This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/eafebdb4-6f0b-404b-98e2-a26be94a6620/0/33312e32322e3130392e302f32342d3234203d3e203432383331.roa File: 33312e32322e3130392e302f32342d3234203d3e203432383331.roa (raw, json) Hash identifier: uRUTbbdZ8AYVGvK3CKTe3KYxaaV1m1bGyvfgh/rstUI= Subject key identifier: 4C:C8:31:02:9D:31:CD:E3:9D:90:A8:F8:3F:E9:2A:00:71:F7:8A:F8 Certificate issuer: /CN=c770f43358b97ba0aa9bdc62bbd511e90aeab29d Certificate serial: 193276FB9E5A304F63A3B774E2944D215A416DFF Authority key identifier: C7:70:F4:33:58:B9:7B:A0:AA:9B:DC:62:BB:D5:11:E9:0A:EA:B2:9D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x3D0M1i5e6Cqm9xiu9UR6Qrqsp0.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/eafebdb4-6f0b-404b-98e2-a26be94a6620/0/33312e32322e3130392e302f32342d3234203d3e203432383331.roa Signing time: Mon 17 Nov 2025 15:55:11 +0000 ROA not before: Mon 17 Nov 2025 15:50:11 +0000 ROA not after: Mon 16 Nov 2026 15:55:11 +0000 asID: 42831 IP address blocks: 31.22.109.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/eafebdb4-6f0b-404b-98e2-a26be94a6620/0/C770F43358B97BA0AA9BDC62BBD511E90AEAB29D.crl rsync://rsync.paas.rpki.ripe.net/repository/eafebdb4-6f0b-404b-98e2-a26be94a6620/0/C770F43358B97BA0AA9BDC62BBD511E90AEAB29D.mft rsync://rpki.ripe.net/repository/DEFAULT/x3D0M1i5e6Cqm9xiu9UR6Qrqsp0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 00:45:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:32:76:fb:9e:5a:30:4f:63:a3:b7:74:e2:94:4d:21:5a:41:6d:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c770f43358b97ba0aa9bdc62bbd511e90aeab29d Validity Not Before: Nov 17 15:50:11 2025 GMT Not After : Nov 16 15:55:11 2026 GMT Subject: CN=4CC831029D31CDE39D90A8F83FE92A0071F78AF8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:aa:d2:aa:12:a4:92:83:ec:9a:3e:76:99:da: 37:7e:89:8f:3a:1f:00:24:c5:a2:64:d3:fe:34:ca: 05:ce:6d:df:73:a8:77:b2:82:6c:5d:f7:48:4d:fa: 17:3c:8a:6e:a6:6c:ed:07:c9:da:87:b7:de:ef:49: 87:e0:df:53:68:ab:7d:f2:5f:75:e0:10:d9:f3:dd: a0:09:23:8e:b6:27:d4:e5:68:0b:70:1c:58:e6:2d: 8a:d3:50:7c:e1:56:35:46:72:5e:a6:9a:1f:f2:07: d3:6a:cb:b9:1a:9e:8e:26:fe:20:04:d7:dc:02:22: 03:d2:10:41:2e:7a:5d:27:ce:c9:c9:09:14:be:34: dd:2b:a4:2b:bd:0f:1f:38:47:48:5b:f2:66:a6:a6: 33:a5:93:7e:af:ad:69:4c:66:64:e5:7a:6f:85:b7: 0c:ad:92:f4:b1:af:d6:f2:6c:ea:ba:cf:0a:60:6e: e8:b6:aa:73:f1:e0:e7:f5:43:60:e2:49:40:d3:73: 39:52:af:a0:2c:ca:fb:12:c4:ac:7f:30:c6:a7:46: 9c:af:5f:f2:07:65:27:ea:d7:19:13:b2:6d:16:72: 46:c9:6b:66:88:dc:83:19:2b:c9:3e:de:70:b1:da: a2:0b:98:d0:66:58:eb:b2:b2:24:29:78:3f:90:c5: f8:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:C8:31:02:9D:31:CD:E3:9D:90:A8:F8:3F:E9:2A:00:71:F7:8A:F8 X509v3 Authority Key Identifier: keyid:C7:70:F4:33:58:B9:7B:A0:AA:9B:DC:62:BB:D5:11:E9:0A:EA:B2:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/eafebdb4-6f0b-404b-98e2-a26be94a6620/0/C770F43358B97BA0AA9BDC62BBD511E90AEAB29D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x3D0M1i5e6Cqm9xiu9UR6Qrqsp0.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/eafebdb4-6f0b-404b-98e2-a26be94a6620/0/33312e32322e3130392e302f32342d3234203d3e203432383331.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.22.109.0/24 Signature Algorithm: sha256WithRSAEncryption 61:b4:22:bf:20:85:27:da:3b:fe:67:62:ab:a6:a4:1c:9f:90: ca:e3:b3:ea:79:56:c9:60:f5:d9:ff:47:7d:5d:17:9c:14:cf: 1d:a3:b1:ab:61:44:46:15:c6:d2:5b:9a:06:dd:de:bb:34:af: 9f:8d:64:67:07:85:95:f4:9b:34:d1:7e:79:f6:0b:5a:09:a4: e0:f8:5b:65:5f:ad:c4:99:8e:3a:ce:d7:65:1d:22:76:1e:c3: 6c:06:e6:06:4c:d7:69:dc:06:51:4d:26:a9:f5:bb:49:c5:59: f5:b2:e2:1f:b0:5b:27:a6:5b:e5:9e:9e:3f:88:98:4a:29:b7: 21:79:90:56:36:52:32:28:57:7c:e4:c0:88:09:a7:ee:a4:de: 17:ca:13:a7:53:b7:72:a3:a9:67:2f:6a:25:e6:d3:63:1b:5e: 4b:13:bc:b9:ba:4e:96:31:7f:52:1f:f9:0f:4e:ac:b1:94:f8: 2c:f1:53:f4:35:7d:36:08:65:25:70:2b:4b:2e:a4:99:d6:c5: ab:1d:86:15:a1:ca:c0:44:9d:6d:88:cf:bf:3b:43:0f:35:8e: 25:80:0b:a9:eb:2e:cb:77:b9:d1:2c:4c:ee:b0:b9:f2:4b:c0: 67:79:4a:b8:b9:fb:69:89:0a:82:6c:56:17:72:cc:9c:00:4a: 54:02:dc:e7 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUGTJ2+55aME9jo7d04pRNIVpBbf8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYzc3MGY0MzM1OGI5N2JhMGFhOWJkYzYyYmJkNTExZTkw YWVhYjI5ZDAeFw0yNTExMTcxNTUwMTFaFw0yNjExMTYxNTU1MTFaMDMxMTAvBgNV BAMTKDRDQzgzMTAyOUQzMUNERTM5RDkwQThGODNGRTkyQTAwNzFGNzhBRjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjqtKqEqSSg+yaPnaZ2jd+iY86 HwAkxaJk0/40ygXObd9zqHeygmxd90hN+hc8im6mbO0HydqHt97vSYfg31Noq33y X3XgENnz3aAJI462J9TlaAtwHFjmLYrTUHzhVjVGcl6mmh/yB9Nqy7kano4m/iAE 19wCIgPSEEEuel0nzsnJCRS+NN0rpCu9Dx84R0hb8mampjOlk36vrWlMZmTlem+F twytkvSxr9bybOq6zwpgbui2qnPx4Of1Q2DiSUDTczlSr6AsyvsSxKx/MManRpyv X/IHZSfq1xkTsm0WckbJa2aI3IMZK8k+3nCx2qILmNBmWOuysiQpeD+Qxfh3AgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUTMgxAp0xzeOdkKj4P+kqAHH3ivgwHwYDVR0j BBgwFoAUx3D0M1i5e6Cqm9xiu9UR6Qrqsp0wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZWFmZWJkYjQtNmYwYi00MDRiLTk4ZTItYTI2YmU5NGE2 NjIwLzAvQzc3MEY0MzM1OEI5N0JBMEFBOUJEQzYyQkJENTExRTkwQUVBQjI5RC5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3gzRDBNMWk1ZTZDcW05eGl1OVVSNlFy cXNwMC5jZXIwgasGCCsGAQUFBwELBIGeMIGbMIGYBggrBgEFBQcwC4aBi3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZWFmZWJkYjQt NmYwYi00MDRiLTk4ZTItYTI2YmU5NGE2NjIwLzAvMzMzMTJlMzIzMjJlMzEzMDM5 MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzQzMjM4MzMzMS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAB8W bTANBgkqhkiG9w0BAQsFAAOCAQEAYbQivyCFJ9o7/mdiq6akHJ+QyuOz6nlWyWD1 2f9HfV0XnBTPHaOxq2FERhXG0luaBt3euzSvn41kZweFlfSbNNF+efYLWgmk4Phb ZV+txJmOOs7XZR0idh7DbAbmBkzXadwGUU0mqfW7ScVZ9bLiH7BbJ6Zb5Z6eP4iY Sim3IXmQVjZSMihXfOTAiAmn7qTeF8oTp1O3cqOpZy9qJebTYxteSxO8ubpOljF/ Uh/5D06ssZT4LPFT9DV9NghlJXArSy6kmdbFqx2GFaHKwESdbYjPvztDDzWOJYAL qesuy3e50SxM7rC58kvAZ3lKuLn7aYkKgmxWF3LMnABKVALc5w== -----END CERTIFICATE-----Generated at Fri Dec 5 16:19:06 2025 by rpki-client