This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/352e3138322e33332e302f32342d3332203d3e203531313637.roa File: 352e3138322e33332e302f32342d3332203d3e203531313637.roa (raw, json) Hash identifier: yUmtpnhNsvi6Ua0iv9N3sn1ioHqMUepzLeRTUHSbmSQ= Subject key identifier: 08:54:36:D1:B3:42:FA:28:8B:B5:53:35:53:85:72:95:9E:CB:2B:E5 Certificate issuer: /CN=088469d1a33085ff88b3e599d223ca74c2313a3a Certificate serial: 5DA826B20E1BD91AB1C985F5F309EE25B7806B5B Authority key identifier: 08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/352e3138322e33332e302f32342d3332203d3e203531313637.roa Signing time: Mon 29 Dec 2025 09:50:29 +0000 ROA not before: Mon 29 Dec 2025 09:45:29 +0000 ROA not after: Mon 28 Dec 2026 09:50:29 +0000 asID: 51167 IP address blocks: 5.182.33.0/24 maxlen: 32 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.mft rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 17:47:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:a8:26:b2:0e:1b:d9:1a:b1:c9:85:f5:f3:09:ee:25:b7:80:6b:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=088469d1a33085ff88b3e599d223ca74c2313a3a Validity Not Before: Dec 29 09:45:29 2025 GMT Not After : Dec 28 09:50:29 2026 GMT Subject: CN=085436D1B342FA288BB55335538572959ECB2BE5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:af:20:7d:db:bd:47:1f:e1:3e:01:53:22:d0: 0e:2f:d4:da:6d:f7:a9:58:87:18:61:92:d8:2b:db: 56:61:0a:c2:03:bb:07:69:8e:cd:3e:82:10:c6:f4: 08:ad:55:89:22:07:4e:9c:e9:95:c2:ba:ed:29:6d: 45:94:59:68:19:17:37:8b:9a:41:13:e8:b4:66:ec: 54:1c:bf:dd:72:4e:49:6e:fd:88:2c:09:1d:b2:1e: e3:6b:2f:3c:97:c3:16:8b:7c:c0:89:31:f9:6e:d0: 79:ea:f4:42:e7:a7:01:2c:32:f3:7d:72:1e:72:ac: 70:09:a7:51:ba:e0:7f:0f:c5:3b:39:6e:44:e1:df: e9:f6:3a:f9:83:74:7c:51:78:62:72:60:ae:3e:5e: 21:50:51:95:18:37:ec:31:d4:78:dc:c2:3c:9e:98: 7a:a0:bb:24:ae:76:ad:46:f2:d4:fb:bf:27:5c:fe: 4b:cf:32:b3:a4:65:ee:9b:92:8a:b7:2f:68:ef:a2: cd:c3:79:df:e9:41:a6:bf:6c:6d:2f:5c:bd:f5:2d: 94:46:f8:83:5e:4c:5d:b6:ec:04:14:d1:4b:46:02: 31:e4:ca:98:72:7b:f0:68:52:1d:4f:22:1c:d5:f5: 22:0a:79:97:d8:c5:d1:69:66:8d:9f:84:63:39:67: 10:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:54:36:D1:B3:42:FA:28:8B:B5:53:35:53:85:72:95:9E:CB:2B:E5 X509v3 Authority Key Identifier: keyid:08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/352e3138322e33332e302f32342d3332203d3e203531313637.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.182.33.0/24 Signature Algorithm: sha256WithRSAEncryption 23:8b:b4:db:43:a8:f2:92:40:36:07:fa:b8:09:26:fb:eb:5d: b7:a7:7c:53:4e:a4:cf:8c:6d:da:11:79:b9:4a:9f:7d:52:90: 75:b3:e3:7a:34:5b:9b:87:50:87:98:93:d5:bd:9a:2b:45:ca: 96:da:5f:03:71:9e:ab:48:35:14:88:45:f8:93:24:b0:55:18: 8c:3f:d4:ba:ca:e0:dc:5c:fe:9f:7d:83:cf:88:20:12:5e:4c: ec:ed:c3:fc:ab:49:a8:47:4f:0c:f8:74:f8:a3:74:26:c5:bc: 68:1a:b5:dc:a8:87:11:7b:06:12:3b:f4:b2:99:e0:72:aa:1d: 82:58:87:3e:2d:0f:ff:db:c7:cf:b0:7d:08:61:17:30:c9:72: 62:95:9c:75:c3:f3:08:7f:b9:17:af:48:18:c2:37:f8:b8:7a: 62:24:00:f4:88:8e:f4:00:54:13:3b:b1:2e:f4:94:f5:d8:f5: 1a:53:61:93:19:5c:25:0f:e9:c2:1b:37:c0:0f:04:ac:8d:3d: 89:19:14:65:5e:94:1a:65:0d:af:de:03:91:e8:35:bf:6b:38: af:17:40:f3:23:1f:b7:66:71:ba:8f:af:e2:74:32:c4:7c:ff: 69:ac:bd:5a:6b:69:8f:9b:d6:5a:aa:df:da:10:df:32:cc:53: f1:0d:4a:b4 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUXagmsg4b2RqxyYX18wnuJbeAa1swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDg4NDY5ZDFhMzMwODVmZjg4YjNlNTk5ZDIyM2NhNzRj MjMxM2EzYTAeFw0yNTEyMjkwOTQ1MjlaFw0yNjEyMjgwOTUwMjlaMDMxMTAvBgNV BAMTKDA4NTQzNkQxQjM0MkZBMjg4QkI1NTMzNTUzODU3Mjk1OUVDQjJCRTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0ryB9271HH+E+AVMi0A4v1Npt 96lYhxhhktgr21ZhCsIDuwdpjs0+ghDG9AitVYkiB06c6ZXCuu0pbUWUWWgZFzeL mkET6LRm7FQcv91yTklu/YgsCR2yHuNrLzyXwxaLfMCJMflu0Hnq9ELnpwEsMvN9 ch5yrHAJp1G64H8PxTs5bkTh3+n2OvmDdHxReGJyYK4+XiFQUZUYN+wx1Hjcwjye mHqguySudq1G8tT7vydc/kvPMrOkZe6bkoq3L2jvos3Ded/pQaa/bG0vXL31LZRG +INeTF227AQU0UtGAjHkyphye/BoUh1PIhzV9SIKeZfYxdFpZo2fhGM5ZxDdAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUCFQ20bNC+iiLtVM1U4VylZ7LK+UwHwYDVR0j BBgwFoAUCIRp0aMwhf+Is+WZ0iPKdMIxOjowDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzUvMDg4NDY5RDFBMzMwODVGRjg4QjNFNTk5RDIyM0NBNzRDMjMxM0EzQS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0NJUnAwYU13aGYtSXMtV1owaVBLZE1J eE9qby5jZXIwgakGCCsGAQUFBwELBIGcMIGZMIGWBggrBgEFBQcwC4aBiXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzUvMzUyZTMxMzgzMjJlMzMzMzJl MzAyZjMyMzQyZDMzMzIyMDNkM2UyMDM1MzEzMTM2Mzcucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAFtiEw DQYJKoZIhvcNAQELBQADggEBACOLtNtDqPKSQDYH+rgJJvvrXbenfFNOpM+MbdoR eblKn31SkHWz43o0W5uHUIeYk9W9mitFypbaXwNxnqtINRSIRfiTJLBVGIw/1LrK 4Nxc/p99g8+IIBJeTOztw/yrSahHTwz4dPijdCbFvGgatdyohxF7BhI79LKZ4HKq HYJYhz4tD//bx8+wfQhhFzDJcmKVnHXD8wh/uRevSBjCN/i4emIkAPSIjvQAVBM7 sS70lPXY9RpTYZMZXCUP6cIbN8APBKyNPYkZFGVelBplDa/eA5HoNb9rOK8XQPMj H7dmcbqPr+J0MsR8/2msvVpraY+b1lqq39oQ3zLMU/ENSrQ= -----END CERTIFICATE-----Generated at Tue Feb 10 06:09:55 2026 by rpki-client