This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e38302e302f32332d3234203d3e20383334.roa File: 3231332e3133392e38302e302f32332d3234203d3e20383334.roa (raw, json) Hash identifier: Ks087DEiqVukKepl+oMIjJV++Ljikiz+JnpLTJRh6FI= Subject key identifier: 62:98:0C:56:7F:B3:4D:FF:A6:86:88:B0:9A:43:66:20:94:2E:60:F3 Certificate issuer: /CN=b683f2eb50c5999a77456e8826831609d48c7d3e Certificate serial: 2AFD2985269A182A536C51AAD958A78AB267F64B Authority key identifier: B6:83:F2:EB:50:C5:99:9A:77:45:6E:88:26:83:16:09:D4:8C:7D:3E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/toPy61DFmZp3RW6IJoMWCdSMfT4.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e38302e302f32332d3234203d3e20383334.roa Signing time: Thu 20 Nov 2025 00:55:12 +0000 ROA not before: Thu 20 Nov 2025 00:50:12 +0000 ROA not after: Thu 19 Nov 2026 00:55:12 +0000 asID: 834 IP address blocks: 213.139.80.0/23 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/B683F2EB50C5999A77456E8826831609D48C7D3E.crl rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/B683F2EB50C5999A77456E8826831609D48C7D3E.mft rsync://rpki.ripe.net/repository/DEFAULT/toPy61DFmZp3RW6IJoMWCdSMfT4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:fd:29:85:26:9a:18:2a:53:6c:51:aa:d9:58:a7:8a:b2:67:f6:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b683f2eb50c5999a77456e8826831609d48c7d3e Validity Not Before: Nov 20 00:50:12 2025 GMT Not After : Nov 19 00:55:12 2026 GMT Subject: CN=62980C567FB34DFFA68688B09A436620942E60F3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:bc:5c:ea:71:dd:8b:ae:c7:67:ce:32:5e:d9: 11:e7:dd:63:7d:80:0b:1d:9e:22:73:7a:90:d4:8c: bb:3f:1e:a6:fe:3b:20:c9:01:51:9d:1f:34:f8:0a: 3c:d2:f7:fe:ae:74:a1:43:d0:53:07:cb:26:6b:1a: 0d:b9:9f:ea:a8:66:9b:10:8b:60:29:8a:d3:4b:06: 3f:43:42:ce:30:88:dc:2a:c3:84:93:7e:07:a3:84: ac:56:7f:6a:75:e2:64:50:52:d7:95:f0:b5:66:cb: a5:a1:76:a4:6f:17:28:9c:cc:3d:e8:a7:7d:0f:11: 5a:0c:0d:f3:ef:06:2f:95:67:b1:95:96:95:2a:a4: 36:7a:82:c7:29:d6:83:d0:96:6c:69:70:1f:88:17: 1a:75:8a:c0:a6:24:7b:09:d7:a5:2c:2d:d4:ed:1b: 7a:dd:51:29:3b:37:ba:f4:44:ca:3d:35:54:60:6d: f1:50:7c:b6:63:e0:e1:3f:b7:d9:63:b8:83:ca:74: 1d:7a:3b:f6:a3:f7:be:ef:94:54:9a:3d:02:86:36: be:78:72:86:06:34:db:b6:85:f4:0b:94:41:e9:cf: 7d:79:3d:57:d7:5e:94:7e:72:1c:2e:15:d6:d6:03: aa:fb:a7:82:93:6d:8c:32:e8:85:b4:cf:b6:c6:44: 1d:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:98:0C:56:7F:B3:4D:FF:A6:86:88:B0:9A:43:66:20:94:2E:60:F3 X509v3 Authority Key Identifier: keyid:B6:83:F2:EB:50:C5:99:9A:77:45:6E:88:26:83:16:09:D4:8C:7D:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/B683F2EB50C5999A77456E8826831609D48C7D3E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/toPy61DFmZp3RW6IJoMWCdSMfT4.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e38302e302f32332d3234203d3e20383334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 213.139.80.0/23 Signature Algorithm: sha256WithRSAEncryption 30:10:60:a2:9e:ed:61:10:3e:2c:47:1a:85:93:21:76:e3:45: cc:30:bd:98:c5:b6:38:9d:ae:ff:97:f9:66:c7:74:7f:62:cb: 87:4f:a8:cb:81:2b:88:01:bb:36:c8:7c:3e:96:a6:51:3a:ea: 5b:a5:22:06:91:5e:04:9d:ac:30:ff:36:ff:1b:f1:55:c9:46: 75:79:4e:ff:6f:08:b0:cb:3d:77:75:ea:07:af:83:00:2d:47: 9a:6f:8e:ca:bc:e5:e3:e1:85:68:99:11:c0:7d:a3:e9:a1:ef: 97:c4:7e:d4:94:86:a6:ef:1e:30:c7:44:c4:b6:0a:7d:d6:82: 9d:f7:d9:f6:2d:c1:57:b0:49:cb:84:76:d6:d6:ed:56:23:5f: 0e:a8:19:d9:05:38:a8:0b:f0:da:78:e1:15:b3:0d:aa:cd:97: cc:eb:40:7d:1a:01:c6:bb:ea:a2:bd:78:d1:43:8b:98:2e:cc: da:c2:50:a1:75:03:8d:f0:d0:ec:3e:ab:b7:d9:fb:3c:07:3c: 27:8f:4a:cf:c5:78:e6:d1:7b:ec:d0:c3:91:75:06:6c:b2:48: 00:c2:71:bf:31:28:08:12:4d:85:34:75:9d:79:12:15:f9:8c: c1:57:91:11:83:7f:f5:1b:72:d8:c6:c9:39:62:1f:02:6e:11: 34:0e:38:b3 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUKv0phSaaGCpTbFGq2VinirJn9kswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYjY4M2YyZWI1MGM1OTk5YTc3NDU2ZTg4MjY4MzE2MDlk NDhjN2QzZTAeFw0yNTExMjAwMDUwMTJaFw0yNjExMTkwMDU1MTJaMDMxMTAvBgNV BAMTKDYyOTgwQzU2N0ZCMzRERkZBNjg2ODhCMDlBNDM2NjIwOTQyRTYwRjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNvFzqcd2LrsdnzjJe2RHn3WN9 gAsdniJzepDUjLs/Hqb+OyDJAVGdHzT4CjzS9/6udKFD0FMHyyZrGg25n+qoZpsQ i2ApitNLBj9DQs4wiNwqw4STfgejhKxWf2p14mRQUteV8LVmy6WhdqRvFyiczD3o p30PEVoMDfPvBi+VZ7GVlpUqpDZ6gscp1oPQlmxpcB+IFxp1isCmJHsJ16UsLdTt G3rdUSk7N7r0RMo9NVRgbfFQfLZj4OE/t9ljuIPKdB16O/aj977vlFSaPQKGNr54 coYGNNu2hfQLlEHpz315PVfXXpR+chwuFdbWA6r7p4KTbYwy6IW0z7bGRB3XAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUYpgMVn+zTf+mhoiwmkNmIJQuYPMwHwYDVR0j BBgwFoAUtoPy61DFmZp3RW6IJoMWCdSMfT4wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYTAxYzE0ZmItYjY2MC00ODlkLTllOWYtOTQwMmU5ZTJj MmUyLzAvQjY4M0YyRUI1MEM1OTk5QTc3NDU2RTg4MjY4MzE2MDlENDhDN0QzRS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3RvUHk2MURGbVpwM1JXNklKb01XQ2RT TWZUNC5jZXIwgakGCCsGAQUFBwELBIGcMIGZMIGWBggrBgEFBQcwC4aBiXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYTAxYzE0ZmIt YjY2MC00ODlkLTllOWYtOTQwMmU5ZTJjMmUyLzAvMzIzMTMzMmUzMTMzMzkyZTM4 MzAyZTMwMmYzMjMzMmQzMjM0MjAzZDNlMjAzODMzMzQucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHVi1Aw DQYJKoZIhvcNAQELBQADggEBADAQYKKe7WEQPixHGoWTIXbjRcwwvZjFtjidrv+X +WbHdH9iy4dPqMuBK4gBuzbIfD6WplE66lulIgaRXgSdrDD/Nv8b8VXJRnV5Tv9v CLDLPXd16gevgwAtR5pvjsq85ePhhWiZEcB9o+mh75fEftSUhqbvHjDHRMS2Cn3W gp332fYtwVewScuEdtbW7VYjXw6oGdkFOKgL8Np44RWzDarNl8zrQH0aAca76qK9 eNFDi5guzNrCUKF1A43w0Ow+q7fZ+zwHPCePSs/FeObRe+zQw5F1BmyySADCcb8x KAgSTYU0dZ15EhX5jMFXkRGDf/UbctjGyTliHwJuETQOOLM= -----END CERTIFICATE-----Generated at Sat Dec 6 18:37:50 2025 by rpki-client