This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/36322e3139322e3137362e302f32322d3232203d3e20323033303631.roa File: 36322e3139322e3137362e302f32322d3232203d3e20323033303631.roa (raw, json) Hash identifier: 49lv1tQZAHJwzvHPr237DkNdQCnX5treJHpzhBOcUIU= Subject key identifier: 02:CB:05:E4:B9:7A:CD:8F:7A:34:31:58:1A:57:88:9A:06:99:0B:02 Certificate issuer: /CN=088469d1a33085ff88b3e599d223ca74c2313a3a Certificate serial: 4EB9646AF5611BAB7DE8D61DFB157F5F1949CF83 Authority key identifier: 08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/36322e3139322e3137362e302f32322d3232203d3e20323033303631.roa Signing time: Mon 29 Dec 2025 09:50:26 +0000 ROA not before: Mon 29 Dec 2025 09:45:26 +0000 ROA not after: Mon 28 Dec 2026 09:50:26 +0000 asID: 203061 IP address blocks: 62.192.176.0/22 maxlen: 22 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.mft rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 16:55:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:b9:64:6a:f5:61:1b:ab:7d:e8:d6:1d:fb:15:7f:5f:19:49:cf:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=088469d1a33085ff88b3e599d223ca74c2313a3a Validity Not Before: Dec 29 09:45:26 2025 GMT Not After : Dec 28 09:50:26 2026 GMT Subject: CN=02CB05E4B97ACD8F7A3431581A57889A06990B02 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:8a:b9:46:ed:17:4e:19:73:e5:ef:64:bc:4e: f2:3b:eb:ca:6f:d4:5b:6c:31:48:9a:ad:9b:cf:33: 62:1a:ad:ee:a7:b2:c7:f3:7c:27:be:23:3e:7e:96: 23:57:a2:25:aa:31:3d:5f:2a:f5:cb:63:bc:31:51: 6e:c5:67:0d:af:97:8f:a9:c8:45:a6:b7:b2:5e:d0: 4a:c7:7e:67:70:cc:b9:8f:f2:de:26:08:5d:3b:e0: 73:7a:ad:27:c6:1b:03:38:85:2b:61:8e:d4:a4:58: a2:4d:ac:d7:88:09:bc:40:19:b7:51:b2:0b:5d:81: 71:8f:28:b9:8c:3d:87:7c:13:84:69:e4:44:ee:17: ce:df:88:20:a0:d1:d2:ac:b9:a3:fd:e1:8b:27:2f: 0b:f4:d1:06:1e:25:07:fc:e6:73:72:d7:20:ab:ad: da:4d:86:7a:97:6f:21:e6:c0:ad:5c:14:fd:54:a7: ae:5d:07:63:74:0b:db:a0:22:0d:e2:8d:a7:fc:85: b0:29:48:e2:9a:ad:de:df:91:05:3a:c0:fc:b6:71: 3b:c3:c6:b9:52:97:7a:b0:b5:d7:66:b5:22:41:1d: de:61:be:d6:1d:30:3b:10:24:6d:0f:5b:82:ef:19: da:c9:0a:7f:87:02:08:d8:81:ed:8d:f0:d8:74:3c: db:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:CB:05:E4:B9:7A:CD:8F:7A:34:31:58:1A:57:88:9A:06:99:0B:02 X509v3 Authority Key Identifier: keyid:08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/36322e3139322e3137362e302f32322d3232203d3e20323033303631.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 62.192.176.0/22 Signature Algorithm: sha256WithRSAEncryption 92:f8:2c:b9:75:1e:90:f4:72:b6:df:8e:84:f3:37:93:e5:72: 5d:a7:5a:f5:32:08:38:3c:b8:8e:9f:90:0b:ed:a1:4d:37:f9: cd:35:cf:9d:9f:91:1e:72:ca:19:24:47:01:44:92:f3:09:dc: d1:41:b2:68:61:f5:a6:74:c1:53:e9:60:e4:9c:26:86:f9:aa: 5e:50:64:d4:e0:7f:36:80:07:be:ee:1b:b5:12:34:c6:bc:a4: a9:48:c1:b5:ef:55:36:51:fc:b7:63:fb:8a:b0:a1:17:bd:fb: 8f:d9:a7:8e:7c:20:58:76:7a:97:a4:28:e7:13:d4:41:7c:84: b9:75:5d:20:11:c3:51:32:3e:71:23:6d:99:97:27:58:ac:61: eb:dc:3f:16:a1:a9:b7:1c:1d:0a:d8:8b:d8:ac:c3:9f:c3:58: 0d:4f:c8:6a:dd:f0:e5:aa:7c:4e:29:be:57:38:c2:d7:aa:cd: 79:46:09:27:a0:e6:5a:39:c1:ec:1f:e3:b7:5d:0e:3c:43:cc: 0f:d6:38:9d:9b:de:d2:cd:f3:6c:56:59:3f:7c:0a:96:76:2d: da:7d:2a:05:25:b5:d1:0b:7d:87:08:94:72:2f:24:97:f2:46: ec:e5:af:7b:17:be:e8:6a:66:df:c2:74:12:05:67:51:30:3e: 83:58:cc:5a -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUTrlkavVhG6t96NYd+xV/XxlJz4MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDg4NDY5ZDFhMzMwODVmZjg4YjNlNTk5ZDIyM2NhNzRj MjMxM2EzYTAeFw0yNTEyMjkwOTQ1MjZaFw0yNjEyMjgwOTUwMjZaMDMxMTAvBgNV BAMTKDAyQ0IwNUU0Qjk3QUNEOEY3QTM0MzE1ODFBNTc4ODlBMDY5OTBCMDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQClirlG7RdOGXPl72S8TvI768pv 1FtsMUiarZvPM2Iare6nssfzfCe+Iz5+liNXoiWqMT1fKvXLY7wxUW7FZw2vl4+p yEWmt7Je0ErHfmdwzLmP8t4mCF074HN6rSfGGwM4hSthjtSkWKJNrNeICbxAGbdR sgtdgXGPKLmMPYd8E4Rp5ETuF87fiCCg0dKsuaP94YsnLwv00QYeJQf85nNy1yCr rdpNhnqXbyHmwK1cFP1Up65dB2N0C9ugIg3ijaf8hbApSOKard7fkQU6wPy2cTvD xrlSl3qwtddmtSJBHd5hvtYdMDsQJG0PW4LvGdrJCn+HAgjYge2N8Nh0PNvlAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUAssF5Ll6zY96NDFYGleImgaZCwIwHwYDVR0j BBgwFoAUCIRp0aMwhf+Is+WZ0iPKdMIxOjowDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzUvMDg4NDY5RDFBMzMwODVGRjg4QjNFNTk5RDIyM0NBNzRDMjMxM0EzQS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0NJUnAwYU13aGYtSXMtV1owaVBLZE1J eE9qby5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzUvMzYzMjJlMzEzOTMyMmUzMTM3 MzYyZTMwMmYzMjMyMmQzMjMyMjAzZDNlMjAzMjMwMzMzMDM2MzEucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAI+wLAwDQYJKoZIhvcNAQELBQADggEBAJL4LLl1HpD0crbfjoTzN5Plcl2nWvUy CDg8uI6fkAvtoU03+c01z52fkR5yyhkkRwFEkvMJ3NFBsmhh9aZ0wVPpYOScJob5 ql5QZNTgfzaAB77uG7USNMa8pKlIwbXvVTZR/Ldj+4qwoRe9+4/Zp458IFh2epek KOcT1EF8hLl1XSARw1EyPnEjbZmXJ1isYevcPxahqbccHQrYi9isw5/DWA1PyGrd 8OWqfE4pvlc4wteqzXlGCSeg5lo5wewf47ddDjxDzA/WOJ2b3tLN82xWWT98CpZ2 Ldp9KgUltdELfYcIlHIvJJfyRuzlr3sXvuhqZt/CdBIFZ1EwPoNYzFo= -----END CERTIFICATE-----Generated at Mon Jan 19 20:02:28 2026 by rpki-client