This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/ccd3884a-c385-4b65-9866-4f6383172672/0/3134372e3132352e3134322e302f32342d3234203d3e2039333034.roa File: 3134372e3132352e3134322e302f32342d3234203d3e2039333034.roa (raw, json) Hash identifier: x1IFrsOOUWdUqdiFvSonCf3Cu+beRAc7ubNpwIFv8Nc= Subject key identifier: 71:E9:5A:7E:CD:63:75:5E:A8:54:92:2C:7D:1C:AC:D4:FF:C8:E9:F1 Certificate issuer: /CN=6ccdc82bae7800f7d507c737924869bdeb5a76ea Certificate serial: 55474B5A0BAFE266788401C918CEDAB948E6117E Authority key identifier: 6C:CD:C8:2B:AE:78:00:F7:D5:07:C7:37:92:48:69:BD:EB:5A:76:EA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bM3IK654APfVB8c3kkhpvetaduo.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/ccd3884a-c385-4b65-9866-4f6383172672/0/3134372e3132352e3134322e302f32342d3234203d3e2039333034.roa Signing time: Thu 20 Nov 2025 10:58:34 +0000 ROA not before: Thu 20 Nov 2025 10:53:34 +0000 ROA not after: Thu 19 Nov 2026 10:58:34 +0000 asID: 9304 IP address blocks: 147.125.142.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/ccd3884a-c385-4b65-9866-4f6383172672/0/6CCDC82BAE7800F7D507C737924869BDEB5A76EA.crl rsync://rsync.paas.rpki.ripe.net/repository/ccd3884a-c385-4b65-9866-4f6383172672/0/6CCDC82BAE7800F7D507C737924869BDEB5A76EA.mft rsync://rpki.ripe.net/repository/DEFAULT/bM3IK654APfVB8c3kkhpvetaduo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 04 Dec 2025 21:29:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:47:4b:5a:0b:af:e2:66:78:84:01:c9:18:ce:da:b9:48:e6:11:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ccdc82bae7800f7d507c737924869bdeb5a76ea Validity Not Before: Nov 20 10:53:34 2025 GMT Not After : Nov 19 10:58:34 2026 GMT Subject: CN=71E95A7ECD63755EA854922C7D1CACD4FFC8E9F1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:f2:c5:04:7c:01:df:46:61:24:1b:e4:c6:2e: 6a:04:53:50:a6:14:0a:6e:11:4b:0b:0f:85:88:83: 21:f9:db:b7:82:d9:24:b1:db:4a:31:9c:53:b6:82: c8:a5:fa:a8:b7:89:65:e4:42:2b:f8:59:6d:fc:2c: 9d:d0:02:f9:58:d8:c7:3f:3d:5a:6c:fd:9e:f7:eb: f7:76:e9:aa:b6:9e:52:66:50:a4:e6:99:99:10:16: 7d:53:a0:46:68:e6:f1:58:d5:4e:76:5c:f9:0e:67: fa:1e:40:95:a9:33:46:75:cd:06:bf:82:52:88:ab: 68:57:38:99:63:85:93:f2:6c:b4:0e:ce:0e:b6:d5: 47:b6:64:47:5b:56:69:21:cb:7e:9e:3a:4b:e1:25: e9:4f:c5:cc:b8:0e:5e:67:8e:f4:3e:16:41:03:31: 62:d5:0a:b6:f8:6c:aa:67:14:85:b9:ff:af:9d:18: 86:57:92:54:27:53:7e:b8:b8:f2:81:fa:25:ee:10: 70:34:9b:3d:b7:09:8b:93:39:7e:d3:a0:a9:6f:60: a8:8b:19:49:0b:c3:28:e9:2f:c9:9b:6f:de:a7:a0: 98:52:94:e7:1f:0b:33:3b:17:ae:dc:7a:2f:f8:15: ba:3e:7c:b2:7f:84:8e:00:33:fd:04:26:db:29:b2: 1a:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:E9:5A:7E:CD:63:75:5E:A8:54:92:2C:7D:1C:AC:D4:FF:C8:E9:F1 X509v3 Authority Key Identifier: keyid:6C:CD:C8:2B:AE:78:00:F7:D5:07:C7:37:92:48:69:BD:EB:5A:76:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/ccd3884a-c385-4b65-9866-4f6383172672/0/6CCDC82BAE7800F7D507C737924869BDEB5A76EA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bM3IK654APfVB8c3kkhpvetaduo.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/ccd3884a-c385-4b65-9866-4f6383172672/0/3134372e3132352e3134322e302f32342d3234203d3e2039333034.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 147.125.142.0/24 Signature Algorithm: sha256WithRSAEncryption 0b:62:78:a8:76:d9:40:06:78:01:77:44:dd:cb:eb:94:e6:a5: b2:29:36:5a:16:9d:57:f4:81:0a:81:85:de:54:66:cf:8b:ec: 21:64:04:c7:71:05:0a:90:df:5d:f5:0a:d9:57:b6:16:83:54: 8b:b2:d4:ed:13:88:0e:19:b9:ba:d2:b0:86:ea:1c:e2:cf:6a: 22:e8:eb:92:30:7b:57:92:cf:1c:54:e7:19:9a:f9:f8:ae:01: d4:65:c8:04:04:de:69:e8:e9:2c:e5:7f:60:24:f6:c6:78:53: 67:8b:3e:b7:e1:33:c3:81:98:32:96:b2:72:4b:2c:13:ae:1f: d7:51:40:7b:3c:e4:67:64:80:3a:4b:df:a1:ba:06:76:71:8c: 5e:ac:1b:10:69:1b:c9:cd:3c:73:a4:3b:34:9c:48:40:4d:fb: af:e9:2e:be:f6:b6:ae:68:fa:d2:0f:32:75:5c:ef:bd:64:54: b2:11:f1:97:38:97:45:3c:0d:41:a4:1c:c2:3b:d7:19:37:0a: ef:ef:37:7a:de:c6:b4:66:bd:e6:fd:29:4a:c5:dc:f1:b7:0d: b1:3f:fe:4a:2f:4a:a1:04:58:3c:5b:bf:1a:9c:f0:88:8d:b0: b1:76:02:52:c9:b5:cb:d7:84:58:f0:e9:79:d9:ea:e2:b7:da: c0:b2:41:96 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUVUdLWguv4mZ4hAHJGM7auUjmEX4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNmNjZGM4MmJhZTc4MDBmN2Q1MDdjNzM3OTI0ODY5YmRl YjVhNzZlYTAeFw0yNTExMjAxMDUzMzRaFw0yNjExMTkxMDU4MzRaMDMxMTAvBgNV BAMTKDcxRTk1QTdFQ0Q2Mzc1NUVBODU0OTIyQzdEMUNBQ0Q0RkZDOEU5RjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDK8sUEfAHfRmEkG+TGLmoEU1Cm FApuEUsLD4WIgyH527eC2SSx20oxnFO2gsil+qi3iWXkQiv4WW38LJ3QAvlY2Mc/ PVps/Z736/d26aq2nlJmUKTmmZkQFn1ToEZo5vFY1U52XPkOZ/oeQJWpM0Z1zQa/ glKIq2hXOJljhZPybLQOzg621Ue2ZEdbVmkhy36eOkvhJelPxcy4Dl5njvQ+FkED MWLVCrb4bKpnFIW5/6+dGIZXklQnU364uPKB+iXuEHA0mz23CYuTOX7ToKlvYKiL GUkLwyjpL8mbb96noJhSlOcfCzM7F67cei/4Fbo+fLJ/hI4AM/0EJtspshrLAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUcelafs1jdV6oVJIsfRys1P/I6fEwHwYDVR0j BBgwFoAUbM3IK654APfVB8c3kkhpvetaduowDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvY2NkMzg4NGEtYzM4NS00YjY1LTk4NjYtNGY2MzgzMTcy NjcyLzAvNkNDREM4MkJBRTc4MDBGN0Q1MDdDNzM3OTI0ODY5QkRFQjVBNzZFQS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2JNM0lLNjU0QVBmVkI4YzNra2hwdmV0 YWR1by5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvY2NkMzg4NGEt YzM4NS00YjY1LTk4NjYtNGY2MzgzMTcyNjcyLzAvMzEzNDM3MmUzMTMyMzUyZTMx MzQzMjJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDM5MzMzMDM0LnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA k32OMA0GCSqGSIb3DQEBCwUAA4IBAQALYniodtlABngBd0Tdy+uU5qWyKTZaFp1X 9IEKgYXeVGbPi+whZATHcQUKkN9d9QrZV7YWg1SLstTtE4gOGbm60rCG6hziz2oi 6OuSMHtXks8cVOcZmvn4rgHUZcgEBN5p6Oks5X9gJPbGeFNniz634TPDgZgylrJy SywTrh/XUUB7PORnZIA6S9+hugZ2cYxerBsQaRvJzTxzpDs0nEhATfuv6S6+9rau aPrSDzJ1XO+9ZFSyEfGXOJdFPA1BpBzCO9cZNwrv7zd63sa0Zr3m/SlKxdzxtw2x P/5KL0qhBFg8W78anPCIjbCxdgJSybXL14RY8Ol52erit9rAskGW -----END CERTIFICATE-----Generated at Thu Dec 4 04:21:33 2025 by rpki-client