This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3138342e3138392e302f32342d3234203d3e20313336373837.roa File: 3138352e3138342e3138392e302f32342d3234203d3e20313336373837.roa (raw, json) Hash identifier: 9Cb+0XLvoZpB0KEhaPJLPL06hxLf5KjqOdSsSiz3eTo= Subject key identifier: F0:7F:9A:FF:58:75:D1:48:2F:5B:4A:9A:2A:F9:46:F7:1C:13:15:B8 Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Certificate serial: 62A39469F023C5DC0223219CD26AFA9100C06E74 Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3138342e3138392e302f32342d3234203d3e20313336373837.roa Signing time: Sun 16 Nov 2025 18:48:52 +0000 ROA not before: Sun 16 Nov 2025 18:43:52 +0000 ROA not after: Sun 15 Nov 2026 18:48:52 +0000 asID: 136787 IP address blocks: 185.184.189.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 05 Dec 2025 21:22:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:a3:94:69:f0:23:c5:dc:02:23:21:9c:d2:6a:fa:91:00:c0:6e:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Validity Not Before: Nov 16 18:43:52 2025 GMT Not After : Nov 15 18:48:52 2026 GMT Subject: CN=F07F9AFF5875D1482F5B4A9A2AF946F71C1315B8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:de:57:5d:c1:5a:24:2e:99:92:cb:d5:68:54: ec:3a:99:af:47:63:1d:22:69:3a:ab:9e:49:ed:b2: 73:91:13:1f:f1:a3:8e:09:ae:5b:47:00:1e:01:0d: 82:b7:ac:5a:0a:65:83:f5:9e:ab:72:11:03:95:e2: bf:ba:5b:aa:2e:c9:37:7c:52:ba:b7:8a:ce:2f:b6: ac:de:2b:76:8a:11:2a:d1:ea:54:57:e9:fb:22:a2: 92:d2:ab:58:18:e5:51:5a:d9:6c:c5:bb:11:88:da: 48:17:f6:a1:34:ba:36:d9:2b:a1:f8:c0:98:ae:83: 88:bc:99:38:89:b4:ee:10:78:9e:da:46:26:db:55: 19:19:20:1e:ed:6e:80:94:53:9c:98:0d:11:86:95: a2:b7:05:09:65:f3:62:c3:8d:c2:b1:a7:f5:3a:7a: 70:f8:df:f9:72:5a:a5:f7:48:ee:53:75:3a:67:d7: 39:d0:e9:e0:b5:fe:d9:34:f2:07:b4:f8:64:cc:06: f4:eb:3a:58:33:ff:15:8c:e4:5b:ae:07:6e:31:ea: 34:5f:cd:fe:6d:66:54:9b:7a:36:5a:da:61:ff:a6: 51:82:f4:cd:f6:2b:10:b0:8e:2c:32:2b:56:33:1b: a4:ee:7d:c3:ba:8c:20:7b:c3:55:80:91:27:d5:3f: 79:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:7F:9A:FF:58:75:D1:48:2F:5B:4A:9A:2A:F9:46:F7:1C:13:15:B8 X509v3 Authority Key Identifier: keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3138342e3138392e302f32342d3234203d3e20313336373837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.184.189.0/24 Signature Algorithm: sha256WithRSAEncryption 9b:22:85:d8:9c:2b:2c:af:cb:30:02:19:1a:b0:89:eb:90:12: 16:50:fa:18:64:0e:9e:0d:12:54:66:01:5f:ef:ba:5a:db:30: 53:d1:a5:58:db:27:99:4b:d4:c9:61:0e:31:85:cb:d1:f6:d2: f8:d3:c9:b5:f5:19:c2:00:53:6d:d0:84:31:f4:04:4d:90:3d: 87:de:94:62:4e:45:25:70:86:24:d3:ad:7b:c0:cf:77:41:f4: 82:88:2c:a6:22:83:24:88:7e:1d:8f:91:65:01:eb:52:5c:5d: 65:e1:71:86:85:68:90:7a:3b:15:67:9f:94:df:39:f2:79:05: 97:46:7a:41:05:12:6f:44:83:28:b7:d4:11:be:0a:3c:4f:95: 40:11:c4:60:4e:70:1c:e6:d7:87:08:b2:7a:27:39:2e:60:0c: 5d:47:63:89:d2:b8:71:18:fe:7b:11:f8:57:e6:bd:5a:af:38: 9d:0b:17:a1:b3:75:cf:66:1f:b8:94:ad:69:77:d5:0a:fd:20: 44:d1:39:f6:16:55:4c:c1:74:87:53:ad:0a:a0:f6:68:19:90: b6:e6:ef:51:55:d5:89:75:6a:79:4e:57:38:76:5e:05:92:ca: b9:66:af:98:b9:ac:24:2b:da:d0:cc:0b:2c:d5:85:7e:f4:50: c8:7b:c4:fe -----BEGIN CERTIFICATE----- MIIFNzCCBB+gAwIBAgIUYqOUafAjxdwCIyGc0mr6kQDAbnQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0 ZWE3Nzc5YzAeFw0yNTExMTYxODQzNTJaFw0yNjExMTUxODQ4NTJaMDMxMTAvBgNV BAMTKEYwN0Y5QUZGNTg3NUQxNDgyRjVCNEE5QTJBRjk0NkY3MUMxMzE1QjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDH3lddwVokLpmSy9VoVOw6ma9H Yx0iaTqrnkntsnOREx/xo44JrltHAB4BDYK3rFoKZYP1nqtyEQOV4r+6W6ouyTd8 Urq3is4vtqzeK3aKESrR6lRX6fsiopLSq1gY5VFa2WzFuxGI2kgX9qE0ujbZK6H4 wJiug4i8mTiJtO4QeJ7aRibbVRkZIB7tboCUU5yYDRGGlaK3BQll82LDjcKxp/U6 enD43/lyWqX3SO5TdTpn1znQ6eC1/tk08ge0+GTMBvTrOlgz/xWM5FuuB24x6jRf zf5tZlSbejZa2mH/plGC9M32KxCwjiwyK1YzG6TufcO6jCB7w1WAkSfVP3kVAgMB AAGjggJBMIICPTAdBgNVHQ4EFgQU8H+a/1h10UgvW0qaKvlG9xwTFbgwHwYDVR0j BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2 bmQ1dy5jZXIwgbEGCCsGAQUFBwELBIGkMIGhMIGeBggrBgEFBQcwC4aBkXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzEzODM1MmUzMTM4MzQyZTMx MzgzOTJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzMzNjM3MzgzNy5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEALm4vTANBgkqhkiG9w0BAQsFAAOCAQEAmyKF2JwrLK/LMAIZGrCJ65ASFlD6 GGQOng0SVGYBX++6WtswU9GlWNsnmUvUyWEOMYXL0fbS+NPJtfUZwgBTbdCEMfQE TZA9h96UYk5FJXCGJNOte8DPd0H0gogspiKDJIh+HY+RZQHrUlxdZeFxhoVokHo7 FWeflN858nkFl0Z6QQUSb0SDKLfUEb4KPE+VQBHEYE5wHObXhwiyeic5LmAMXUdj idK4cRj+exH4V+a9Wq84nQsXobN1z2YfuJStaXfVCv0gRNE59hZVTMF0h1OtCqD2 aBmQtubvUVXViXVqeU5XOHZeBZLKuWavmLmsJCva0MwLLNWFfvRQyHvE/g== -----END CERTIFICATE-----Generated at Fri Dec 5 05:41:35 2025 by rpki-client