This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/34352e39302e3232322e302f32342d3234203d3e20313437303439.roa File: 34352e39302e3232322e302f32342d3234203d3e20313437303439.roa (raw, json) Hash identifier: plUu39PMDXLBqAbaXOESwsQ4SbW1yyey3rSdpFGVxjg= Subject key identifier: DB:F3:25:53:24:E8:A4:B5:5A:14:3D:19:28:F0:69:61:F1:DA:EA:D2 Certificate issuer: /CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959 Certificate serial: 1D5821BEA997F7580EA3A7E3D202F78E0FD0DCD5 Authority key identifier: 09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/34352e39302e3232322e302f32342d3234203d3e20313437303439.roa Signing time: Fri 28 Nov 2025 11:49:29 +0000 ROA not before: Fri 28 Nov 2025 11:44:29 +0000 ROA not after: Fri 27 Nov 2026 11:49:29 +0000 asID: 147049 IP address blocks: 45.90.222.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.mft rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 01:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:58:21:be:a9:97:f7:58:0e:a3:a7:e3:d2:02:f7:8e:0f:d0:dc:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959 Validity Not Before: Nov 28 11:44:29 2025 GMT Not After : Nov 27 11:49:29 2026 GMT Subject: CN=DBF3255324E8A4B55A143D1928F06961F1DAEAD2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:3e:03:c0:76:ea:33:1b:f2:c3:fa:ab:f9:37: f2:cc:d8:f4:ad:ff:9f:46:0c:a3:e2:19:27:d7:ac: 06:b3:9d:14:ee:83:bd:99:25:bf:02:8e:71:a4:b6: 4a:e7:34:4e:35:ab:a3:4c:59:70:c5:1d:34:92:63: ee:d9:72:27:37:6f:ef:cf:f3:c6:cf:af:6d:dd:2f: eb:2a:9b:a9:b9:ce:56:cf:d3:0b:83:8a:34:32:73: 60:dd:81:d4:ba:b6:c2:70:25:88:f9:95:5c:6a:fe: 09:33:44:89:c6:bf:7d:20:9a:eb:ab:01:a6:7f:cb: 52:84:4c:a6:e9:8c:08:af:d3:00:54:53:2a:9c:1c: 7d:66:9a:c4:03:cd:ef:14:4d:f9:a7:d1:52:99:85: b5:80:e5:70:07:ae:78:14:12:62:e7:52:bc:74:99: 5f:42:58:9d:fa:e4:c0:0c:62:7c:24:71:48:51:29: a7:f5:19:c0:26:ee:bb:13:ee:12:00:5e:3a:f1:c5: 3f:79:d9:58:6d:10:f1:ad:3f:67:a2:d2:c9:f1:d4: 1a:40:86:33:01:2b:b3:18:03:b3:b7:51:03:6b:2f: b7:3d:a7:6d:be:9a:af:68:4c:1d:7a:fa:ba:52:04: 2e:59:37:b6:18:e6:d9:a8:d8:d1:19:de:e1:7e:7c: 33:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:F3:25:53:24:E8:A4:B5:5A:14:3D:19:28:F0:69:61:F1:DA:EA:D2 X509v3 Authority Key Identifier: keyid:09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/34352e39302e3232322e302f32342d3234203d3e20313437303439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.90.222.0/24 Signature Algorithm: sha256WithRSAEncryption 66:2c:6e:d8:7d:a9:6c:c4:e8:07:61:b7:54:39:ae:84:70:9b: ea:5a:2b:11:d3:da:c1:a3:22:91:d4:03:ca:6f:6c:07:9d:e3: 1b:a3:61:71:dd:86:f8:aa:0c:b8:bd:42:d7:79:12:e3:e4:51: 99:bd:8a:1f:3a:06:6d:80:f4:a2:b1:00:68:10:da:bf:8f:04: 7d:23:72:f4:39:6c:2a:ca:d7:69:af:fc:ec:c1:18:22:13:c6: d8:4c:e1:ac:f3:c8:12:98:40:3d:b0:85:89:10:64:fd:69:c1: 8c:31:cd:1f:bd:7a:8f:12:f6:84:d0:ad:4c:69:08:93:1e:73: dd:05:6b:4e:26:dd:a6:18:46:60:69:a5:4c:02:ca:34:68:8d: 1e:07:36:19:e9:b7:9f:2f:ae:be:8e:2c:c8:a8:b4:dd:a7:c6: 1e:3e:ba:35:f3:5b:c4:63:ad:2e:f0:08:e7:e2:53:21:64:0e: a0:d9:6b:b9:31:33:2f:9c:f3:37:58:4f:c4:51:42:af:98:76: 40:5a:5b:5d:5f:53:5a:28:a1:fa:50:52:39:55:58:b1:92:d1: 17:47:31:6f:2c:ee:41:0a:fc:97:8f:40:73:75:76:ce:dc:2f: 8c:df:ec:c0:26:13:63:0c:5a:04:29:b8:1a:e2:8b:19:95:c3: 68:f4:cd:16 -----BEGIN CERTIFICATE----- MIIFODCCBCCgAwIBAgIUHVghvqmX91gOo6fj0gL3jg/Q3NUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDk3YTI4Zjc3ZWIwYTRhYzM1NGE4YWMyODc1NGIyYTNi YmUzYTk1OTAeFw0yNTExMjgxMTQ0MjlaFw0yNjExMjcxMTQ5MjlaMDMxMTAvBgNV BAMTKERCRjMyNTUzMjRFOEE0QjU1QTE0M0QxOTI4RjA2OTYxRjFEQUVBRDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzPgPAduozG/LD+qv5N/LM2PSt /59GDKPiGSfXrAaznRTug72ZJb8CjnGktkrnNE41q6NMWXDFHTSSY+7Zcic3b+/P 88bPr23dL+sqm6m5zlbP0wuDijQyc2DdgdS6tsJwJYj5lVxq/gkzRInGv30gmuur AaZ/y1KETKbpjAiv0wBUUyqcHH1mmsQDze8UTfmn0VKZhbWA5XAHrngUEmLnUrx0 mV9CWJ365MAMYnwkcUhRKaf1GcAm7rsT7hIAXjrxxT952VhtEPGtP2ei0snx1BpA hjMBK7MYA7O3UQNrL7c9p22+mq9oTB16+rpSBC5ZN7YY5tmo2NEZ3uF+fDNHAgMB AAGjggJCMIICPjAdBgNVHQ4EFgQU2/MlUyTopLVaFD0ZKPBpYfHa6tIwHwYDVR0j BBgwFoAUCXoo936wpKw1SorCh1Syo7vjqVkwDgYDVR0PAQH/BAQDAgeAMIGYBgNV HR8EgZAwgY0wgYqggYeggYSGgYFyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5L2ZlMzcwOGEwLTY3ZDUtNGFjMi1hYmM0LWEzMzI1OTBi OTlhZi8xNzcvMDk3QTI4Rjc3RUIwQTRBQzM1NEE4QUMyODc1NEIyQTNCQkUzQTk1 OS5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2ku cmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0NYb285MzZ3cEt3MVNvckNoMVN5 bzd2anFWay5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3Jz eW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4 YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzE3Ny8zNDM1MmUzOTMwMmUz MjMyMzIyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMTM0MzczMDM0Mzkucm9hMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAtWt4wDQYJKoZIhvcNAQELBQADggEBAGYsbth9qWzE6Adht1Q5roRwm+pa KxHT2sGjIpHUA8pvbAed4xujYXHdhviqDLi9Qtd5EuPkUZm9ih86Bm2A9KKxAGgQ 2r+PBH0jcvQ5bCrK12mv/OzBGCITxthM4azzyBKYQD2whYkQZP1pwYwxzR+9eo8S 9oTQrUxpCJMec90Fa04m3aYYRmBppUwCyjRojR4HNhnpt58vrr6OLMiotN2nxh4+ ujXzW8RjrS7wCOfiUyFkDqDZa7kxMy+c8zdYT8RRQq+YdkBaW11fU1ooofpQUjlV WLGS0RdHMW8s7kEK/JePQHN1ds7cL4zf7MAmE2MMWgQpuBriixmVw2j0zRY= -----END CERTIFICATE-----Generated at Fri Dec 5 11:34:19 2025 by rpki-client