This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/38332e39372e3131342e302f32342d3234203d3e20323039383534.roa File: 38332e39372e3131342e302f32342d3234203d3e20323039383534.roa (raw, json) Hash identifier: 0TkBZfJRrlZqKpx1BsbnFLuRgtqg7TTcY3o9ZcwrDwo= Subject key identifier: 56:C1:44:6C:62:D3:47:EA:CE:F8:14:19:89:67:4F:57:CE:53:CD:F0 Certificate issuer: /CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959 Certificate serial: 0542D8E528535DCE3E249896E1F1F18BEFC29991 Authority key identifier: 09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/38332e39372e3131342e302f32342d3234203d3e20323039383534.roa Signing time: Fri 28 Nov 2025 11:49:17 +0000 ROA not before: Fri 28 Nov 2025 11:44:17 +0000 ROA not after: Fri 27 Nov 2026 11:49:17 +0000 asID: 209854 IP address blocks: 83.97.114.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.mft rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 02:38:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:42:d8:e5:28:53:5d:ce:3e:24:98:96:e1:f1:f1:8b:ef:c2:99:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959 Validity Not Before: Nov 28 11:44:17 2025 GMT Not After : Nov 27 11:49:17 2026 GMT Subject: CN=56C1446C62D347EACEF8141989674F57CE53CDF0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:57:44:14:eb:26:63:62:16:cc:d8:8b:9d:1b: ab:97:6d:ea:13:76:1d:cc:35:cb:9e:a3:ab:8e:ed: 14:39:fe:65:14:84:63:a4:d7:08:62:59:37:8c:d8: eb:38:8a:b1:3b:0a:fa:19:5e:78:5d:d1:8e:87:61: bf:fa:41:d6:c7:06:e9:c8:43:37:e4:26:98:a2:f2: e4:d1:ea:39:d6:5a:cf:ef:9c:a7:e8:4e:3b:a2:eb: b3:c8:0a:4a:6a:b6:46:10:5e:bd:07:56:47:fb:51: b1:fe:13:01:2b:0d:97:a7:ec:b2:20:59:8e:04:60: a5:f6:bf:84:a6:d3:4d:c2:74:fb:fe:5f:2a:f1:ca: 9e:ad:41:f0:45:2e:d0:4f:75:45:2e:a2:ea:57:e1: d9:c0:77:b0:34:d4:19:d2:b3:94:b7:2a:14:a9:db: 97:47:00:8f:33:c9:0a:13:9a:e6:3b:0d:3e:09:f6: b3:36:7f:22:2b:50:3b:93:6f:44:9b:e6:db:a2:0b: e3:82:9c:16:b5:de:aa:6f:77:c6:67:c1:ec:f1:7f: 1c:ed:4e:23:7d:79:d9:67:66:aa:1b:62:b2:f1:64: 49:43:57:01:8c:24:e1:6a:77:66:e5:15:a3:d5:5b: 8f:72:e9:20:8c:c1:8d:32:3d:9e:da:bc:5b:7d:b0: 9c:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:C1:44:6C:62:D3:47:EA:CE:F8:14:19:89:67:4F:57:CE:53:CD:F0 X509v3 Authority Key Identifier: keyid:09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/38332e39372e3131342e302f32342d3234203d3e20323039383534.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 83.97.114.0/24 Signature Algorithm: sha256WithRSAEncryption 80:b3:23:d0:63:57:bb:32:3c:1f:87:e9:c5:21:a0:b9:01:df: 57:87:f4:69:96:f1:60:cc:fb:ec:d8:b5:49:1d:31:66:f5:f6: 83:94:89:90:43:e9:07:fd:fa:1e:29:82:28:e0:b4:f8:46:52: 27:09:ab:2b:bd:4c:b8:dd:26:06:00:d0:d8:0d:e7:a0:3a:bc: 08:d6:c1:01:33:10:88:1c:88:47:19:46:2c:e6:a9:f0:69:b8: f1:fb:c0:c4:73:2b:a7:9a:85:d0:2e:51:96:17:28:80:3f:13: f6:04:74:2c:b7:bf:81:e7:1f:66:61:33:ae:3a:ce:f3:2d:b2: 5b:15:b1:53:a6:dc:e0:6e:d4:2c:65:d5:62:9f:3d:46:ce:52: d8:ef:22:d7:86:c2:b8:dd:50:09:34:f1:c3:31:83:fb:cd:bf: 01:ac:f9:45:53:bc:93:f5:35:25:92:87:b6:92:ea:dd:0b:ec: e4:39:69:10:ab:98:e5:3f:be:d5:94:34:79:a5:29:b6:bf:c5: e2:41:e2:12:ac:45:64:1a:4a:bd:35:ae:e0:09:f5:bd:45:e2: 5e:07:d9:21:4f:aa:48:b3:cd:4d:1e:17:e0:ab:eb:e7:d7:1e: fc:6f:bc:96:81:cc:49:a0:a1:ae:62:88:c6:8c:48:0b:fe:5a: fb:e7:58:ae -----BEGIN CERTIFICATE----- MIIFODCCBCCgAwIBAgIUBULY5ShTXc4+JJiW4fHxi+/CmZEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDk3YTI4Zjc3ZWIwYTRhYzM1NGE4YWMyODc1NGIyYTNi YmUzYTk1OTAeFw0yNTExMjgxMTQ0MTdaFw0yNjExMjcxMTQ5MTdaMDMxMTAvBgNV BAMTKDU2QzE0NDZDNjJEMzQ3RUFDRUY4MTQxOTg5Njc0RjU3Q0U1M0NERjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHV0QU6yZjYhbM2IudG6uXbeoT dh3MNcueo6uO7RQ5/mUUhGOk1whiWTeM2Os4irE7CvoZXnhd0Y6HYb/6QdbHBunI QzfkJpii8uTR6jnWWs/vnKfoTjui67PICkpqtkYQXr0HVkf7UbH+EwErDZen7LIg WY4EYKX2v4Sm003CdPv+Xyrxyp6tQfBFLtBPdUUuoupX4dnAd7A01BnSs5S3KhSp 25dHAI8zyQoTmuY7DT4J9rM2fyIrUDuTb0Sb5tuiC+OCnBa13qpvd8Znwezxfxzt TiN9edlnZqobYrLxZElDVwGMJOFqd2blFaPVW49y6SCMwY0yPZ7avFt9sJyZAgMB AAGjggJCMIICPjAdBgNVHQ4EFgQUVsFEbGLTR+rO+BQZiWdPV85TzfAwHwYDVR0j BBgwFoAUCXoo936wpKw1SorCh1Syo7vjqVkwDgYDVR0PAQH/BAQDAgeAMIGYBgNV HR8EgZAwgY0wgYqggYeggYSGgYFyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5L2ZlMzcwOGEwLTY3ZDUtNGFjMi1hYmM0LWEzMzI1OTBi OTlhZi8xNzcvMDk3QTI4Rjc3RUIwQTRBQzM1NEE4QUMyODc1NEIyQTNCQkUzQTk1 OS5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2ku cmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0NYb285MzZ3cEt3MVNvckNoMVN5 bzd2anFWay5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3Jz eW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4 YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzE3Ny8zODMzMmUzOTM3MmUz MTMxMzQyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMjMwMzkzODM1MzQucm9hMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABTYXIwDQYJKoZIhvcNAQELBQADggEBAICzI9BjV7syPB+H6cUhoLkB31eH 9GmW8WDM++zYtUkdMWb19oOUiZBD6Qf9+h4pgijgtPhGUicJqyu9TLjdJgYA0NgN 56A6vAjWwQEzEIgciEcZRizmqfBpuPH7wMRzK6eahdAuUZYXKIA/E/YEdCy3v4Hn H2ZhM646zvMtslsVsVOm3OBu1Cxl1WKfPUbOUtjvIteGwrjdUAk08cMxg/vNvwGs +UVTvJP1NSWSh7aS6t0L7OQ5aRCrmOU/vtWUNHmlKba/xeJB4hKsRWQaSr01ruAJ 9b1F4l4H2SFPqkizzU0eF+Cr6+fXHvxvvJaBzEmgoa5iiMaMSAv+WvvnWK4= -----END CERTIFICATE-----Generated at Fri Dec 5 15:01:33 2025 by rpki-client