This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/33312e34302e3231322e302f32342d3234203d3e203431393434.roa File: 33312e34302e3231322e302f32342d3234203d3e203431393434.roa (raw, json) Hash identifier: nYuqStmiJ05WBCtYZLhkV+yLnPeDRbOAA/hQ+Zh9ULI= Subject key identifier: 0E:2C:3B:7C:B2:26:32:EF:BC:B7:97:7E:75:31:A0:07:E4:02:95:5D Certificate issuer: /CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959 Certificate serial: 16E8AF5A3513E1AF9E6C8B0F8713FBC67E1598C7 Authority key identifier: 09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/33312e34302e3231322e302f32342d3234203d3e203431393434.roa Signing time: Fri 28 Nov 2025 11:49:23 +0000 ROA not before: Fri 28 Nov 2025 11:44:23 +0000 ROA not after: Fri 27 Nov 2026 11:49:23 +0000 asID: 41944 IP address blocks: 31.40.212.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.mft rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 23:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:e8:af:5a:35:13:e1:af:9e:6c:8b:0f:87:13:fb:c6:7e:15:98:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959 Validity Not Before: Nov 28 11:44:23 2025 GMT Not After : Nov 27 11:49:23 2026 GMT Subject: CN=0E2C3B7CB22632EFBCB7977E7531A007E402955D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:69:19:3e:b9:5e:1f:b2:19:96:a1:5c:55:b8: 62:6a:d3:0d:01:31:b5:b1:44:a9:47:51:18:7b:f0: 15:50:14:5e:02:1f:ca:b9:19:5d:78:01:3c:25:65: 0a:ea:c5:10:39:c7:ae:82:6a:76:58:5d:a9:86:72: 8c:9a:77:0b:7f:be:47:d9:ef:d2:67:0a:57:f6:4f: f5:0f:95:85:d3:92:6e:22:88:35:d4:f2:5c:22:c6: ab:af:23:45:ce:ed:d0:b1:67:1e:cc:61:18:b8:5e: f7:16:71:03:44:02:aa:41:68:7e:f2:4c:d6:b6:7f: fd:c4:57:93:80:49:61:d2:4c:02:46:53:a4:c8:37: 81:eb:e0:55:9d:f4:01:6e:c9:8e:5a:ba:02:87:a1: a8:15:2e:31:62:08:cd:4b:94:ea:25:16:72:af:2a: 23:ba:3f:9f:fb:6c:34:63:21:e3:e5:60:20:10:e6: 73:8a:b6:87:4b:0c:be:34:53:9b:b9:33:3d:91:dd: 0a:73:7a:55:82:48:03:a1:7f:8b:49:dd:57:b3:67: 85:74:7b:c5:98:c8:35:b3:b3:ae:93:da:ae:9b:ca: 96:95:c5:8f:e1:1f:03:24:26:ed:b1:8e:cd:6a:c3: ae:cd:63:88:be:63:a7:e9:e3:18:19:62:7b:ef:b3: 31:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:2C:3B:7C:B2:26:32:EF:BC:B7:97:7E:75:31:A0:07:E4:02:95:5D X509v3 Authority Key Identifier: keyid:09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/33312e34302e3231322e302f32342d3234203d3e203431393434.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.40.212.0/24 Signature Algorithm: sha256WithRSAEncryption a8:c1:5b:72:6d:02:cf:02:bd:ba:25:d7:27:3f:d5:74:24:1e: fc:ea:60:7a:db:23:eb:80:8b:b4:7b:18:11:7c:d5:2c:24:b0: 87:f2:d0:a1:23:c6:80:a3:6d:68:c2:f4:a8:4f:39:9f:c8:9e: 36:a7:3c:49:39:9f:60:e1:10:1d:ff:a8:f7:15:18:e9:9c:f0: ab:6e:7a:8c:ee:92:d5:8c:7c:88:91:67:be:f1:72:e3:ca:1e: 1c:7a:5d:f4:4e:8b:b6:3d:e1:0f:c0:23:36:72:97:4d:b0:d3: 3d:19:3e:f8:82:d4:e7:25:9e:74:9d:2f:21:f2:ba:7a:13:85: fd:5a:fb:9b:62:d5:2d:89:24:6a:ce:cb:48:94:9e:70:b1:74: 40:ae:d0:dc:68:c3:12:08:d2:d1:89:3a:ad:44:c0:d7:9a:05: 75:1e:46:5b:60:68:73:27:93:2a:57:49:d3:ee:b7:73:21:ba: e8:14:71:c8:dd:74:01:de:f4:1a:63:ef:92:cc:8c:3b:f5:0e: b1:6f:13:77:f5:99:2e:b5:08:dc:5f:03:a4:28:af:1d:e4:c8: 51:29:77:8e:7c:05:67:b1:f5:ed:87:58:86:94:bd:17:c7:87: e1:e7:98:29:84:ed:34:94:c7:3f:68:32:d5:01:96:9a:1b:56: 6b:e3:9c:1c -----BEGIN CERTIFICATE----- MIIFNjCCBB6gAwIBAgIUFuivWjUT4a+ebIsPhxP7xn4VmMcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDk3YTI4Zjc3ZWIwYTRhYzM1NGE4YWMyODc1NGIyYTNi YmUzYTk1OTAeFw0yNTExMjgxMTQ0MjNaFw0yNjExMjcxMTQ5MjNaMDMxMTAvBgNV BAMTKDBFMkMzQjdDQjIyNjMyRUZCQ0I3OTc3RTc1MzFBMDA3RTQwMjk1NUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUaRk+uV4fshmWoVxVuGJq0w0B MbWxRKlHURh78BVQFF4CH8q5GV14ATwlZQrqxRA5x66CanZYXamGcoyadwt/vkfZ 79JnClf2T/UPlYXTkm4iiDXU8lwixquvI0XO7dCxZx7MYRi4XvcWcQNEAqpBaH7y TNa2f/3EV5OASWHSTAJGU6TIN4Hr4FWd9AFuyY5augKHoagVLjFiCM1LlOolFnKv KiO6P5/7bDRjIePlYCAQ5nOKtodLDL40U5u5Mz2R3QpzelWCSAOhf4tJ3VezZ4V0 e8WYyDWzs66T2q6bypaVxY/hHwMkJu2xjs1qw67NY4i+Y6fp4xgZYnvvszHNAgMB AAGjggJAMIICPDAdBgNVHQ4EFgQUDiw7fLImMu+8t5d+dTGgB+QClV0wHwYDVR0j BBgwFoAUCXoo936wpKw1SorCh1Syo7vjqVkwDgYDVR0PAQH/BAQDAgeAMIGYBgNV HR8EgZAwgY0wgYqggYeggYSGgYFyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5L2ZlMzcwOGEwLTY3ZDUtNGFjMi1hYmM0LWEzMzI1OTBi OTlhZi8xNzcvMDk3QTI4Rjc3RUIwQTRBQzM1NEE4QUMyODc1NEIyQTNCQkUzQTk1 OS5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2ku cmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0NYb285MzZ3cEt3MVNvckNoMVN5 bzd2anFWay5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJz eW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4 YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzE3Ny8zMzMxMmUzNDMwMmUz MjMxMzIyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzNDMxMzkzNDM0LnJvYTAYBgNV HSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQAHyjUMA0GCSqGSIb3DQEBCwUAA4IBAQCowVtybQLPAr26JdcnP9V0JB786mB6 2yPrgIu0exgRfNUsJLCH8tChI8aAo21owvSoTzmfyJ42pzxJOZ9g4RAd/6j3FRjp nPCrbnqM7pLVjHyIkWe+8XLjyh4cel30Tou2PeEPwCM2cpdNsNM9GT74gtTnJZ50 nS8h8rp6E4X9WvubYtUtiSRqzstIlJ5wsXRArtDcaMMSCNLRiTqtRMDXmgV1HkZb YGhzJ5MqV0nT7rdzIbroFHHI3XQB3vQaY++SzIw79Q6xbxN39ZkutQjcXwOkKK8d 5MhRKXeOfAVnsfXth1iGlL0Xx4fh55gphO00lMc/aDLVAZaaG1Zr45wc -----END CERTIFICATE-----Generated at Sun Dec 7 08:12:30 2025 by rpki-client