This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/34352e3134332e38332e302f32342d3234203d3e203437353833.roa File: 34352e3134332e38332e302f32342d3234203d3e203437353833.roa (raw, json) Hash identifier: sgFKyVSlvmAd7p27P65JChPncTU27xXDEvVoq9gCSj0= Subject key identifier: 57:41:5A:36:0F:4E:6B:2E:1D:1F:62:B6:59:D3:BB:A3:94:F9:BB:88 Certificate issuer: /CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959 Certificate serial: 158ED0C46E6C1D93ECEAAC5DB5AE2720C492816A Authority key identifier: 09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/34352e3134332e38332e302f32342d3234203d3e203437353833.roa Signing time: Fri 21 Nov 2025 15:49:13 +0000 ROA not before: Fri 21 Nov 2025 15:44:13 +0000 ROA not after: Fri 20 Nov 2026 15:49:13 +0000 asID: 47583 IP address blocks: 45.143.83.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.mft rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 11:00:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:8e:d0:c4:6e:6c:1d:93:ec:ea:ac:5d:b5:ae:27:20:c4:92:81:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959 Validity Not Before: Nov 21 15:44:13 2025 GMT Not After : Nov 20 15:49:13 2026 GMT Subject: CN=57415A360F4E6B2E1D1F62B659D3BBA394F9BB88 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:b3:02:7f:3f:b9:ec:cd:f2:c4:56:09:6f:6d: 8b:96:bd:ea:ab:04:12:dc:35:00:72:17:29:7d:ef: 90:53:44:33:e0:80:1c:9e:bb:56:32:23:b1:d1:c8: 64:a0:7e:f9:a8:d4:7f:66:df:20:f1:87:8c:81:1f: dc:52:3d:bc:1e:8a:f1:49:28:00:49:11:fc:a2:74: 02:65:da:99:e9:2b:03:e5:eb:aa:01:de:69:9d:4d: b0:d5:d1:e7:22:b9:0e:e8:dc:6d:55:9a:3c:96:1a: aa:6d:be:66:48:08:f6:07:3b:4d:36:94:6a:0c:76: 53:a7:ef:a7:21:21:77:59:fb:6a:f7:e1:d0:a0:3d: a0:ff:b0:36:62:d6:e5:bd:89:d7:9d:98:82:b4:81: 12:25:2f:18:d6:40:8c:b4:77:20:24:10:fc:e7:18: a5:b2:a5:31:4f:88:6f:44:d8:5e:e3:49:60:30:a8: ae:ec:88:9d:06:1d:fd:04:18:f5:f2:d0:5e:7a:01: ca:57:92:12:b7:27:04:56:4a:22:83:0a:a6:02:4e: b8:34:d1:36:90:e9:e3:13:1a:3c:17:5d:60:6c:26: e9:71:24:a8:c1:11:3d:86:f3:f8:b1:60:c5:8d:bd: 67:e4:8f:35:2b:ae:49:50:ab:3e:9a:b9:85:52:92: 33:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:41:5A:36:0F:4E:6B:2E:1D:1F:62:B6:59:D3:BB:A3:94:F9:BB:88 X509v3 Authority Key Identifier: keyid:09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/34352e3134332e38332e302f32342d3234203d3e203437353833.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.143.83.0/24 Signature Algorithm: sha256WithRSAEncryption 35:19:d5:08:16:34:51:cd:65:6e:9c:d7:95:3d:22:18:86:9e: fc:20:6c:46:1c:b7:4f:c5:29:5f:f9:66:9f:87:62:51:da:d4: 06:31:56:dc:82:e6:57:a4:27:1a:e1:18:c4:b9:be:c2:a2:cd: b8:5e:e4:dc:11:fc:11:a2:61:94:07:f2:1d:91:dd:a3:75:20: fb:1d:ac:45:17:6c:74:81:fc:e9:2d:e8:bd:b8:9f:ed:48:68: 08:4e:50:70:c0:82:d4:06:84:e1:41:a2:ed:c0:a7:76:00:cd: 2f:86:30:9f:be:9f:ea:c5:e0:a6:2b:ef:1e:13:68:96:d4:91: 13:c5:67:9f:53:ec:86:22:ea:ab:c1:91:60:82:d2:04:61:07: 58:2c:54:c4:37:c6:cf:ba:6e:32:36:b1:14:4a:74:e4:0e:87: f5:72:6b:71:7d:3e:9a:21:9d:ab:1c:de:94:f0:93:85:8d:06: be:7a:0a:fb:25:dd:67:83:4d:c6:7f:b5:c8:1f:81:55:b2:2e: db:2f:b0:43:7f:8e:4f:c5:39:7e:70:6c:ab:e9:41:8a:fe:82: e5:30:12:67:5d:79:08:26:f2:23:1e:d9:af:ee:07:5b:f5:ad: f5:1c:2e:a1:4c:48:61:21:e4:42:d2:b5:99:1c:be:a1:9f:3e: 3f:f8:af:60 -----BEGIN CERTIFICATE----- MIIFNjCCBB6gAwIBAgIUFY7QxG5sHZPs6qxdta4nIMSSgWowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDk3YTI4Zjc3ZWIwYTRhYzM1NGE4YWMyODc1NGIyYTNi YmUzYTk1OTAeFw0yNTExMjExNTQ0MTNaFw0yNjExMjAxNTQ5MTNaMDMxMTAvBgNV BAMTKDU3NDE1QTM2MEY0RTZCMkUxRDFGNjJCNjU5RDNCQkEzOTRGOUJCODgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOswJ/P7nszfLEVglvbYuWveqr BBLcNQByFyl975BTRDPggByeu1YyI7HRyGSgfvmo1H9m3yDxh4yBH9xSPbweivFJ KABJEfyidAJl2pnpKwPl66oB3mmdTbDV0eciuQ7o3G1VmjyWGqptvmZICPYHO002 lGoMdlOn76chIXdZ+2r34dCgPaD/sDZi1uW9idedmIK0gRIlLxjWQIy0dyAkEPzn GKWypTFPiG9E2F7jSWAwqK7siJ0GHf0EGPXy0F56AcpXkhK3JwRWSiKDCqYCTrg0 0TaQ6eMTGjwXXWBsJulxJKjBET2G8/ixYMWNvWfkjzUrrklQqz6auYVSkjMDAgMB AAGjggJAMIICPDAdBgNVHQ4EFgQUV0FaNg9Oay4dH2K2WdO7o5T5u4gwHwYDVR0j BBgwFoAUCXoo936wpKw1SorCh1Syo7vjqVkwDgYDVR0PAQH/BAQDAgeAMIGYBgNV HR8EgZAwgY0wgYqggYeggYSGgYFyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5L2ZlMzcwOGEwLTY3ZDUtNGFjMi1hYmM0LWEzMzI1OTBi OTlhZi8xNzcvMDk3QTI4Rjc3RUIwQTRBQzM1NEE4QUMyODc1NEIyQTNCQkUzQTk1 OS5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2ku cmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0NYb285MzZ3cEt3MVNvckNoMVN5 bzd2anFWay5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJz eW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4 YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzE3Ny8zNDM1MmUzMTM0MzMy ZTM4MzMyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzNDM3MzUzODMzLnJvYTAYBgNV HSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQALY9TMA0GCSqGSIb3DQEBCwUAA4IBAQA1GdUIFjRRzWVunNeVPSIYhp78IGxG HLdPxSlf+Wafh2JR2tQGMVbcguZXpCca4RjEub7Cos24XuTcEfwRomGUB/Idkd2j dSD7HaxFF2x0gfzpLei9uJ/tSGgITlBwwILUBoThQaLtwKd2AM0vhjCfvp/qxeCm K+8eE2iW1JETxWefU+yGIuqrwZFggtIEYQdYLFTEN8bPum4yNrEUSnTkDof1cmtx fT6aIZ2rHN6U8JOFjQa+egr7Jd1ng03Gf7XIH4FVsi7bL7BDf45PxTl+cGyr6UGK /oLlMBJnXXkIJvIjHtmv7gdb9a31HC6hTEhhIeRC0rWZHL6hnz4/+K9g -----END CERTIFICATE-----Generated at Fri Dec 5 18:54:41 2025 by rpki-client