This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3137362e35332e3137372e302f32342d3234203d3e20313336373837.roa File: 3137362e35332e3137372e302f32342d3234203d3e20313336373837.roa (raw, json) Hash identifier: waBDZxm6jzv1BeQ5ACU9+uP/Vm9sgPMaSm3JxQTP+Ng= Subject key identifier: 9F:70:05:BF:8C:C7:62:F0:0D:A5:15:5F:11:CA:22:B6:C6:84:E0:9E Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Certificate serial: 020D1DD64317FE0D860630DE890C2B2C20C7D606 Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3137362e35332e3137372e302f32342d3234203d3e20313336373837.roa Signing time: Fri 28 Nov 2025 19:49:59 +0000 ROA not before: Fri 28 Nov 2025 19:44:59 +0000 ROA not after: Fri 27 Nov 2026 19:49:59 +0000 asID: 136787 IP address blocks: 176.53.177.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 05 Dec 2025 21:22:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:0d:1d:d6:43:17:fe:0d:86:06:30:de:89:0c:2b:2c:20:c7:d6:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Validity Not Before: Nov 28 19:44:59 2025 GMT Not After : Nov 27 19:49:59 2026 GMT Subject: CN=9F7005BF8CC762F00DA5155F11CA22B6C684E09E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:3d:42:ad:63:bb:a6:79:c3:bd:07:b1:9d:fe: ee:4f:f9:b5:42:7a:20:b0:16:b0:73:66:4e:42:de: 04:63:f0:2a:76:81:65:d9:16:4b:60:44:ce:33:ee: 1a:a7:2a:40:33:33:26:4d:d3:a2:6d:24:b7:a6:b3: 7d:3c:19:61:6a:9b:cd:e3:a7:6f:77:01:19:b0:a5: 70:35:38:f8:18:ef:5e:6d:07:49:a9:b6:25:3e:19: 7c:75:db:84:e7:c1:62:01:19:fc:cd:da:21:6b:25: e9:7e:56:ee:4f:7f:01:d1:9a:c8:43:9a:56:7d:a7: e4:89:23:c4:55:bf:de:7d:9c:db:c3:73:36:bd:28: 92:f9:41:d9:96:69:0d:c5:4f:e4:16:3d:4f:8f:1f: 9b:93:dc:2b:11:14:4f:c6:c4:f3:2a:b5:b0:83:2a: 5d:ad:ee:22:8e:ae:d2:4e:4b:23:f7:91:90:f6:37: fc:83:25:8e:52:0a:19:64:e9:54:83:16:66:d2:99: 41:30:1d:f6:ba:9d:3c:7b:a7:7b:35:2f:83:c5:37: 2f:49:aa:6d:d4:3a:8c:a9:53:0d:e2:0c:4a:d7:d8: 75:2a:6b:34:73:e9:e7:7f:37:65:2b:6a:6a:7b:eb: 0b:62:d5:fe:1f:e0:9b:c5:26:00:a4:02:0b:96:8c: eb:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:70:05:BF:8C:C7:62:F0:0D:A5:15:5F:11:CA:22:B6:C6:84:E0:9E X509v3 Authority Key Identifier: keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3137362e35332e3137372e302f32342d3234203d3e20313336373837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 176.53.177.0/24 Signature Algorithm: sha256WithRSAEncryption 57:11:06:36:d4:dc:7e:82:ad:d4:7f:33:9a:6c:db:94:76:0c: 81:90:d5:a4:ad:f5:3e:91:b2:4d:3c:23:c1:1a:70:65:fc:5d: 66:e4:3e:02:d5:8c:64:2f:93:9d:43:e5:4e:5d:a9:ab:46:d5: df:9d:f4:19:17:44:60:84:d5:8d:ce:c6:fa:33:77:ba:09:59: e7:c7:4d:25:d2:37:90:9d:07:f3:2e:0d:83:2b:0a:4c:aa:06: e8:d0:df:41:79:97:d5:ae:e7:2f:c6:de:f5:f0:6a:d8:3c:85: 1f:56:8c:99:e9:fe:ad:a8:d6:3b:07:29:a5:39:8f:32:b9:da: 6d:5c:7e:77:07:73:5f:54:1b:7d:6a:25:6d:aa:32:87:98:e5: 2b:57:96:2b:33:5a:cd:4c:c8:71:44:d6:28:fe:ac:ad:67:9b: 31:46:10:04:94:cb:8e:a9:4b:be:3a:16:ed:32:2e:58:c2:16: 4c:4b:d9:5d:00:8d:66:4d:3b:e3:49:6a:86:27:cf:41:4e:14: 8b:b5:cf:73:07:fd:08:56:f8:33:c0:62:cf:09:33:aa:db:81: 02:48:dd:3b:bd:be:8f:ef:8d:a5:8a:c3:80:0c:b0:9b:a2:7c: 8f:32:38:14:ec:46:da:54:4a:c5:12:30:61:c7:e2:1d:fe:7b: b7:2c:d8:97 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUAg0d1kMX/g2GBjDeiQwrLCDH1gYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0 ZWE3Nzc5YzAeFw0yNTExMjgxOTQ0NTlaFw0yNjExMjcxOTQ5NTlaMDMxMTAvBgNV BAMTKDlGNzAwNUJGOENDNzYyRjAwREE1MTU1RjExQ0EyMkI2QzY4NEUwOUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3PUKtY7umecO9B7Gd/u5P+bVC eiCwFrBzZk5C3gRj8Cp2gWXZFktgRM4z7hqnKkAzMyZN06JtJLems308GWFqm83j p293ARmwpXA1OPgY715tB0mptiU+GXx124TnwWIBGfzN2iFrJel+Vu5PfwHRmshD mlZ9p+SJI8RVv959nNvDcza9KJL5QdmWaQ3FT+QWPU+PH5uT3CsRFE/GxPMqtbCD Kl2t7iKOrtJOSyP3kZD2N/yDJY5SChlk6VSDFmbSmUEwHfa6nTx7p3s1L4PFNy9J qm3UOoypUw3iDErX2HUqazRz6ed/N2Uramp76wti1f4f4JvFJgCkAguWjOv7AgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUn3AFv4zHYvANpRVfEcoitsaE4J4wHwYDVR0j BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2 bmQ1dy5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzEzNzM2MmUzNTMzMmUzMTM3 MzcyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMTMzMzYzNzM4Mzcucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BACwNbEwDQYJKoZIhvcNAQELBQADggEBAFcRBjbU3H6CrdR/M5ps25R2DIGQ1aSt 9T6Rsk08I8EacGX8XWbkPgLVjGQvk51D5U5dqatG1d+d9BkXRGCE1Y3Oxvozd7oJ WefHTSXSN5CdB/MuDYMrCkyqBujQ30F5l9Wu5y/G3vXwatg8hR9WjJnp/q2o1jsH KaU5jzK52m1cfncHc19UG31qJW2qMoeY5StXliszWs1MyHFE1ij+rK1nmzFGEASU y46pS746Fu0yLljCFkxL2V0AjWZNO+NJaoYnz0FOFIu1z3MH/QhW+DPAYs8JM6rb gQJI3Tu9vo/vjaWKw4AMsJuifI8yOBTsRtpUSsUSMGHH4h3+e7cs2Jc= -----END CERTIFICATE-----Generated at Fri Dec 5 05:38:48 2025 by rpki-client