This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3138352e3135332e3137392e302f32342d3234203d3e20313437303439.roa File: 3138352e3135332e3137392e302f32342d3234203d3e20313437303439.roa (raw, json) Hash identifier: GUr5jOJ/g/8fnU5HCVaIViCxsmKkAX9k9TASSg1xnD8= Subject key identifier: 35:11:6C:D7:FD:E1:11:5A:E9:10:F5:B7:41:24:01:52:C3:EC:A4:D0 Certificate issuer: /CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959 Certificate serial: 088492254EB3F3D96F2803BA9BEE4226F97E1D93 Authority key identifier: 09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3138352e3135332e3137392e302f32342d3234203d3e20313437303439.roa Signing time: Mon 29 Dec 2025 09:50:32 +0000 ROA not before: Mon 29 Dec 2025 09:45:32 +0000 ROA not after: Mon 28 Dec 2026 09:50:32 +0000 asID: 147049 IP address blocks: 185.153.179.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.mft rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 01:10:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:84:92:25:4e:b3:f3:d9:6f:28:03:ba:9b:ee:42:26:f9:7e:1d:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959 Validity Not Before: Dec 29 09:45:32 2025 GMT Not After : Dec 28 09:50:32 2026 GMT Subject: CN=35116CD7FDE1115AE910F5B741240152C3ECA4D0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:84:5f:2c:7a:53:46:45:af:79:0a:65:8c:94: 9a:2d:a5:e7:73:c8:03:fe:cd:15:b2:04:30:93:c0: 12:ef:10:30:16:83:85:cc:15:80:5c:b3:52:35:2f: 8e:24:e6:7a:e2:8f:b7:a4:89:35:cc:63:e9:20:93: 6d:a1:24:31:31:fc:f8:66:88:58:fc:4a:c7:88:5b: 8d:91:17:94:1b:d8:2d:ea:be:5d:e1:7e:98:45:ad: 0b:8b:d7:ab:c4:87:bd:dd:38:6e:03:01:a4:0f:38: 2d:98:35:b1:3c:13:cf:0e:08:f7:88:4c:83:cb:a2: 6c:c7:96:97:4b:6e:71:dd:81:1d:96:00:3b:a8:56: 26:5f:ec:32:bb:52:ff:91:5c:18:5e:03:76:0b:e9: 43:d3:1a:dc:07:43:3a:f0:3a:37:1b:06:52:86:a9: b1:fb:ec:05:bc:e4:01:de:6c:fd:52:3d:3f:11:2e: 27:8f:1c:81:a5:52:a4:57:67:e6:e9:10:4e:9d:40: 18:1e:a1:12:37:25:cf:ef:21:58:aa:73:cc:7c:82: 4a:8b:00:78:3d:a9:a6:e5:6a:b8:0e:52:3b:3d:c3: 4c:73:4a:c5:40:73:c7:0f:2a:37:6d:e5:bc:29:38: 77:94:54:73:4b:f7:d3:f6:87:e5:a1:64:f4:40:4f: 3a:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:11:6C:D7:FD:E1:11:5A:E9:10:F5:B7:41:24:01:52:C3:EC:A4:D0 X509v3 Authority Key Identifier: keyid:09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3138352e3135332e3137392e302f32342d3234203d3e20313437303439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.153.179.0/24 Signature Algorithm: sha256WithRSAEncryption 2c:d5:74:08:73:18:0d:8c:40:be:68:79:a1:33:a4:1b:84:76: b8:56:1d:0b:ff:0d:6e:dc:c0:75:38:f3:4b:91:ec:b8:09:e2: af:fb:7b:ff:8d:2b:ab:19:c1:46:8f:0b:1e:32:c2:f7:4c:ab: b0:a9:1f:c0:2b:0d:62:97:ca:cd:26:56:16:3f:e1:71:8c:40: 43:15:1d:ee:88:d3:e9:d1:7e:30:3b:bd:cf:89:f2:d8:66:71: 5b:3a:34:68:44:c8:2c:25:48:80:7f:e8:b3:ad:80:9a:03:9b: fd:2c:09:b5:e9:7d:4a:ea:14:e6:bb:60:c8:29:4f:05:5f:50: 8a:68:4b:e0:4e:25:1b:90:8e:17:86:d5:f2:fb:f5:a1:3d:e0: 93:50:11:68:19:c8:82:1a:08:ed:1f:ef:2d:7c:67:52:70:f7: 7b:59:a9:31:46:50:a8:f5:1e:66:38:9f:ab:db:03:fe:85:a8: ea:a1:34:8e:31:bc:4c:e2:b4:ca:c5:69:bf:70:29:00:53:30: 63:15:f7:57:0e:7c:ba:02:48:95:67:1b:a8:5a:9b:3b:96:07: 80:be:6b:db:6d:a7:eb:e7:e0:7e:6b:e7:dc:6b:79:9f:33:a8: 5b:b5:95:b5:c8:c1:93:04:ee:0d:a9:82:7a:37:1a:7a:02:d8: 45:a5:96:fc -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgIUCISSJU6z89lvKAO6m+5CJvl+HZMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDk3YTI4Zjc3ZWIwYTRhYzM1NGE4YWMyODc1NGIyYTNi YmUzYTk1OTAeFw0yNTEyMjkwOTQ1MzJaFw0yNjEyMjgwOTUwMzJaMDMxMTAvBgNV BAMTKDM1MTE2Q0Q3RkRFMTExNUFFOTEwRjVCNzQxMjQwMTUyQzNFQ0E0RDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFhF8selNGRa95CmWMlJotpedz yAP+zRWyBDCTwBLvEDAWg4XMFYBcs1I1L44k5nrij7ekiTXMY+kgk22hJDEx/Phm iFj8SseIW42RF5Qb2C3qvl3hfphFrQuL16vEh73dOG4DAaQPOC2YNbE8E88OCPeI TIPLomzHlpdLbnHdgR2WADuoViZf7DK7Uv+RXBheA3YL6UPTGtwHQzrwOjcbBlKG qbH77AW85AHebP1SPT8RLiePHIGlUqRXZ+bpEE6dQBgeoRI3Jc/vIViqc8x8gkqL AHg9qablargOUjs9w0xzSsVAc8cPKjdt5bwpOHeUVHNL99P2h+WhZPRATzp9AgMB AAGjggJGMIICQjAdBgNVHQ4EFgQUNRFs1/3hEVrpEPW3QSQBUsPspNAwHwYDVR0j BBgwFoAUCXoo936wpKw1SorCh1Syo7vjqVkwDgYDVR0PAQH/BAQDAgeAMIGYBgNV HR8EgZAwgY0wgYqggYeggYSGgYFyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5L2ZlMzcwOGEwLTY3ZDUtNGFjMi1hYmM0LWEzMzI1OTBi OTlhZi8xNzcvMDk3QTI4Rjc3RUIwQTRBQzM1NEE4QUMyODc1NEIyQTNCQkUzQTk1 OS5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2ku cmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0NYb285MzZ3cEt3MVNvckNoMVN5 bzd2anFWay5jZXIwgbMGCCsGAQUFBwELBIGmMIGjMIGgBggrBgEFBQcwC4aBk3Jz eW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4 YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzE3Ny8zMTM4MzUyZTMxMzUz MzJlMzEzNzM5MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzEzNDM3MzAzNDM5LnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAuZmzMA0GCSqGSIb3DQEBCwUAA4IBAQAs1XQIcxgNjEC+aHmhM6Qb hHa4Vh0L/w1u3MB1OPNLkey4CeKv+3v/jSurGcFGjwseMsL3TKuwqR/AKw1il8rN JlYWP+FxjEBDFR3uiNPp0X4wO73PifLYZnFbOjRoRMgsJUiAf+izrYCaA5v9LAm1 6X1K6hTmu2DIKU8FX1CKaEvgTiUbkI4XhtXy+/WhPeCTUBFoGciCGgjtH+8tfGdS cPd7WakxRlCo9R5mOJ+r2wP+hajqoTSOMbxM4rTKxWm/cCkAUzBjFfdXDny6AkiV ZxuoWps7lgeAvmvbbafr5+B+a+fca3mfM6hbtZW1yMGTBO4NqYJ6Nxp6AthFpZb8 -----END CERTIFICATE-----Generated at Mon Jan 19 17:37:00 2026 by rpki-client