This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/34352e38382e3139302e302f32342d3234203d3e20313437303439.roa File: 34352e38382e3139302e302f32342d3234203d3e20313437303439.roa (raw, json) Hash identifier: gSgNmcfSdulOoIGq5V2x/vbhRwbOLO88YB5me0hn62k= Subject key identifier: 04:2E:81:5F:CB:3D:4E:28:36:97:15:E2:30:18:C0:32:2A:D3:D8:29 Certificate issuer: /CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959 Certificate serial: 0E271FE568D1B017C9D52C28D160523EB58BBEAA Authority key identifier: 09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/34352e38382e3139302e302f32342d3234203d3e20313437303439.roa Signing time: Fri 28 Nov 2025 11:49:21 +0000 ROA not before: Fri 28 Nov 2025 11:44:21 +0000 ROA not after: Fri 27 Nov 2026 11:49:21 +0000 asID: 147049 IP address blocks: 45.88.190.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.mft rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 02:38:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:27:1f:e5:68:d1:b0:17:c9:d5:2c:28:d1:60:52:3e:b5:8b:be:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959 Validity Not Before: Nov 28 11:44:21 2025 GMT Not After : Nov 27 11:49:21 2026 GMT Subject: CN=042E815FCB3D4E28369715E23018C0322AD3D829 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:2e:12:a1:c5:ea:74:b6:93:5e:12:98:88:1e: e8:29:b9:72:88:b2:c2:37:7c:21:b9:05:18:0f:5f: ca:9e:0e:df:f9:bc:42:0e:10:29:de:e1:05:76:5f: ca:21:92:f7:ba:a3:7b:fd:b9:4d:72:a0:a7:9e:99: d8:93:03:dc:e6:db:e2:b4:e0:9c:7f:39:cc:47:d4: f8:f1:8d:f8:f8:1e:dd:c9:4e:52:5b:18:43:a2:e4: dd:d4:77:86:65:ef:6b:7d:4b:d0:4b:be:21:df:c9: 51:f0:2a:55:7c:c9:6d:23:f0:25:75:2a:ac:c6:99: 4f:3f:f6:03:a8:63:d4:84:88:f2:cc:df:81:44:7a: 5b:c5:87:3a:f2:a0:d2:c5:d3:0e:50:72:cf:c0:67: 83:49:14:6f:9e:14:c9:69:c8:fd:b7:57:72:09:48: 61:02:73:dc:ed:54:a3:29:a0:50:bd:d9:86:87:56: 4e:f5:27:05:73:19:65:2c:4f:46:80:c7:9b:1c:e7: 4e:1b:98:d2:32:b0:1c:51:89:50:6d:6c:dc:36:e8: 4b:11:2b:41:92:52:da:b1:06:af:a9:05:5c:c4:65: 5d:83:af:1e:47:fc:3c:cd:1f:b2:23:9a:66:19:09: 8a:03:70:df:91:72:6e:b5:4b:3d:e6:38:e8:17:0b: aa:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:2E:81:5F:CB:3D:4E:28:36:97:15:E2:30:18:C0:32:2A:D3:D8:29 X509v3 Authority Key Identifier: keyid:09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/34352e38382e3139302e302f32342d3234203d3e20313437303439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.88.190.0/24 Signature Algorithm: sha256WithRSAEncryption d4:56:06:b5:31:86:e8:54:1d:1a:98:35:c4:0b:4f:e0:93:08: ec:ed:3c:64:12:0e:44:e2:cc:4c:6a:9b:07:2c:72:88:fa:a8: d0:0e:8d:d6:ef:20:21:f1:75:69:ab:63:6f:66:29:1e:12:c6: 2c:11:2c:9b:c8:59:91:86:e2:a2:8f:c3:d3:e3:35:1c:ee:ef: 0f:c7:ad:4c:7b:6f:ce:7f:9f:91:90:7f:cc:d0:72:34:73:1f: cb:72:d4:7c:d4:fa:13:8a:cb:dd:23:db:cc:31:ed:d3:a5:f2: fd:8b:4e:9b:4b:a0:ea:07:54:b0:57:3b:61:90:0a:55:fd:3f: b7:bd:b2:a7:75:69:2b:47:ac:c3:36:b4:8c:d9:70:dc:a5:8d: 5d:9f:ff:d3:1b:de:fe:ab:bd:8b:09:9e:26:e5:95:db:69:14: e9:39:8c:9a:eb:39:16:35:a9:e7:10:9a:84:2a:b0:39:c9:c7: 07:fb:e5:d4:8a:f1:65:b4:4b:f5:1b:c5:b5:7f:ad:ce:ea:ba: a3:aa:02:f6:0e:94:55:9e:ae:ae:9a:8e:11:69:3b:8f:2e:42: 1b:a7:e9:0f:fc:66:27:f5:63:70:f4:eb:01:82:e6:0d:ac:3d: cd:64:dc:ee:f7:71:da:15:28:77:06:36:62:53:98:dd:07:05: 71:1e:bb:a2 -----BEGIN CERTIFICATE----- MIIFODCCBCCgAwIBAgIUDicf5WjRsBfJ1Swo0WBSPrWLvqowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDk3YTI4Zjc3ZWIwYTRhYzM1NGE4YWMyODc1NGIyYTNi YmUzYTk1OTAeFw0yNTExMjgxMTQ0MjFaFw0yNjExMjcxMTQ5MjFaMDMxMTAvBgNV BAMTKDA0MkU4MTVGQ0IzRDRFMjgzNjk3MTVFMjMwMThDMDMyMkFEM0Q4MjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCZLhKhxep0tpNeEpiIHugpuXKI ssI3fCG5BRgPX8qeDt/5vEIOECne4QV2X8ohkve6o3v9uU1yoKeemdiTA9zm2+K0 4Jx/OcxH1Pjxjfj4Ht3JTlJbGEOi5N3Ud4Zl72t9S9BLviHfyVHwKlV8yW0j8CV1 KqzGmU8/9gOoY9SEiPLM34FEelvFhzryoNLF0w5Qcs/AZ4NJFG+eFMlpyP23V3IJ SGECc9ztVKMpoFC92YaHVk71JwVzGWUsT0aAx5sc504bmNIysBxRiVBtbNw26EsR K0GSUtqxBq+pBVzEZV2Drx5H/DzNH7IjmmYZCYoDcN+Rcm61Sz3mOOgXC6qHAgMB AAGjggJCMIICPjAdBgNVHQ4EFgQUBC6BX8s9Tig2lxXiMBjAMirT2CkwHwYDVR0j BBgwFoAUCXoo936wpKw1SorCh1Syo7vjqVkwDgYDVR0PAQH/BAQDAgeAMIGYBgNV HR8EgZAwgY0wgYqggYeggYSGgYFyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5L2ZlMzcwOGEwLTY3ZDUtNGFjMi1hYmM0LWEzMzI1OTBi OTlhZi8xNzcvMDk3QTI4Rjc3RUIwQTRBQzM1NEE4QUMyODc1NEIyQTNCQkUzQTk1 OS5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2ku cmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0NYb285MzZ3cEt3MVNvckNoMVN5 bzd2anFWay5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3Jz eW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4 YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzE3Ny8zNDM1MmUzODM4MmUz MTM5MzAyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMTM0MzczMDM0Mzkucm9hMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAtWL4wDQYJKoZIhvcNAQELBQADggEBANRWBrUxhuhUHRqYNcQLT+CTCOzt PGQSDkTizExqmwcscoj6qNAOjdbvICHxdWmrY29mKR4SxiwRLJvIWZGG4qKPw9Pj NRzu7w/HrUx7b85/n5GQf8zQcjRzH8ty1HzU+hOKy90j28wx7dOl8v2LTptLoOoH VLBXO2GQClX9P7e9sqd1aStHrMM2tIzZcNyljV2f/9Mb3v6rvYsJniblldtpFOk5 jJrrORY1qecQmoQqsDnJxwf75dSK8WW0S/UbxbV/rc7quqOqAvYOlFWerq6ajhFp O48uQhun6Q/8Zif1Y3D06wGC5g2sPc1k3O73cdoVKHcGNmJTmN0HBXEeu6I= -----END CERTIFICATE-----Generated at Fri Dec 5 11:37:26 2025 by rpki-client