This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/34352e38382e3139362e302f32322d3234203d3e203437353833.roa File: 34352e38382e3139362e302f32322d3234203d3e203437353833.roa (raw, json) Hash identifier: esO2+NZGMs3Qdw5DUjEv05tEcwLnRDBfi6D7OKfrPd8= Subject key identifier: EA:62:D8:0B:E0:2B:E2:07:1F:26:37:86:01:98:86:79:29:DB:3D:34 Certificate issuer: /CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959 Certificate serial: 6370F708D866A164EADAE255C71FD2F386946028 Authority key identifier: 09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/34352e38382e3139362e302f32322d3234203d3e203437353833.roa Signing time: Fri 21 Nov 2025 15:49:10 +0000 ROA not before: Fri 21 Nov 2025 15:44:10 +0000 ROA not after: Fri 20 Nov 2026 15:49:10 +0000 asID: 47583 IP address blocks: 45.88.196.0/22 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.mft rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 11:00:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:70:f7:08:d8:66:a1:64:ea:da:e2:55:c7:1f:d2:f3:86:94:60:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959 Validity Not Before: Nov 21 15:44:10 2025 GMT Not After : Nov 20 15:49:10 2026 GMT Subject: CN=EA62D80BE02BE2071F2637860198867929DB3D34 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:57:5f:47:28:2f:ce:b0:4b:b4:c9:5d:4c:48: f8:6c:91:07:ac:0e:dc:5a:71:b3:db:a4:5b:4a:6f: 50:ba:ae:3f:ec:a8:74:40:59:2c:b7:90:9c:f1:2f: 56:7c:40:de:3b:76:d4:3f:58:0e:af:c0:35:01:c7: 14:d0:13:35:d5:73:f6:d2:3f:4d:f0:f1:8d:24:f4: 79:84:35:81:9a:89:29:8f:58:35:d5:77:2a:e7:83: 0e:db:50:fb:a8:54:c7:c1:ef:e6:65:c7:d6:53:01: 0b:ef:e8:73:5c:8b:97:60:29:26:da:02:97:67:d1: 79:7d:ca:1e:d2:b0:d0:45:c7:04:fb:43:5a:4a:4d: 66:ff:72:49:69:f1:a2:81:29:76:c2:a8:f7:be:3a: 70:a2:b6:bc:28:b2:86:ef:55:aa:12:e8:b3:c2:01: 39:bd:99:2c:49:8c:4f:94:8b:1e:45:f5:e4:eb:22: 64:dd:43:11:54:b6:45:44:b9:6a:14:c6:9f:fb:a1: 2b:d7:8f:06:21:78:96:e2:e8:e8:b2:bf:7e:02:c7: 9e:57:c6:8c:9c:d0:e1:96:8b:ce:c3:a4:60:f3:ca: 6d:4b:2a:7c:8a:ee:71:35:39:6a:40:0a:64:b1:5d: d8:b0:40:bd:9a:14:ed:7e:a9:d5:f0:98:b5:c8:9b: f8:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:62:D8:0B:E0:2B:E2:07:1F:26:37:86:01:98:86:79:29:DB:3D:34 X509v3 Authority Key Identifier: keyid:09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/34352e38382e3139362e302f32322d3234203d3e203437353833.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.88.196.0/22 Signature Algorithm: sha256WithRSAEncryption d9:85:5b:7c:cb:9e:26:44:95:dc:61:d8:33:93:fd:35:9d:7a: 08:0b:88:40:fb:16:41:8c:d9:84:3a:84:2a:cb:f5:0c:85:0d: bf:52:ac:8d:a9:fd:35:12:79:41:9a:04:e5:28:ad:83:1e:c4: 92:f1:db:ac:fb:f6:26:94:20:66:d4:f7:68:c8:5e:51:d3:ca: ed:e0:bd:94:7b:32:96:a8:67:dc:f0:1e:0e:4d:da:35:e8:8d: 5d:74:cc:02:8d:b5:cb:8c:c0:b5:3a:1b:b9:29:06:88:a3:00: 8d:d6:6e:2d:4c:58:b4:c5:bf:fd:78:97:96:bb:9b:a5:76:86: 32:21:96:dd:7a:36:ac:b7:ed:c2:fb:f2:62:85:e1:55:86:e5: 74:dc:9f:81:a5:72:53:47:8c:74:57:4e:c8:da:9f:2f:06:72: 82:74:74:a7:17:8e:5e:dd:5a:14:12:37:3a:3e:2e:76:ab:8a: 5d:e9:21:8e:5d:d7:f3:7d:bd:c6:8f:c9:3f:bf:71:73:2d:e7: 97:12:9d:e2:c7:08:4f:37:16:71:63:64:ec:62:e2:45:72:21: cc:e8:ea:21:e8:fd:9e:7a:f5:4e:e4:d6:99:ca:ed:5d:33:18: 2a:0a:a2:f0:86:a7:94:69:5e:96:2d:80:59:74:66:35:36:56: 57:06:6b:07 -----BEGIN CERTIFICATE----- MIIFNjCCBB6gAwIBAgIUY3D3CNhmoWTq2uJVxx/S84aUYCgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDk3YTI4Zjc3ZWIwYTRhYzM1NGE4YWMyODc1NGIyYTNi YmUzYTk1OTAeFw0yNTExMjExNTQ0MTBaFw0yNjExMjAxNTQ5MTBaMDMxMTAvBgNV BAMTKEVBNjJEODBCRTAyQkUyMDcxRjI2Mzc4NjAxOTg4Njc5MjlEQjNEMzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3V19HKC/OsEu0yV1MSPhskQes DtxacbPbpFtKb1C6rj/sqHRAWSy3kJzxL1Z8QN47dtQ/WA6vwDUBxxTQEzXVc/bS P03w8Y0k9HmENYGaiSmPWDXVdyrngw7bUPuoVMfB7+Zlx9ZTAQvv6HNci5dgKSba Apdn0Xl9yh7SsNBFxwT7Q1pKTWb/cklp8aKBKXbCqPe+OnCitrwosobvVaoS6LPC ATm9mSxJjE+Uix5F9eTrImTdQxFUtkVEuWoUxp/7oSvXjwYheJbi6Oiyv34Cx55X xoyc0OGWi87DpGDzym1LKnyK7nE1OWpACmSxXdiwQL2aFO1+qdXwmLXIm/jLAgMB AAGjggJAMIICPDAdBgNVHQ4EFgQU6mLYC+Ar4gcfJjeGAZiGeSnbPTQwHwYDVR0j BBgwFoAUCXoo936wpKw1SorCh1Syo7vjqVkwDgYDVR0PAQH/BAQDAgeAMIGYBgNV HR8EgZAwgY0wgYqggYeggYSGgYFyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5L2ZlMzcwOGEwLTY3ZDUtNGFjMi1hYmM0LWEzMzI1OTBi OTlhZi8xNzcvMDk3QTI4Rjc3RUIwQTRBQzM1NEE4QUMyODc1NEIyQTNCQkUzQTk1 OS5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2ku cmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0NYb285MzZ3cEt3MVNvckNoMVN5 bzd2anFWay5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJz eW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4 YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzE3Ny8zNDM1MmUzODM4MmUz MTM5MzYyZTMwMmYzMjMyMmQzMjM0MjAzZDNlMjAzNDM3MzUzODMzLnJvYTAYBgNV HSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQCLVjEMA0GCSqGSIb3DQEBCwUAA4IBAQDZhVt8y54mRJXcYdgzk/01nXoIC4hA +xZBjNmEOoQqy/UMhQ2/UqyNqf01EnlBmgTlKK2DHsSS8dus+/YmlCBm1PdoyF5R 08rt4L2UezKWqGfc8B4OTdo16I1ddMwCjbXLjMC1Ohu5KQaIowCN1m4tTFi0xb/9 eJeWu5uldoYyIZbdejast+3C+/JiheFVhuV03J+BpXJTR4x0V07I2p8vBnKCdHSn F45e3VoUEjc6Pi52q4pd6SGOXdfzfb3Gj8k/v3FzLeeXEp3ixwhPNxZxY2TsYuJF ciHM6Ooh6P2eevVO5NaZyu1dMxgqCqLwhqeUaV6WLYBZdGY1NlZXBmsH -----END CERTIFICATE-----Generated at Fri Dec 5 18:56:23 2025 by rpki-client