This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/34352e3133322e3234302e302f32322d3234203d3e203437353833.roa File: 34352e3133322e3234302e302f32322d3234203d3e203437353833.roa (raw, json) Hash identifier: 7CM0W+SzIQ2VgJeoUDWIgmmXeKEK++99b1T7xyUBtRQ= Subject key identifier: D0:DC:8C:CF:44:10:AD:A3:77:BC:1F:B3:CB:26:2A:EE:F4:C8:D3:DA Certificate issuer: /CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959 Certificate serial: 417D145109FBF57EA4109983D5E6A58036DB7561 Authority key identifier: 09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/34352e3133322e3234302e302f32322d3234203d3e203437353833.roa Signing time: Fri 21 Nov 2025 15:49:04 +0000 ROA not before: Fri 21 Nov 2025 15:44:04 +0000 ROA not after: Fri 20 Nov 2026 15:49:04 +0000 asID: 47583 IP address blocks: 45.132.240.0/22 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.mft rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 11:00:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:7d:14:51:09:fb:f5:7e:a4:10:99:83:d5:e6:a5:80:36:db:75:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959 Validity Not Before: Nov 21 15:44:04 2025 GMT Not After : Nov 20 15:49:04 2026 GMT Subject: CN=D0DC8CCF4410ADA377BC1FB3CB262AEEF4C8D3DA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:fb:dd:e9:c8:e7:3d:6d:af:7e:02:fe:6c:73: 3f:cf:5c:b2:08:f9:50:13:aa:89:ce:d0:05:40:9a: ac:45:5f:f6:60:79:5a:cb:d8:1a:1f:4b:70:84:fe: 45:57:f6:ef:c1:d0:71:b8:ea:bf:75:1e:02:9e:39: 65:29:9f:3c:cf:7f:e1:b6:15:4d:e9:4e:2c:2d:5b: e4:c3:75:ee:5d:40:21:10:25:5d:52:a2:aa:5e:fc: e9:71:de:9a:2f:82:0a:33:a6:2e:4f:b3:43:d3:db: b2:93:a5:f0:b7:1e:21:61:90:80:47:53:8d:3f:c6: 3b:f6:2b:e9:7b:0d:92:8c:b7:2c:43:9c:3b:58:82: 15:f0:91:d4:53:21:61:d6:4c:2b:8c:e1:fc:34:a1: a3:5a:26:6f:f4:49:5c:c4:36:d6:56:e6:7f:78:3b: 2c:58:8a:5c:50:92:e8:b4:04:38:5d:ad:e5:bd:89: 60:4c:97:55:8d:65:82:90:5f:5b:35:0f:10:3c:92: 5b:6a:51:6e:b8:18:67:84:6a:4b:85:58:18:8b:06: 87:88:69:04:f9:5c:39:ef:e2:d7:1f:59:4f:91:6b: be:ee:d3:00:97:cc:d3:b5:5c:bb:d7:3d:44:3b:c0: 83:68:8c:60:0d:c4:74:72:ab:43:bd:b9:52:bc:a6: 46:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:DC:8C:CF:44:10:AD:A3:77:BC:1F:B3:CB:26:2A:EE:F4:C8:D3:DA X509v3 Authority Key Identifier: keyid:09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/34352e3133322e3234302e302f32322d3234203d3e203437353833.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.132.240.0/22 Signature Algorithm: sha256WithRSAEncryption ae:72:38:2c:32:7a:19:b9:fa:78:60:1f:37:c5:3d:db:48:ae: 0d:b2:3b:2f:1f:74:68:9c:d6:4b:7d:67:43:ee:31:3d:ee:2c: 6e:1d:32:fd:3e:63:39:dd:34:df:37:59:a3:a6:80:71:45:bf: 6e:ed:fc:df:23:f2:bb:5c:fd:f9:46:51:8c:e1:c7:38:ac:67: a0:30:49:d9:26:af:57:08:89:f0:cc:51:4c:4c:38:ed:8a:2c: 9a:e5:7b:dd:c6:c9:f0:5b:b2:9b:e5:3e:85:76:86:90:20:ac: c0:0a:a5:33:fc:f8:70:95:00:db:9a:2f:08:39:3b:d2:c7:e6: c6:24:44:d8:d1:ee:eb:3a:21:9f:88:9b:a2:06:bf:d2:7b:cb: cd:7a:00:79:04:c3:c7:82:ac:64:47:99:dc:58:3f:c9:63:36: dc:a3:b7:be:0c:82:d4:0e:46:2e:2e:aa:ca:35:f7:06:cb:fa: 86:47:87:76:10:2a:8d:c5:c1:e8:c7:3c:e6:45:7c:27:8f:a0: 0b:9c:cb:22:a8:e9:db:77:65:b7:47:71:11:94:24:27:b0:7d: de:10:ed:41:2f:6a:94:a5:2d:71:a6:1b:9a:21:b5:32:c4:31: be:4b:77:c5:64:a2:b0:dd:9f:79:2f:98:4f:5d:ec:1d:26:06: f0:7f:d8:d9 -----BEGIN CERTIFICATE----- MIIFODCCBCCgAwIBAgIUQX0UUQn79X6kEJmD1ealgDbbdWEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDk3YTI4Zjc3ZWIwYTRhYzM1NGE4YWMyODc1NGIyYTNi YmUzYTk1OTAeFw0yNTExMjExNTQ0MDRaFw0yNjExMjAxNTQ5MDRaMDMxMTAvBgNV BAMTKEQwREM4Q0NGNDQxMEFEQTM3N0JDMUZCM0NCMjYyQUVFRjRDOEQzREEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJ+93pyOc9ba9+Av5scz/PXLII +VATqonO0AVAmqxFX/ZgeVrL2BofS3CE/kVX9u/B0HG46r91HgKeOWUpnzzPf+G2 FU3pTiwtW+TDde5dQCEQJV1Soqpe/Olx3povggozpi5Ps0PT27KTpfC3HiFhkIBH U40/xjv2K+l7DZKMtyxDnDtYghXwkdRTIWHWTCuM4fw0oaNaJm/0SVzENtZW5n94 OyxYilxQkui0BDhdreW9iWBMl1WNZYKQX1s1DxA8kltqUW64GGeEakuFWBiLBoeI aQT5XDnv4tcfWU+Ra77u0wCXzNO1XLvXPUQ7wINojGANxHRyq0O9uVK8pkYnAgMB AAGjggJCMIICPjAdBgNVHQ4EFgQU0NyMz0QQraN3vB+zyyYq7vTI09owHwYDVR0j BBgwFoAUCXoo936wpKw1SorCh1Syo7vjqVkwDgYDVR0PAQH/BAQDAgeAMIGYBgNV HR8EgZAwgY0wgYqggYeggYSGgYFyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5L2ZlMzcwOGEwLTY3ZDUtNGFjMi1hYmM0LWEzMzI1OTBi OTlhZi8xNzcvMDk3QTI4Rjc3RUIwQTRBQzM1NEE4QUMyODc1NEIyQTNCQkUzQTk1 OS5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2ku cmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0NYb285MzZ3cEt3MVNvckNoMVN5 bzd2anFWay5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3Jz eW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4 YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzE3Ny8zNDM1MmUzMTMzMzIy ZTMyMzQzMDJlMzAyZjMyMzIyZDMyMzQyMDNkM2UyMDM0MzczNTM4MzMucm9hMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIthPAwDQYJKoZIhvcNAQELBQADggEBAK5yOCwyehm5+nhgHzfFPdtIrg2y Oy8fdGic1kt9Z0PuMT3uLG4dMv0+YzndNN83WaOmgHFFv27t/N8j8rtc/flGUYzh xzisZ6AwSdkmr1cIifDMUUxMOO2KLJrle93GyfBbspvlPoV2hpAgrMAKpTP8+HCV ANuaLwg5O9LH5sYkRNjR7us6IZ+Im6IGv9J7y816AHkEw8eCrGRHmdxYP8ljNtyj t74MgtQORi4uqso19wbL+oZHh3YQKo3FwejHPOZFfCePoAucyyKo6dt3ZbdHcRGU JCewfd4Q7UEvapSlLXGmG5ohtTLEMb5Ld8VkorDdn3kvmE9d7B0mBvB/2Nk= -----END CERTIFICATE-----Generated at Fri Dec 5 18:55:00 2025 by rpki-client