This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/34352e3133372e3139322e302f32342d3332203d3e203430303231.roa File: 34352e3133372e3139322e302f32342d3332203d3e203430303231.roa (raw, json) Hash identifier: fPv1szFbpWWGnQ8GO3mmf7scBzhEubkwbO7l8Eh9OpA= Subject key identifier: 6C:DA:34:38:BC:37:8C:9C:42:CC:B7:F4:A6:11:27:2F:7C:35:57:26 Certificate issuer: /CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959 Certificate serial: 42A32F36061A56E73CCB5C1081F6DD9B532C8A3D Authority key identifier: 09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/34352e3133372e3139322e302f32342d3332203d3e203430303231.roa Signing time: Fri 28 Nov 2025 11:49:20 +0000 ROA not before: Fri 28 Nov 2025 11:44:20 +0000 ROA not after: Fri 27 Nov 2026 11:49:20 +0000 asID: 40021 IP address blocks: 45.137.192.0/24 maxlen: 32 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.mft rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 02:38:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:a3:2f:36:06:1a:56:e7:3c:cb:5c:10:81:f6:dd:9b:53:2c:8a:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959 Validity Not Before: Nov 28 11:44:20 2025 GMT Not After : Nov 27 11:49:20 2026 GMT Subject: CN=6CDA3438BC378C9C42CCB7F4A611272F7C355726 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:c8:25:4e:62:57:21:56:eb:26:51:99:8e:e3: f5:26:39:b6:14:70:f0:23:03:19:96:9c:53:de:e1: 7a:cc:90:bc:4b:3d:35:4e:43:fd:4d:cd:6d:f4:c2: 86:e9:53:f7:fa:5a:75:db:eb:d5:17:31:32:d5:43: e9:0e:52:26:94:57:38:e9:4d:03:24:c2:6c:95:c9: f7:7d:25:17:d0:4b:44:4c:2f:19:69:a0:a0:23:23: 2c:33:e1:a3:b9:ff:c9:6f:78:51:7a:a9:5e:f5:ca: d7:41:1a:04:02:8f:56:ab:98:6f:a3:0b:6d:12:f4: c9:63:e5:f9:68:5f:25:c2:b8:6b:22:3b:da:d9:33: 85:4d:35:7f:5b:f3:38:b3:b5:51:5e:58:84:ac:6b: 58:23:87:65:80:11:ae:8c:78:98:a0:1a:65:07:57: 4c:9c:a6:e2:f1:41:25:0c:91:d8:95:36:42:90:57: ec:5b:9a:ad:07:de:ae:0f:7a:ea:33:51:25:83:dc: df:93:35:24:9b:a4:ef:d6:62:81:a6:90:ce:45:f0: e8:7e:0e:13:1c:b1:4f:26:1a:f4:16:84:c9:ae:d5: 4a:90:55:b8:0e:58:8b:98:70:23:1f:47:95:f0:b4: af:c2:bb:76:e7:b6:24:9c:ac:db:cc:37:8f:9f:62: be:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:DA:34:38:BC:37:8C:9C:42:CC:B7:F4:A6:11:27:2F:7C:35:57:26 X509v3 Authority Key Identifier: keyid:09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/34352e3133372e3139322e302f32342d3332203d3e203430303231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.137.192.0/24 Signature Algorithm: sha256WithRSAEncryption 5c:5e:ff:f9:82:0b:96:40:6c:34:24:b9:06:3c:e4:c3:57:83: ac:b3:9b:76:af:49:14:6c:31:b9:95:06:52:9d:60:d6:18:52: 3f:a2:c1:1d:ca:82:66:f9:d5:65:7e:04:08:33:62:52:fb:33: 34:3d:e4:dc:69:96:1d:b6:7f:2c:41:42:dc:da:69:b3:33:35: 0f:a3:75:33:97:62:51:d5:04:af:11:21:be:66:c9:21:82:07: 7f:5a:d1:a3:ff:35:76:f6:26:91:f3:c4:b3:5c:67:06:68:1a: cc:d8:9c:a7:71:01:98:3e:45:dc:48:b9:49:f0:ba:e9:3a:b9: 58:e7:17:c2:c1:34:ae:ca:04:63:14:cf:3f:6e:25:80:bb:93: 5b:e1:a1:eb:54:94:e2:2e:2c:b6:2f:90:4f:a7:c7:61:6f:09: f2:4b:cd:35:91:7e:40:41:96:36:73:a1:e0:ff:83:33:ee:7d: e5:84:26:e3:b5:c7:76:79:a8:62:0d:fa:09:a8:cd:33:9a:8d: 75:cc:3d:ce:82:17:be:da:91:46:14:e0:ec:20:e8:d1:93:5b: a9:d5:b9:74:b1:06:4b:35:c9:6a:c6:12:08:34:b8:a6:e5:48: 73:ea:7d:69:9b:68:aa:8c:08:5c:a2:72:00:4a:1c:ed:74:7a: 7e:cc:fc:0e -----BEGIN CERTIFICATE----- MIIFODCCBCCgAwIBAgIUQqMvNgYaVuc8y1wQgfbdm1Msij0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDk3YTI4Zjc3ZWIwYTRhYzM1NGE4YWMyODc1NGIyYTNi YmUzYTk1OTAeFw0yNTExMjgxMTQ0MjBaFw0yNjExMjcxMTQ5MjBaMDMxMTAvBgNV BAMTKDZDREEzNDM4QkMzNzhDOUM0MkNDQjdGNEE2MTEyNzJGN0MzNTU3MjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnyCVOYlchVusmUZmO4/UmObYU cPAjAxmWnFPe4XrMkLxLPTVOQ/1NzW30wobpU/f6WnXb69UXMTLVQ+kOUiaUVzjp TQMkwmyVyfd9JRfQS0RMLxlpoKAjIywz4aO5/8lveFF6qV71ytdBGgQCj1armG+j C20S9Mlj5floXyXCuGsiO9rZM4VNNX9b8ziztVFeWISsa1gjh2WAEa6MeJigGmUH V0ycpuLxQSUMkdiVNkKQV+xbmq0H3q4PeuozUSWD3N+TNSSbpO/WYoGmkM5F8Oh+ DhMcsU8mGvQWhMmu1UqQVbgOWIuYcCMfR5XwtK/Cu3bntiScrNvMN4+fYr7XAgMB AAGjggJCMIICPjAdBgNVHQ4EFgQUbNo0OLw3jJxCzLf0phEnL3w1VyYwHwYDVR0j BBgwFoAUCXoo936wpKw1SorCh1Syo7vjqVkwDgYDVR0PAQH/BAQDAgeAMIGYBgNV HR8EgZAwgY0wgYqggYeggYSGgYFyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5L2ZlMzcwOGEwLTY3ZDUtNGFjMi1hYmM0LWEzMzI1OTBi OTlhZi8xNzcvMDk3QTI4Rjc3RUIwQTRBQzM1NEE4QUMyODc1NEIyQTNCQkUzQTk1 OS5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2ku cmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0NYb285MzZ3cEt3MVNvckNoMVN5 bzd2anFWay5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3Jz eW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4 YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzE3Ny8zNDM1MmUzMTMzMzcy ZTMxMzkzMjJlMzAyZjMyMzQyZDMzMzIyMDNkM2UyMDM0MzAzMDMyMzEucm9hMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAticAwDQYJKoZIhvcNAQELBQADggEBAFxe//mCC5ZAbDQkuQY85MNXg6yz m3avSRRsMbmVBlKdYNYYUj+iwR3Kgmb51WV+BAgzYlL7MzQ95Nxplh22fyxBQtza abMzNQ+jdTOXYlHVBK8RIb5mySGCB39a0aP/NXb2JpHzxLNcZwZoGszYnKdxAZg+ RdxIuUnwuuk6uVjnF8LBNK7KBGMUzz9uJYC7k1vhoetUlOIuLLYvkE+nx2FvCfJL zTWRfkBBljZzoeD/gzPufeWEJuO1x3Z5qGIN+gmozTOajXXMPc6CF77akUYU4Owg 6NGTW6nVuXSxBks1yWrGEgg0uKblSHPqfWmbaKqMCFyicgBKHO10en7M/A4= -----END CERTIFICATE-----Generated at Fri Dec 5 14:50:53 2025 by rpki-client