This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/38332e3137312e3230312e302f32342d3234203d3e20323033303631.roa File: 38332e3137312e3230312e302f32342d3234203d3e20323033303631.roa (raw, json) Hash identifier: U2FFCIrSGkHpv2hG/YTUqXHh5iBAjPVKsqGFlEfOkyc= Subject key identifier: 94:1F:C2:9B:A5:6C:87:8F:F4:F6:49:85:10:E3:EA:6E:64:F3:DE:23 Certificate issuer: /CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959 Certificate serial: 67638315D50AFF9D20B8CE88A2EE4CDBB71CB25A Authority key identifier: 09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/38332e3137312e3230312e302f32342d3234203d3e20323033303631.roa Signing time: Fri 28 Nov 2025 11:49:36 +0000 ROA not before: Fri 28 Nov 2025 11:44:36 +0000 ROA not after: Fri 27 Nov 2026 11:49:36 +0000 asID: 203061 IP address blocks: 83.171.201.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.mft rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 08:24:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:63:83:15:d5:0a:ff:9d:20:b8:ce:88:a2:ee:4c:db:b7:1c:b2:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959 Validity Not Before: Nov 28 11:44:36 2025 GMT Not After : Nov 27 11:49:36 2026 GMT Subject: CN=941FC29BA56C878FF4F6498510E3EA6E64F3DE23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:ea:97:3c:b9:07:39:1e:6c:c5:f1:3c:a7:49: f7:ed:48:58:2d:57:18:a3:8b:0e:61:1f:da:f5:c7: bc:ba:8f:28:39:00:ad:1a:3d:8d:72:d5:90:23:f1: d5:08:18:b6:f6:bb:f1:3f:14:1a:38:e9:a4:b9:6e: 26:51:1e:85:ca:2b:58:16:e6:f5:9d:4b:48:e0:fd: a0:18:0f:d7:f0:c0:de:6f:d0:6b:b0:79:01:d2:38: e1:10:b3:b5:14:a7:75:c6:47:83:98:85:44:33:5e: 14:22:24:2a:6e:96:e0:d8:ab:c4:61:2b:0d:fc:62: 1a:51:c6:ff:ad:83:4c:58:b3:9e:25:7c:79:90:21: 66:19:2b:51:92:90:ad:ab:be:63:b2:4d:5d:3e:61: 88:c2:55:94:78:68:88:43:1b:52:3b:6a:85:f5:93: 76:2b:f1:1c:18:e5:91:55:af:95:0d:f7:6e:28:fd: 0a:5e:bf:96:ff:f6:a6:f9:d6:d3:7b:17:ff:23:86: 9e:b1:40:79:dd:4b:4c:0e:4f:72:f8:09:be:68:98: 7d:b1:88:58:79:4e:92:33:1b:af:9c:47:cb:be:68: b8:de:a9:24:9b:3d:ef:dc:dd:12:fd:28:df:1c:05: 1f:62:9f:73:9e:b5:f9:bc:df:ae:90:43:3d:65:bc: 52:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:1F:C2:9B:A5:6C:87:8F:F4:F6:49:85:10:E3:EA:6E:64:F3:DE:23 X509v3 Authority Key Identifier: keyid:09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/38332e3137312e3230312e302f32342d3234203d3e20323033303631.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 83.171.201.0/24 Signature Algorithm: sha256WithRSAEncryption 6e:fd:aa:71:32:31:8c:f5:63:16:4a:ea:16:0f:f1:a9:c8:77: ad:88:a0:15:fc:26:0b:85:bf:84:9a:1f:f8:84:6d:ff:92:ee: b5:3b:9a:93:8a:18:ec:3b:d0:ed:35:cc:af:16:52:7e:62:6d: 6f:1a:69:a5:17:5e:26:76:54:49:f7:f4:41:f1:5c:ed:58:14: bd:02:9c:98:48:f3:1b:83:31:e6:81:25:e1:ab:3f:f4:e1:34: 02:13:df:7d:3c:45:d1:37:6c:83:48:59:2e:06:86:d5:82:8a: 15:ee:52:92:63:0d:60:69:95:b7:d9:4d:c0:29:cc:07:ae:8f: a7:e5:75:2d:91:ad:31:77:54:f8:aa:66:e6:2b:4c:26:1e:6d: 2c:f1:24:2b:ad:a3:cd:01:c5:fb:5a:4b:2f:2a:0d:fc:31:26: b4:e4:4d:3c:aa:5b:04:72:75:e9:ac:13:70:98:55:64:2d:62: 58:c3:05:5d:05:e7:60:50:0a:d4:73:ef:65:78:3f:ca:05:98: 7f:be:c1:f6:46:bf:d5:38:a2:25:9f:ec:5e:f4:b6:d9:4d:08: 2a:28:38:3f:d5:f9:f4:73:95:7f:e8:aa:39:30:34:f4:0c:cf: 16:2a:36:6e:a9:c0:92:e7:09:6f:35:f2:6e:41:14:85:05:c9: 6d:1e:f6:3b -----BEGIN CERTIFICATE----- MIIFOjCCBCKgAwIBAgIUZ2ODFdUK/50guM6Iou5M27ccslowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDk3YTI4Zjc3ZWIwYTRhYzM1NGE4YWMyODc1NGIyYTNi YmUzYTk1OTAeFw0yNTExMjgxMTQ0MzZaFw0yNjExMjcxMTQ5MzZaMDMxMTAvBgNV BAMTKDk0MUZDMjlCQTU2Qzg3OEZGNEY2NDk4NTEwRTNFQTZFNjRGM0RFMjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCk6pc8uQc5HmzF8TynSfftSFgt Vxijiw5hH9r1x7y6jyg5AK0aPY1y1ZAj8dUIGLb2u/E/FBo46aS5biZRHoXKK1gW 5vWdS0jg/aAYD9fwwN5v0GuweQHSOOEQs7UUp3XGR4OYhUQzXhQiJCpuluDYq8Rh Kw38YhpRxv+tg0xYs54lfHmQIWYZK1GSkK2rvmOyTV0+YYjCVZR4aIhDG1I7aoX1 k3Yr8RwY5ZFVr5UN924o/Qpev5b/9qb51tN7F/8jhp6xQHndS0wOT3L4Cb5omH2x iFh5TpIzG6+cR8u+aLjeqSSbPe/c3RL9KN8cBR9in3Oetfm8366QQz1lvFI5AgMB AAGjggJEMIICQDAdBgNVHQ4EFgQUlB/Cm6Vsh4/09kmFEOPqbmTz3iMwHwYDVR0j BBgwFoAUCXoo936wpKw1SorCh1Syo7vjqVkwDgYDVR0PAQH/BAQDAgeAMIGYBgNV HR8EgZAwgY0wgYqggYeggYSGgYFyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5L2ZlMzcwOGEwLTY3ZDUtNGFjMi1hYmM0LWEzMzI1OTBi OTlhZi8xNzcvMDk3QTI4Rjc3RUIwQTRBQzM1NEE4QUMyODc1NEIyQTNCQkUzQTk1 OS5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2ku cmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0NYb285MzZ3cEt3MVNvckNoMVN5 bzd2anFWay5jZXIwgbEGCCsGAQUFBwELBIGkMIGhMIGeBggrBgEFBQcwC4aBkXJz eW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4 YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzE3Ny8zODMzMmUzMTM3MzEy ZTMyMzAzMTJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMyMzAzMzMwMzYzMS5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAFOryTANBgkqhkiG9w0BAQsFAAOCAQEAbv2qcTIxjPVjFkrqFg/xqch3 rYigFfwmC4W/hJof+IRt/5LutTuak4oY7DvQ7TXMrxZSfmJtbxpppRdeJnZUSff0 QfFc7VgUvQKcmEjzG4Mx5oEl4as/9OE0AhPffTxF0Tdsg0hZLgaG1YKKFe5SkmMN YGmVt9lNwCnMB66Pp+V1LZGtMXdU+Kpm5itMJh5tLPEkK62jzQHF+1pLLyoN/DEm tORNPKpbBHJ16awTcJhVZC1iWMMFXQXnYFAK1HPvZXg/ygWYf77B9ka/1TiiJZ/s XvS22U0IKig4P9X59HOVf+iqOTA09AzPFio2bqnAkucJbzXybkEUhQXJbR72Ow== -----END CERTIFICATE-----Generated at Sat Dec 6 19:04:09 2025 by rpki-client