This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/3138352e3135302e3133362e302f32342d3234203d3e203230343733.roa File: 3138352e3135302e3133362e302f32342d3234203d3e203230343733.roa (raw, json) Hash identifier: XMD3xj7habDwW0eQGt7jDFmIShC9k/kbna1RAzPWKNQ= Subject key identifier: C0:EF:5F:90:A1:F0:49:21:35:5C:75:87:DC:64:3A:A7:99:77:36:53 Certificate issuer: /CN=048af665bf8b186b70220759d26c578f40b5f3e3 Certificate serial: 3996721F861575F74890D63FD54C375C4F5428AA Authority key identifier: 04:8A:F6:65:BF:8B:18:6B:70:22:07:59:D2:6C:57:8F:40:B5:F3:E3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BIr2Zb-LGGtwIgdZ0mxXj0C18-M.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/3138352e3135302e3133362e302f32342d3234203d3e203230343733.roa Signing time: Sat 22 Nov 2025 15:55:12 +0000 ROA not before: Sat 22 Nov 2025 15:50:12 +0000 ROA not after: Sat 21 Nov 2026 15:55:12 +0000 asID: 20473 IP address blocks: 185.150.136.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/048AF665BF8B186B70220759D26C578F40B5F3E3.crl rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/048AF665BF8B186B70220759D26C578F40B5F3E3.mft rsync://rpki.ripe.net/repository/DEFAULT/BIr2Zb-LGGtwIgdZ0mxXj0C18-M.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 28 Nov 2025 20:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:96:72:1f:86:15:75:f7:48:90:d6:3f:d5:4c:37:5c:4f:54:28:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=048af665bf8b186b70220759d26c578f40b5f3e3 Validity Not Before: Nov 22 15:50:12 2025 GMT Not After : Nov 21 15:55:12 2026 GMT Subject: CN=C0EF5F90A1F04921355C7587DC643AA799773653 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:30:f2:ae:e1:77:14:bc:a6:5c:c8:c4:48:57: 53:c8:36:7b:f9:a3:03:ae:aa:e0:bc:e9:50:ce:de: ab:3b:b1:17:7a:72:89:28:4e:dd:b5:c8:ea:5e:e4: 58:62:99:6d:91:a5:8f:fb:71:f0:92:8f:df:89:b1: 74:de:61:03:25:23:43:04:86:8c:ba:da:28:d2:a1: b9:ad:47:2c:85:8d:7e:cb:18:72:dd:c2:7d:82:c2: 72:87:98:88:ee:ea:6e:78:2c:db:de:88:e4:e0:d3: fb:15:b6:ea:49:2f:68:ab:d0:6f:e3:a9:bf:78:0b: a0:c8:91:e5:9f:01:23:af:8f:e5:e2:e1:0a:54:b3: 94:67:8c:05:f2:96:08:fd:12:ad:14:eb:b9:a7:8f: a5:3e:d1:9f:da:61:0a:2f:c3:5d:8e:a6:78:1a:66: 24:5b:96:e1:fd:75:b6:67:e8:4d:d5:1f:9a:bf:97: 19:eb:a8:59:e2:1b:5d:c3:53:09:dc:17:d6:95:20: 80:4d:86:31:02:18:0f:13:56:3d:c5:f3:5e:78:b5: 82:e3:bd:0c:0c:d1:dd:33:5a:37:22:b5:b3:d4:8b: 55:59:86:35:9e:4c:68:45:d9:98:f6:fe:e0:70:1a: fd:ed:83:5b:f7:8b:40:92:92:7b:59:ad:a8:8a:f9: 33:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:EF:5F:90:A1:F0:49:21:35:5C:75:87:DC:64:3A:A7:99:77:36:53 X509v3 Authority Key Identifier: keyid:04:8A:F6:65:BF:8B:18:6B:70:22:07:59:D2:6C:57:8F:40:B5:F3:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/048AF665BF8B186B70220759D26C578F40B5F3E3.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BIr2Zb-LGGtwIgdZ0mxXj0C18-M.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/3138352e3135302e3133362e302f32342d3234203d3e203230343733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.150.136.0/24 Signature Algorithm: sha256WithRSAEncryption 78:4f:69:f2:f0:fb:ff:b2:9b:3c:6c:56:6b:82:9a:0c:cd:13: 2b:41:ee:38:69:2b:04:9d:6d:5c:38:5c:06:ec:f2:18:3f:e5: 72:03:e0:32:1b:b5:9c:6b:89:f3:76:c7:92:a5:f1:4f:f6:4a: 03:90:8d:2d:f4:00:fb:3b:43:7f:33:ba:8e:43:1c:76:f7:2f: a7:6a:89:d8:cc:08:04:a0:6f:a4:08:a4:fb:c9:33:16:40:43: 0c:a3:53:46:6a:a3:e8:d7:ae:28:4f:ab:8d:ab:ae:7a:5b:7f: 6b:d1:28:c9:ce:39:fc:1a:86:60:ea:1c:9c:2c:89:72:0d:f7: b6:5b:d3:90:94:ae:b5:d5:eb:e9:19:1c:b5:36:ab:c8:38:85: ed:9a:92:1a:e4:9f:ef:a7:ca:8a:b3:b1:44:8b:62:6d:fc:db: c4:c5:72:4c:35:9e:b7:e1:a1:89:ca:37:c2:e7:6c:8c:8b:3b: 23:75:ca:12:93:72:7b:81:e9:3e:d5:38:68:3e:a8:88:4b:7e: 16:46:61:63:38:9b:52:7a:dd:8f:37:07:7b:d3:14:3d:6a:5f: c5:ca:85:f6:fb:27:9d:44:86:84:b1:44:4e:ff:e3:5b:97:21: a4:9a:16:5d:55:9d:c0:4f:16:f3:44:b2:cf:92:bc:2a:d8:80: 4b:92:90:21 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUOZZyH4YVdfdIkNY/1Uw3XE9UKKowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDQ4YWY2NjViZjhiMTg2YjcwMjIwNzU5ZDI2YzU3OGY0 MGI1ZjNlMzAeFw0yNTExMjIxNTUwMTJaFw0yNjExMjExNTU1MTJaMDMxMTAvBgNV BAMTKEMwRUY1RjkwQTFGMDQ5MjEzNTVDNzU4N0RDNjQzQUE3OTk3NzM2NTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnMPKu4XcUvKZcyMRIV1PINnv5 owOuquC86VDO3qs7sRd6cokoTt21yOpe5FhimW2RpY/7cfCSj9+JsXTeYQMlI0ME hoy62ijSobmtRyyFjX7LGHLdwn2CwnKHmIju6m54LNveiOTg0/sVtupJL2ir0G/j qb94C6DIkeWfASOvj+Xi4QpUs5RnjAXylgj9Eq0U67mnj6U+0Z/aYQovw12Opnga ZiRbluH9dbZn6E3VH5q/lxnrqFniG13DUwncF9aVIIBNhjECGA8TVj3F8154tYLj vQwM0d0zWjcitbPUi1VZhjWeTGhF2Zj2/uBwGv3tg1v3i0CSkntZraiK+TMtAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUwO9fkKHwSSE1XHWH3GQ6p5l3NlMwHwYDVR0j BBgwFoAUBIr2Zb+LGGtwIgdZ0mxXj0C18+MwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvODJhOWJmNWItMzljMS00MDUwLWIwNzMtNDgwNzViODYx ZDg3LzAvMDQ4QUY2NjVCRjhCMTg2QjcwMjIwNzU5RDI2QzU3OEY0MEI1RjNFMy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0JJcjJaYi1MR0d0d0lnZFowbXhYajBD MTgtTS5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvODJhOWJmNWIt MzljMS00MDUwLWIwNzMtNDgwNzViODYxZDg3LzAvMzEzODM1MmUzMTM1MzAyZTMx MzMzNjJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMyMzAzNDM3MzMucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAC5logwDQYJKoZIhvcNAQELBQADggEBAHhPafLw+/+ymzxsVmuCmgzNEytB7jhp KwSdbVw4XAbs8hg/5XID4DIbtZxrifN2x5Kl8U/2SgOQjS30APs7Q38zuo5DHHb3 L6dqidjMCASgb6QIpPvJMxZAQwyjU0Zqo+jXrihPq42rrnpbf2vRKMnOOfwahmDq HJwsiXIN97Zb05CUrrXV6+kZHLU2q8g4he2akhrkn++nyoqzsUSLYm3828TFckw1 nrfhoYnKN8LnbIyLOyN1yhKTcnuB6T7VOGg+qIhLfhZGYWM4m1J63Y83B3vTFD1q X8XKhfb7J51EhoSxRE7/41uXIaSaFl1VncBPFvNEss+SvCrYgEuSkCE= -----END CERTIFICATE-----Generated at Fri Nov 28 05:03:46 2025 by rpki-client