This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/3139332e35372e3136362e302f32342d3234203d3e20323132323338.roa File: 3139332e35372e3136362e302f32342d3234203d3e20323132323338.roa (raw, json) Hash identifier: 8FQzPoDa6hJCMXvrTTSx05nT9drGCNOIYkAja2CsAfQ= Subject key identifier: F3:E7:1C:D9:E2:B5:8A:34:00:EA:01:22:83:F9:1A:3E:88:99:BE:59 Certificate issuer: /CN=70cbd7a9817e470009c0f40ea1e370aa79b5fd91 Certificate serial: 29BC4342B4816DA226C63FBC02178841ABAE2C38 Authority key identifier: 70:CB:D7:A9:81:7E:47:00:09:C0:F4:0E:A1:E3:70:AA:79:B5:FD:91 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cMvXqYF-RwAJwPQOoeNwqnm1_ZE.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/3139332e35372e3136362e302f32342d3234203d3e20323132323338.roa Signing time: Fri 24 Oct 2025 07:55:09 +0000 ROA not before: Fri 24 Oct 2025 07:50:09 +0000 ROA not after: Fri 23 Oct 2026 07:55:09 +0000 asID: 212238 IP address blocks: 193.57.166.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/70CBD7A9817E470009C0F40EA1E370AA79B5FD91.crl rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/70CBD7A9817E470009C0F40EA1E370AA79B5FD91.mft rsync://rpki.ripe.net/repository/DEFAULT/cMvXqYF-RwAJwPQOoeNwqnm1_ZE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 04 Dec 2025 09:57:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:bc:43:42:b4:81:6d:a2:26:c6:3f:bc:02:17:88:41:ab:ae:2c:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=70cbd7a9817e470009c0f40ea1e370aa79b5fd91 Validity Not Before: Oct 24 07:50:09 2025 GMT Not After : Oct 23 07:55:09 2026 GMT Subject: CN=F3E71CD9E2B58A3400EA012283F91A3E8899BE59 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:54:fc:df:c4:bb:12:78:64:3c:8c:bb:cb:98: ba:d7:4c:7e:a0:eb:77:4b:98:40:be:33:71:09:cd: 2d:a3:c2:07:86:d2:29:eb:86:19:b6:cd:aa:0a:d0: 1d:8f:f1:68:09:47:5d:b6:3b:58:9d:97:4c:63:11: be:ef:6e:32:a9:9c:2c:26:97:6d:4d:35:5e:22:b9: 23:19:a4:19:ae:bd:17:67:70:85:55:eb:42:a7:ff: 93:f9:15:23:8c:37:0d:27:5e:28:f2:7c:62:6d:b9: 28:d3:fc:4e:e5:a0:20:31:30:63:71:b4:5d:a6:4c: 66:a2:1b:51:ce:93:80:dc:19:f5:49:05:a6:0d:af: 13:d5:d2:d9:df:9d:0e:e0:63:0c:93:7f:a4:c2:9e: f5:ac:4f:88:96:57:f3:b5:aa:cd:02:55:1e:ff:0f: 54:ed:01:32:ec:d2:53:5c:aa:3b:20:86:1e:82:47: ae:28:91:fd:ad:81:80:2c:ae:9d:7e:69:ea:1e:e7: 60:2c:d0:48:24:39:94:3e:58:c2:6c:a6:a4:7b:d0: f2:13:76:28:35:d6:19:07:de:27:1b:fe:bd:6e:9d: 63:89:8b:fc:a0:0c:8a:ca:fe:5f:b6:6f:f3:df:15: 41:47:ef:d1:4d:ea:1a:17:05:e8:05:1f:77:c2:90: a0:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:E7:1C:D9:E2:B5:8A:34:00:EA:01:22:83:F9:1A:3E:88:99:BE:59 X509v3 Authority Key Identifier: keyid:70:CB:D7:A9:81:7E:47:00:09:C0:F4:0E:A1:E3:70:AA:79:B5:FD:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/70CBD7A9817E470009C0F40EA1E370AA79B5FD91.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cMvXqYF-RwAJwPQOoeNwqnm1_ZE.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/3139332e35372e3136362e302f32342d3234203d3e20323132323338.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.57.166.0/24 Signature Algorithm: sha256WithRSAEncryption 4b:67:4f:a2:11:ec:00:b1:a4:15:05:32:b2:54:b6:c8:6e:87: dc:35:da:71:9a:6e:00:b3:21:57:3c:15:1b:c3:d6:e0:2d:e7: ee:8a:0c:9a:c8:a1:70:1c:6c:dc:0a:ba:8b:04:2f:c1:32:dd: 6a:40:81:89:1d:c5:78:fd:6c:00:94:8a:22:a6:32:e4:cb:83: 78:de:31:56:de:f1:70:52:d9:8f:4d:c4:a4:31:89:cc:cf:ca: fe:dd:51:d9:7d:f0:cc:bb:96:7d:02:5f:d4:9d:a6:20:23:5e: 1f:a3:07:5a:66:fc:6c:fa:41:76:38:32:c8:48:65:cd:d2:e5: 58:9f:00:9b:86:1a:ce:a9:50:8b:1a:39:1f:44:e5:8b:79:7e: 73:48:cf:f7:ba:76:f5:8c:ef:f8:a0:c1:6b:2d:1c:e5:9c:5d: b9:d6:fe:c0:a2:fe:6e:d1:2f:ec:5e:5a:32:98:c9:d3:10:45: 8a:64:d1:15:d2:85:b7:a9:61:70:bb:67:fe:fe:f5:35:48:e9: e6:ba:4d:ca:c5:21:20:f2:fc:c9:b8:a3:0c:69:72:be:2d:ce: ac:d6:d5:fa:9c:7c:38:3b:70:7d:c1:af:47:a4:d9:91:f1:77: 30:f1:ac:b6:ec:b1:4c:45:a6:ff:ea:2a:c3:ac:9a:2d:f8:20: 90:f1:31:ff -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUKbxDQrSBbaImxj+8AheIQauuLDgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzBjYmQ3YTk4MTdlNDcwMDA5YzBmNDBlYTFlMzcwYWE3 OWI1ZmQ5MTAeFw0yNTEwMjQwNzUwMDlaFw0yNjEwMjMwNzU1MDlaMDMxMTAvBgNV BAMTKEYzRTcxQ0Q5RTJCNThBMzQwMEVBMDEyMjgzRjkxQTNFODg5OUJFNTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCNVPzfxLsSeGQ8jLvLmLrXTH6g 63dLmEC+M3EJzS2jwgeG0inrhhm2zaoK0B2P8WgJR122O1idl0xjEb7vbjKpnCwm l21NNV4iuSMZpBmuvRdncIVV60Kn/5P5FSOMNw0nXijyfGJtuSjT/E7loCAxMGNx tF2mTGaiG1HOk4DcGfVJBaYNrxPV0tnfnQ7gYwyTf6TCnvWsT4iWV/O1qs0CVR7/ D1TtATLs0lNcqjsghh6CR64okf2tgYAsrp1+aeoe52As0EgkOZQ+WMJspqR70PIT dig11hkH3icb/r1unWOJi/ygDIrK/l+2b/PfFUFH79FN6hoXBegFH3fCkKBvAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQU8+cc2eK1ijQA6gEig/kaPoiZvlkwHwYDVR0j BBgwFoAUcMvXqYF+RwAJwPQOoeNwqnm1/ZEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYjczMzJhZjAtZGQ3My00NzU1LTlkMjAtNjkzZWE4Mjg5 ZjhhLzAvNzBDQkQ3QTk4MTdFNDcwMDA5QzBGNDBFQTFFMzcwQUE3OUI1RkQ5MS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2NNdlhxWUYtUndBSndQUU9vZU53cW5t MV9aRS5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYjczMzJhZjAt ZGQ3My00NzU1LTlkMjAtNjkzZWE4Mjg5ZjhhLzAvMzEzOTMzMmUzNTM3MmUzMTM2 MzYyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMjMxMzIzMjMzMzgucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BADBOaYwDQYJKoZIhvcNAQELBQADggEBAEtnT6IR7ACxpBUFMrJUtshuh9w12nGa bgCzIVc8FRvD1uAt5+6KDJrIoXAcbNwKuosEL8Ey3WpAgYkdxXj9bACUiiKmMuTL g3jeMVbe8XBS2Y9NxKQxiczPyv7dUdl98My7ln0CX9SdpiAjXh+jB1pm/Gz6QXY4 MshIZc3S5VifAJuGGs6pUIsaOR9E5Yt5fnNIz/e6dvWM7/igwWstHOWcXbnW/sCi /m7RL+xeWjKYydMQRYpk0RXShbepYXC7Z/7+9TVI6ea6TcrFISDy/Mm4owxpcr4t zqzW1fqcfDg7cH3Br0ek2ZHxdzDxrLbssUxFpv/qKsOsmi34IJDxMf8= -----END CERTIFICATE-----Generated at Wed Dec 3 12:04:10 2025 by rpki-client