This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/ccd3884a-c385-4b65-9866-4f6383172672/0/3134372e3132352e3139322e302f32322d3234203d3e20383334.roa File: 3134372e3132352e3139322e302f32322d3234203d3e20383334.roa (raw, json) Hash identifier: s3WGe6tw5jTg2R7/SfpfAIljzNaaLnWd0vu8GZ1tti0= Subject key identifier: 56:E7:61:CA:79:44:42:82:1A:A0:E8:2D:11:2B:5F:87:04:0A:FA:60 Certificate issuer: /CN=6ccdc82bae7800f7d507c737924869bdeb5a76ea Certificate serial: 7480CBB155F96F641CDAAB8D3E5A4F60E4DB9EF1 Authority key identifier: 6C:CD:C8:2B:AE:78:00:F7:D5:07:C7:37:92:48:69:BD:EB:5A:76:EA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bM3IK654APfVB8c3kkhpvetaduo.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/ccd3884a-c385-4b65-9866-4f6383172672/0/3134372e3132352e3139322e302f32322d3234203d3e20383334.roa Signing time: Tue 09 Dec 2025 16:34:27 +0000 ROA not before: Tue 09 Dec 2025 16:29:27 +0000 ROA not after: Tue 08 Dec 2026 16:34:27 +0000 asID: 834 IP address blocks: 147.125.192.0/22 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/ccd3884a-c385-4b65-9866-4f6383172672/0/6CCDC82BAE7800F7D507C737924869BDEB5A76EA.crl rsync://rsync.paas.rpki.ripe.net/repository/ccd3884a-c385-4b65-9866-4f6383172672/0/6CCDC82BAE7800F7D507C737924869BDEB5A76EA.mft rsync://rpki.ripe.net/repository/DEFAULT/bM3IK654APfVB8c3kkhpvetaduo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 16 Dec 2025 13:33:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:80:cb:b1:55:f9:6f:64:1c:da:ab:8d:3e:5a:4f:60:e4:db:9e:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ccdc82bae7800f7d507c737924869bdeb5a76ea Validity Not Before: Dec 9 16:29:27 2025 GMT Not After : Dec 8 16:34:27 2026 GMT Subject: CN=56E761CA794442821AA0E82D112B5F87040AFA60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:75:b8:2b:15:ac:88:ab:8c:d4:ea:58:e4:85: 54:aa:02:11:d9:2d:77:b8:20:47:56:2f:db:6e:9b: c8:a9:12:9d:b2:34:15:6b:1b:17:b1:81:ad:8b:2a: a3:a2:ba:56:81:a5:8b:f4:c9:d6:14:ae:22:d8:bf: e8:2e:89:45:9b:b2:fe:a9:3b:3e:fa:8e:c9:9b:14: 25:f6:30:15:a7:fd:68:2e:12:06:55:fe:af:e0:2e: 34:db:a6:54:04:f4:d8:0e:57:f2:c1:f2:8f:d0:83: 8a:49:1c:4e:9a:90:82:6a:c3:18:7c:ac:e6:ef:ab: 79:7b:7a:7c:13:3f:24:2d:89:8d:1a:20:a1:e0:13: aa:12:45:56:85:06:c7:2d:b9:64:c0:10:59:2c:b5: 79:9f:6e:1c:cf:c5:63:34:9e:55:29:54:7b:16:71: 7f:e4:f5:e0:66:b4:3a:ae:96:d0:a2:f4:1d:0f:58: 9f:ad:e6:ae:90:33:78:dd:79:73:5e:4f:15:78:58: 52:16:02:e3:ee:2e:a8:47:14:e3:9c:dc:8e:60:57: e1:f4:be:db:d1:3f:04:90:81:ca:76:13:29:2f:c1: 69:7f:ee:d4:98:c6:97:bd:50:e3:1a:9b:62:8a:05: 8e:81:4e:6b:65:be:1a:70:71:d3:75:7e:34:6d:55: b8:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:E7:61:CA:79:44:42:82:1A:A0:E8:2D:11:2B:5F:87:04:0A:FA:60 X509v3 Authority Key Identifier: keyid:6C:CD:C8:2B:AE:78:00:F7:D5:07:C7:37:92:48:69:BD:EB:5A:76:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/ccd3884a-c385-4b65-9866-4f6383172672/0/6CCDC82BAE7800F7D507C737924869BDEB5A76EA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bM3IK654APfVB8c3kkhpvetaduo.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/ccd3884a-c385-4b65-9866-4f6383172672/0/3134372e3132352e3139322e302f32322d3234203d3e20383334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 147.125.192.0/22 Signature Algorithm: sha256WithRSAEncryption 11:c0:20:6b:98:2f:81:ae:85:45:60:cd:de:05:78:35:53:ae: 51:3e:26:3b:c4:cc:c7:df:41:c6:24:ba:18:07:4d:75:fb:5e: b6:f3:a1:7a:b5:d0:23:22:9a:b4:d5:55:dc:92:95:90:1e:30: 7d:6e:f9:0f:87:0e:61:55:40:8c:51:14:d5:e4:02:7f:27:91: 9e:32:e3:0f:cc:1f:b9:b1:3f:83:d8:b6:26:ad:0f:09:2e:73: 12:a4:00:52:76:5e:dd:f6:62:c2:ae:a7:a5:8a:42:6e:df:10: 72:70:04:78:56:92:db:0c:df:8e:e1:65:cc:6f:2f:7a:b7:fd: ec:0c:26:e2:b3:db:44:42:f9:c8:46:80:75:d9:cb:c7:f9:6d: 1c:84:1f:ad:09:97:28:50:e7:d2:9b:2f:fe:66:6c:57:41:1a: fa:df:23:5c:f5:b2:91:c6:c5:a4:4d:bc:fc:84:f0:24:61:e9: 94:be:b8:be:76:59:af:b0:98:32:0d:b8:5c:3b:e5:f5:7f:c0: 72:1b:b0:ff:ac:a2:d1:df:99:78:c6:cc:26:47:90:c5:22:bc: f6:bd:be:58:86:29:56:fc:2b:d4:4b:44:69:e1:4e:32:dd:b3: 8a:7e:e1:9c:05:11:14:04:9b:45:89:cb:98:2e:58:9c:84:1e: 34:5b:8b:d8 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUdIDLsVX5b2Qc2quNPlpPYOTbnvEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNmNjZGM4MmJhZTc4MDBmN2Q1MDdjNzM3OTI0ODY5YmRl YjVhNzZlYTAeFw0yNTEyMDkxNjI5MjdaFw0yNjEyMDgxNjM0MjdaMDMxMTAvBgNV BAMTKDU2RTc2MUNBNzk0NDQyODIxQUEwRTgyRDExMkI1Rjg3MDQwQUZBNjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDgdbgrFayIq4zU6ljkhVSqAhHZ LXe4IEdWL9tum8ipEp2yNBVrGxexga2LKqOiulaBpYv0ydYUriLYv+guiUWbsv6p Oz76jsmbFCX2MBWn/WguEgZV/q/gLjTbplQE9NgOV/LB8o/Qg4pJHE6akIJqwxh8 rObvq3l7enwTPyQtiY0aIKHgE6oSRVaFBsctuWTAEFkstXmfbhzPxWM0nlUpVHsW cX/k9eBmtDqultCi9B0PWJ+t5q6QM3jdeXNeTxV4WFIWAuPuLqhHFOOc3I5gV+H0 vtvRPwSQgcp2EykvwWl/7tSYxpe9UOMam2KKBY6BTmtlvhpwcdN1fjRtVbi/AgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUVudhynlEQoIaoOgtEStfhwQK+mAwHwYDVR0j BBgwFoAUbM3IK654APfVB8c3kkhpvetaduowDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvY2NkMzg4NGEtYzM4NS00YjY1LTk4NjYtNGY2MzgzMTcy NjcyLzAvNkNDREM4MkJBRTc4MDBGN0Q1MDdDNzM3OTI0ODY5QkRFQjVBNzZFQS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2JNM0lLNjU0QVBmVkI4YzNra2hwdmV0 YWR1by5jZXIwgasGCCsGAQUFBwELBIGeMIGbMIGYBggrBgEFBQcwC4aBi3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvY2NkMzg4NGEt YzM4NS00YjY1LTk4NjYtNGY2MzgzMTcyNjcyLzAvMzEzNDM3MmUzMTMyMzUyZTMx MzkzMjJlMzAyZjMyMzIyZDMyMzQyMDNkM2UyMDM4MzMzNC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEApN9 wDANBgkqhkiG9w0BAQsFAAOCAQEAEcAga5gvga6FRWDN3gV4NVOuUT4mO8TMx99B xiS6GAdNdftetvOherXQIyKatNVV3JKVkB4wfW75D4cOYVVAjFEU1eQCfyeRnjLj D8wfubE/g9i2Jq0PCS5zEqQAUnZe3fZiwq6npYpCbt8QcnAEeFaS2wzfjuFlzG8v erf97Awm4rPbREL5yEaAddnLx/ltHIQfrQmXKFDn0psv/mZsV0Ea+t8jXPWykcbF pE28/ITwJGHplL64vnZZr7CYMg24XDvl9X/Achuw/6yi0d+ZeMbMJkeQxSK89r2+ WIYpVvwr1EtEaeFOMt2zin7hnAURFASbRYnLmC5YnIQeNFuL2A== -----END CERTIFICATE-----Generated at Mon Dec 15 23:28:12 2025 by rpki-client