This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/34352e31332e35362e302f32332d3234203d3e20323034313730.roa File: 34352e31332e35362e302f32332d3234203d3e20323034313730.roa (raw, json) Hash identifier: RiHI9SMSWz0/fsBuTD5csYGbY0orlSF63w6HXoxm+pU= Subject key identifier: C2:88:17:AF:06:AC:7F:F6:BB:B8:3E:8C:01:23:17:2C:C6:C9:0E:D6 Certificate issuer: /CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959 Certificate serial: 47E9D97B1168179C4D3C47D8B8EC54A7D09A428F Authority key identifier: 09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/34352e31332e35362e302f32332d3234203d3e20323034313730.roa Signing time: Fri 28 Nov 2025 11:49:19 +0000 ROA not before: Fri 28 Nov 2025 11:44:19 +0000 ROA not after: Fri 27 Nov 2026 11:49:19 +0000 asID: 204170 IP address blocks: 45.13.56.0/23 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.mft rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 08:24:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:e9:d9:7b:11:68:17:9c:4d:3c:47:d8:b8:ec:54:a7:d0:9a:42:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959 Validity Not Before: Nov 28 11:44:19 2025 GMT Not After : Nov 27 11:49:19 2026 GMT Subject: CN=C28817AF06AC7FF6BBB83E8C0123172CC6C90ED6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:26:b4:0c:f6:8c:8e:4b:f6:f2:d7:b9:b3:af: 91:01:c0:24:2a:91:3c:6c:8b:af:fb:be:18:b8:9c: aa:ec:c2:2d:8f:87:58:40:36:6d:4e:22:0d:7e:74: 0f:86:21:90:04:32:a8:9d:b9:43:ff:61:bb:26:37: db:83:18:43:4e:c6:fc:53:56:94:29:99:02:1f:71: e9:03:5b:30:46:fd:34:5a:88:dc:51:64:6e:be:43: 9a:dd:69:bf:d8:bc:2c:80:c5:50:d0:47:d2:b2:c7: dd:23:f0:ac:d7:d3:c6:06:6c:f1:7d:dd:30:8f:31: 82:b3:b2:cc:0d:a6:00:06:48:6d:d8:ea:1e:a0:84: ca:e7:17:3f:73:17:cf:6f:6b:f4:10:db:9f:a9:b4: 18:6b:4c:eb:d1:fc:23:0b:ed:f0:44:18:36:b0:b1: 4f:6b:db:c9:5a:ee:62:06:45:7d:e7:27:96:a1:cc: e2:31:ba:48:c3:e7:57:ea:d6:ac:04:94:65:97:e9: 89:ab:63:88:ae:f9:04:1c:2e:46:6d:63:5d:02:77: d8:80:07:27:e5:24:ac:2d:d0:a8:13:7b:4e:1d:a1: a5:fc:fa:82:a3:65:31:70:53:a7:12:32:37:04:83: c3:ef:a8:52:a3:29:de:9d:1d:05:08:23:33:1c:60: d3:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:88:17:AF:06:AC:7F:F6:BB:B8:3E:8C:01:23:17:2C:C6:C9:0E:D6 X509v3 Authority Key Identifier: keyid:09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/34352e31332e35362e302f32332d3234203d3e20323034313730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.13.56.0/23 Signature Algorithm: sha256WithRSAEncryption a4:10:00:e3:69:a2:35:e6:38:34:38:a9:32:64:3f:9c:8b:fd: cd:20:22:0d:56:87:8b:19:4f:21:f6:0c:0b:c4:3f:b7:ad:01: c2:48:f3:ad:7a:66:02:eb:76:59:90:80:39:20:c0:ce:75:54: 87:b5:0d:67:7a:18:c3:b4:04:44:bf:6a:5f:7e:5b:61:a5:d4: 12:29:60:0e:ff:0f:8c:cd:4d:93:d3:38:a5:50:98:40:0a:6c: db:e2:cb:84:53:db:b7:78:2c:bb:72:c7:cb:c0:1b:27:9a:f2: a2:54:b4:d9:2e:66:de:5a:93:31:e1:d5:b1:4a:69:0b:50:fc: e8:08:89:3e:41:9b:d8:f3:f6:cc:e1:a6:ff:9a:c5:f4:0b:03: c6:1e:b4:dc:93:35:6b:f7:cc:7c:f8:b1:a5:f0:07:c9:9e:ba: 3b:16:82:ab:56:87:2e:77:c1:ae:42:51:5e:21:1f:a8:e8:b1: 7e:8e:41:2a:66:9c:1a:08:62:b6:20:e0:26:6e:92:5c:2b:10: db:c7:dc:ba:c7:af:d1:bf:57:54:54:e5:01:f5:3a:9e:24:e3: 59:70:3b:56:d1:34:23:8d:2e:90:0d:5d:2d:5b:6c:d3:f9:11: 81:4d:1f:b3:1d:fc:b3:88:5e:2f:28:7b:df:bf:6f:a8:0a:4d: a7:79:84:bb -----BEGIN CERTIFICATE----- MIIFNjCCBB6gAwIBAgIUR+nZexFoF5xNPEfYuOxUp9CaQo8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDk3YTI4Zjc3ZWIwYTRhYzM1NGE4YWMyODc1NGIyYTNi YmUzYTk1OTAeFw0yNTExMjgxMTQ0MTlaFw0yNjExMjcxMTQ5MTlaMDMxMTAvBgNV BAMTKEMyODgxN0FGMDZBQzdGRjZCQkI4M0U4QzAxMjMxNzJDQzZDOTBFRDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTJrQM9oyOS/by17mzr5EBwCQq kTxsi6/7vhi4nKrswi2Ph1hANm1OIg1+dA+GIZAEMqiduUP/YbsmN9uDGENOxvxT VpQpmQIfcekDWzBG/TRaiNxRZG6+Q5rdab/YvCyAxVDQR9Kyx90j8KzX08YGbPF9 3TCPMYKzsswNpgAGSG3Y6h6ghMrnFz9zF89va/QQ25+ptBhrTOvR/CML7fBEGDaw sU9r28la7mIGRX3nJ5ahzOIxukjD51fq1qwElGWX6YmrY4iu+QQcLkZtY10Cd9iA ByflJKwt0KgTe04doaX8+oKjZTFwU6cSMjcEg8PvqFKjKd6dHQUIIzMcYNN3AgMB AAGjggJAMIICPDAdBgNVHQ4EFgQUwogXrwasf/a7uD6MASMXLMbJDtYwHwYDVR0j BBgwFoAUCXoo936wpKw1SorCh1Syo7vjqVkwDgYDVR0PAQH/BAQDAgeAMIGYBgNV HR8EgZAwgY0wgYqggYeggYSGgYFyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5L2ZlMzcwOGEwLTY3ZDUtNGFjMi1hYmM0LWEzMzI1OTBi OTlhZi8xNzcvMDk3QTI4Rjc3RUIwQTRBQzM1NEE4QUMyODc1NEIyQTNCQkUzQTk1 OS5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2ku cmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0NYb285MzZ3cEt3MVNvckNoMVN5 bzd2anFWay5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJz eW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4 YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzE3Ny8zNDM1MmUzMTMzMmUz NTM2MmUzMDJmMzIzMzJkMzIzNDIwM2QzZTIwMzIzMDM0MzEzNzMwLnJvYTAYBgNV HSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQBLQ04MA0GCSqGSIb3DQEBCwUAA4IBAQCkEADjaaI15jg0OKkyZD+ci/3NICIN VoeLGU8h9gwLxD+3rQHCSPOtemYC63ZZkIA5IMDOdVSHtQ1nehjDtAREv2pfflth pdQSKWAO/w+MzU2T0zilUJhACmzb4suEU9u3eCy7csfLwBsnmvKiVLTZLmbeWpMx 4dWxSmkLUPzoCIk+QZvY8/bM4ab/msX0CwPGHrTckzVr98x8+LGl8AfJnro7FoKr Vocud8GuQlFeIR+o6LF+jkEqZpwaCGK2IOAmbpJcKxDbx9y6x6/Rv1dUVOUB9Tqe JONZcDtW0TQjjS6QDV0tW2zT+RGBTR+zHfyziF4vKHvfv2+oCk2neYS7 -----END CERTIFICATE-----Generated at Sat Dec 6 21:57:22 2025 by rpki-client