This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/8bfd6882-d6b3-4aa8-bc0a-711d68bd198b/0/34352e39352e38302e302f32332d3234203d3e20383334.roa File: 34352e39352e38302e302f32332d3234203d3e20383334.roa (raw, json) Hash identifier: KBlnTmJTjtkN7635frU4KVMJE9hjrxjj/MnRirqH9PE= Subject key identifier: 2F:8D:D1:76:A0:98:0F:B8:4A:D3:A1:6E:7D:2B:80:8E:CC:BB:3B:D8 Certificate issuer: /CN=8c12b4273832b4156fe0092f6ae7e5b3ce23ad8b Certificate serial: 3FAB02097BD911E241E662B167CDBDC2BCBFC69B Authority key identifier: 8C:12:B4:27:38:32:B4:15:6F:E0:09:2F:6A:E7:E5:B3:CE:23:AD:8B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jBK0JzgytBVv4Akvaufls84jrYs.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/8bfd6882-d6b3-4aa8-bc0a-711d68bd198b/0/34352e39352e38302e302f32332d3234203d3e20383334.roa Signing time: Wed 26 Nov 2025 00:06:13 +0000 ROA not before: Wed 26 Nov 2025 00:01:13 +0000 ROA not after: Wed 25 Nov 2026 00:06:13 +0000 asID: 834 IP address blocks: 45.95.80.0/23 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/8bfd6882-d6b3-4aa8-bc0a-711d68bd198b/0/8C12B4273832B4156FE0092F6AE7E5B3CE23AD8B.crl rsync://rsync.paas.rpki.ripe.net/repository/8bfd6882-d6b3-4aa8-bc0a-711d68bd198b/0/8C12B4273832B4156FE0092F6AE7E5B3CE23AD8B.mft rsync://rpki.ripe.net/repository/DEFAULT/jBK0JzgytBVv4Akvaufls84jrYs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 14:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:ab:02:09:7b:d9:11:e2:41:e6:62:b1:67:cd:bd:c2:bc:bf:c6:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8c12b4273832b4156fe0092f6ae7e5b3ce23ad8b Validity Not Before: Nov 26 00:01:13 2025 GMT Not After : Nov 25 00:06:13 2026 GMT Subject: CN=2F8DD176A0980FB84AD3A16E7D2B808ECCBB3BD8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:29:0d:48:00:f9:5c:35:1b:cc:db:2b:5e:05: 9e:40:f0:5a:1e:4e:db:97:12:5b:2d:b0:1e:b1:13: 63:22:7b:6c:63:a6:3e:70:4b:91:8b:5f:59:62:78: af:69:76:54:11:3d:a3:cf:ce:85:26:13:bb:16:86: 91:c6:f3:4f:08:06:81:90:77:32:f3:21:68:49:f7: 4c:13:4b:b4:92:b3:8e:4b:16:ce:f3:30:92:c9:86: 9d:ee:b1:9a:d3:7b:9f:df:7e:bd:3c:02:f3:a0:8c: 42:a0:89:b7:d9:7c:6a:de:21:b2:70:4a:c2:51:30: da:51:e1:2b:bd:62:0e:98:b3:6f:cb:89:37:0b:30: a2:56:cb:68:84:84:7a:8c:07:60:f0:73:39:c4:94: dc:ae:2d:2c:da:5d:db:df:e1:de:69:d5:96:1e:55: 53:9c:1b:19:d0:58:96:54:cf:eb:2c:f1:2b:a9:2d: 93:32:2f:aa:d7:9b:66:0a:99:8e:00:ea:ed:84:5c: 55:1a:e6:89:2c:cf:86:b6:79:16:2d:90:83:b3:b0: 14:f8:58:16:4f:f7:29:41:ea:b5:78:c4:bf:9f:b5: a0:55:e0:5f:c5:e5:08:bf:4f:19:df:c7:52:05:ec: 1e:21:43:ce:03:4f:4f:83:da:ff:53:97:6f:fb:6f: a5:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:8D:D1:76:A0:98:0F:B8:4A:D3:A1:6E:7D:2B:80:8E:CC:BB:3B:D8 X509v3 Authority Key Identifier: keyid:8C:12:B4:27:38:32:B4:15:6F:E0:09:2F:6A:E7:E5:B3:CE:23:AD:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/8bfd6882-d6b3-4aa8-bc0a-711d68bd198b/0/8C12B4273832B4156FE0092F6AE7E5B3CE23AD8B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jBK0JzgytBVv4Akvaufls84jrYs.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/8bfd6882-d6b3-4aa8-bc0a-711d68bd198b/0/34352e39352e38302e302f32332d3234203d3e20383334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.95.80.0/23 Signature Algorithm: sha256WithRSAEncryption 74:e9:84:f2:cc:8d:fa:ea:04:84:b8:94:6e:d8:73:b4:7d:35: 25:93:5f:c2:63:f4:9b:7b:e8:c4:8a:8e:69:ec:b6:8c:a0:1b: b4:34:be:cd:e4:e9:38:ca:00:8b:10:05:2e:8f:f3:2a:f9:8a: de:86:13:e9:44:13:00:c5:45:00:c4:f4:4d:f2:85:e3:48:d5: 3c:ab:15:32:8d:72:86:1c:53:5e:94:bb:4c:2d:8a:88:70:61: 09:50:dd:d1:c6:6f:d1:e6:54:d6:0d:24:eb:b1:ff:93:9b:58: a5:b6:f7:e0:28:9a:23:94:11:92:3e:46:8d:ef:63:25:8c:1e: d6:75:b1:98:59:aa:96:82:99:1f:d5:da:7d:6f:25:8d:66:53: 01:d1:d9:16:c0:ac:06:7b:e2:75:4d:da:a9:c7:d9:7e:a5:a3: d6:0a:d0:c7:77:0f:d7:64:94:1d:4f:19:f3:2e:e2:34:0f:a1: 5e:43:be:ad:b5:1e:17:bd:21:ea:04:33:25:94:49:dc:1c:81: 1c:91:f3:94:54:20:43:82:ce:95:73:96:87:c2:00:40:ce:2e: 89:1f:fe:cd:f0:88:5e:e9:f2:50:11:c7:17:26:44:e8:04:ea: 37:2f:3c:d7:f0:1d:57:c6:4f:4d:f3:f7:79:2a:61:32:fa:97: f6:10:f9:2f -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgIUP6sCCXvZEeJB5mKxZ829wry/xpswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGMxMmI0MjczODMyYjQxNTZmZTAwOTJmNmFlN2U1YjNj ZTIzYWQ4YjAeFw0yNTExMjYwMDAxMTNaFw0yNjExMjUwMDA2MTNaMDMxMTAvBgNV BAMTKDJGOEREMTc2QTA5ODBGQjg0QUQzQTE2RTdEMkI4MDhFQ0NCQjNCRDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDcKQ1IAPlcNRvM2yteBZ5A8Foe TtuXElstsB6xE2Mie2xjpj5wS5GLX1lieK9pdlQRPaPPzoUmE7sWhpHG808IBoGQ dzLzIWhJ90wTS7SSs45LFs7zMJLJhp3usZrTe5/ffr08AvOgjEKgibfZfGreIbJw SsJRMNpR4Su9Yg6Ys2/LiTcLMKJWy2iEhHqMB2DwcznElNyuLSzaXdvf4d5p1ZYe VVOcGxnQWJZUz+ss8SupLZMyL6rXm2YKmY4A6u2EXFUa5oksz4a2eRYtkIOzsBT4 WBZP9ylB6rV4xL+ftaBV4F/F5Qi/Txnfx1IF7B4hQ84DT0+D2v9Tl2/7b6XNAgMB AAGjggI1MIICMTAdBgNVHQ4EFgQUL43RdqCYD7hK06FufSuAjsy7O9gwHwYDVR0j BBgwFoAUjBK0JzgytBVv4Akvaufls84jrYswDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvOGJmZDY4ODItZDZiMy00YWE4LWJjMGEtNzExZDY4YmQx OThiLzAvOEMxMkI0MjczODMyQjQxNTZGRTAwOTJGNkFFN0U1QjNDRTIzQUQ4Qi5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2pCSzBKemd5dEJWdjRBa3ZhdWZsczg0 anJZcy5jZXIwgaUGCCsGAQUFBwELBIGYMIGVMIGSBggrBgEFBQcwC4aBhXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvOGJmZDY4ODIt ZDZiMy00YWE4LWJjMGEtNzExZDY4YmQxOThiLzAvMzQzNTJlMzkzNTJlMzgzMDJl MzAyZjMyMzMyZDMyMzQyMDNkM2UyMDM4MzMzNC5yb2EwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAS1fUDANBgkq hkiG9w0BAQsFAAOCAQEAdOmE8syN+uoEhLiUbthztH01JZNfwmP0m3voxIqOaey2 jKAbtDS+zeTpOMoAixAFLo/zKvmK3oYT6UQTAMVFAMT0TfKF40jVPKsVMo1yhhxT XpS7TC2KiHBhCVDd0cZv0eZU1g0k67H/k5tYpbb34CiaI5QRkj5Gje9jJYwe1nWx mFmqloKZH9XafW8ljWZTAdHZFsCsBnvidU3aqcfZfqWj1grQx3cP12SUHU8Z8y7i NA+hXkO+rbUeF70h6gQzJZRJ3ByBHJHzlFQgQ4LOlXOWh8IAQM4uiR/+zfCIXuny UBHHFyZE6ATqNy881/AdV8ZPTfP3eSphMvqX9hD5Lw== -----END CERTIFICATE-----Generated at Sat Dec 6 23:26:12 2025 by rpki-client