This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3137362e3232372e3234332e302f32342d3234203d3e20313437303439.roa File: 3137362e3232372e3234332e302f32342d3234203d3e20313437303439.roa (raw, json) Hash identifier: jgDcE8WIAcC1lyboeQj7PtJV0zfT0Fu0bpTwf9OYu78= Subject key identifier: 0E:95:C1:6E:E5:5C:CF:12:60:D4:36:7B:8E:F7:7D:09:DA:BB:7C:EC Certificate issuer: /CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959 Certificate serial: 029414AC0E2C23EA6BA2FA0EE88DE5548306E210 Authority key identifier: 09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3137362e3232372e3234332e302f32342d3234203d3e20313437303439.roa Signing time: Fri 28 Nov 2025 11:49:15 +0000 ROA not before: Fri 28 Nov 2025 11:44:15 +0000 ROA not after: Fri 27 Nov 2026 11:49:15 +0000 asID: 147049 IP address blocks: 176.227.243.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.mft rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 01:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:94:14:ac:0e:2c:23:ea:6b:a2:fa:0e:e8:8d:e5:54:83:06:e2:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959 Validity Not Before: Nov 28 11:44:15 2025 GMT Not After : Nov 27 11:49:15 2026 GMT Subject: CN=0E95C16EE55CCF1260D4367B8EF77D09DABB7CEC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:f5:d4:b5:e8:b6:82:7f:7b:43:90:5b:1a:c0: 63:ba:99:c7:2f:42:ee:e7:d2:8e:69:81:d5:57:4c: e5:b1:33:17:f9:42:7b:94:05:a7:36:ff:b3:0d:2c: 7f:83:80:e6:41:c9:d6:42:44:4b:81:f2:6a:b2:b3: 64:7a:6b:96:9f:5f:5c:f6:35:36:f9:98:bd:39:45: d8:73:0f:63:e9:f7:73:fd:16:9f:77:3f:40:c8:b4: b9:db:63:5b:fa:17:a1:71:c4:21:29:a5:7e:c0:88: bf:10:df:35:58:a3:5b:3a:a6:28:db:f0:5c:3b:16: ee:15:dd:7e:08:b3:5f:4d:38:d2:d3:7e:33:94:14: 10:c0:1a:14:4b:70:8e:45:38:39:f3:1d:5a:75:48: 16:43:25:12:c1:e0:fc:f7:3d:42:cb:59:8f:79:db: e0:83:d7:d6:4a:5c:96:98:56:f4:ae:a1:1c:49:4e: 85:62:e1:87:83:76:18:a1:59:a3:ce:57:dc:4f:6b: ad:e0:14:e4:73:ae:0f:d2:fe:a7:3d:d1:6d:1a:cc: 9a:4d:01:70:fc:b2:80:7c:54:30:4c:e7:a6:11:fa: 48:6c:7f:d8:4b:03:f5:07:db:76:74:14:ee:4a:2f: 93:d8:16:bd:e8:ef:b7:bd:b1:67:65:8c:de:19:ce: 2b:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:95:C1:6E:E5:5C:CF:12:60:D4:36:7B:8E:F7:7D:09:DA:BB:7C:EC X509v3 Authority Key Identifier: keyid:09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3137362e3232372e3234332e302f32342d3234203d3e20313437303439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 176.227.243.0/24 Signature Algorithm: sha256WithRSAEncryption 58:c3:d8:6e:39:e7:5c:55:49:27:18:df:be:27:57:87:66:ea: d4:3a:61:f7:45:20:67:bd:ca:f0:bb:03:b3:a9:4c:bf:6c:b8: 50:51:77:ca:16:c5:5e:ed:a4:38:8b:45:0a:85:2a:a5:3f:61: c2:bf:13:5d:2b:de:37:35:45:09:e0:65:c1:bb:9f:08:f9:e5: 78:64:af:15:2f:5d:ce:88:dd:f3:fa:f7:fc:22:ec:2d:e1:c9: b6:39:6b:ee:64:47:ae:da:77:a8:37:1f:cf:88:79:50:0a:3b: 2a:59:81:75:fe:dc:ba:76:2f:ab:74:9d:bf:a7:a8:f0:ee:9e: c0:93:dc:43:c6:63:e2:be:29:fd:0a:9c:64:6a:1e:0d:66:4d: 86:c8:9a:5f:a0:f7:31:d1:d7:3e:41:03:12:65:ec:c4:72:4a: b5:58:df:e7:97:ec:bf:d7:9e:16:61:1e:9d:66:49:da:70:e9: 74:01:c4:1f:02:6f:e5:90:9f:79:e8:18:e7:78:d4:35:32:4d: 34:aa:1c:11:9f:44:ff:52:1e:a8:ca:d5:a6:fc:fc:9e:42:93: 4a:dd:05:0f:59:a2:57:32:e1:2c:3d:f3:75:3e:a5:36:5a:72: ba:a7:61:35:4e:23:6e:2e:a7:5c:02:ab:4c:ac:74:f1:1a:0d: 3f:b3:ac:c5 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgIUApQUrA4sI+provoO6I3lVIMG4hAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDk3YTI4Zjc3ZWIwYTRhYzM1NGE4YWMyODc1NGIyYTNi YmUzYTk1OTAeFw0yNTExMjgxMTQ0MTVaFw0yNjExMjcxMTQ5MTVaMDMxMTAvBgNV BAMTKDBFOTVDMTZFRTU1Q0NGMTI2MEQ0MzY3QjhFRjc3RDA5REFCQjdDRUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/9dS16LaCf3tDkFsawGO6mccv Qu7n0o5pgdVXTOWxMxf5QnuUBac2/7MNLH+DgOZBydZCREuB8mqys2R6a5afX1z2 NTb5mL05RdhzD2Pp93P9Fp93P0DItLnbY1v6F6FxxCEppX7AiL8Q3zVYo1s6pijb 8Fw7Fu4V3X4Is19NONLTfjOUFBDAGhRLcI5FODnzHVp1SBZDJRLB4Pz3PULLWY95 2+CD19ZKXJaYVvSuoRxJToVi4YeDdhihWaPOV9xPa63gFORzrg/S/qc90W0azJpN AXD8soB8VDBM56YR+khsf9hLA/UH23Z0FO5KL5PYFr3o77e9sWdljN4ZziupAgMB AAGjggJGMIICQjAdBgNVHQ4EFgQUDpXBbuVczxJg1DZ7jvd9Cdq7fOwwHwYDVR0j BBgwFoAUCXoo936wpKw1SorCh1Syo7vjqVkwDgYDVR0PAQH/BAQDAgeAMIGYBgNV HR8EgZAwgY0wgYqggYeggYSGgYFyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5L2ZlMzcwOGEwLTY3ZDUtNGFjMi1hYmM0LWEzMzI1OTBi OTlhZi8xNzcvMDk3QTI4Rjc3RUIwQTRBQzM1NEE4QUMyODc1NEIyQTNCQkUzQTk1 OS5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2ku cmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0NYb285MzZ3cEt3MVNvckNoMVN5 bzd2anFWay5jZXIwgbMGCCsGAQUFBwELBIGmMIGjMIGgBggrBgEFBQcwC4aBk3Jz eW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4 YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzE3Ny8zMTM3MzYyZTMyMzIz NzJlMzIzNDMzMmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzEzNDM3MzAzNDM5LnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAsOPzMA0GCSqGSIb3DQEBCwUAA4IBAQBYw9huOedcVUknGN++J1eH ZurUOmH3RSBnvcrwuwOzqUy/bLhQUXfKFsVe7aQ4i0UKhSqlP2HCvxNdK943NUUJ 4GXBu58I+eV4ZK8VL13OiN3z+vf8Iuwt4cm2OWvuZEeu2neoNx/PiHlQCjsqWYF1 /ty6di+rdJ2/p6jw7p7Ak9xDxmPivin9Cpxkah4NZk2GyJpfoPcx0dc+QQMSZezE ckq1WN/nl+y/154WYR6dZknacOl0AcQfAm/lkJ956BjneNQ1Mk00qhwRn0T/Uh6o ytWm/PyeQpNK3QUPWaJXMuEsPfN1PqU2WnK6p2E1TiNuLqdcAqtMrHTxGg0/s6zF -----END CERTIFICATE-----Generated at Fri Dec 5 11:35:22 2025 by rpki-client