This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3139342e3134372e35382e302f32342d3332203d3e203531313637.roa File: 3139342e3134372e35382e302f32342d3332203d3e203531313637.roa (raw, json) Hash identifier: n18J5mFOvJ5B/xnu1N30WIhTi5hsPzsOLuonitExr2Y= Subject key identifier: 5E:A9:3C:44:11:9A:29:AA:50:4B:3D:7D:02:2B:9C:96:22:0A:EE:EC Certificate issuer: /CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959 Certificate serial: 3529A975C4F214B2160749ACA8228003FF5A362B Authority key identifier: 09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3139342e3134372e35382e302f32342d3332203d3e203531313637.roa Signing time: Fri 28 Nov 2025 11:49:46 +0000 ROA not before: Fri 28 Nov 2025 11:44:46 +0000 ROA not after: Fri 27 Nov 2026 11:49:46 +0000 asID: 51167 IP address blocks: 194.147.58.0/24 maxlen: 32 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.mft rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 16 Dec 2025 08:00:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:29:a9:75:c4:f2:14:b2:16:07:49:ac:a8:22:80:03:ff:5a:36:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959 Validity Not Before: Nov 28 11:44:46 2025 GMT Not After : Nov 27 11:49:46 2026 GMT Subject: CN=5EA93C44119A29AA504B3D7D022B9C96220AEEEC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:04:66:75:fa:23:f0:f9:03:a0:ef:a1:1f:33: 36:28:aa:65:db:43:c4:83:4e:bf:89:52:a5:c5:00: fb:17:9b:61:f9:4f:74:1e:7a:23:7d:3d:e8:e2:6b: 8e:27:67:15:e9:44:17:58:38:b1:6e:be:31:8d:d4: 2f:22:3b:97:e9:d1:1c:39:d4:6f:d0:7e:b9:26:8c: 87:8b:64:5a:2e:4e:a2:e7:26:1e:e8:d5:85:72:c5: 69:72:75:ed:ba:75:b3:ce:27:9d:d2:e2:86:6a:cf: 6c:27:ed:7f:ee:0c:d2:d3:d2:94:89:43:ec:be:8c: 2c:e5:67:a2:ed:9d:8e:1f:a5:b7:ea:c2:ca:01:3a: 9e:12:5a:a0:4a:cf:d6:1c:d7:15:54:28:f7:2b:d1: 03:2d:81:2b:42:f7:30:e6:19:17:d2:4e:6e:8a:f7: 88:23:e1:ea:82:2e:4a:3e:4d:ff:8e:01:5b:a8:6d: f6:7e:a5:64:71:b7:24:f3:15:47:68:78:24:82:f4: d2:18:09:88:b4:4b:0f:12:b2:8b:93:44:aa:47:68: 1b:ab:c9:b6:bc:c2:2e:ed:73:6d:b8:54:80:02:17: a9:51:cc:91:ee:d7:bb:9c:67:48:7a:64:75:bf:b1: ae:f6:4b:b3:41:56:46:29:7f:21:93:e6:47:a1:bb: 34:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:A9:3C:44:11:9A:29:AA:50:4B:3D:7D:02:2B:9C:96:22:0A:EE:EC X509v3 Authority Key Identifier: keyid:09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3139342e3134372e35382e302f32342d3332203d3e203531313637.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.147.58.0/24 Signature Algorithm: sha256WithRSAEncryption 9c:0d:04:56:f4:6b:b4:1f:d2:9a:10:3e:d9:87:03:9c:7d:41: 15:06:54:9c:36:fd:d4:05:3e:b0:eb:b0:26:c5:ea:7a:02:86: 86:42:bc:16:fe:5e:ef:33:0a:c4:67:f4:67:88:dd:f0:f5:8c: 12:c2:a2:73:53:4b:cb:03:62:72:17:b0:b8:c0:15:ab:18:0b: f7:c9:db:bb:bd:d5:bc:29:1d:30:ce:f6:8c:e2:b3:a7:22:7d: d7:3a:97:78:1c:48:4d:f6:76:fb:cd:97:3b:2c:a3:a9:80:82: 82:a9:95:ed:b9:df:3a:fd:fb:25:f9:93:90:6c:9f:60:95:f0: 67:9a:64:b0:4e:3c:05:c6:70:5f:a9:74:f5:65:e7:28:b1:ca: dd:46:a0:9e:92:fb:3d:91:9c:bc:94:ac:54:85:c7:7d:82:55: 41:65:04:d4:63:ce:f1:21:52:bc:03:f2:74:3e:26:d6:21:0b: b9:e2:6c:c5:08:e5:ef:6a:36:56:2e:31:09:ad:12:15:82:ba: a4:35:8e:be:2d:62:e4:6b:26:df:a7:a1:ab:a7:be:95:f0:c3: 04:1a:3d:48:d0:40:80:f2:e1:8a:40:b0:a4:c5:1d:34:75:a7: 4f:5f:4d:4f:84:3a:18:54:47:cc:65:04:8f:6c:c9:9e:b4:86: f2:5a:75:1b -----BEGIN CERTIFICATE----- MIIFODCCBCCgAwIBAgIUNSmpdcTyFLIWB0msqCKAA/9aNiswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDk3YTI4Zjc3ZWIwYTRhYzM1NGE4YWMyODc1NGIyYTNi YmUzYTk1OTAeFw0yNTExMjgxMTQ0NDZaFw0yNjExMjcxMTQ5NDZaMDMxMTAvBgNV BAMTKDVFQTkzQzQ0MTE5QTI5QUE1MDRCM0Q3RDAyMkI5Qzk2MjIwQUVFRUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzBGZ1+iPw+QOg76EfMzYoqmXb Q8SDTr+JUqXFAPsXm2H5T3QeeiN9Pejia44nZxXpRBdYOLFuvjGN1C8iO5fp0Rw5 1G/QfrkmjIeLZFouTqLnJh7o1YVyxWlyde26dbPOJ53S4oZqz2wn7X/uDNLT0pSJ Q+y+jCzlZ6LtnY4fpbfqwsoBOp4SWqBKz9Yc1xVUKPcr0QMtgStC9zDmGRfSTm6K 94gj4eqCLko+Tf+OAVuobfZ+pWRxtyTzFUdoeCSC9NIYCYi0Sw8SsouTRKpHaBur yba8wi7tc224VIACF6lRzJHu17ucZ0h6ZHW/sa72S7NBVkYpfyGT5kehuzRdAgMB AAGjggJCMIICPjAdBgNVHQ4EFgQUXqk8RBGaKapQSz19AiucliIK7uwwHwYDVR0j BBgwFoAUCXoo936wpKw1SorCh1Syo7vjqVkwDgYDVR0PAQH/BAQDAgeAMIGYBgNV HR8EgZAwgY0wgYqggYeggYSGgYFyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5L2ZlMzcwOGEwLTY3ZDUtNGFjMi1hYmM0LWEzMzI1OTBi OTlhZi8xNzcvMDk3QTI4Rjc3RUIwQTRBQzM1NEE4QUMyODc1NEIyQTNCQkUzQTk1 OS5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2ku cmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0NYb285MzZ3cEt3MVNvckNoMVN5 bzd2anFWay5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3Jz eW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4 YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzE3Ny8zMTM5MzQyZTMxMzQz NzJlMzUzODJlMzAyZjMyMzQyZDMzMzIyMDNkM2UyMDM1MzEzMTM2Mzcucm9hMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADCkzowDQYJKoZIhvcNAQELBQADggEBAJwNBFb0a7Qf0poQPtmHA5x9QRUG VJw2/dQFPrDrsCbF6noChoZCvBb+Xu8zCsRn9GeI3fD1jBLConNTS8sDYnIXsLjA FasYC/fJ27u91bwpHTDO9ozis6cifdc6l3gcSE32dvvNlzsso6mAgoKple253zr9 +yX5k5Bsn2CV8GeaZLBOPAXGcF+pdPVl5yixyt1GoJ6S+z2RnLyUrFSFx32CVUFl BNRjzvEhUrwD8nQ+JtYhC7nibMUI5e9qNlYuMQmtEhWCuqQ1jr4tYuRrJt+noaun vpXwwwQaPUjQQIDy4YpAsKTFHTR1p09fTU+EOhhUR8xlBI9syZ60hvJadRs= -----END CERTIFICATE-----Generated at Mon Dec 15 13:20:34 2025 by rpki-client