This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/34352e38382e31302e302f32342d3234203d3e20383334.roa File: 34352e38382e31302e302f32342d3234203d3e20383334.roa (raw, json) Hash identifier: dSOyutpYkyNiZqQFTIc6NSdKeyRnay1XXJIlRKUGQxI= Subject key identifier: 82:3A:B3:E1:92:C2:EC:6D:FA:A9:95:AA:AD:F1:94:B3:1D:4F:6C:5B Certificate issuer: /CN=62fbd2cc0012fb2f86db40b589bd1ac4e973266d Certificate serial: 534D3175DC8F76C39EB318A4B37AF5F2FB728B41 Authority key identifier: 62:FB:D2:CC:00:12:FB:2F:86:DB:40:B5:89:BD:1A:C4:E9:73:26:6D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YvvSzAAS-y-G20C1ib0axOlzJm0.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/34352e38382e31302e302f32342d3234203d3e20383334.roa Signing time: Tue 18 Nov 2025 08:23:32 +0000 ROA not before: Tue 18 Nov 2025 08:18:32 +0000 ROA not after: Tue 17 Nov 2026 08:23:32 +0000 asID: 834 IP address blocks: 45.88.10.0/24 maxlen: 24 Validation: Failed, certificate revoked on Fri 28 Nov 2025 15:33:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:4d:31:75:dc:8f:76:c3:9e:b3:18:a4:b3:7a:f5:f2:fb:72:8b:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=62fbd2cc0012fb2f86db40b589bd1ac4e973266d Validity Not Before: Nov 18 08:18:32 2025 GMT Not After : Nov 17 08:23:32 2026 GMT Subject: CN=823AB3E192C2EC6DFAA995AAADF194B31D4F6C5B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:06:32:98:bd:6a:94:44:33:cd:1d:8c:a7:13: 61:87:98:74:9f:ba:ed:e8:60:28:35:92:37:fd:96: 48:73:55:36:88:21:77:ed:7c:99:08:e7:ee:dc:90: 2f:1f:c9:cf:c8:30:3e:e2:20:1f:c3:91:14:59:ef: 83:fc:77:7f:ab:8a:54:39:71:02:22:eb:7b:00:27: 4d:76:32:2d:b2:00:38:04:23:0b:0a:76:a7:34:1c: aa:16:c4:ef:73:12:b4:ce:e5:16:2d:4c:4c:51:31: c8:8c:3c:09:8b:b5:3e:0b:d0:8c:22:33:09:29:95: 6c:09:1e:27:65:86:e7:f9:20:18:97:d9:76:16:06: 31:e8:96:6c:67:cf:cf:35:10:cf:41:a7:5b:00:b5: 6a:1e:f0:74:e9:bb:2f:64:54:de:f8:0a:d4:85:15: db:4d:67:8d:f5:3a:52:1e:aa:7d:ab:6f:76:a7:ba: 04:11:74:db:64:96:fe:10:33:9f:da:cb:dd:43:ea: ae:d6:b1:d0:8f:c5:ea:4e:59:7b:51:1e:ad:2f:a0: 16:b9:3b:a5:a4:c6:c7:ce:24:16:d7:ef:e9:cf:25: 08:2e:f1:b9:d2:ce:e6:eb:9a:e7:69:2b:6c:eb:e1: d0:81:66:aa:dc:1d:1a:8e:68:a7:9a:70:d2:f3:12: 7a:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:3A:B3:E1:92:C2:EC:6D:FA:A9:95:AA:AD:F1:94:B3:1D:4F:6C:5B X509v3 Authority Key Identifier: keyid:62:FB:D2:CC:00:12:FB:2F:86:DB:40:B5:89:BD:1A:C4:E9:73:26:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/62FBD2CC0012FB2F86DB40B589BD1AC4E973266D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YvvSzAAS-y-G20C1ib0axOlzJm0.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/34352e38382e31302e302f32342d3234203d3e20383334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.88.10.0/24 Signature Algorithm: sha256WithRSAEncryption 72:cd:40:cd:53:2d:ea:62:30:1a:7f:1f:f4:ea:3f:b3:0f:52: 81:48:3c:14:39:21:cf:a4:03:74:c5:70:65:97:64:a7:68:4a: 6b:02:22:90:8a:9c:b0:2e:e8:48:15:e3:8a:d0:a4:1d:72:f2: 28:2d:fb:09:da:fc:7f:2e:65:b7:9b:80:da:2a:a6:f8:1c:6a: 28:0f:1a:dd:21:a3:23:57:a0:51:97:68:00:d5:03:cd:10:6e: 82:33:0f:35:74:99:dc:cf:fd:85:b9:98:f8:12:3a:83:24:c7: bb:f4:5c:d0:a7:3a:4d:c0:07:d7:6f:83:e3:35:24:6b:60:f7: f6:39:d8:5c:5b:d8:3a:49:f6:52:47:45:a0:6c:00:01:6f:9b: 7b:4d:8f:2b:55:07:42:dc:43:ce:48:87:d1:37:20:04:07:45: 0b:41:61:88:c7:9e:f7:72:1e:08:5f:e3:87:70:33:52:45:df: fa:58:03:8e:ef:b0:02:4e:ee:32:69:09:2a:81:09:89:fa:5a: 2f:4d:c5:b9:b9:a0:74:2e:da:85:93:3e:90:e5:eb:90:18:b5: 2a:36:7a:ee:68:c6:ec:c2:63:a8:97:1d:cd:84:fd:c8:a2:5c: d0:c5:8c:d4:61:b0:71:c8:88:c5:72:d8:06:9b:21:80:c6:2e: 20:f6:5c:3d -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgIUU00xddyPdsOesxiks3r18vtyi0EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjJmYmQyY2MwMDEyZmIyZjg2ZGI0MGI1ODliZDFhYzRl OTczMjY2ZDAeFw0yNTExMTgwODE4MzJaFw0yNjExMTcwODIzMzJaMDMxMTAvBgNV BAMTKDgyM0FCM0UxOTJDMkVDNkRGQUE5OTVBQUFERjE5NEIzMUQ0RjZDNUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCaBjKYvWqURDPNHYynE2GHmHSf uu3oYCg1kjf9lkhzVTaIIXftfJkI5+7ckC8fyc/IMD7iIB/DkRRZ74P8d3+rilQ5 cQIi63sAJ012Mi2yADgEIwsKdqc0HKoWxO9zErTO5RYtTExRMciMPAmLtT4L0Iwi MwkplWwJHidlhuf5IBiX2XYWBjHolmxnz881EM9Bp1sAtWoe8HTpuy9kVN74CtSF FdtNZ431OlIeqn2rb3anugQRdNtklv4QM5/ay91D6q7WsdCPxepOWXtRHq0voBa5 O6WkxsfOJBbX7+nPJQgu8bnSzubrmudpK2zr4dCBZqrcHRqOaKeacNLzEnpfAgMB AAGjggI1MIICMTAdBgNVHQ4EFgQUgjqz4ZLC7G36qZWqrfGUsx1PbFswHwYDVR0j BBgwFoAUYvvSzAAS+y+G20C1ib0axOlzJm0wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNDZiOTNkZjAtYWM4ZC00ZGE4LWFmYjgtZGNiN2YyODg4 MzYyLzAvNjJGQkQyQ0MwMDEyRkIyRjg2REI0MEI1ODlCRDFBQzRFOTczMjY2RC5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1l2dlN6QUFTLXktRzIwQzFpYjBheE9s ekptMC5jZXIwgaUGCCsGAQUFBwELBIGYMIGVMIGSBggrBgEFBQcwC4aBhXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvNDZiOTNkZjAt YWM4ZC00ZGE4LWFmYjgtZGNiN2YyODg4MzYyLzAvMzQzNTJlMzgzODJlMzEzMDJl MzAyZjMyMzQyZDMyMzQyMDNkM2UyMDM4MzMzNC5yb2EwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAC1YCjANBgkq hkiG9w0BAQsFAAOCAQEAcs1AzVMt6mIwGn8f9Oo/sw9SgUg8FDkhz6QDdMVwZZdk p2hKawIikIqcsC7oSBXjitCkHXLyKC37Cdr8fy5lt5uA2iqm+BxqKA8a3SGjI1eg UZdoANUDzRBugjMPNXSZ3M/9hbmY+BI6gyTHu/Rc0Kc6TcAH12+D4zUka2D39jnY XFvYOkn2UkdFoGwAAW+be02PK1UHQtxDzkiH0TcgBAdFC0FhiMee93IeCF/jh3Az UkXf+lgDju+wAk7uMmkJKoEJifpaL03FubmgdC7ahZM+kOXrkBi1KjZ67mjG7MJj qJcdzYT9yKJc0MWM1GGwcciIxXLYBpshgMYuIPZcPQ== -----END CERTIFICATE-----Generated at Tue Dec 23 16:52:51 2025 by rpki-client