This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3136302e3233382e33362e302f32342d3234203d3e203437353833.roa File: 3136302e3233382e33362e302f32342d3234203d3e203437353833.roa (raw, json) Hash identifier: USLftlTJqeiPo9cuJtqHbW8cjXytNVPF8SkkeMneWtA= Subject key identifier: 04:D9:C3:D2:85:49:53:91:83:BB:57:01:7F:A8:E3:B2:CB:A0:7F:18 Certificate issuer: /CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959 Certificate serial: 6429F024A20E9D9C5C0D0901A4F893AC10735CA8 Authority key identifier: 09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3136302e3233382e33362e302f32342d3234203d3e203437353833.roa Signing time: Fri 28 Nov 2025 11:49:46 +0000 ROA not before: Fri 28 Nov 2025 11:44:46 +0000 ROA not after: Fri 27 Nov 2026 11:49:46 +0000 asID: 47583 IP address blocks: 160.238.36.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.mft rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 11:00:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:29:f0:24:a2:0e:9d:9c:5c:0d:09:01:a4:f8:93:ac:10:73:5c:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959 Validity Not Before: Nov 28 11:44:46 2025 GMT Not After : Nov 27 11:49:46 2026 GMT Subject: CN=04D9C3D28549539183BB57017FA8E3B2CBA07F18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:84:d8:19:58:fc:17:5b:35:b3:d4:d6:eb:72: c4:58:38:d7:ad:12:47:99:8c:e2:62:aa:8f:cc:fd: bc:a3:a8:29:01:38:db:ca:79:4f:a2:80:0b:e2:bb: 1e:f1:c6:93:4c:0e:6f:39:95:2d:ef:06:36:df:9e: 83:70:cf:07:6f:94:4c:5a:c1:01:e5:c8:ab:7f:4c: 44:9b:73:8f:82:fa:4c:cf:5f:fc:ee:27:8e:dd:63: 86:14:36:9c:f4:5f:cc:56:7c:cb:96:ae:a2:09:29: c8:05:0b:cb:d8:bb:ca:b5:08:cb:2c:c2:02:72:a3: 54:96:f1:a5:97:30:bd:69:82:c8:33:ec:b3:f6:ed: 71:df:5b:e9:2e:a3:a1:76:f4:f4:47:10:7a:c1:eb: 6f:eb:fe:06:59:ce:fb:48:7a:71:0e:14:1c:1f:90: 5b:3f:37:d3:e0:4a:b1:27:f0:eb:9b:e5:52:ab:e7: 9c:1f:fa:20:17:6e:b3:bd:ff:6b:42:aa:83:47:1c: 62:5f:d2:8e:75:7d:df:d8:a5:74:25:9f:79:ae:80: 0a:9d:b1:40:7c:34:d4:19:51:de:6f:dc:94:be:c6: 72:bc:a5:c4:0e:2c:53:73:cd:44:07:1a:38:61:7a: 7c:7e:17:f3:dc:ec:a1:8d:9c:d0:e6:04:8f:81:42: 1b:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:D9:C3:D2:85:49:53:91:83:BB:57:01:7F:A8:E3:B2:CB:A0:7F:18 X509v3 Authority Key Identifier: keyid:09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3136302e3233382e33362e302f32342d3234203d3e203437353833.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.238.36.0/24 Signature Algorithm: sha256WithRSAEncryption da:2e:b9:4c:cc:73:b0:35:58:93:98:d5:9c:35:41:62:83:a9: 18:45:66:ac:d7:15:e1:84:dd:65:3d:fc:5d:1c:a1:ea:97:8d: b6:26:51:37:48:54:16:8d:9f:60:ad:72:64:21:02:72:26:1d: d8:cc:59:45:3f:5d:e7:1d:ae:8b:a4:64:a5:aa:7b:b7:f4:8e: 22:91:d2:75:9a:9b:eb:57:29:6f:b2:32:f4:b3:fb:4b:45:98: af:01:17:d3:64:ce:a4:09:b8:0c:46:f5:23:d0:61:ef:41:49: ea:d9:82:53:a5:fa:1a:81:88:13:31:22:4a:78:54:1d:3e:ce: d6:97:8f:80:bb:a7:e1:1b:f4:c1:d7:d2:fe:41:81:1d:45:83: 54:4f:71:ca:81:45:b7:44:b1:b2:d1:21:14:ea:c3:7c:a6:4b: 4d:e0:a1:e2:7e:74:9f:79:67:a3:04:fa:f4:4f:14:70:c5:35: cd:86:dd:45:6c:f9:4a:11:0e:f4:20:57:a2:02:16:64:db:64: f4:a5:11:ba:ff:64:73:b6:64:33:c9:bd:75:d1:18:69:8c:37: 9a:e1:fc:6f:8c:dd:eb:ba:3f:4b:3a:45:6c:26:58:14:f9:29: 94:a7:16:01:a2:97:de:2e:71:b6:d6:aa:68:cd:53:d4:8a:ba: c2:9a:49:28 -----BEGIN CERTIFICATE----- MIIFODCCBCCgAwIBAgIUZCnwJKIOnZxcDQkBpPiTrBBzXKgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDk3YTI4Zjc3ZWIwYTRhYzM1NGE4YWMyODc1NGIyYTNi YmUzYTk1OTAeFw0yNTExMjgxMTQ0NDZaFw0yNjExMjcxMTQ5NDZaMDMxMTAvBgNV BAMTKDA0RDlDM0QyODU0OTUzOTE4M0JCNTcwMTdGQThFM0IyQ0JBMDdGMTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWhNgZWPwXWzWz1NbrcsRYONet EkeZjOJiqo/M/byjqCkBONvKeU+igAviux7xxpNMDm85lS3vBjbfnoNwzwdvlExa wQHlyKt/TESbc4+C+kzPX/zuJ47dY4YUNpz0X8xWfMuWrqIJKcgFC8vYu8q1CMss wgJyo1SW8aWXML1pgsgz7LP27XHfW+kuo6F29PRHEHrB62/r/gZZzvtIenEOFBwf kFs/N9PgSrEn8Oub5VKr55wf+iAXbrO9/2tCqoNHHGJf0o51fd/YpXQln3mugAqd sUB8NNQZUd5v3JS+xnK8pcQOLFNzzUQHGjhhenx+F/Pc7KGNnNDmBI+BQhs5AgMB AAGjggJCMIICPjAdBgNVHQ4EFgQUBNnD0oVJU5GDu1cBf6jjssugfxgwHwYDVR0j BBgwFoAUCXoo936wpKw1SorCh1Syo7vjqVkwDgYDVR0PAQH/BAQDAgeAMIGYBgNV HR8EgZAwgY0wgYqggYeggYSGgYFyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5L2ZlMzcwOGEwLTY3ZDUtNGFjMi1hYmM0LWEzMzI1OTBi OTlhZi8xNzcvMDk3QTI4Rjc3RUIwQTRBQzM1NEE4QUMyODc1NEIyQTNCQkUzQTk1 OS5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2ku cmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0NYb285MzZ3cEt3MVNvckNoMVN5 bzd2anFWay5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3Jz eW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4 YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzE3Ny8zMTM2MzAyZTMyMzMz ODJlMzMzNjJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDM0MzczNTM4MzMucm9hMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACg7iQwDQYJKoZIhvcNAQELBQADggEBANouuUzMc7A1WJOY1Zw1QWKDqRhF ZqzXFeGE3WU9/F0coeqXjbYmUTdIVBaNn2CtcmQhAnImHdjMWUU/XecdroukZKWq e7f0jiKR0nWam+tXKW+yMvSz+0tFmK8BF9NkzqQJuAxG9SPQYe9BSerZglOl+hqB iBMxIkp4VB0+ztaXj4C7p+Eb9MHX0v5BgR1Fg1RPccqBRbdEsbLRIRTqw3ymS03g oeJ+dJ95Z6ME+vRPFHDFNc2G3UVs+UoRDvQgV6ICFmTbZPSlEbr/ZHO2ZDPJvXXR GGmMN5rh/G+M3eu6P0s6RWwmWBT5KZSnFgGil94ucbbWqmjNU9SKusKaSSg= -----END CERTIFICATE-----Generated at Fri Dec 5 19:00:26 2025 by rpki-client