This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/87ae25f3-706b-47ed-bb74-46684ae0ef2b/0/3138352e3138362e32352e302f32342d3234203d3e20323133373732.roa File: 3138352e3138362e32352e302f32342d3234203d3e20323133373732.roa (raw, json) Hash identifier: KbS5MjAty6bkNu2TCkQpJN6TOq9xU7ustWBHWVtQeSQ= Subject key identifier: 7A:C0:06:15:BC:5B:E7:A7:6E:41:0A:6C:88:77:25:A3:2A:C8:53:FE Certificate issuer: /CN=b3d0280f500695a43204251c9830454ca8a2e7ac Certificate serial: 091CCF4C49A0D5822783982F07F692F0BECAC431 Authority key identifier: B3:D0:28:0F:50:06:95:A4:32:04:25:1C:98:30:45:4C:A8:A2:E7:AC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s9AoD1AGlaQyBCUcmDBFTKii56w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/87ae25f3-706b-47ed-bb74-46684ae0ef2b/0/3138352e3138362e32352e302f32342d3234203d3e20323133373732.roa Signing time: Wed 26 Nov 2025 21:56:23 +0000 ROA not before: Wed 26 Nov 2025 21:51:23 +0000 ROA not after: Wed 25 Nov 2026 21:56:23 +0000 asID: 213772 IP address blocks: 185.186.25.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/87ae25f3-706b-47ed-bb74-46684ae0ef2b/0/B3D0280F500695A43204251C9830454CA8A2E7AC.crl rsync://rsync.paas.rpki.ripe.net/repository/87ae25f3-706b-47ed-bb74-46684ae0ef2b/0/B3D0280F500695A43204251C9830454CA8A2E7AC.mft rsync://rpki.ripe.net/repository/DEFAULT/s9AoD1AGlaQyBCUcmDBFTKii56w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 04 Dec 2025 22:53:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:1c:cf:4c:49:a0:d5:82:27:83:98:2f:07:f6:92:f0:be:ca:c4:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b3d0280f500695a43204251c9830454ca8a2e7ac Validity Not Before: Nov 26 21:51:23 2025 GMT Not After : Nov 25 21:56:23 2026 GMT Subject: CN=7AC00615BC5BE7A76E410A6C887725A32AC853FE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:c2:3c:ab:fd:4a:b1:42:4c:f4:e0:29:0a:a0: 4d:9d:e9:b5:bd:8c:7f:e6:1f:1c:9c:1a:3d:8d:49: 2b:b8:52:7f:a5:ba:fc:4e:ca:d3:31:30:46:b5:36: 68:2c:86:6c:66:0a:e2:51:8a:b0:80:d4:23:bd:4a: 23:e7:54:4b:87:6c:18:06:36:26:c8:0d:e2:cd:25: 4a:e1:96:21:b6:da:88:d6:7d:a5:2c:24:cb:52:14: 84:e5:83:39:8c:63:5a:f7:a2:1e:77:dd:bd:d4:85: 4d:4f:78:33:92:10:6e:e7:fe:e1:53:a8:4a:5f:ac: 67:f1:da:f8:6b:b3:76:50:aa:80:a0:48:34:ad:ee: a0:fc:64:d6:8d:1e:da:c6:4a:e6:c5:bf:df:39:cc: dd:b0:9f:ab:58:0a:e9:3e:f8:57:2e:2b:35:2c:35: 61:cf:63:19:97:ce:bb:76:b0:d7:8a:a8:22:88:67: ca:9b:88:98:98:d3:e3:bc:65:7e:a1:13:3e:58:6a: 80:d2:cf:9a:b0:49:62:65:1d:21:ef:69:fb:a5:98: 6a:63:d0:ba:41:3f:12:69:96:f5:2d:e6:94:ec:1d: 62:e2:07:44:14:55:6d:8c:b8:24:ed:2b:69:bf:a6: eb:da:3a:3d:68:df:5c:57:c4:5f:96:f2:1b:91:e7: fa:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:C0:06:15:BC:5B:E7:A7:6E:41:0A:6C:88:77:25:A3:2A:C8:53:FE X509v3 Authority Key Identifier: keyid:B3:D0:28:0F:50:06:95:A4:32:04:25:1C:98:30:45:4C:A8:A2:E7:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/87ae25f3-706b-47ed-bb74-46684ae0ef2b/0/B3D0280F500695A43204251C9830454CA8A2E7AC.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s9AoD1AGlaQyBCUcmDBFTKii56w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/87ae25f3-706b-47ed-bb74-46684ae0ef2b/0/3138352e3138362e32352e302f32342d3234203d3e20323133373732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.186.25.0/24 Signature Algorithm: sha256WithRSAEncryption 09:2b:b2:a6:b0:9a:69:39:77:1e:0d:47:eb:33:14:a4:98:9a: ef:84:5b:91:da:93:0d:8c:39:f8:8b:21:89:a4:63:d9:f8:05: 3c:c8:d6:32:b3:f0:b8:b6:b8:a7:3b:38:88:a0:ef:77:8c:13: cd:29:b5:e0:ad:93:e5:51:e8:32:2b:45:97:22:76:f1:3c:34: 73:5e:06:9f:91:37:9f:c1:71:65:23:01:10:b1:ec:68:84:f0: a7:65:c5:be:07:6f:ba:2f:80:ec:18:46:30:9f:5f:74:00:c8: 81:aa:1d:7b:d4:f8:23:c3:0d:7a:db:23:45:f7:4a:ee:d9:22: 17:1b:52:22:d2:b6:e0:b0:1c:c6:bb:50:91:32:72:f2:db:cd: e5:42:ee:89:f5:74:b3:c3:dc:ee:ec:6e:2a:0d:d4:c6:24:7a: 1d:91:a5:f9:8e:44:33:0b:1a:8b:fb:84:8f:d9:95:48:2b:70: da:73:9c:90:31:68:c3:7e:04:e9:27:c3:23:d9:f1:f8:6e:21: bb:50:bd:2d:9a:74:ca:9a:5b:db:4d:6e:51:52:8a:c0:6f:37: d0:78:16:58:80:c8:f3:28:a5:03:a4:c8:8d:0a:05:37:fc:21: b7:e2:9a:1a:01:e0:7a:03:5a:c8:37:76:50:a0:f6:7c:f9:82: 1a:fb:d3:4c -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUCRzPTEmg1YIng5gvB/aS8L7KxDEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYjNkMDI4MGY1MDA2OTVhNDMyMDQyNTFjOTgzMDQ1NGNh OGEyZTdhYzAeFw0yNTExMjYyMTUxMjNaFw0yNjExMjUyMTU2MjNaMDMxMTAvBgNV BAMTKDdBQzAwNjE1QkM1QkU3QTc2RTQxMEE2Qzg4NzcyNUEzMkFDODUzRkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHwjyr/UqxQkz04CkKoE2d6bW9 jH/mHxycGj2NSSu4Un+luvxOytMxMEa1NmgshmxmCuJRirCA1CO9SiPnVEuHbBgG NibIDeLNJUrhliG22ojWfaUsJMtSFITlgzmMY1r3oh533b3UhU1PeDOSEG7n/uFT qEpfrGfx2vhrs3ZQqoCgSDSt7qD8ZNaNHtrGSubFv985zN2wn6tYCuk++FcuKzUs NWHPYxmXzrt2sNeKqCKIZ8qbiJiY0+O8ZX6hEz5YaoDSz5qwSWJlHSHvafulmGpj 0LpBPxJplvUt5pTsHWLiB0QUVW2MuCTtK2m/puvaOj1o31xXxF+W8huR5/rjAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUesAGFbxb56duQQpsiHcloyrIU/4wHwYDVR0j BBgwFoAUs9AoD1AGlaQyBCUcmDBFTKii56wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvODdhZTI1ZjMtNzA2Yi00N2VkLWJiNzQtNDY2ODRhZTBl ZjJiLzAvQjNEMDI4MEY1MDA2OTVBNDMyMDQyNTFDOTgzMDQ1NENBOEEyRTdBQy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3M5QW9EMUFHbGFReUJDVWNtREJGVEtp aTU2dy5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvODdhZTI1ZjMt NzA2Yi00N2VkLWJiNzQtNDY2ODRhZTBlZjJiLzAvMzEzODM1MmUzMTM4MzYyZTMy MzUyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMjMxMzMzNzM3MzIucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAC5uhkwDQYJKoZIhvcNAQELBQADggEBAAkrsqawmmk5dx4NR+szFKSYmu+EW5Ha kw2MOfiLIYmkY9n4BTzI1jKz8Li2uKc7OIig73eME80pteCtk+VR6DIrRZcidvE8 NHNeBp+RN5/BcWUjARCx7GiE8Kdlxb4Hb7ovgOwYRjCfX3QAyIGqHXvU+CPDDXrb I0X3Su7ZIhcbUiLStuCwHMa7UJEycvLbzeVC7on1dLPD3O7sbioN1MYkeh2RpfmO RDMLGov7hI/ZlUgrcNpznJAxaMN+BOknwyPZ8fhuIbtQvS2adMqaW9tNblFSisBv N9B4FliAyPMopQOkyI0KBTf8IbfimhoB4HoDWsg3dlCg9nz5ghr700w= -----END CERTIFICATE-----Generated at Thu Dec 4 09:03:40 2025 by rpki-client