This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/34352e36352e3131392e302f32342d3234203d3e20383334.roa File: 34352e36352e3131392e302f32342d3234203d3e20383334.roa (raw, json) Hash identifier: 0/4NwfjBJZbjrQ1wV6nTraLnXq0b7mkcdY3WXztYgAA= Subject key identifier: 7E:C9:6E:66:0A:27:F8:12:90:EC:62:AC:C6:5F:B4:DE:32:16:2A:E0 Certificate issuer: /CN=62fbd2cc0012fb2f86db40b589bd1ac4e973266d Certificate serial: 6877BB3A73F9D272D6C57A838C821ACB77CAA751 Authority key identifier: 62:FB:D2:CC:00:12:FB:2F:86:DB:40:B5:89:BD:1A:C4:E9:73:26:6D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YvvSzAAS-y-G20C1ib0axOlzJm0.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/34352e36352e3131392e302f32342d3234203d3e20383334.roa Signing time: Mon 15 Dec 2025 00:11:02 +0000 ROA not before: Mon 15 Dec 2025 00:06:02 +0000 ROA not after: Mon 14 Dec 2026 00:11:02 +0000 asID: 834 IP address blocks: 45.65.119.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/62FBD2CC0012FB2F86DB40B589BD1AC4E973266D.crl rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/62FBD2CC0012FB2F86DB40B589BD1AC4E973266D.mft rsync://rpki.ripe.net/repository/DEFAULT/YvvSzAAS-y-G20C1ib0axOlzJm0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 16 Dec 2025 12:58:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:77:bb:3a:73:f9:d2:72:d6:c5:7a:83:8c:82:1a:cb:77:ca:a7:51 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=62fbd2cc0012fb2f86db40b589bd1ac4e973266d Validity Not Before: Dec 15 00:06:02 2025 GMT Not After : Dec 14 00:11:02 2026 GMT Subject: CN=7EC96E660A27F81290EC62ACC65FB4DE32162AE0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:3c:08:7d:24:97:a0:8c:67:75:af:ca:49:8d: c8:ab:bf:6c:f1:e6:90:c3:ea:59:29:6f:5b:6b:dd: 8c:50:62:83:97:8d:51:5b:3c:58:ba:23:b5:66:e6: ac:79:ff:9c:7f:c0:b7:e4:15:bd:b4:3c:90:36:d5: 8f:69:cf:a8:4e:ff:97:89:c6:bc:30:d1:b6:7d:cd: bf:b0:87:bc:f5:ff:da:b3:89:c4:b6:87:73:d2:17: b5:6c:07:df:15:76:0c:a4:ad:7d:b3:c2:1b:dd:da: b8:6e:eb:d8:ac:49:f1:f2:32:a5:22:50:62:4c:83: c0:5f:38:a2:7b:f3:8f:c0:6f:98:9f:fe:b6:92:58: f1:8c:3a:bd:d2:3d:4a:e0:bb:b3:19:4b:50:ff:cf: a8:52:09:8b:c1:80:f7:d0:7b:1a:12:6c:16:62:25: e5:14:4e:f2:91:33:bb:cd:71:e0:d5:77:ad:95:c8: be:7f:7b:62:7e:82:83:f9:8b:53:f5:0c:5a:d1:3e: b5:f7:4a:1c:8e:b5:60:5c:22:25:61:8b:aa:bb:34: c2:26:22:6a:51:5e:b1:61:00:d1:e8:fb:5c:4e:1f: bc:84:1f:ca:ba:b6:f5:59:a3:ed:38:0c:15:da:a3: 69:05:d4:2e:18:a1:c2:67:50:4f:e0:d7:57:4a:d1: 5f:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:C9:6E:66:0A:27:F8:12:90:EC:62:AC:C6:5F:B4:DE:32:16:2A:E0 X509v3 Authority Key Identifier: keyid:62:FB:D2:CC:00:12:FB:2F:86:DB:40:B5:89:BD:1A:C4:E9:73:26:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/62FBD2CC0012FB2F86DB40B589BD1AC4E973266D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YvvSzAAS-y-G20C1ib0axOlzJm0.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/34352e36352e3131392e302f32342d3234203d3e20383334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.65.119.0/24 Signature Algorithm: sha256WithRSAEncryption c6:46:2f:07:f4:ce:bd:ad:40:a0:9a:40:e3:a2:49:72:b0:c7: 45:49:03:4f:3f:86:b2:30:ba:d4:8a:9c:3b:ff:07:a3:77:7a: fe:24:0b:f2:8e:f7:d3:5b:3d:ef:9b:4e:92:5c:c9:ee:64:1e: bc:69:13:ae:eb:61:f7:19:7d:98:c3:33:27:24:4e:74:76:14: 39:e5:ef:e8:ca:05:de:bb:d8:e9:66:78:9c:10:b7:a8:fb:50: 09:de:09:62:69:ea:48:76:f8:7f:56:d7:63:30:c1:16:31:58: 12:48:b3:37:e4:94:af:94:1b:be:b4:ac:26:4c:3f:0a:ec:e2: 41:02:a8:52:27:ff:8f:a4:83:dd:91:2d:b8:f0:af:e1:d1:f7: 4b:e0:91:95:65:75:d9:22:4d:1b:87:e6:2d:ca:16:32:87:1f: e7:27:c3:d6:d5:e5:fc:80:75:5f:c7:df:86:87:ff:50:a8:ee: 23:c4:ef:2a:fb:49:84:85:fd:46:b5:7b:14:31:f4:e6:d5:e1: e5:49:15:3e:14:69:5f:8b:1f:cf:e0:0f:f4:4c:17:34:63:0d: bf:49:40:8f:05:2a:dc:df:63:34:55:c9:af:c9:22:16:af:d2: 52:25:81:fd:85:f1:ff:97:96:97:dd:28:0b:a5:32:73:e2:39: 0e:62:f6:45 -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUaHe7OnP50nLWxXqDjIIay3fKp1EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjJmYmQyY2MwMDEyZmIyZjg2ZGI0MGI1ODliZDFhYzRl OTczMjY2ZDAeFw0yNTEyMTUwMDA2MDJaFw0yNjEyMTQwMDExMDJaMDMxMTAvBgNV BAMTKDdFQzk2RTY2MEEyN0Y4MTI5MEVDNjJBQ0M2NUZCNERFMzIxNjJBRTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwPAh9JJegjGd1r8pJjcirv2zx 5pDD6lkpb1tr3YxQYoOXjVFbPFi6I7Vm5qx5/5x/wLfkFb20PJA21Y9pz6hO/5eJ xrww0bZ9zb+wh7z1/9qzicS2h3PSF7VsB98VdgykrX2zwhvd2rhu69isSfHyMqUi UGJMg8BfOKJ784/Ab5if/raSWPGMOr3SPUrgu7MZS1D/z6hSCYvBgPfQexoSbBZi JeUUTvKRM7vNceDVd62VyL5/e2J+goP5i1P1DFrRPrX3ShyOtWBcIiVhi6q7NMIm ImpRXrFhANHo+1xOH7yEH8q6tvVZo+04DBXao2kF1C4YocJnUE/g11dK0V/TAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUfsluZgon+BKQ7GKsxl+03jIWKuAwHwYDVR0j BBgwFoAUYvvSzAAS+y+G20C1ib0axOlzJm0wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNDZiOTNkZjAtYWM4ZC00ZGE4LWFmYjgtZGNiN2YyODg4 MzYyLzAvNjJGQkQyQ0MwMDEyRkIyRjg2REI0MEI1ODlCRDFBQzRFOTczMjY2RC5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1l2dlN6QUFTLXktRzIwQzFpYjBheE9s ekptMC5jZXIwgacGCCsGAQUFBwELBIGaMIGXMIGUBggrBgEFBQcwC4aBh3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvNDZiOTNkZjAt YWM4ZC00ZGE4LWFmYjgtZGNiN2YyODg4MzYyLzAvMzQzNTJlMzYzNTJlMzEzMTM5 MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzgzMzM0LnJvYTAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALUF3MA0G CSqGSIb3DQEBCwUAA4IBAQDGRi8H9M69rUCgmkDjoklysMdFSQNPP4ayMLrUipw7 /wejd3r+JAvyjvfTWz3vm06SXMnuZB68aROu62H3GX2YwzMnJE50dhQ55e/oygXe u9jpZnicELeo+1AJ3gliaepIdvh/VtdjMMEWMVgSSLM35JSvlBu+tKwmTD8K7OJB AqhSJ/+PpIPdkS248K/h0fdL4JGVZXXZIk0bh+YtyhYyhx/nJ8PW1eX8gHVfx9+G h/9QqO4jxO8q+0mEhf1GtXsUMfTm1eHlSRU+FGlfix/P4A/0TBc0Yw2/SUCPBSrc 32M0VcmvySIWr9JSJYH9hfH/l5aX3SgLpTJz4jkOYvZF -----END CERTIFICATE-----Generated at Mon Dec 15 17:23:44 2025 by rpki-client