This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/322e35382e38352e302f32342d3234203d3e20383334.roa File: 322e35382e38352e302f32342d3234203d3e20383334.roa (raw, json) Hash identifier: tlmvzJ4yU5noW/rrvRUB30jWwtpRp8Or9JFg8aJLA6I= Subject key identifier: 25:23:03:A4:3E:CA:A4:29:0C:45:73:B1:DB:65:A7:EB:07:E2:4E:E8 Certificate issuer: /CN=cefce449bea8deaedb1804dba25c584df5873dc4 Certificate serial: 02CA362908E605C0FBACB0CD4FBB5C88042B1741 Authority key identifier: CE:FC:E4:49:BE:A8:DE:AE:DB:18:04:DB:A2:5C:58:4D:F5:87:3D:C4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zvzkSb6o3q7bGATbolxYTfWHPcQ.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/322e35382e38352e302f32342d3234203d3e20383334.roa Signing time: Tue 09 Dec 2025 00:00:39 +0000 ROA not before: Mon 08 Dec 2025 23:55:39 +0000 ROA not after: Tue 08 Dec 2026 00:00:39 +0000 asID: 834 IP address blocks: 2.58.85.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/CEFCE449BEA8DEAEDB1804DBA25C584DF5873DC4.crl rsync://rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/CEFCE449BEA8DEAEDB1804DBA25C584DF5873DC4.mft rsync://rpki.ripe.net/repository/DEFAULT/zvzkSb6o3q7bGATbolxYTfWHPcQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Dec 2025 04:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:ca:36:29:08:e6:05:c0:fb:ac:b0:cd:4f:bb:5c:88:04:2b:17:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cefce449bea8deaedb1804dba25c584df5873dc4 Validity Not Before: Dec 8 23:55:39 2025 GMT Not After : Dec 8 00:00:39 2026 GMT Subject: CN=252303A43ECAA4290C4573B1DB65A7EB07E24EE8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:da:8b:f7:ba:89:14:9d:bb:1e:f2:ee:4e:25: a8:e6:cb:ab:55:36:a8:ca:5b:e9:34:d5:d9:ba:66: 38:e3:1f:51:61:87:0e:4d:b4:98:be:83:bd:3c:ae: 08:48:5b:c3:71:e4:e6:69:64:78:65:f2:9e:bb:29: 2a:dd:fa:c8:18:38:8c:e7:17:4e:70:d5:04:7a:8b: 05:0b:a1:93:72:84:2f:32:ff:4e:d8:19:fa:08:28: d7:30:ae:ec:c7:40:f4:aa:c5:59:7f:f6:d8:b8:a8: db:ee:ac:92:73:d8:5e:f5:c7:0b:5b:f4:04:d4:32: 37:69:11:22:8d:4d:b0:41:60:09:37:0b:fc:7a:95: e8:d7:7b:9a:ab:02:55:fe:4f:75:29:47:d2:ca:46: e3:a6:68:04:4b:82:f1:72:58:21:52:4e:a5:c4:f8: 80:82:51:25:e0:1e:a0:6a:c1:28:72:44:72:d0:b0: 2a:11:c8:57:4f:3d:fb:ea:d5:9a:e3:8b:7b:cf:4d: 1c:f7:85:95:e3:f0:2b:43:3e:11:b4:8f:fe:8b:d3: e6:9b:09:f9:55:8f:7f:e6:69:1c:ea:5e:e3:67:e3: 83:51:7e:31:55:26:9c:dd:58:c7:74:ef:83:06:1e: d1:4a:f6:64:1f:bb:77:bb:3d:72:6d:df:5d:af:aa: fc:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:23:03:A4:3E:CA:A4:29:0C:45:73:B1:DB:65:A7:EB:07:E2:4E:E8 X509v3 Authority Key Identifier: keyid:CE:FC:E4:49:BE:A8:DE:AE:DB:18:04:DB:A2:5C:58:4D:F5:87:3D:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/CEFCE449BEA8DEAEDB1804DBA25C584DF5873DC4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zvzkSb6o3q7bGATbolxYTfWHPcQ.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/322e35382e38352e302f32342d3234203d3e20383334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 2.58.85.0/24 Signature Algorithm: sha256WithRSAEncryption 4d:38:9e:66:1d:d1:f0:2a:29:18:09:f6:a9:d3:82:81:2d:bb: 4f:eb:70:5e:c5:72:ae:5f:f0:37:8f:9c:54:50:e1:db:7d:58: ce:f0:ab:0c:59:26:67:3e:55:31:62:76:72:e5:54:44:89:61: b1:53:3a:4f:26:11:b5:fb:10:96:47:23:de:79:b3:c2:53:30: 6e:f4:94:7a:ee:9e:8b:39:6f:4d:66:8e:6a:4e:38:eb:26:1a: 2f:a5:bc:7a:6c:49:7c:77:e6:3a:ff:43:f7:9a:01:39:f1:39: e9:64:bc:e3:48:ee:53:16:08:d0:ff:8d:63:55:56:2c:d9:b6: 73:af:2e:3a:f9:55:b4:e3:7f:0c:bf:4d:83:08:c8:83:91:9f: 50:f9:c8:20:9a:0b:a6:d8:6e:f2:6a:76:56:3f:75:13:0f:9e: d5:1d:5a:b1:a0:cd:8a:0d:dd:b4:9d:84:fb:2b:50:aa:e3:f4: 8b:7c:ba:2e:4e:2e:4e:b0:7c:10:8b:2e:e3:97:ad:cf:78:31: 78:96:a7:3a:eb:89:1a:38:23:89:ba:e7:ba:c6:de:bf:a4:77: bf:26:b0:cf:cc:23:29:a8:a2:73:5f:58:00:7c:37:e3:65:8d: 95:89:0d:4f:be:f7:92:a3:a5:52:55:88:2f:fc:b2:bc:6d:5b: ce:d5:34:dc -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUAso2KQjmBcD7rLDNT7tciAQrF0EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoY2VmY2U0NDliZWE4ZGVhZWRiMTgwNGRiYTI1YzU4NGRm NTg3M2RjNDAeFw0yNTEyMDgyMzU1MzlaFw0yNjEyMDgwMDAwMzlaMDMxMTAvBgNV BAMTKDI1MjMwM0E0M0VDQUE0MjkwQzQ1NzNCMURCNjVBN0VCMDdFMjRFRTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDe2ov3uokUnbse8u5OJajmy6tV NqjKW+k01dm6ZjjjH1Fhhw5NtJi+g708rghIW8Nx5OZpZHhl8p67KSrd+sgYOIzn F05w1QR6iwULoZNyhC8y/07YGfoIKNcwruzHQPSqxVl/9ti4qNvurJJz2F71xwtb 9ATUMjdpESKNTbBBYAk3C/x6lejXe5qrAlX+T3UpR9LKRuOmaARLgvFyWCFSTqXE +ICCUSXgHqBqwShyRHLQsCoRyFdPPfvq1Zrji3vPTRz3hZXj8CtDPhG0j/6L0+ab CflVj3/maRzqXuNn44NRfjFVJpzdWMd074MGHtFK9mQfu3e7PXJt312vqvxVAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUJSMDpD7KpCkMRXOx22Wn6wfiTugwHwYDVR0j BBgwFoAUzvzkSb6o3q7bGATbolxYTfWHPcQwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZDFiMzVmOGItNmY0OC00YmFkLWIxODUtNWMxZGFhOGFj ZGE5LzAvQ0VGQ0U0NDlCRUE4REVBRURCMTgwNERCQTI1QzU4NERGNTg3M0RDNC5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3p2emtTYjZvM3E3YkdBVGJvbHhZVGZX SFBjUS5jZXIwgaMGCCsGAQUFBwELBIGWMIGTMIGQBggrBgEFBQcwC4aBg3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZDFiMzVmOGIt NmY0OC00YmFkLWIxODUtNWMxZGFhOGFjZGE5LzAvMzIyZTM1MzgyZTM4MzUyZTMw MmYzMjM0MmQzMjM0MjAzZDNlMjAzODMzMzQucm9hMBgGA1UdIAEB/wQOMAwwCgYI KwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAACOlUwDQYJKoZI hvcNAQELBQADggEBAE04nmYd0fAqKRgJ9qnTgoEtu0/rcF7Fcq5f8DePnFRQ4dt9 WM7wqwxZJmc+VTFidnLlVESJYbFTOk8mEbX7EJZHI955s8JTMG70lHrunos5b01m jmpOOOsmGi+lvHpsSXx35jr/Q/eaATnxOelkvONI7lMWCND/jWNVVizZtnOvLjr5 VbTjfwy/TYMIyIORn1D5yCCaC6bYbvJqdlY/dRMPntUdWrGgzYoN3bSdhPsrUKrj 9It8ui5OLk6wfBCLLuOXrc94MXiWpzrriRo4I4m657rG3r+kd78msM/MIymoonNf WAB8N+NljZWJDU++95KjpVJViC/8srxtW87VNNw= -----END CERTIFICATE-----Generated at Thu Dec 11 12:13:36 2025 by rpki-client