This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/d90a935a-a74d-4b98-9430-bc7ae5c24f28/0/3231372e3139382e3138372e302f32342d3234203d3e20323131343135.roa File: 3231372e3139382e3138372e302f32342d3234203d3e20323131343135.roa (raw, json) Hash identifier: I5EY6cn+MqUeM13Ic2acCtvjkzpr7UgV9E8MpknrsP0= Subject key identifier: 8E:90:3E:1C:EE:B6:2D:0F:53:E1:13:A4:8C:A6:1A:07:E2:92:AF:C3 Certificate issuer: /CN=c79d02c618861ad45baf78ce39023cbcb494a7bf Certificate serial: 76F3AA7B50DF571F9ED01A344DFE3590ABA93CDE Authority key identifier: C7:9D:02:C6:18:86:1A:D4:5B:AF:78:CE:39:02:3C:BC:B4:94:A7:BF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x50CxhiGGtRbr3jOOQI8vLSUp78.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/d90a935a-a74d-4b98-9430-bc7ae5c24f28/0/3231372e3139382e3138372e302f32342d3234203d3e20323131343135.roa Signing time: Thu 13 Nov 2025 09:55:11 +0000 ROA not before: Thu 13 Nov 2025 09:50:11 +0000 ROA not after: Thu 12 Nov 2026 09:55:11 +0000 asID: 211415 IP address blocks: 217.198.187.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/d90a935a-a74d-4b98-9430-bc7ae5c24f28/0/C79D02C618861AD45BAF78CE39023CBCB494A7BF.crl rsync://rsync.paas.rpki.ripe.net/repository/d90a935a-a74d-4b98-9430-bc7ae5c24f28/0/C79D02C618861AD45BAF78CE39023CBCB494A7BF.mft rsync://rpki.ripe.net/repository/DEFAULT/x50CxhiGGtRbr3jOOQI8vLSUp78.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 03:40:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:f3:aa:7b:50:df:57:1f:9e:d0:1a:34:4d:fe:35:90:ab:a9:3c:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c79d02c618861ad45baf78ce39023cbcb494a7bf Validity Not Before: Nov 13 09:50:11 2025 GMT Not After : Nov 12 09:55:11 2026 GMT Subject: CN=8E903E1CEEB62D0F53E113A48CA61A07E292AFC3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:81:99:12:bc:d0:59:4d:c7:07:8c:9d:d2:26: 13:94:5b:8d:3b:65:04:38:3a:c1:1f:10:0c:f0:30: 6f:72:9c:79:ff:df:96:72:b0:3a:76:8e:ea:ed:03: 20:b1:6c:91:93:96:35:9c:46:da:64:7a:c5:04:4c: 02:70:3e:73:65:7a:c5:06:0e:60:47:5b:99:14:d3: 2e:9d:bd:50:0f:f7:7c:6e:0d:39:c5:55:0c:c1:0a: d3:75:cd:73:03:91:17:73:fe:7f:ab:ed:c4:74:e4: 3d:29:e9:ac:bf:9b:27:2e:f4:4d:8e:6d:5b:2b:c2: 7d:09:f2:a3:b9:6c:7b:8b:e8:a3:f9:ed:6d:2b:b5: eb:4c:58:75:49:24:ea:5f:ef:24:ee:4d:90:55:1e: 15:34:85:d5:a5:84:6d:cb:84:70:07:80:a2:61:9f: c0:d1:19:cc:b8:6c:3e:61:4c:b2:bd:e1:e7:20:23: 48:9a:4a:86:67:a7:d6:c9:ef:ac:f8:86:24:20:41: fe:d0:15:38:bd:71:8e:33:29:e0:7c:aa:66:99:0f: 7b:10:d7:2e:a4:db:a2:ea:48:cb:6c:5a:c8:ec:be: 94:be:50:b3:43:36:db:73:7f:f9:dd:93:f5:d8:13: 42:be:fe:5e:2a:77:3a:13:2f:9e:e0:73:38:77:6b: 5e:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:90:3E:1C:EE:B6:2D:0F:53:E1:13:A4:8C:A6:1A:07:E2:92:AF:C3 X509v3 Authority Key Identifier: keyid:C7:9D:02:C6:18:86:1A:D4:5B:AF:78:CE:39:02:3C:BC:B4:94:A7:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/d90a935a-a74d-4b98-9430-bc7ae5c24f28/0/C79D02C618861AD45BAF78CE39023CBCB494A7BF.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x50CxhiGGtRbr3jOOQI8vLSUp78.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/d90a935a-a74d-4b98-9430-bc7ae5c24f28/0/3231372e3139382e3138372e302f32342d3234203d3e20323131343135.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 217.198.187.0/24 Signature Algorithm: sha256WithRSAEncryption d2:cb:4c:d4:56:a5:09:dd:40:f1:98:fa:06:ab:48:eb:af:74: 85:07:11:13:99:ef:90:ba:bc:09:d2:39:bc:e4:ea:8b:3b:84: 10:4b:b2:c3:be:a0:71:81:39:d0:8b:4c:2a:f7:64:e5:bb:fd: a3:96:12:f5:81:5e:b2:16:39:06:9a:18:6d:91:3f:f7:7e:e1: 98:4c:30:16:14:4f:03:7e:41:84:cf:0e:78:f6:d5:84:18:74: 43:24:b8:5d:09:06:79:20:01:a5:fd:89:7e:5e:c0:ba:d1:13: 3e:83:e6:e7:ae:bf:1b:0e:02:2a:e2:ea:ae:02:d7:d3:e0:1b: 76:5a:24:90:a5:d1:d6:30:6d:89:3a:92:f5:ed:fe:28:04:6c: 05:85:4a:6b:89:39:49:00:71:85:47:7c:f6:98:8d:24:04:6b: 43:bc:fa:82:80:39:9e:5d:49:a8:23:32:c0:78:f2:ca:6a:a8: be:0a:2d:99:e2:cd:d4:65:ad:bc:f5:93:87:5a:91:4a:12:06: 19:09:da:96:00:27:aa:5d:59:2d:93:08:06:6e:e0:ce:4d:78: e9:77:16:ad:4c:4c:31:10:84:c0:0e:ee:eb:d5:e3:29:a9:41: f3:bf:e6:f1:50:ec:4a:37:3a:f6:c0:62:cd:f4:01:c6:6f:5b: 98:ea:96:bf -----BEGIN CERTIFICATE----- MIIFNzCCBB+gAwIBAgIUdvOqe1DfVx+e0Bo0Tf41kKupPN4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYzc5ZDAyYzYxODg2MWFkNDViYWY3OGNlMzkwMjNjYmNi NDk0YTdiZjAeFw0yNTExMTMwOTUwMTFaFw0yNjExMTIwOTU1MTFaMDMxMTAvBgNV BAMTKDhFOTAzRTFDRUVCNjJEMEY1M0UxMTNBNDhDQTYxQTA3RTI5MkFGQzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjgZkSvNBZTccHjJ3SJhOUW407 ZQQ4OsEfEAzwMG9ynHn/35ZysDp2jurtAyCxbJGTljWcRtpkesUETAJwPnNlesUG DmBHW5kU0y6dvVAP93xuDTnFVQzBCtN1zXMDkRdz/n+r7cR05D0p6ay/mycu9E2O bVsrwn0J8qO5bHuL6KP57W0rtetMWHVJJOpf7yTuTZBVHhU0hdWlhG3LhHAHgKJh n8DRGcy4bD5hTLK94ecgI0iaSoZnp9bJ76z4hiQgQf7QFTi9cY4zKeB8qmaZD3sQ 1y6k26LqSMtsWsjsvpS+ULNDNttzf/ndk/XYE0K+/l4qdzoTL57gczh3a173AgMB AAGjggJBMIICPTAdBgNVHQ4EFgQUjpA+HO62LQ9T4ROkjKYaB+KSr8MwHwYDVR0j BBgwFoAUx50CxhiGGtRbr3jOOQI8vLSUp78wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZDkwYTkzNWEtYTc0ZC00Yjk4LTk0MzAtYmM3YWU1YzI0 ZjI4LzAvQzc5RDAyQzYxODg2MUFENDVCQUY3OENFMzkwMjNDQkNCNDk0QTdCRi5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3g1MEN4aGlHR3RSYnIzak9PUUk4dkxT VXA3OC5jZXIwgbEGCCsGAQUFBwELBIGkMIGhMIGeBggrBgEFBQcwC4aBkXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZDkwYTkzNWEt YTc0ZC00Yjk4LTk0MzAtYmM3YWU1YzI0ZjI4LzAvMzIzMTM3MmUzMTM5MzgyZTMx MzgzNzJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMyMzEzMTM0MzEzNS5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEANnGuzANBgkqhkiG9w0BAQsFAAOCAQEA0stM1FalCd1A8Zj6BqtI6690hQcR E5nvkLq8CdI5vOTqizuEEEuyw76gcYE50ItMKvdk5bv9o5YS9YFeshY5BpoYbZE/ 937hmEwwFhRPA35BhM8OePbVhBh0QyS4XQkGeSABpf2Jfl7AutETPoPm566/Gw4C KuLqrgLX0+AbdlokkKXR1jBtiTqS9e3+KARsBYVKa4k5SQBxhUd89piNJARrQ7z6 goA5nl1JqCMywHjyymqovgotmeLN1GWtvPWTh1qRShIGGQnalgAnql1ZLZMIBm7g zk146XcWrUxMMRCEwA7u69XjKalB87/m8VDsSjc69sBizfQBxm9bmOqWvw== -----END CERTIFICATE-----Generated at Fri Dec 5 19:09:12 2025 by rpki-client