This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/0d854c77-fd8b-425a-bd55-82e1d7faa782/0/3231322e37342e36322e302f32332d3234203d3e20383334.roa File: 3231322e37342e36322e302f32332d3234203d3e20383334.roa (raw, json) Hash identifier: FhVIH1oqeyWRXelusY7VYX0XcSHjWuRSms602qLYDS8= Subject key identifier: 5F:30:CB:62:50:B3:6A:C6:F2:44:6D:85:8C:18:CA:A3:E6:DE:37:4D Certificate issuer: /CN=4b3aca3a7c652a9faf8e4e119bd2f7bf54afde76 Certificate serial: 61D109A9B3672D399C17E4DFF28423EFEEFC4329 Authority key identifier: 4B:3A:CA:3A:7C:65:2A:9F:AF:8E:4E:11:9B:D2:F7:BF:54:AF:DE:76 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SzrKOnxlKp-vjk4Rm9L3v1Sv3nY.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/0d854c77-fd8b-425a-bd55-82e1d7faa782/0/3231322e37342e36322e302f32332d3234203d3e20383334.roa Signing time: Thu 13 Nov 2025 10:01:44 +0000 ROA not before: Thu 13 Nov 2025 09:56:44 +0000 ROA not after: Thu 12 Nov 2026 10:01:44 +0000 asID: 834 IP address blocks: 212.74.62.0/23 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/0d854c77-fd8b-425a-bd55-82e1d7faa782/0/4B3ACA3A7C652A9FAF8E4E119BD2F7BF54AFDE76.crl rsync://rsync.paas.rpki.ripe.net/repository/0d854c77-fd8b-425a-bd55-82e1d7faa782/0/4B3ACA3A7C652A9FAF8E4E119BD2F7BF54AFDE76.mft rsync://rpki.ripe.net/repository/DEFAULT/SzrKOnxlKp-vjk4Rm9L3v1Sv3nY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 28 Nov 2025 18:47:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:d1:09:a9:b3:67:2d:39:9c:17:e4:df:f2:84:23:ef:ee:fc:43:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4b3aca3a7c652a9faf8e4e119bd2f7bf54afde76 Validity Not Before: Nov 13 09:56:44 2025 GMT Not After : Nov 12 10:01:44 2026 GMT Subject: CN=5F30CB6250B36AC6F2446D858C18CAA3E6DE374D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:f2:fb:eb:d2:3a:e4:d6:60:f4:0c:50:a6:c6: e3:18:b5:42:ae:3c:20:43:9d:4f:14:b9:07:04:97: 5c:29:33:93:99:b6:aa:59:e8:9f:d9:10:b3:ab:91: c0:cb:b0:40:28:bb:82:35:da:2e:c0:20:d4:7f:8d: b5:fa:a3:7a:9a:08:56:f3:e9:91:7b:d3:9f:df:ba: b0:46:b2:f9:e1:c9:30:35:02:92:ff:59:75:00:aa: 1c:1d:4d:33:1e:e4:ad:50:53:63:7c:fe:c1:39:c4: 35:2d:d7:3d:d8:28:99:23:5e:ab:6f:06:e5:20:7a: 0d:a4:59:85:7f:63:69:b6:e7:df:02:27:e6:60:62: 15:b3:b2:5b:05:46:f4:44:3a:5f:44:7d:5b:7a:47: f2:e1:65:27:ab:0b:f0:97:60:42:18:c8:0e:3c:16: bc:3c:9b:e2:36:91:4d:b8:f9:26:05:72:fe:e8:1f: 01:45:c3:b9:3a:8b:d2:74:67:4f:d7:72:32:03:87: b2:be:db:b4:3d:93:6f:3c:a9:0b:55:ca:66:11:b8: dd:fe:98:a5:97:93:b4:4f:f2:14:0d:80:48:ea:73: a9:35:15:c4:37:4e:f3:63:15:44:aa:2c:4a:aa:f3: 29:7f:21:de:84:69:8e:47:74:36:03:c5:6c:ca:bc: 93:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:30:CB:62:50:B3:6A:C6:F2:44:6D:85:8C:18:CA:A3:E6:DE:37:4D X509v3 Authority Key Identifier: keyid:4B:3A:CA:3A:7C:65:2A:9F:AF:8E:4E:11:9B:D2:F7:BF:54:AF:DE:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/0d854c77-fd8b-425a-bd55-82e1d7faa782/0/4B3ACA3A7C652A9FAF8E4E119BD2F7BF54AFDE76.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SzrKOnxlKp-vjk4Rm9L3v1Sv3nY.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/0d854c77-fd8b-425a-bd55-82e1d7faa782/0/3231322e37342e36322e302f32332d3234203d3e20383334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 212.74.62.0/23 Signature Algorithm: sha256WithRSAEncryption 2c:64:31:25:47:71:f3:69:79:b9:f0:02:b3:93:d0:36:a8:e3: 22:f6:99:0c:18:e3:9a:0b:6f:d2:55:c1:32:fe:5f:77:fe:94: 31:15:dc:75:9f:6c:da:90:9e:bc:3e:ba:15:a2:b4:9f:56:eb: c0:34:d6:63:d8:94:f2:f5:63:f1:50:63:db:56:cf:1a:08:4c: b2:4b:c9:e4:0b:10:0a:7c:fd:c5:81:63:60:50:01:10:d6:da: 80:9e:01:67:17:bb:ca:0f:22:73:8b:f7:4f:7b:07:13:ae:59: b3:dc:07:f7:30:c9:ab:3c:c5:1c:a8:e0:ab:70:63:e7:1b:10: f3:0a:0b:bd:7c:34:37:2e:76:8b:c9:a3:4e:0f:3b:ff:60:10: 6c:82:5d:1a:f5:c2:72:49:e1:d8:2e:7a:10:70:d0:b6:ae:50: 19:1b:01:4c:70:f3:48:e1:38:a8:e0:ad:fb:4b:24:df:f2:10: cb:09:43:2f:8e:52:05:23:36:21:1b:80:6a:26:69:e4:95:c2: 2f:38:d9:e0:91:4f:38:b1:fe:d3:04:9c:3a:84:aa:8e:76:85: ba:79:da:89:22:b2:ea:0e:56:14:32:ac:40:a0:b1:44:f6:c4: aa:dd:19:2a:ed:ef:5f:6a:46:1a:8d:06:2e:4e:92:cc:a0:8e: a4:a2:14:12 -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUYdEJqbNnLTmcF+Tf8oQj7+78QykwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNGIzYWNhM2E3YzY1MmE5ZmFmOGU0ZTExOWJkMmY3YmY1 NGFmZGU3NjAeFw0yNTExMTMwOTU2NDRaFw0yNjExMTIxMDAxNDRaMDMxMTAvBgNV BAMTKDVGMzBDQjYyNTBCMzZBQzZGMjQ0NkQ4NThDMThDQUEzRTZERTM3NEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDH8vvr0jrk1mD0DFCmxuMYtUKu PCBDnU8UuQcEl1wpM5OZtqpZ6J/ZELOrkcDLsEAou4I12i7AINR/jbX6o3qaCFbz 6ZF705/furBGsvnhyTA1ApL/WXUAqhwdTTMe5K1QU2N8/sE5xDUt1z3YKJkjXqtv BuUgeg2kWYV/Y2m2598CJ+ZgYhWzslsFRvREOl9EfVt6R/LhZSerC/CXYEIYyA48 Frw8m+I2kU24+SYFcv7oHwFFw7k6i9J0Z0/XcjIDh7K+27Q9k288qQtVymYRuN3+ mKWXk7RP8hQNgEjqc6k1FcQ3TvNjFUSqLEqq8yl/Id6EaY5HdDYDxWzKvJPHAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUXzDLYlCzasbyRG2FjBjKo+beN00wHwYDVR0j BBgwFoAUSzrKOnxlKp+vjk4Rm9L3v1Sv3nYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMGQ4NTRjNzctZmQ4Yi00MjVhLWJkNTUtODJlMWQ3ZmFh NzgyLzAvNEIzQUNBM0E3QzY1MkE5RkFGOEU0RTExOUJEMkY3QkY1NEFGREU3Ni5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1N6cktPbnhsS3AtdmprNFJtOUwzdjFT djNuWS5jZXIwgacGCCsGAQUFBwELBIGaMIGXMIGUBggrBgEFBQcwC4aBh3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMGQ4NTRjNzct ZmQ4Yi00MjVhLWJkNTUtODJlMWQ3ZmFhNzgyLzAvMzIzMTMyMmUzNzM0MmUzNjMy MmUzMDJmMzIzMzJkMzIzNDIwM2QzZTIwMzgzMzM0LnJvYTAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQB1Eo+MA0G CSqGSIb3DQEBCwUAA4IBAQAsZDElR3HzaXm58AKzk9A2qOMi9pkMGOOaC2/SVcEy /l93/pQxFdx1n2zakJ68ProVorSfVuvANNZj2JTy9WPxUGPbVs8aCEyyS8nkCxAK fP3FgWNgUAEQ1tqAngFnF7vKDyJzi/dPewcTrlmz3Af3MMmrPMUcqOCrcGPnGxDz Cgu9fDQ3LnaLyaNODzv/YBBsgl0a9cJySeHYLnoQcNC2rlAZGwFMcPNI4Tio4K37 SyTf8hDLCUMvjlIFIzYhG4BqJmnklcIvONngkU84sf7TBJw6hKqOdoW6edqJIrLq DlYUMqxAoLFE9sSq3Rkq7e9fakYajQYuTpLMoI6kohQS -----END CERTIFICATE-----Generated at Fri Nov 28 06:10:40 2025 by rpki-client