This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3139332e34322e39372e302f32342d3234203d3e20323034313730.roa File: 3139332e34322e39372e302f32342d3234203d3e20323034313730.roa (raw, json) Hash identifier: tOhnIdnQLnnbEsSjfFLRrcDKKdHTNDZ+NwwHF+A6G4I= Subject key identifier: BE:47:7B:5A:60:45:75:4B:23:9F:7C:50:24:6C:9B:21:4A:AF:A9:54 Certificate issuer: /CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959 Certificate serial: 37A3BB0081C8B5105584915A08E4BD285851A96C Authority key identifier: 09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3139332e34322e39372e302f32342d3234203d3e20323034313730.roa Signing time: Fri 28 Nov 2025 11:49:46 +0000 ROA not before: Fri 28 Nov 2025 11:44:46 +0000 ROA not after: Fri 27 Nov 2026 11:49:46 +0000 asID: 204170 IP address blocks: 193.42.97.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.mft rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 08:24:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:a3:bb:00:81:c8:b5:10:55:84:91:5a:08:e4:bd:28:58:51:a9:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959 Validity Not Before: Nov 28 11:44:46 2025 GMT Not After : Nov 27 11:49:46 2026 GMT Subject: CN=BE477B5A6045754B239F7C50246C9B214AAFA954 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:3d:54:c1:13:c9:e9:42:3b:29:fe:6f:4b:a4: cd:59:7b:d1:1d:9a:ae:7a:57:07:0b:18:fa:7a:ec: 40:4e:df:bd:0b:e4:bf:4e:bb:d1:66:f8:bc:5d:fd: 5d:49:ab:80:1f:6b:6d:23:28:06:68:b3:71:76:95: 55:c1:04:c5:d0:0e:c4:92:71:56:53:a2:f9:75:c4: 79:fe:b9:b4:0f:36:8e:5d:8b:ec:ba:42:77:a7:b9: 93:b9:27:1c:e7:dc:3d:cc:8c:2f:d7:d6:83:a5:38: 61:ed:71:6a:6e:91:70:ca:b2:d7:20:32:b7:1c:b0: d6:95:56:c4:3a:1e:0d:85:65:ed:ef:67:8a:49:59: 7c:f4:42:6b:ec:10:89:29:d4:67:46:5d:e4:ff:04: 69:7e:36:86:a1:f3:02:dd:65:92:f3:3c:dd:34:5a: 3e:d0:09:f5:83:43:5c:48:58:67:79:3b:f2:39:a0: 62:ba:5f:06:06:8b:6d:a8:2d:57:09:aa:35:c3:34: 8c:d2:ac:77:5a:3e:7d:1f:fa:36:94:2e:2b:42:30: fa:13:bf:28:eb:fd:95:eb:66:58:d7:67:25:bc:7a: 31:84:e3:b3:05:62:4d:63:47:f7:37:c4:27:9b:1e: 95:93:db:7a:77:bf:74:31:c6:03:ac:7e:e1:b6:28: ac:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:47:7B:5A:60:45:75:4B:23:9F:7C:50:24:6C:9B:21:4A:AF:A9:54 X509v3 Authority Key Identifier: keyid:09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3139332e34322e39372e302f32342d3234203d3e20323034313730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.42.97.0/24 Signature Algorithm: sha256WithRSAEncryption 97:cf:f9:5a:a2:7a:1a:29:d2:8c:48:ba:8b:67:c4:db:70:0f: 22:86:83:fb:b8:75:35:31:3d:c8:8e:8b:18:43:2f:6e:58:de: 4b:c3:0d:5a:d4:99:cb:b1:48:73:c5:55:d2:3c:61:90:51:eb: 96:23:a7:56:c3:2f:a6:be:4a:60:ee:ed:b7:f6:f4:ac:9d:6e: 2f:44:ce:16:6c:9a:e9:c5:dc:90:6f:01:97:b4:92:4d:d5:e4: 04:20:bb:77:57:dd:1a:16:09:b4:c4:f4:ba:3e:36:41:da:7f: 9b:fc:2f:9a:9b:fc:2a:9a:6b:b4:91:74:1e:fe:dc:19:e7:c6: f7:e7:e1:75:8f:8f:0f:6c:b4:fb:26:bd:8c:2c:8b:b4:35:4a: d5:2f:57:4c:63:0e:84:1f:1a:27:44:5e:96:d7:1c:58:e3:ba: 1a:d3:cb:f5:68:77:f1:58:95:1f:28:94:69:de:b5:07:0b:8a: b1:d7:25:aa:3c:28:f0:54:92:eb:b5:df:53:35:f6:45:12:27: 72:90:1d:79:16:0b:b9:69:b7:d7:08:47:43:aa:82:81:f1:df: fe:3a:5e:ac:ab:d9:43:8c:63:75:1e:0e:21:b2:40:b8:50:63: d5:50:95:f2:ec:78:60:43:36:22:4c:46:79:5b:47:29:1e:f7: 92:39:f2:39 -----BEGIN CERTIFICATE----- MIIFODCCBCCgAwIBAgIUN6O7AIHItRBVhJFaCOS9KFhRqWwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDk3YTI4Zjc3ZWIwYTRhYzM1NGE4YWMyODc1NGIyYTNi YmUzYTk1OTAeFw0yNTExMjgxMTQ0NDZaFw0yNjExMjcxMTQ5NDZaMDMxMTAvBgNV BAMTKEJFNDc3QjVBNjA0NTc1NEIyMzlGN0M1MDI0NkM5QjIxNEFBRkE5NTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAPVTBE8npQjsp/m9LpM1Ze9Ed mq56VwcLGPp67EBO370L5L9Ou9Fm+Lxd/V1Jq4Afa20jKAZos3F2lVXBBMXQDsSS cVZTovl1xHn+ubQPNo5di+y6QnenuZO5Jxzn3D3MjC/X1oOlOGHtcWpukXDKstcg MrccsNaVVsQ6Hg2FZe3vZ4pJWXz0QmvsEIkp1GdGXeT/BGl+Noah8wLdZZLzPN00 Wj7QCfWDQ1xIWGd5O/I5oGK6XwYGi22oLVcJqjXDNIzSrHdaPn0f+jaULitCMPoT vyjr/ZXrZljXZyW8ejGE47MFYk1jR/c3xCebHpWT23p3v3QxxgOsfuG2KKyzAgMB AAGjggJCMIICPjAdBgNVHQ4EFgQUvkd7WmBFdUsjn3xQJGybIUqvqVQwHwYDVR0j BBgwFoAUCXoo936wpKw1SorCh1Syo7vjqVkwDgYDVR0PAQH/BAQDAgeAMIGYBgNV HR8EgZAwgY0wgYqggYeggYSGgYFyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5L2ZlMzcwOGEwLTY3ZDUtNGFjMi1hYmM0LWEzMzI1OTBi OTlhZi8xNzcvMDk3QTI4Rjc3RUIwQTRBQzM1NEE4QUMyODc1NEIyQTNCQkUzQTk1 OS5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2ku cmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0NYb285MzZ3cEt3MVNvckNoMVN5 bzd2anFWay5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3Jz eW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4 YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzE3Ny8zMTM5MzMyZTM0MzIy ZTM5MzcyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMjMwMzQzMTM3MzAucm9hMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADBKmEwDQYJKoZIhvcNAQELBQADggEBAJfP+Vqiehop0oxIuotnxNtwDyKG g/u4dTUxPciOixhDL25Y3kvDDVrUmcuxSHPFVdI8YZBR65Yjp1bDL6a+SmDu7bf2 9Kydbi9EzhZsmunF3JBvAZe0kk3V5AQgu3dX3RoWCbTE9Lo+NkHaf5v8L5qb/Cqa a7SRdB7+3Bnnxvfn4XWPjw9stPsmvYwsi7Q1StUvV0xjDoQfGidEXpbXHFjjuhrT y/Vod/FYlR8olGnetQcLirHXJao8KPBUkuu131M19kUSJ3KQHXkWC7lpt9cIR0Oq goHx3/46Xqyr2UOMY3UeDiGyQLhQY9VQlfLseGBDNiJMRnlbRyke95I58jk= -----END CERTIFICATE-----Generated at Sat Dec 6 21:57:21 2025 by rpki-client