This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3134372e39332e34382e302f32312d3234203d3e203437353833.roa File: 3134372e39332e34382e302f32312d3234203d3e203437353833.roa (raw, json) Hash identifier: CJhdiakBrFknQXuvKM9LYw0YY5JIy5+5HYpN56lSQ2c= Subject key identifier: EB:C1:D6:28:EC:2F:6A:EE:74:AE:3A:7B:34:7D:73:87:CE:3A:BC:D8 Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Certificate serial: 7C3196E0712B01CB47C6EBBB8AA9866FF87FC606 Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3134372e39332e34382e302f32312d3234203d3e203437353833.roa Signing time: Wed 12 Nov 2025 16:48:49 +0000 ROA not before: Wed 12 Nov 2025 16:43:49 +0000 ROA not after: Wed 11 Nov 2026 16:48:49 +0000 asID: 47583 IP address blocks: 147.93.48.0/21 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 05 Dec 2025 21:22:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:31:96:e0:71:2b:01:cb:47:c6:eb:bb:8a:a9:86:6f:f8:7f:c6:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Validity Not Before: Nov 12 16:43:49 2025 GMT Not After : Nov 11 16:48:49 2026 GMT Subject: CN=EBC1D628EC2F6AEE74AE3A7B347D7387CE3ABCD8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:14:ef:73:62:87:c1:2a:18:f4:aa:43:37:cc: 78:4c:45:24:27:da:2f:64:43:11:a5:97:94:3d:10: 7b:9f:89:75:f9:63:31:cb:64:a1:aa:86:01:de:82: 27:76:14:91:74:7b:43:69:ac:b6:59:c6:fd:b1:43: ae:4b:4e:ab:7b:30:b5:8f:36:5f:d3:33:47:2f:a7: bd:8c:53:5a:46:68:d4:0b:b9:e9:5b:c9:d5:ae:d2: e3:df:33:b6:fc:da:fc:6b:5c:54:be:98:46:cf:1a: e4:00:50:6c:89:e0:38:d4:90:4c:47:0a:29:df:1a: 97:18:c5:5a:73:5c:0d:fb:25:5a:2b:a4:fd:21:1e: ad:13:a8:94:d3:29:6c:87:cf:c1:6c:f1:9a:a3:93: 49:71:9e:80:08:b2:ae:15:d2:27:e4:fc:2c:4f:22: ef:39:2c:49:ab:9d:56:9b:b6:41:42:73:a1:95:a7: b2:b3:84:9f:d0:cf:5f:91:9c:ab:d2:5e:86:59:40: 87:5c:eb:09:5c:9e:61:f4:7d:75:ad:4f:c2:46:23: c1:95:64:ef:d7:b8:19:7a:51:c5:1f:ce:55:c6:05: 57:9d:67:9b:05:b5:55:20:c4:93:9e:93:7c:3e:32: ed:ec:6b:e7:09:22:23:4c:f7:53:2f:68:77:f3:f8: 3c:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:C1:D6:28:EC:2F:6A:EE:74:AE:3A:7B:34:7D:73:87:CE:3A:BC:D8 X509v3 Authority Key Identifier: keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3134372e39332e34382e302f32312d3234203d3e203437353833.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 147.93.48.0/21 Signature Algorithm: sha256WithRSAEncryption 7c:3b:aa:ed:6d:24:4e:0c:91:fe:47:91:5e:82:c9:e1:cc:7d: c6:69:2d:d4:2d:6c:96:98:77:dc:01:2b:63:ce:92:44:12:15: ab:29:2d:fe:7c:84:44:b4:0f:16:d2:42:c6:1a:41:0a:e1:6c: cf:d3:d2:98:d7:4e:b2:b3:f1:1e:04:6e:b7:44:c1:e7:7e:c7: a6:c8:22:df:8e:ef:c6:88:4c:29:96:26:6b:f3:02:bc:f7:b9: f7:7a:eb:62:95:56:e0:c9:96:f7:aa:b9:91:60:01:d3:2d:c2: 0d:8b:44:d2:0e:ab:d0:00:a6:b8:b7:9e:67:ea:2d:49:3c:90: 7e:61:34:bf:01:4d:4a:34:22:36:bb:56:d2:11:09:57:b0:72: 93:e3:64:3a:ba:ce:47:7c:3f:18:f8:3b:c8:1b:52:e7:5f:af: 73:d6:5d:d1:85:9d:2f:68:c6:1b:ff:fb:c2:82:96:96:e8:bf: 00:81:a8:b0:44:b5:21:6e:9e:73:73:16:17:64:8c:2d:ff:3d: 47:83:c7:f8:b5:ed:4b:31:41:a2:6a:0d:20:5c:f5:11:fe:90: 33:9a:07:21:1a:fd:52:fd:72:fc:aa:47:84:02:44:54:7f:2c: e9:0c:c4:e3:01:57:d7:a2:a8:a5:5a:1f:e8:df:f4:9d:01:0e: be:1f:88:15 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUfDGW4HErActHxuu7iqmGb/h/xgYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0 ZWE3Nzc5YzAeFw0yNTExMTIxNjQzNDlaFw0yNjExMTExNjQ4NDlaMDMxMTAvBgNV BAMTKEVCQzFENjI4RUMyRjZBRUU3NEFFM0E3QjM0N0Q3Mzg3Q0UzQUJDRDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8FO9zYofBKhj0qkM3zHhMRSQn 2i9kQxGll5Q9EHufiXX5YzHLZKGqhgHegid2FJF0e0NprLZZxv2xQ65LTqt7MLWP Nl/TM0cvp72MU1pGaNQLuelbydWu0uPfM7b82vxrXFS+mEbPGuQAUGyJ4DjUkExH CinfGpcYxVpzXA37JVorpP0hHq0TqJTTKWyHz8Fs8Zqjk0lxnoAIsq4V0ifk/CxP Iu85LEmrnVabtkFCc6GVp7KzhJ/Qz1+RnKvSXoZZQIdc6wlcnmH0fXWtT8JGI8GV ZO/XuBl6UcUfzlXGBVedZ5sFtVUgxJOek3w+Mu3sa+cJIiNM91MvaHfz+DzPAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQU68HWKOwvau50rjp7NH1zh846vNgwHwYDVR0j BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2 bmQ1dy5jZXIwgasGCCsGAQUFBwELBIGeMIGbMIGYBggrBgEFBQcwC4aBi3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzEzNDM3MmUzOTMzMmUzNDM4 MmUzMDJmMzIzMTJkMzIzNDIwM2QzZTIwMzQzNzM1MzgzMy5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA5Nd MDANBgkqhkiG9w0BAQsFAAOCAQEAfDuq7W0kTgyR/keRXoLJ4cx9xmkt1C1slph3 3AErY86SRBIVqykt/nyERLQPFtJCxhpBCuFsz9PSmNdOsrPxHgRut0TB537Hpsgi 347vxohMKZYma/MCvPe593rrYpVW4MmW96q5kWAB0y3CDYtE0g6r0ACmuLeeZ+ot STyQfmE0vwFNSjQiNrtW0hEJV7Byk+NkOrrOR3w/GPg7yBtS51+vc9Zd0YWdL2jG G//7woKWlui/AIGosES1IW6ec3MWF2SMLf89R4PH+LXtSzFBomoNIFz1Ef6QM5oH IRr9Uv1y/KpHhAJEVH8s6QzE4wFX16KopVof6N/0nQEOvh+IFQ== -----END CERTIFICATE-----Generated at Fri Dec 5 06:23:34 2025 by rpki-client