This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/33312e34302e3231322e302f32342d3234203d3e203432383938.roa File: 33312e34302e3231322e302f32342d3234203d3e203432383938.roa (raw, json) Hash identifier: YuQ2xoq0K5lSYS/T8tQuo/Hv4Axth0lgEpG7ylKACxk= Subject key identifier: A1:80:9F:A1:AE:9E:C3:E4:23:DA:F4:87:31:03:F0:B2:65:76:08:B1 Certificate issuer: /CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959 Certificate serial: 55857E101AC660E502755549669C9BC05504CBF2 Authority key identifier: 09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/33312e34302e3231322e302f32342d3234203d3e203432383938.roa Signing time: Fri 28 Nov 2025 11:49:20 +0000 ROA not before: Fri 28 Nov 2025 11:44:20 +0000 ROA not after: Fri 27 Nov 2026 11:49:20 +0000 asID: 42898 IP address blocks: 31.40.212.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.mft rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 05 Dec 2025 21:22:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:85:7e:10:1a:c6:60:e5:02:75:55:49:66:9c:9b:c0:55:04:cb:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959 Validity Not Before: Nov 28 11:44:20 2025 GMT Not After : Nov 27 11:49:20 2026 GMT Subject: CN=A1809FA1AE9EC3E423DAF4873103F0B2657608B1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:a2:ea:e7:b4:5a:33:7f:d9:3a:d7:b7:cf:f0: a9:25:41:d4:4b:dd:59:3e:41:42:3f:28:b7:90:a9: 91:50:f9:b3:8a:6a:11:6c:4c:b0:b3:ab:59:70:ca: 43:63:dc:a9:89:fa:68:d7:ac:59:2c:a3:5b:ed:35: 0b:4e:d4:9c:73:f9:80:c1:3e:72:83:a2:55:53:87: 99:4f:0b:8f:4a:b0:c7:a3:de:18:b0:01:d0:23:ca: 16:a7:f2:32:7c:cd:11:1e:83:e6:aa:dd:05:7e:db: 10:43:61:fc:e2:3e:39:9d:3c:4b:d4:69:5c:d3:bb: 52:a4:b0:c3:66:fd:2f:1c:ae:11:d3:4b:df:cb:01: 6e:68:a5:bc:c8:4d:a6:cb:79:21:ba:2d:1a:ac:c9: b2:98:d6:33:89:ab:ae:01:87:0f:90:97:2f:59:74: 51:6a:dd:f4:c6:ca:c6:27:34:91:89:5c:d0:0c:6c: eb:8e:35:ee:ba:32:f2:67:9e:fd:86:db:51:7a:61: 4c:87:25:99:a8:b0:72:6c:d0:08:59:d7:a0:da:2d: 4d:cc:2e:6b:04:e4:eb:85:4d:d6:d4:10:de:1d:c0: bf:6e:cb:0d:61:95:f8:6a:46:eb:ab:75:62:0f:4e: 7c:52:cb:4f:b8:57:d2:e4:7a:3e:42:5c:7f:e5:d4: b2:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:80:9F:A1:AE:9E:C3:E4:23:DA:F4:87:31:03:F0:B2:65:76:08:B1 X509v3 Authority Key Identifier: keyid:09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/33312e34302e3231322e302f32342d3234203d3e203432383938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.40.212.0/24 Signature Algorithm: sha256WithRSAEncryption 8f:0f:5d:62:8b:08:b2:b1:1b:f9:c9:e4:b9:b9:fc:78:63:7b: b4:f6:2f:e3:12:83:fb:82:0f:48:4f:a2:d7:88:93:cf:75:0a: cb:cc:29:dd:87:e8:7c:c4:4e:89:ef:c6:cf:09:de:07:01:5f: f8:82:90:dd:b2:f2:27:db:88:07:d1:9c:db:29:f9:87:f7:37: d6:2a:8b:4d:dd:f6:6a:c5:7e:23:e1:d2:4c:1b:a4:47:f4:34: 53:59:8e:d9:bf:ed:ad:46:54:be:ed:5e:23:32:8b:2f:ec:38: c9:50:7d:8f:71:31:eb:7d:5c:9f:9a:d2:ba:57:41:fc:05:50: 4e:a1:48:e8:7b:58:22:93:28:50:63:d5:3c:bb:8a:98:97:cd: f1:6f:24:03:1d:e1:18:29:bf:c3:af:26:12:90:cf:91:90:ca: ec:fc:94:a1:7b:b7:e5:65:3b:d7:b1:3b:e0:ce:fe:30:48:26: 90:78:2a:87:da:f4:74:76:31:3e:c3:8d:82:cb:2a:96:06:5e: 5f:5f:6d:ac:c7:e7:f5:28:b6:66:59:b2:d8:71:20:86:7a:d9: 37:bb:e0:32:b2:6e:8e:ad:bf:22:07:40:1e:7c:80:fd:59:13: 2e:3a:20:b8:3a:ee:2e:1f:f9:c1:6b:b3:62:cd:f8:2f:6a:1c: ff:e0:84:b8 -----BEGIN CERTIFICATE----- MIIFNjCCBB6gAwIBAgIUVYV+EBrGYOUCdVVJZpybwFUEy/IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDk3YTI4Zjc3ZWIwYTRhYzM1NGE4YWMyODc1NGIyYTNi YmUzYTk1OTAeFw0yNTExMjgxMTQ0MjBaFw0yNjExMjcxMTQ5MjBaMDMxMTAvBgNV BAMTKEExODA5RkExQUU5RUMzRTQyM0RBRjQ4NzMxMDNGMEIyNjU3NjA4QjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCXourntFozf9k617fP8KklQdRL 3Vk+QUI/KLeQqZFQ+bOKahFsTLCzq1lwykNj3KmJ+mjXrFkso1vtNQtO1Jxz+YDB PnKDolVTh5lPC49KsMej3hiwAdAjyhan8jJ8zREeg+aq3QV+2xBDYfziPjmdPEvU aVzTu1KksMNm/S8crhHTS9/LAW5opbzITabLeSG6LRqsybKY1jOJq64Bhw+Qly9Z dFFq3fTGysYnNJGJXNAMbOuONe66MvJnnv2G21F6YUyHJZmosHJs0AhZ16DaLU3M LmsE5OuFTdbUEN4dwL9uyw1hlfhqRuurdWIPTnxSy0+4V9Lkej5CXH/l1LI/AgMB AAGjggJAMIICPDAdBgNVHQ4EFgQUoYCfoa6ew+Qj2vSHMQPwsmV2CLEwHwYDVR0j BBgwFoAUCXoo936wpKw1SorCh1Syo7vjqVkwDgYDVR0PAQH/BAQDAgeAMIGYBgNV HR8EgZAwgY0wgYqggYeggYSGgYFyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5L2ZlMzcwOGEwLTY3ZDUtNGFjMi1hYmM0LWEzMzI1OTBi OTlhZi8xNzcvMDk3QTI4Rjc3RUIwQTRBQzM1NEE4QUMyODc1NEIyQTNCQkUzQTk1 OS5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2ku cmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0NYb285MzZ3cEt3MVNvckNoMVN5 bzd2anFWay5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJz eW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4 YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzE3Ny8zMzMxMmUzNDMwMmUz MjMxMzIyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzNDMyMzgzOTM4LnJvYTAYBgNV HSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQAHyjUMA0GCSqGSIb3DQEBCwUAA4IBAQCPD11iiwiysRv5yeS5ufx4Y3u09i/j EoP7gg9IT6LXiJPPdQrLzCndh+h8xE6J78bPCd4HAV/4gpDdsvIn24gH0ZzbKfmH 9zfWKotN3fZqxX4j4dJMG6RH9DRTWY7Zv+2tRlS+7V4jMosv7DjJUH2PcTHrfVyf mtK6V0H8BVBOoUjoe1gikyhQY9U8u4qYl83xbyQDHeEYKb/DryYSkM+RkMrs/JSh e7flZTvXsTvgzv4wSCaQeCqH2vR0djE+w42CyyqWBl5fX22sx+f1KLZmWbLYcSCG etk3u+Aysm6Orb8iB0AefID9WRMuOiC4Ou4uH/nBa7Nizfgvahz/4IS4 -----END CERTIFICATE-----Generated at Fri Dec 5 07:05:47 2025 by rpki-client