This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3232372e3133322e302f32342d3234203d3e20313336373837.roa File: 3138352e3232372e3133322e302f32342d3234203d3e20313336373837.roa (raw, json) Hash identifier: R5dsUXR5y2LUXdc05GrGcJyrJCHGtKAiOG0bNlSx5No= Subject key identifier: 0E:89:E9:B7:65:DE:16:47:92:78:41:2B:9D:7B:5F:33:10:24:8D:DA Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Certificate serial: 1EE0F61D09C30AE2FE86DE09876240DBC18B73F2 Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3232372e3133322e302f32342d3234203d3e20313336373837.roa Signing time: Fri 28 Nov 2025 19:50:01 +0000 ROA not before: Fri 28 Nov 2025 19:45:01 +0000 ROA not after: Fri 27 Nov 2026 19:50:01 +0000 asID: 136787 IP address blocks: 185.227.132.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 05 Dec 2025 21:22:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:e0:f6:1d:09:c3:0a:e2:fe:86:de:09:87:62:40:db:c1:8b:73:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Validity Not Before: Nov 28 19:45:01 2025 GMT Not After : Nov 27 19:50:01 2026 GMT Subject: CN=0E89E9B765DE16479278412B9D7B5F3310248DDA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:3a:05:db:39:a6:ee:f9:e3:e1:e6:1b:5d:ef: ce:44:6b:ff:2b:c9:42:62:6d:9d:42:c8:fa:78:0d: 98:a4:1e:1f:e4:37:c6:81:ac:08:f1:ec:c6:00:5f: f0:a5:3b:ca:64:df:84:08:a2:5a:02:4d:1f:6f:57: e3:12:87:10:81:a5:35:a5:c2:58:9d:a9:94:8c:36: c9:7c:ed:71:e2:5f:64:8a:82:b0:4a:08:41:ce:9a: 76:5f:26:c2:4a:dc:87:29:c6:05:1a:74:e6:b0:7e: 2c:b7:25:ed:fa:e8:b1:17:34:72:52:87:04:57:d9: b8:ed:df:ac:14:62:b8:21:cd:99:50:3d:0e:6e:45: 42:0c:8a:4d:49:82:90:fb:03:56:57:f1:46:80:33: 8a:4d:96:7c:ae:e0:85:b3:5b:95:b7:51:dc:04:28: a3:1b:8c:cc:d1:62:10:7f:0f:11:a2:ab:3e:07:f1: 7b:81:35:98:b7:a4:af:22:25:b6:e7:09:27:d3:86: a2:1b:05:5f:74:70:8a:be:90:4a:3d:32:c1:16:bd: 99:44:8f:48:07:aa:bb:17:35:10:2d:bd:13:f1:ab: f4:ca:b7:57:d2:a2:7b:59:9e:12:07:78:bd:15:66: 46:49:1f:25:96:62:85:f8:b9:98:dc:52:ba:05:33: 71:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:89:E9:B7:65:DE:16:47:92:78:41:2B:9D:7B:5F:33:10:24:8D:DA X509v3 Authority Key Identifier: keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3232372e3133322e302f32342d3234203d3e20313336373837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.227.132.0/24 Signature Algorithm: sha256WithRSAEncryption 3a:d8:ed:c0:3c:17:46:98:fa:81:0d:b4:0a:c3:1d:e5:30:92: 4b:f3:3e:09:ed:4d:aa:d3:3d:cc:17:ad:a9:67:a9:dc:89:46: 31:36:5c:f2:3e:f8:38:80:6f:c9:6e:d2:b9:3e:64:ef:18:6e: 18:a8:2b:06:e8:1a:3b:db:bb:c3:64:d4:8b:aa:2b:09:f9:00: 85:17:74:c1:b4:60:26:ca:4e:26:61:2b:d2:5e:22:fd:b2:03: 20:0f:36:9a:88:ef:1f:25:b6:8d:ca:84:c2:88:57:70:d3:19: 4a:d5:69:64:5f:96:f6:5e:88:75:f6:f0:73:a5:fd:9f:6d:97: fd:49:1c:59:10:49:2c:90:7d:b3:b1:77:6a:f3:e2:69:63:c1: 77:cd:5c:42:15:3b:1a:93:61:fd:0a:c8:19:11:6d:06:15:83: 0d:42:a9:c5:61:c9:cc:33:3e:c8:d9:64:72:2c:36:e7:3e:42: cc:38:86:1e:07:2b:0f:8e:2f:11:21:67:3f:5a:e1:9f:0d:e7: 4d:11:1b:60:92:92:5c:c2:8a:5f:ea:2f:71:ab:9c:7f:e7:dc: b7:df:38:a1:1f:14:98:75:2f:b5:67:3d:27:93:4e:31:d8:65: ee:89:29:bc:7b:d3:34:a5:eb:18:dd:2a:4d:cd:44:e5:1d:e3: 08:cd:71:0b -----BEGIN CERTIFICATE----- MIIFNzCCBB+gAwIBAgIUHuD2HQnDCuL+ht4Jh2JA28GLc/IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0 ZWE3Nzc5YzAeFw0yNTExMjgxOTQ1MDFaFw0yNjExMjcxOTUwMDFaMDMxMTAvBgNV BAMTKDBFODlFOUI3NjVERTE2NDc5Mjc4NDEyQjlEN0I1RjMzMTAyNDhEREEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtOgXbOabu+ePh5htd785Ea/8r yUJibZ1CyPp4DZikHh/kN8aBrAjx7MYAX/ClO8pk34QIoloCTR9vV+MShxCBpTWl wlidqZSMNsl87XHiX2SKgrBKCEHOmnZfJsJK3IcpxgUadOawfiy3Je366LEXNHJS hwRX2bjt36wUYrghzZlQPQ5uRUIMik1JgpD7A1ZX8UaAM4pNlnyu4IWzW5W3UdwE KKMbjMzRYhB/DxGiqz4H8XuBNZi3pK8iJbbnCSfThqIbBV90cIq+kEo9MsEWvZlE j0gHqrsXNRAtvRPxq/TKt1fSontZnhIHeL0VZkZJHyWWYoX4uZjcUroFM3EZAgMB AAGjggJBMIICPTAdBgNVHQ4EFgQUDonpt2XeFkeSeEErnXtfMxAkjdowHwYDVR0j BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2 bmQ1dy5jZXIwgbEGCCsGAQUFBwELBIGkMIGhMIGeBggrBgEFBQcwC4aBkXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzEzODM1MmUzMjMyMzcyZTMx MzMzMjJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzMzNjM3MzgzNy5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEALnjhDANBgkqhkiG9w0BAQsFAAOCAQEAOtjtwDwXRpj6gQ20CsMd5TCSS/M+ Ce1NqtM9zBetqWep3IlGMTZc8j74OIBvyW7SuT5k7xhuGKgrBugaO9u7w2TUi6or CfkAhRd0wbRgJspOJmEr0l4i/bIDIA82mojvHyW2jcqEwohXcNMZStVpZF+W9l6I dfbwc6X9n22X/UkcWRBJLJB9s7F3avPiaWPBd81cQhU7GpNh/QrIGRFtBhWDDUKp xWHJzDM+yNlkciw25z5CzDiGHgcrD44vESFnP1rhnw3nTREbYJKSXMKKX+ovcauc f+fct984oR8UmHUvtWc9J5NOMdhl7okpvHvTNKXrGN0qTc1E5R3jCM1xCw== -----END CERTIFICATE-----Generated at Fri Dec 5 05:41:42 2025 by rpki-client