This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/0d854c77-fd8b-425a-bd55-82e1d7faa782/0/352e3139392e32352e302f32342d3234203d3e20383334.roa File: 352e3139392e32352e302f32342d3234203d3e20383334.roa (raw, json) Hash identifier: MVErUVWhLRH809b+QYI+5PK9fhqDeaqu1d6Qy8LzR98= Subject key identifier: F0:14:77:50:6C:E2:6B:97:9E:54:AD:F7:4F:71:93:4F:4C:DF:D2:B4 Certificate issuer: /CN=4b3aca3a7c652a9faf8e4e119bd2f7bf54afde76 Certificate serial: 7F700358EF422887DB25967A3B349055129AF5E3 Authority key identifier: 4B:3A:CA:3A:7C:65:2A:9F:AF:8E:4E:11:9B:D2:F7:BF:54:AF:DE:76 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SzrKOnxlKp-vjk4Rm9L3v1Sv3nY.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/0d854c77-fd8b-425a-bd55-82e1d7faa782/0/352e3139392e32352e302f32342d3234203d3e20383334.roa Signing time: Mon 24 Nov 2025 08:43:57 +0000 ROA not before: Mon 24 Nov 2025 08:38:57 +0000 ROA not after: Mon 23 Nov 2026 08:43:57 +0000 asID: 834 IP address blocks: 5.199.25.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/0d854c77-fd8b-425a-bd55-82e1d7faa782/0/4B3ACA3A7C652A9FAF8E4E119BD2F7BF54AFDE76.crl rsync://rsync.paas.rpki.ripe.net/repository/0d854c77-fd8b-425a-bd55-82e1d7faa782/0/4B3ACA3A7C652A9FAF8E4E119BD2F7BF54AFDE76.mft rsync://rpki.ripe.net/repository/DEFAULT/SzrKOnxlKp-vjk4Rm9L3v1Sv3nY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 28 Nov 2025 18:47:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:70:03:58:ef:42:28:87:db:25:96:7a:3b:34:90:55:12:9a:f5:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4b3aca3a7c652a9faf8e4e119bd2f7bf54afde76 Validity Not Before: Nov 24 08:38:57 2025 GMT Not After : Nov 23 08:43:57 2026 GMT Subject: CN=F01477506CE26B979E54ADF74F71934F4CDFD2B4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:71:0a:f5:6d:33:0c:33:6d:96:77:bd:85:0e: 28:a5:b8:20:4e:eb:87:d6:5d:4c:52:c8:d5:9c:2e: 73:fa:a5:09:97:1a:4c:51:7d:8d:cc:39:a2:2c:1a: 8a:8e:2c:d9:e4:a5:a6:82:80:6d:e1:cd:77:bd:d1: 93:c0:30:42:3e:68:be:49:7f:73:d7:8a:25:0c:e9: 2f:3f:42:77:55:07:40:c5:c2:2c:b6:87:2e:43:56: b5:af:05:38:92:09:60:f9:3c:d2:01:ef:cd:d5:fa: b9:88:08:3e:94:5e:8d:17:3b:f8:05:0b:ce:86:0e: 42:04:95:27:de:80:7e:5e:04:a0:09:47:16:2f:a1: a2:8f:53:d1:85:18:c3:3d:2a:0d:9c:ae:f5:ff:b8: 53:4a:4d:27:4d:f2:a6:08:52:d5:25:ff:05:eb:60: 0c:53:95:b6:21:53:59:e2:0f:ee:1f:7f:b2:32:20: 15:b7:b6:6f:13:02:13:7e:93:ea:fa:92:1d:56:2f: 7d:3c:40:52:fd:ba:4c:b8:d4:6f:1e:da:0a:f6:2b: 5c:76:65:21:5c:14:a8:6b:07:5a:8f:f2:12:a3:04: db:5a:37:18:00:70:4f:26:b6:8f:22:74:7a:55:95: b9:63:12:55:95:af:dd:8d:f4:5d:33:21:f3:1b:36: c4:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:14:77:50:6C:E2:6B:97:9E:54:AD:F7:4F:71:93:4F:4C:DF:D2:B4 X509v3 Authority Key Identifier: keyid:4B:3A:CA:3A:7C:65:2A:9F:AF:8E:4E:11:9B:D2:F7:BF:54:AF:DE:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/0d854c77-fd8b-425a-bd55-82e1d7faa782/0/4B3ACA3A7C652A9FAF8E4E119BD2F7BF54AFDE76.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SzrKOnxlKp-vjk4Rm9L3v1Sv3nY.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/0d854c77-fd8b-425a-bd55-82e1d7faa782/0/352e3139392e32352e302f32342d3234203d3e20383334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.199.25.0/24 Signature Algorithm: sha256WithRSAEncryption 0f:6e:a5:93:99:3b:77:1e:97:52:a4:7c:81:9c:bf:df:b5:15: ab:ba:a7:52:89:1c:82:ee:68:70:33:05:67:57:7e:19:25:58: 19:95:6f:f0:16:40:9f:64:07:47:c8:8c:0c:06:6f:1b:63:0c: cd:6f:81:13:77:1b:5d:96:39:d1:5f:6b:9e:26:ee:9d:9d:13: 98:0d:98:a8:bb:9e:fd:70:43:24:a6:f2:89:cd:19:d6:1b:c2: 1a:98:f7:ea:0e:78:a9:56:0d:39:87:85:71:48:2e:d0:91:ca: 63:25:36:96:cc:3b:7a:19:61:fa:a1:81:24:c2:89:f4:a9:d8: 23:45:09:8b:5b:92:6d:a0:b9:33:47:99:eb:1f:8b:b9:f2:7f: 5a:ca:62:13:c2:03:5d:eb:d5:aa:13:00:cc:ed:1f:f3:34:cf: 22:dc:d3:85:77:6f:72:25:40:c2:e7:20:d0:d1:35:f4:db:c2: 97:e0:4c:eb:d0:13:b0:6a:7b:3c:ed:82:8b:31:5d:6b:ee:15: d6:b7:d5:e4:5d:bd:89:84:ac:fe:c3:1c:86:fe:2b:0b:f0:1d: 36:e8:02:b8:d4:dc:79:f5:7f:25:f7:16:d4:71:83:bd:0f:81: ab:29:08:69:a4:66:9e:67:49:06:9e:92:6a:9c:b5:2b:65:43: bb:64:7b:6b -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgIUf3ADWO9CKIfbJZZ6OzSQVRKa9eMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNGIzYWNhM2E3YzY1MmE5ZmFmOGU0ZTExOWJkMmY3YmY1 NGFmZGU3NjAeFw0yNTExMjQwODM4NTdaFw0yNjExMjMwODQzNTdaMDMxMTAvBgNV BAMTKEYwMTQ3NzUwNkNFMjZCOTc5RTU0QURGNzRGNzE5MzRGNENERkQyQjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8cQr1bTMMM22Wd72FDiiluCBO 64fWXUxSyNWcLnP6pQmXGkxRfY3MOaIsGoqOLNnkpaaCgG3hzXe90ZPAMEI+aL5J f3PXiiUM6S8/QndVB0DFwiy2hy5DVrWvBTiSCWD5PNIB783V+rmICD6UXo0XO/gF C86GDkIElSfegH5eBKAJRxYvoaKPU9GFGMM9Kg2crvX/uFNKTSdN8qYIUtUl/wXr YAxTlbYhU1niD+4ff7IyIBW3tm8TAhN+k+r6kh1WL308QFL9uky41G8e2gr2K1x2 ZSFcFKhrB1qP8hKjBNtaNxgAcE8mto8idHpVlbljElWVr92N9F0zIfMbNsSFAgMB AAGjggI1MIICMTAdBgNVHQ4EFgQU8BR3UGzia5eeVK33T3GTT0zf0rQwHwYDVR0j BBgwFoAUSzrKOnxlKp+vjk4Rm9L3v1Sv3nYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMGQ4NTRjNzctZmQ4Yi00MjVhLWJkNTUtODJlMWQ3ZmFh NzgyLzAvNEIzQUNBM0E3QzY1MkE5RkFGOEU0RTExOUJEMkY3QkY1NEFGREU3Ni5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1N6cktPbnhsS3AtdmprNFJtOUwzdjFT djNuWS5jZXIwgaUGCCsGAQUFBwELBIGYMIGVMIGSBggrBgEFBQcwC4aBhXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMGQ4NTRjNzct ZmQ4Yi00MjVhLWJkNTUtODJlMWQ3ZmFhNzgyLzAvMzUyZTMxMzkzOTJlMzIzNTJl MzAyZjMyMzQyZDMyMzQyMDNkM2UyMDM4MzMzNC5yb2EwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAAXHGTANBgkq hkiG9w0BAQsFAAOCAQEAD26lk5k7dx6XUqR8gZy/37UVq7qnUokcgu5ocDMFZ1d+ GSVYGZVv8BZAn2QHR8iMDAZvG2MMzW+BE3cbXZY50V9rnibunZ0TmA2YqLue/XBD JKbyic0Z1hvCGpj36g54qVYNOYeFcUgu0JHKYyU2lsw7ehlh+qGBJMKJ9KnYI0UJ i1uSbaC5M0eZ6x+LufJ/WspiE8IDXevVqhMAzO0f8zTPItzThXdvciVAwucg0NE1 9NvCl+BM69ATsGp7PO2CizFda+4V1rfV5F29iYSs/sMchv4rC/AdNugCuNTcefV/ JfcW1HGDvQ+BqykIaaRmnmdJBp6Sapy1K2VDu2R7aw== -----END CERTIFICATE-----Generated at Fri Nov 28 06:10:39 2025 by rpki-client