This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3139342e3134372e35372e302f32342d3234203d3e203230343733.roa File: 3139342e3134372e35372e302f32342d3234203d3e203230343733.roa (raw, json) Hash identifier: wWnTgjhVoGdpolSOu3Rq5CbtPawm+l/E6no/5u0gmsY= Subject key identifier: D4:31:D3:15:6B:9A:F5:1F:7C:82:25:E9:8B:A7:47:0B:ED:3B:21:9C Certificate issuer: /CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959 Certificate serial: 1B4B30DD8A48CC3FEF88832DE071C2C1B51E71C1 Authority key identifier: 09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3139342e3134372e35372e302f32342d3234203d3e203230343733.roa Signing time: Fri 28 Nov 2025 11:49:26 +0000 ROA not before: Fri 28 Nov 2025 11:44:26 +0000 ROA not after: Fri 27 Nov 2026 11:49:26 +0000 asID: 20473 IP address blocks: 194.147.57.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.mft rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Dec 2025 00:33:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:4b:30:dd:8a:48:cc:3f:ef:88:83:2d:e0:71:c2:c1:b5:1e:71:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959 Validity Not Before: Nov 28 11:44:26 2025 GMT Not After : Nov 27 11:49:26 2026 GMT Subject: CN=D431D3156B9AF51F7C8225E98BA7470BED3B219C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:a4:60:86:ae:ed:f6:f9:57:1d:b4:28:09:ca: b6:80:4a:ef:fc:eb:59:b1:75:d2:3d:15:53:e6:57: f9:1c:6b:54:e0:a3:06:9d:2a:77:bf:f5:7b:64:61: 5c:13:42:dc:d4:2b:70:d6:12:31:cd:1c:44:e6:1a: b4:e4:a3:09:44:90:9b:00:28:bd:24:7b:46:d0:74: a0:e8:45:f8:26:e2:4c:0f:0c:b3:6c:2c:bc:cd:b5: dd:16:48:7c:c2:1e:53:f8:47:e4:7b:7e:57:05:9e: f8:c6:9b:2c:80:78:00:92:87:95:dd:0b:d9:2d:58: 05:4e:04:11:c6:88:74:9c:0f:10:ac:2a:2a:60:87: 5b:2a:93:c6:2a:36:26:14:44:00:dc:58:ba:44:50: 07:d7:84:dd:a6:45:8d:53:df:86:46:72:82:38:83: 26:7e:b0:a6:b1:7a:de:b9:2c:b9:17:35:80:78:51: 3b:c9:fb:c4:95:f8:cf:11:3c:85:e0:94:33:12:59: c4:be:b9:c2:d6:d4:36:eb:7e:ad:20:fe:21:61:1f: 08:bb:4b:a4:44:75:37:09:8f:90:26:6f:92:3b:70: ae:33:7a:0e:1e:85:18:fe:40:c9:86:14:91:8c:e4: ea:fd:81:f6:5f:c8:04:29:63:2d:89:59:b5:b9:9b: 81:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:31:D3:15:6B:9A:F5:1F:7C:82:25:E9:8B:A7:47:0B:ED:3B:21:9C X509v3 Authority Key Identifier: keyid:09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3139342e3134372e35372e302f32342d3234203d3e203230343733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.147.57.0/24 Signature Algorithm: sha256WithRSAEncryption 17:4f:88:fb:b9:2d:b3:3e:ae:d2:7d:c3:b0:b4:ab:f7:73:95: 6b:fc:a0:69:b3:e1:8a:c2:ad:c9:9e:36:ce:68:19:d5:10:0f: 0c:8e:fd:e2:3b:29:31:e2:49:49:ca:0a:57:d8:aa:00:a9:fc: b4:d7:5e:1d:5f:f9:3e:3c:89:18:fb:49:1a:07:3f:a6:e9:95: b3:7b:1f:94:97:66:b1:51:05:63:45:50:a0:30:cf:fb:91:16: b2:f0:c7:f8:24:4f:6c:17:36:13:98:a4:42:3a:38:44:b4:67: 2a:ce:68:ca:83:6b:f9:6a:4d:e5:b1:fc:f4:86:a9:20:d2:5d: a1:f9:75:74:b8:c0:37:24:c0:63:1e:2f:02:58:e6:16:65:e8: 6e:ef:d2:9b:15:04:14:97:2d:21:73:f0:33:54:b9:15:b9:ef: 5b:d9:00:44:c6:81:6e:2f:f5:7a:4c:65:1c:b0:7a:f8:11:e3: e2:9e:49:16:84:e8:21:59:79:13:f2:c0:b2:de:fc:d6:2d:9e: 18:0d:fb:01:35:79:c7:ea:6a:7e:9d:8d:42:ee:db:b7:64:c1: 2f:4c:ba:17:12:15:28:7d:9b:96:ee:d0:d9:35:b1:06:81:bf: f5:44:86:24:f8:d2:11:56:64:32:21:fb:60:f5:3c:ae:83:00: 93:ec:f2:56 -----BEGIN CERTIFICATE----- MIIFODCCBCCgAwIBAgIUG0sw3YpIzD/viIMt4HHCwbUeccEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDk3YTI4Zjc3ZWIwYTRhYzM1NGE4YWMyODc1NGIyYTNi YmUzYTk1OTAeFw0yNTExMjgxMTQ0MjZaFw0yNjExMjcxMTQ5MjZaMDMxMTAvBgNV BAMTKEQ0MzFEMzE1NkI5QUY1MUY3QzgyMjVFOThCQTc0NzBCRUQzQjIxOUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCgpGCGru32+VcdtCgJyraASu/8 61mxddI9FVPmV/kca1TgowadKne/9XtkYVwTQtzUK3DWEjHNHETmGrTkowlEkJsA KL0ke0bQdKDoRfgm4kwPDLNsLLzNtd0WSHzCHlP4R+R7flcFnvjGmyyAeACSh5Xd C9ktWAVOBBHGiHScDxCsKipgh1sqk8YqNiYURADcWLpEUAfXhN2mRY1T34ZGcoI4 gyZ+sKaxet65LLkXNYB4UTvJ+8SV+M8RPIXglDMSWcS+ucLW1Dbrfq0g/iFhHwi7 S6REdTcJj5Amb5I7cK4zeg4ehRj+QMmGFJGM5Or9gfZfyAQpYy2JWbW5m4GpAgMB AAGjggJCMIICPjAdBgNVHQ4EFgQU1DHTFWua9R98giXpi6dHC+07IZwwHwYDVR0j BBgwFoAUCXoo936wpKw1SorCh1Syo7vjqVkwDgYDVR0PAQH/BAQDAgeAMIGYBgNV HR8EgZAwgY0wgYqggYeggYSGgYFyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5L2ZlMzcwOGEwLTY3ZDUtNGFjMi1hYmM0LWEzMzI1OTBi OTlhZi8xNzcvMDk3QTI4Rjc3RUIwQTRBQzM1NEE4QUMyODc1NEIyQTNCQkUzQTk1 OS5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2ku cmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0NYb285MzZ3cEt3MVNvckNoMVN5 bzd2anFWay5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3Jz eW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4 YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzE3Ny8zMTM5MzQyZTMxMzQz NzJlMzUzNzJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMyMzAzNDM3MzMucm9hMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADCkzkwDQYJKoZIhvcNAQELBQADggEBABdPiPu5LbM+rtJ9w7C0q/dzlWv8 oGmz4YrCrcmeNs5oGdUQDwyO/eI7KTHiSUnKClfYqgCp/LTXXh1f+T48iRj7SRoH P6bplbN7H5SXZrFRBWNFUKAwz/uRFrLwx/gkT2wXNhOYpEI6OES0ZyrOaMqDa/lq TeWx/PSGqSDSXaH5dXS4wDckwGMeLwJY5hZl6G7v0psVBBSXLSFz8DNUuRW571vZ AETGgW4v9XpMZRywevgR4+KeSRaE6CFZeRPywLLe/NYtnhgN+wE1ecfqan6djULu 27dkwS9MuhcSFSh9m5bu0Nk1sQaBv/VEhiT40hFWZDIh+2D1PK6DAJPs8lY= -----END CERTIFICATE-----Generated at Sat Dec 13 17:32:54 2025 by rpki-client