This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3138352e3139332e31362e302f32342d3234203d3e203230343733.roa File: 3138352e3139332e31362e302f32342d3234203d3e203230343733.roa (raw, json) Hash identifier: pKdtc2nAiFbtCHvvcAb99vwvzzDetZrrk6guocprLX8= Subject key identifier: 9F:CD:F6:61:6C:90:61:B9:8A:B6:AD:41:13:67:08:D3:7C:EA:47:1D Certificate issuer: /CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959 Certificate serial: 5591B6DB3BD6FF472B35ECEDBA8E248DE1E26401 Authority key identifier: 09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3138352e3139332e31362e302f32342d3234203d3e203230343733.roa Signing time: Fri 21 Nov 2025 15:48:57 +0000 ROA not before: Fri 21 Nov 2025 15:43:57 +0000 ROA not after: Fri 20 Nov 2026 15:48:57 +0000 asID: 20473 IP address blocks: 185.193.16.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.mft rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 28 Nov 2025 16:15:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:91:b6:db:3b:d6:ff:47:2b:35:ec:ed:ba:8e:24:8d:e1:e2:64:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959 Validity Not Before: Nov 21 15:43:57 2025 GMT Not After : Nov 20 15:48:57 2026 GMT Subject: CN=9FCDF6616C9061B98AB6AD41136708D37CEA471D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:be:4c:57:2c:73:97:fb:c2:bc:24:97:87:d6: bd:52:e2:26:69:b8:e8:1a:8b:cd:43:b5:9e:7a:10: ab:a9:4c:67:60:15:9f:be:d1:b4:48:a3:05:90:46: f1:72:33:f9:c6:7a:f8:0c:12:b7:2d:b2:96:9f:26: fd:47:6b:4c:bf:1a:29:f8:8f:2e:bd:66:78:d6:7d: ca:7b:54:ef:5d:07:b2:58:0f:a1:bb:7c:3f:82:7a: 10:f7:b9:09:cc:89:94:dc:f3:d1:dc:19:df:3b:b6: 3d:e6:c8:62:4f:ec:64:d8:36:9e:a8:42:61:b7:a6: 5d:67:c2:46:32:7a:e3:95:a0:0a:39:a2:7d:99:24: 08:9a:cd:74:a3:f4:5e:af:a2:8b:06:bf:49:ce:1a: a3:26:08:cf:27:c5:73:7e:22:99:63:cb:1a:f0:42: 71:50:31:7f:51:58:12:a5:93:26:5a:87:9e:1c:cf: a4:6b:e7:68:3b:c1:0c:68:01:7b:dc:52:27:90:0a: 3d:a7:9f:5f:ca:76:4b:13:a4:a8:ad:e6:6c:c9:d4: fb:49:e7:6a:e1:ca:c9:3f:81:69:6a:1f:7e:46:0f: 16:1c:8d:6b:23:db:47:a2:cb:78:7d:b7:46:d9:bd: 88:87:f3:a9:42:58:59:a8:2b:69:b0:f3:22:15:9e: aa:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:CD:F6:61:6C:90:61:B9:8A:B6:AD:41:13:67:08:D3:7C:EA:47:1D X509v3 Authority Key Identifier: keyid:09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3138352e3139332e31362e302f32342d3234203d3e203230343733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.193.16.0/24 Signature Algorithm: sha256WithRSAEncryption 76:3a:40:eb:7b:cc:0d:e1:74:a8:2d:d2:73:79:eb:69:8d:b6: 52:e9:ab:85:f6:5f:0f:ea:56:50:06:41:28:2d:9a:82:75:af: 7c:d9:00:0b:4a:a8:83:9d:ef:68:90:a8:ef:e3:cb:75:95:8b: a2:8c:6e:b6:0e:82:cc:cc:8d:3d:de:3c:3d:24:fe:8e:85:31: 0d:29:8c:f5:ca:1c:a8:cf:58:98:51:16:67:a9:6b:09:97:f5: ef:58:c2:88:62:74:28:eb:dd:01:08:db:7d:50:a9:5b:0b:01: 51:4b:b9:16:ed:be:de:0a:b4:fd:21:2d:6b:ec:11:3c:03:0b: 60:4f:a1:c0:3b:91:85:1f:bc:fe:3f:45:50:b9:a7:cf:9a:9d: d3:0e:68:20:c2:f8:4f:17:01:71:b9:ae:7b:c3:be:34:00:97: 97:05:a5:12:cb:a4:19:bd:21:d9:44:cb:f1:34:98:3e:f8:19: 56:df:18:58:3f:5d:71:99:64:a2:50:e3:dd:45:dd:a2:97:6d: c0:90:7d:0b:9e:c4:46:18:a4:85:98:82:35:41:95:28:f9:62: d4:5f:e8:1e:c6:cd:b5:7c:89:32:80:bf:23:6f:f6:1b:6b:7c: 05:cd:0d:d5:cc:aa:cd:8f:b2:03:9d:13:c8:fb:37:dc:9a:d9: e8:b0:db:0b -----BEGIN CERTIFICATE----- MIIFODCCBCCgAwIBAgIUVZG22zvW/0crNeztuo4kjeHiZAEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDk3YTI4Zjc3ZWIwYTRhYzM1NGE4YWMyODc1NGIyYTNi YmUzYTk1OTAeFw0yNTExMjExNTQzNTdaFw0yNjExMjAxNTQ4NTdaMDMxMTAvBgNV BAMTKDlGQ0RGNjYxNkM5MDYxQjk4QUI2QUQ0MTEzNjcwOEQzN0NFQTQ3MUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZvkxXLHOX+8K8JJeH1r1S4iZp uOgai81DtZ56EKupTGdgFZ++0bRIowWQRvFyM/nGevgMErctspafJv1Ha0y/Gin4 jy69ZnjWfcp7VO9dB7JYD6G7fD+CehD3uQnMiZTc89HcGd87tj3myGJP7GTYNp6o QmG3pl1nwkYyeuOVoAo5on2ZJAiazXSj9F6voosGv0nOGqMmCM8nxXN+Ipljyxrw QnFQMX9RWBKlkyZah54cz6Rr52g7wQxoAXvcUieQCj2nn1/KdksTpKit5mzJ1PtJ 52rhysk/gWlqH35GDxYcjWsj20eiy3h9t0bZvYiH86lCWFmoK2mw8yIVnqp5AgMB AAGjggJCMIICPjAdBgNVHQ4EFgQUn832YWyQYbmKtq1BE2cI03zqRx0wHwYDVR0j BBgwFoAUCXoo936wpKw1SorCh1Syo7vjqVkwDgYDVR0PAQH/BAQDAgeAMIGYBgNV HR8EgZAwgY0wgYqggYeggYSGgYFyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5L2ZlMzcwOGEwLTY3ZDUtNGFjMi1hYmM0LWEzMzI1OTBi OTlhZi8xNzcvMDk3QTI4Rjc3RUIwQTRBQzM1NEE4QUMyODc1NEIyQTNCQkUzQTk1 OS5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2ku cmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0NYb285MzZ3cEt3MVNvckNoMVN5 bzd2anFWay5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3Jz eW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4 YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzE3Ny8zMTM4MzUyZTMxMzkz MzJlMzEzNjJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMyMzAzNDM3MzMucm9hMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAC5wRAwDQYJKoZIhvcNAQELBQADggEBAHY6QOt7zA3hdKgt0nN562mNtlLp q4X2Xw/qVlAGQSgtmoJ1r3zZAAtKqIOd72iQqO/jy3WVi6KMbrYOgszMjT3ePD0k /o6FMQ0pjPXKHKjPWJhRFmepawmX9e9YwohidCjr3QEI231QqVsLAVFLuRbtvt4K tP0hLWvsETwDC2BPocA7kYUfvP4/RVC5p8+andMOaCDC+E8XAXG5rnvDvjQAl5cF pRLLpBm9IdlEy/E0mD74GVbfGFg/XXGZZKJQ491F3aKXbcCQfQuexEYYpIWYgjVB lSj5YtRf6B7GzbV8iTKAvyNv9htrfAXNDdXMqs2PsgOdE8j7N9ya2eiw2ws= -----END CERTIFICATE-----Generated at Fri Nov 28 05:02:34 2025 by rpki-client