8:b2:51:b1:ca:a7:be:49:6e:6e:12: c7:53:f5:2b:12:65:d0:03:6e:5c:3f:26:e9:12:e7:4c:ce:c2: 44:f2:fe:99:46:34:63:fe:9e:15:da:a2:a8:e3:75:ae:0b:01: 53:0b:f5:7f:2b:0b:e9:60:8d:ca:72:a1:17:da:ec:21:af:45: 20:b8:b5:e4:8c:d8:8b:e6:31:a2:33:64:93:1c:6f:6b:b1:cb: 30:dd:e5:64:16:af:03:98:a1:f2:a4:dd:a1:bf:dc:ce:06:79: 4b:4e:ff:5c:ca:ff:ed:b5:c6:16:f6:0c:66:cf:3a:de:5b:c2: d2:e0:be:74:31:22:8d:c3:24:a5:6f:60:6e:79:d0:0e:b8:89: c0:08:2e:69 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUajWFXlnf1R/pjTMF6Tdq/rt+WigwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDg4NDY5ZDFhMzMwODVmZjg4YjNlNTk5ZDIyM2NhNzRj MjMxM2EzYTAeFw0yNTEyMjkwOTQ1MzFaFw0yNjEyMjgwOTUwMzFaMDMxMTAvBgNV BAMTKDFEQTUxNkYzOTE4M0RCMUUyNERENTRERDlFODZFODRFREM5QUQ1M0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDnMgb/Z2F6T5hRVm8mR65r6abK CpQFBITZ6Qy0N+EfvJ8zj8bR5gfWJofdrTNik8TvcB1Afl9uvkh5vj1I90f6VUSy 3b6XjNGvH0wPUTjBPRWH51Ibcbb9hu0fJs6qjvii35EDW9LK2veUA/Y4GuZlt6QR yrCjCKvel7N6muamzT1qHZd2pZd6pKKLilj0nfhL3LNNy9i4TLYpFf/0b+J/mq94 oANS5/AOKnrpuFdCOi6uu4RQOb6+NxmkB5kNNwz9pHwSCyfmB/VSzLHHBZTGvi1C giuEPHqhlvi+DgmDdTwO7Zj/hOqOpJ6n3qzhnCUWSu3YuYaWShM+DH5eilLNAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUHaUW85GD2x4k3VTdnoboTtya1TswHwYDVR0j BBgwFoAUCIRp0aMwhf+Is+WZ0iPKdMIxOjowDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzUvMDg4NDY5RDFBMzMwODVGRjg4QjNFNTk5RDIyM0NBNzRDMjMxM0EzQS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0NJUnAwYU13aGYtSXMtV1owaVBLZE1J eE9qby5jZXIwgasGCCsGAQUFBwELBIGeMIGbMIGYBggrBgEFBQcwC4aBi3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzUvMzUyZTMxMzgzMDJlMzYzMTJl MzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzQzNzMwMzQzOS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAAW0 PTANBgkqhkiG9w0BAQsFAAOCAQEANeEKGvspDLjlvrsUEeXKe4j1DKIY7yPgG6IM kovJ8hP5jJudeJh3BRmAIfB+PgBA5S143ezNPs7sxnMnXWffUw/KpDH9ZeU50M2D hOaGL8gIakjSyQSV2w/bZTb+Vijh/c/33aov1b0U6iZ1F8I+UpwNL8iyUbHKp75J bm4Sx1P1KxJl0ANuXD8m6RLnTM7CRPL+mUY0Y/6eFdqiqON1rgsBUwv1fysL6WCN ynKhF9rsIa9FILi15IzYi+YxojNkkxxva7HLMN3lZBavA5ih8qTdob/czgZ5S07/ XMr/7bXGFvYMZs863lvC0uC+dDEijcMkpW9gbnnQDriJwAguaQ== -----END CERTIFICATE-----Generated at Mon Jan 19 17:35:24 2026 by rpki-client