This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/34352e3135352e34342e302f32322d3234203d3e20323034313730.roa File: 34352e3135352e34342e302f32322d3234203d3e20323034313730.roa (raw, json) Hash identifier: F6GnP7EQWcrqPIuBjIntALBp/yKdWumfLMiW0A9dKTc= Subject key identifier: 99:8C:66:20:86:1F:60:A6:CC:79:55:47:72:BD:18:30:F1:2D:56:99 Certificate issuer: /CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959 Certificate serial: 44AF6204E96EAFFB7B73F4D94D27E7EBAA273C25 Authority key identifier: 09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/34352e3135352e34342e302f32322d3234203d3e20323034313730.roa Signing time: Fri 21 Nov 2025 15:49:07 +0000 ROA not before: Fri 21 Nov 2025 15:44:07 +0000 ROA not after: Fri 20 Nov 2026 15:49:07 +0000 asID: 204170 IP address blocks: 45.155.44.0/22 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.mft rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 08:24:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:af:62:04:e9:6e:af:fb:7b:73:f4:d9:4d:27:e7:eb:aa:27:3c:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959 Validity Not Before: Nov 21 15:44:07 2025 GMT Not After : Nov 20 15:49:07 2026 GMT Subject: CN=998C6620861F60A6CC79554772BD1830F12D5699 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:30:57:57:44:62:09:20:04:b2:cc:51:a2:cb: d7:62:62:49:7c:28:a8:32:4c:af:74:cc:dd:5e:d2: f3:12:2a:63:45:28:34:c2:d6:60:2e:df:40:7d:9e: 52:24:a5:46:20:6f:76:1d:17:74:e6:18:80:c0:76: da:49:d9:98:1f:a9:33:d9:79:74:c4:0f:52:eb:83: b7:d5:b3:1c:c6:bc:bc:e0:51:3e:04:d0:a1:ee:40: 6d:97:c1:d3:ca:5c:58:dd:01:e1:98:b7:be:dc:f9: 42:ce:a3:cd:49:2b:fc:c1:54:66:cd:7c:87:fd:d2: ce:0e:c8:5f:71:7c:73:3e:b4:8c:8c:48:be:dc:18: 61:0e:f4:10:70:92:d9:b9:8d:ad:4a:c4:bb:9f:6c: a2:40:19:7e:0c:e8:69:b0:23:af:de:a5:c2:9b:01: 81:40:55:2c:83:74:07:9b:90:f4:11:08:3d:a9:3f: 03:e7:f4:a7:de:9f:6f:60:99:bf:c2:4d:4f:3d:d7: 72:05:6a:f3:4b:ea:52:0d:e5:32:be:b5:f4:29:91: c6:f5:92:3e:fb:06:a2:b2:36:d8:25:b6:13:56:19: 45:70:eb:18:bb:d5:68:aa:b1:b8:b1:f7:1e:67:4a: c2:15:60:44:3f:f3:2e:59:37:d7:f1:81:0d:c8:e5: 0f:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:8C:66:20:86:1F:60:A6:CC:79:55:47:72:BD:18:30:F1:2D:56:99 X509v3 Authority Key Identifier: keyid:09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/34352e3135352e34342e302f32322d3234203d3e20323034313730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.155.44.0/22 Signature Algorithm: sha256WithRSAEncryption 63:9d:ad:e9:54:94:40:3a:61:f9:08:eb:0f:93:24:2e:54:0d: 73:d9:0d:4c:ad:0d:f2:19:30:b1:44:12:d5:fa:8d:89:b2:cf: 36:97:98:e5:12:c2:e2:69:f1:0e:d1:d1:6f:71:1a:48:d0:69: b6:15:66:50:31:5c:51:55:89:fe:98:28:34:82:9b:89:c0:2f: 5f:d2:f0:54:46:db:bb:75:67:10:17:35:06:fd:2c:89:ed:0b: 35:81:08:1e:82:bc:ad:fb:59:c0:7b:a4:60:3d:a5:07:be:f0: 92:42:f2:3b:63:d6:52:7d:44:e3:91:d5:52:50:c7:b5:d6:6e: 61:a7:c0:57:7d:aa:d2:e5:b9:ef:9a:6e:6e:4d:3f:87:7b:71: 09:a0:14:e9:d3:9a:58:0e:b1:0c:7e:62:33:7a:24:f5:5a:5d: 82:3b:ff:96:c8:28:75:5b:90:cd:af:e8:cb:d5:e4:92:2d:1f: cd:35:4e:5e:0d:86:d2:ac:c5:16:ca:f2:46:d0:3e:58:50:7a: 02:ef:2f:64:65:b5:2d:fa:23:f4:f0:6a:81:e8:a9:2e:1d:bf: cb:9c:c0:d5:c1:ea:4d:a5:e4:35:53:99:80:77:6d:cf:41:e3: 00:75:11:c6:a5:02:48:07:a6:40:20:eb:2e:03:58:8c:dc:78: 74:e2:1d:48 -----BEGIN CERTIFICATE----- MIIFODCCBCCgAwIBAgIURK9iBOlur/t7c/TZTSfn66onPCUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDk3YTI4Zjc3ZWIwYTRhYzM1NGE4YWMyODc1NGIyYTNi YmUzYTk1OTAeFw0yNTExMjExNTQ0MDdaFw0yNjExMjAxNTQ5MDdaMDMxMTAvBgNV BAMTKDk5OEM2NjIwODYxRjYwQTZDQzc5NTU0NzcyQkQxODMwRjEyRDU2OTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPMFdXRGIJIASyzFGiy9diYkl8 KKgyTK90zN1e0vMSKmNFKDTC1mAu30B9nlIkpUYgb3YdF3TmGIDAdtpJ2ZgfqTPZ eXTED1Lrg7fVsxzGvLzgUT4E0KHuQG2XwdPKXFjdAeGYt77c+ULOo81JK/zBVGbN fIf90s4OyF9xfHM+tIyMSL7cGGEO9BBwktm5ja1KxLufbKJAGX4M6GmwI6/epcKb AYFAVSyDdAebkPQRCD2pPwPn9Kfen29gmb/CTU8913IFavNL6lIN5TK+tfQpkcb1 kj77BqKyNtglthNWGUVw6xi71Wiqsbix9x5nSsIVYEQ/8y5ZN9fxgQ3I5Q+FAgMB AAGjggJCMIICPjAdBgNVHQ4EFgQUmYxmIIYfYKbMeVVHcr0YMPEtVpkwHwYDVR0j BBgwFoAUCXoo936wpKw1SorCh1Syo7vjqVkwDgYDVR0PAQH/BAQDAgeAMIGYBgNV HR8EgZAwgY0wgYqggYeggYSGgYFyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5L2ZlMzcwOGEwLTY3ZDUtNGFjMi1hYmM0LWEzMzI1OTBi OTlhZi8xNzcvMDk3QTI4Rjc3RUIwQTRBQzM1NEE4QUMyODc1NEIyQTNCQkUzQTk1 OS5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2ku cmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0NYb285MzZ3cEt3MVNvckNoMVN5 bzd2anFWay5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3Jz eW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4 YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzE3Ny8zNDM1MmUzMTM1MzUy ZTM0MzQyZTMwMmYzMjMyMmQzMjM0MjAzZDNlMjAzMjMwMzQzMTM3MzAucm9hMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAItmywwDQYJKoZIhvcNAQELBQADggEBAGOdrelUlEA6YfkI6w+TJC5UDXPZ DUytDfIZMLFEEtX6jYmyzzaXmOUSwuJp8Q7R0W9xGkjQabYVZlAxXFFVif6YKDSC m4nAL1/S8FRG27t1ZxAXNQb9LIntCzWBCB6CvK37WcB7pGA9pQe+8JJC8jtj1lJ9 ROOR1VJQx7XWbmGnwFd9qtLlue+abm5NP4d7cQmgFOnTmlgOsQx+YjN6JPVaXYI7 /5bIKHVbkM2v6MvV5JItH801Tl4NhtKsxRbK8kbQPlhQegLvL2RltS36I/TwaoHo qS4dv8ucwNXB6k2l5DVTmYB3bc9B4wB1EcalAkgHpkAg6y4DWIzceHTiHUg= -----END CERTIFICATE-----Generated at Sat Dec 6 21:57:20 2025 by rpki-client