This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/ccd3884a-c385-4b65-9866-4f6383172672/0/3134372e3132352e3230332e302f32342d3234203d3e203339383535.roa File: 3134372e3132352e3230332e302f32342d3234203d3e203339383535.roa (raw, json) Hash identifier: kXBK6/1K38OSl5810Sjoayzi8rIeKqz5X1SV4WrJhqc= Subject key identifier: F0:28:77:1C:BC:90:E1:19:46:9A:47:5E:6B:A4:CA:74:4B:37:2F:75 Certificate issuer: /CN=6ccdc82bae7800f7d507c737924869bdeb5a76ea Certificate serial: 7D43D2E15492DD1977A80612B7275C68EBEEBFAD Authority key identifier: 6C:CD:C8:2B:AE:78:00:F7:D5:07:C7:37:92:48:69:BD:EB:5A:76:EA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bM3IK654APfVB8c3kkhpvetaduo.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/ccd3884a-c385-4b65-9866-4f6383172672/0/3134372e3132352e3230332e302f32342d3234203d3e203339383535.roa Signing time: Mon 10 Nov 2025 13:55:38 +0000 ROA not before: Mon 10 Nov 2025 13:50:38 +0000 ROA not after: Mon 09 Nov 2026 13:55:38 +0000 asID: 39855 IP address blocks: 147.125.203.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/ccd3884a-c385-4b65-9866-4f6383172672/0/6CCDC82BAE7800F7D507C737924869BDEB5A76EA.crl rsync://rsync.paas.rpki.ripe.net/repository/ccd3884a-c385-4b65-9866-4f6383172672/0/6CCDC82BAE7800F7D507C737924869BDEB5A76EA.mft rsync://rpki.ripe.net/repository/DEFAULT/bM3IK654APfVB8c3kkhpvetaduo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 09:55:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:43:d2:e1:54:92:dd:19:77:a8:06:12:b7:27:5c:68:eb:ee:bf:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ccdc82bae7800f7d507c737924869bdeb5a76ea Validity Not Before: Nov 10 13:50:38 2025 GMT Not After : Nov 9 13:55:38 2026 GMT Subject: CN=F028771CBC90E119469A475E6BA4CA744B372F75 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:7b:32:51:f7:28:b5:7b:2a:ae:d4:8d:b7:00: ff:1e:d1:80:03:f1:15:a6:62:95:0b:15:9c:b7:cd: 21:fe:19:1e:ba:f8:d8:cf:66:c3:86:f4:00:40:81: 31:53:a4:bf:01:53:39:4d:47:a4:10:de:09:fc:0b: a5:94:2d:46:22:67:9f:eb:a0:f7:43:10:cb:59:ba: 37:b9:48:6c:9b:c1:34:7a:7c:de:00:fb:4e:3c:19: 68:a7:a1:2c:7e:fe:e4:43:62:32:40:c1:d7:19:e5: f0:14:e6:03:56:eb:d9:89:7d:66:8f:99:0a:6f:29: bd:2c:f7:a2:4a:f3:51:fb:16:c7:49:ac:e4:31:d0: 7f:0b:b7:1d:1d:f5:b9:cc:8f:4b:0e:3f:5d:26:8b: 77:e3:3d:fd:71:30:55:1e:0c:f6:01:15:6b:e6:92: 6f:ff:ab:06:37:ff:4e:97:98:84:db:c9:d8:c6:d1: 51:4c:2f:8f:5e:76:01:19:a5:9d:7f:bd:c5:42:24: 4b:de:24:0f:3a:7e:a0:e0:0d:c8:de:51:20:3a:66: 08:23:ce:c2:68:87:24:6f:ac:ac:77:d7:9d:d5:85: 3c:2f:81:52:25:e9:48:d3:4f:b7:11:31:e1:f1:7f: e5:45:2a:a1:8f:01:96:a3:0b:9c:38:3f:42:c6:b1: d7:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:28:77:1C:BC:90:E1:19:46:9A:47:5E:6B:A4:CA:74:4B:37:2F:75 X509v3 Authority Key Identifier: keyid:6C:CD:C8:2B:AE:78:00:F7:D5:07:C7:37:92:48:69:BD:EB:5A:76:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/ccd3884a-c385-4b65-9866-4f6383172672/0/6CCDC82BAE7800F7D507C737924869BDEB5A76EA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bM3IK654APfVB8c3kkhpvetaduo.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/ccd3884a-c385-4b65-9866-4f6383172672/0/3134372e3132352e3230332e302f32342d3234203d3e203339383535.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 147.125.203.0/24 Signature Algorithm: sha256WithRSAEncryption 3e:0e:c6:7c:5b:fa:e7:5c:07:a4:af:f0:ac:37:9e:c6:fc:1b: 8a:72:95:c9:cf:98:d4:7e:a9:90:d7:ff:3e:27:6b:4b:e9:41: 05:86:13:ed:d2:ab:49:93:66:e7:41:d1:2c:51:c5:d3:dc:d3: fd:f8:12:2c:93:2e:c6:f3:a6:0e:35:d0:bd:27:50:cb:d2:af: 41:0a:f6:98:59:c0:e6:45:94:54:d7:9a:44:53:8d:d3:30:98: 98:6d:e8:5b:dd:29:d0:f1:c7:31:4b:b3:57:a0:97:f2:30:6f: 94:09:0e:d9:77:93:5c:3e:d3:26:7e:45:f5:62:d6:a8:0a:17: e1:97:88:22:7b:09:e0:9f:2c:53:d5:d4:85:2d:69:58:1d:e1: 8e:df:56:34:b7:dd:3d:1c:73:71:7c:ab:f1:d5:c1:f9:47:e2: f9:ea:df:ad:1a:f8:1d:99:54:50:ca:26:87:4b:15:ca:82:b2: 60:ea:e8:f8:58:59:2e:44:c4:7b:b6:1b:45:93:3c:2e:18:37: f6:c7:80:ca:07:01:9b:38:1b:ee:a7:8a:21:08:96:0c:83:40: 0f:db:75:c7:03:3a:97:ce:e7:91:bd:82:d1:1f:2a:82:de:67: 7f:65:d0:65:42:3a:26:d4:b8:73:f8:e1:f6:d9:07:45:6d:0e: 2b:94:65:84 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUfUPS4VSS3Rl3qAYStydcaOvuv60wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNmNjZGM4MmJhZTc4MDBmN2Q1MDdjNzM3OTI0ODY5YmRl YjVhNzZlYTAeFw0yNTExMTAxMzUwMzhaFw0yNjExMDkxMzU1MzhaMDMxMTAvBgNV BAMTKEYwMjg3NzFDQkM5MEUxMTk0NjlBNDc1RTZCQTRDQTc0NEIzNzJGNzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjezJR9yi1eyqu1I23AP8e0YAD 8RWmYpULFZy3zSH+GR66+NjPZsOG9ABAgTFTpL8BUzlNR6QQ3gn8C6WULUYiZ5/r oPdDEMtZuje5SGybwTR6fN4A+048GWinoSx+/uRDYjJAwdcZ5fAU5gNW69mJfWaP mQpvKb0s96JK81H7FsdJrOQx0H8Ltx0d9bnMj0sOP10mi3fjPf1xMFUeDPYBFWvm km//qwY3/06XmITbydjG0VFML49edgEZpZ1/vcVCJEveJA86fqDgDcjeUSA6Zggj zsJohyRvrKx3153VhTwvgVIl6UjTT7cRMeHxf+VFKqGPAZajC5w4P0LGsdfFAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQU8Ch3HLyQ4RlGmkdea6TKdEs3L3UwHwYDVR0j BBgwFoAUbM3IK654APfVB8c3kkhpvetaduowDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvY2NkMzg4NGEtYzM4NS00YjY1LTk4NjYtNGY2MzgzMTcy NjcyLzAvNkNDREM4MkJBRTc4MDBGN0Q1MDdDNzM3OTI0ODY5QkRFQjVBNzZFQS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2JNM0lLNjU0QVBmVkI4YzNra2hwdmV0 YWR1by5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvY2NkMzg4NGEt YzM4NS00YjY1LTk4NjYtNGY2MzgzMTcyNjcyLzAvMzEzNDM3MmUzMTMyMzUyZTMy MzAzMzJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMzMzkzODM1MzUucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BACTfcswDQYJKoZIhvcNAQELBQADggEBAD4Oxnxb+udcB6Sv8Kw3nsb8G4pylcnP mNR+qZDX/z4na0vpQQWGE+3Sq0mTZudB0SxRxdPc0/34EiyTLsbzpg410L0nUMvS r0EK9phZwOZFlFTXmkRTjdMwmJht6FvdKdDxxzFLs1egl/Iwb5QJDtl3k1w+0yZ+ RfVi1qgKF+GXiCJ7CeCfLFPV1IUtaVgd4Y7fVjS33T0cc3F8q/HVwflH4vnq360a +B2ZVFDKJodLFcqCsmDq6PhYWS5ExHu2G0WTPC4YN/bHgMoHAZs4G+6niiEIlgyD QA/bdccDOpfO55G9gtEfKoLeZ39l0GVCOibUuHP44fbZB0VtDiuUZYQ= -----END CERTIFICATE-----Generated at Fri Dec 5 15:20:36 2025 by rpki-client