This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/83e4757f-d37f-4fd6-a69b-d74bdd6b87dc/0/38332e3135302e3231362e302f32342d3234203d3e20383334.roa File: 38332e3135302e3231362e302f32342d3234203d3e20383334.roa (raw, json) Hash identifier: EBm40X3KjUETSjt3aOY0gb7euO7RTR4g317z8UFpEX0= Subject key identifier: B8:91:43:ED:23:15:8C:24:94:C3:51:0D:20:86:97:2D:2B:86:19:49 Certificate issuer: /CN=5e5179bb1757068d7028510feeb1177aa7cc8818 Certificate serial: 082153BE879E7A5A7406A4FAB51C2B23E7423782 Authority key identifier: 5E:51:79:BB:17:57:06:8D:70:28:51:0F:EE:B1:17:7A:A7:CC:88:18 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XlF5uxdXBo1wKFEP7rEXeqfMiBg.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/83e4757f-d37f-4fd6-a69b-d74bdd6b87dc/0/38332e3135302e3231362e302f32342d3234203d3e20383334.roa Signing time: Fri 12 Dec 2025 13:11:48 +0000 ROA not before: Fri 12 Dec 2025 13:06:48 +0000 ROA not after: Fri 11 Dec 2026 13:11:48 +0000 asID: 834 IP address blocks: 83.150.216.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/83e4757f-d37f-4fd6-a69b-d74bdd6b87dc/0/5E5179BB1757068D7028510FEEB1177AA7CC8818.crl rsync://rsync.paas.rpki.ripe.net/repository/83e4757f-d37f-4fd6-a69b-d74bdd6b87dc/0/5E5179BB1757068D7028510FEEB1177AA7CC8818.mft rsync://rpki.ripe.net/repository/DEFAULT/XlF5uxdXBo1wKFEP7rEXeqfMiBg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 16 Dec 2025 08:50:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:21:53:be:87:9e:7a:5a:74:06:a4:fa:b5:1c:2b:23:e7:42:37:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5e5179bb1757068d7028510feeb1177aa7cc8818 Validity Not Before: Dec 12 13:06:48 2025 GMT Not After : Dec 11 13:11:48 2026 GMT Subject: CN=B89143ED23158C2494C3510D2086972D2B861949 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:c7:87:6d:34:cf:36:3a:36:54:09:a9:3c:73: 46:31:69:1b:6b:26:26:d4:3f:4b:e6:ba:e0:3a:7e: bb:fb:9b:95:48:10:a4:63:24:a0:23:39:4a:6b:6b: d5:39:52:c4:fc:4e:7b:6c:1a:81:86:a8:13:2f:7f: 35:b2:ae:a7:19:13:bb:76:ff:25:23:34:44:34:14: 16:39:8b:56:a0:01:a6:62:b1:2a:07:c5:b7:1d:3c: a7:ca:15:f4:d6:be:a7:a4:7c:ad:83:ac:d0:7c:b4: 77:01:91:fb:82:3c:14:71:6e:e3:9b:15:91:cb:e5: 65:c4:0f:da:e2:f6:68:0c:a6:69:c6:2e:9e:12:b9: 70:de:33:88:a3:54:bb:94:55:78:14:59:23:0b:ec: 55:be:0b:1a:db:0a:64:bf:1d:e0:03:4b:5b:c0:04: 96:7e:96:f5:7c:a0:17:85:39:f9:bb:df:63:f0:0e: 33:eb:cb:30:cb:1a:c3:3d:8a:62:ac:a9:bb:cf:6c: c0:aa:b1:97:9f:b2:7f:62:bb:e1:5c:2f:c3:68:0e: 52:2c:73:af:ec:22:ba:df:38:85:be:e5:8a:2d:27: 4e:73:23:f0:ea:70:96:93:67:bd:1e:eb:47:f7:14: 83:b7:a4:c9:af:13:b3:c0:0a:05:63:61:3b:09:0f: 4a:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:91:43:ED:23:15:8C:24:94:C3:51:0D:20:86:97:2D:2B:86:19:49 X509v3 Authority Key Identifier: keyid:5E:51:79:BB:17:57:06:8D:70:28:51:0F:EE:B1:17:7A:A7:CC:88:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/83e4757f-d37f-4fd6-a69b-d74bdd6b87dc/0/5E5179BB1757068D7028510FEEB1177AA7CC8818.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XlF5uxdXBo1wKFEP7rEXeqfMiBg.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/83e4757f-d37f-4fd6-a69b-d74bdd6b87dc/0/38332e3135302e3231362e302f32342d3234203d3e20383334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 83.150.216.0/24 Signature Algorithm: sha256WithRSAEncryption 4c:ec:e5:00:59:87:51:fb:a0:ea:e5:e8:24:4c:7d:86:ef:0f: 60:ec:82:59:f6:d6:37:41:40:d9:05:da:de:c2:d6:14:e2:c7: 53:a8:17:5e:e2:ae:cb:0c:96:fd:1a:7f:a5:70:98:c7:b8:c1: 14:a6:d7:61:d0:c8:04:1e:a2:cf:13:9a:1f:f6:80:cb:36:6c: 5b:39:bb:66:ed:d6:53:eb:d4:d1:d5:8e:91:b0:08:00:aa:33: 61:75:07:36:83:ba:d9:68:d5:e1:2d:34:de:b0:3f:bf:cb:b1: 26:23:a1:fb:0f:ef:55:3f:12:dd:80:08:9f:ba:3b:47:dd:67: 2a:8d:1c:34:29:f5:5b:4f:e9:59:62:fc:33:fe:c1:8a:4e:ed: 7a:e0:53:88:41:ad:13:b4:da:57:7f:44:bf:8c:7c:45:bb:92: 0d:b6:5b:2c:a7:71:ca:0b:09:00:f3:00:32:be:51:88:d0:3c: 4f:06:e0:51:c1:58:4e:7f:c1:7a:7d:67:8e:65:6d:52:8a:a5: 4d:8e:b9:2f:ca:a3:d4:5d:0d:63:68:c9:2a:81:00:0f:f6:54: e7:9a:c6:42:de:1c:55:d5:bc:37:fb:7f:36:4b:20:76:5e:75: a1:52:bf:1b:2f:f5:c6:67:3e:7b:97:e5:f0:a3:85:2e:94:5b: 77:eb:a5:45 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUCCFTvoeeelp0BqT6tRwrI+dCN4IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNWU1MTc5YmIxNzU3MDY4ZDcwMjg1MTBmZWViMTE3N2Fh N2NjODgxODAeFw0yNTEyMTIxMzA2NDhaFw0yNjEyMTExMzExNDhaMDMxMTAvBgNV BAMTKEI4OTE0M0VEMjMxNThDMjQ5NEMzNTEwRDIwODY5NzJEMkI4NjE5NDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxx4dtNM82OjZUCak8c0YxaRtr JibUP0vmuuA6frv7m5VIEKRjJKAjOUpra9U5UsT8TntsGoGGqBMvfzWyrqcZE7t2 /yUjNEQ0FBY5i1agAaZisSoHxbcdPKfKFfTWvqekfK2DrNB8tHcBkfuCPBRxbuOb FZHL5WXED9ri9mgMpmnGLp4SuXDeM4ijVLuUVXgUWSML7FW+CxrbCmS/HeADS1vA BJZ+lvV8oBeFOfm732PwDjPryzDLGsM9imKsqbvPbMCqsZefsn9iu+FcL8NoDlIs c6/sIrrfOIW+5YotJ05zI/DqcJaTZ70e60f3FIO3pMmvE7PACgVjYTsJD0qPAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUuJFD7SMVjCSUw1ENIIaXLSuGGUkwHwYDVR0j BBgwFoAUXlF5uxdXBo1wKFEP7rEXeqfMiBgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvODNlNDc1N2YtZDM3Zi00ZmQ2LWE2OWItZDc0YmRkNmI4 N2RjLzAvNUU1MTc5QkIxNzU3MDY4RDcwMjg1MTBGRUVCMTE3N0FBN0NDODgxOC5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1hsRjV1eGRYQm8xd0tGRVA3ckVYZXFm TWlCZy5jZXIwgakGCCsGAQUFBwELBIGcMIGZMIGWBggrBgEFBQcwC4aBiXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvODNlNDc1N2Yt ZDM3Zi00ZmQ2LWE2OWItZDc0YmRkNmI4N2RjLzAvMzgzMzJlMzEzNTMwMmUzMjMx MzYyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzODMzMzQucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABTltgw DQYJKoZIhvcNAQELBQADggEBAEzs5QBZh1H7oOrl6CRMfYbvD2Dsgln21jdBQNkF 2t7C1hTix1OoF17irssMlv0af6VwmMe4wRSm12HQyAQeos8Tmh/2gMs2bFs5u2bt 1lPr1NHVjpGwCACqM2F1BzaDutlo1eEtNN6wP7/LsSYjofsP71U/Et2ACJ+6O0fd ZyqNHDQp9VtP6Vli/DP+wYpO7XrgU4hBrRO02ld/RL+MfEW7kg22WyynccoLCQDz ADK+UYjQPE8G4FHBWE5/wXp9Z45lbVKKpU2OuS/Ko9RdDWNoySqBAA/2VOeaxkLe HFXVvDf7fzZLIHZedaFSvxsv9cZnPnuX5fCjhS6UW3frpUU= -----END CERTIFICATE-----Generated at Mon Dec 15 23:27:05 2025 by rpki-client