This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3233392e3134382e302f32342d3234203d3e20313336373837.roa File: 3138352e3233392e3134382e302f32342d3234203d3e20313336373837.roa (raw, json) Hash identifier: CjXwbCimiJnB+KQ3BKdGvd8puL57KaJUspPaxKyAhXA= Subject key identifier: 7A:F5:94:B8:32:B5:96:C3:97:76:BD:4F:21:D7:58:FE:4C:BC:E7:B1 Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Certificate serial: 026EE4DB82759E1E073EF177292954C7CFA2F41E Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3233392e3134382e302f32342d3234203d3e20313336373837.roa Signing time: Fri 28 Nov 2025 19:49:59 +0000 ROA not before: Fri 28 Nov 2025 19:44:59 +0000 ROA not after: Fri 27 Nov 2026 19:49:59 +0000 asID: 136787 IP address blocks: 185.239.148.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 05 Dec 2025 21:22:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:6e:e4:db:82:75:9e:1e:07:3e:f1:77:29:29:54:c7:cf:a2:f4:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Validity Not Before: Nov 28 19:44:59 2025 GMT Not After : Nov 27 19:49:59 2026 GMT Subject: CN=7AF594B832B596C39776BD4F21D758FE4CBCE7B1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:d1:c6:e3:89:06:c2:5e:45:e2:3e:3b:12:6c: c3:69:d2:7e:93:10:6e:c7:aa:a2:72:d6:e4:53:20: 16:ac:b8:52:b5:ec:cc:86:e6:fa:a9:b9:ad:74:92: d2:f4:39:1f:b1:e9:1b:73:93:b8:10:2f:09:8c:ed: 32:ec:5a:77:d0:c0:ac:8f:38:1f:e7:a7:70:ea:80: d4:ff:e3:ea:90:d4:9e:0f:4a:06:f2:d7:3a:d3:61: de:89:ae:37:30:f6:56:98:76:66:87:57:a9:f4:30: b2:2a:c7:20:a3:c9:38:12:41:43:4d:15:5b:5e:52: 6b:27:90:03:e8:16:ad:fc:52:c1:d4:6f:2a:63:48: c3:1d:05:cf:ea:30:c2:f0:3d:5a:46:ca:09:56:c7: df:82:ca:a1:9c:db:a9:24:db:d0:b7:6d:74:7e:fb: 61:b4:fe:39:55:71:9b:72:25:01:7c:b8:09:fc:a7: 09:21:19:7c:aa:bc:36:68:76:30:4b:ce:e7:e1:69: f6:3b:23:bf:83:a9:c0:2c:27:89:94:8c:72:c4:b5: b2:cc:d4:70:a8:29:eb:1b:e7:77:69:e0:ae:1a:a5: 81:0f:01:ff:68:af:7f:f9:88:48:41:6f:cb:99:c2: 35:cb:c3:b4:8a:91:d1:ce:a0:ae:10:48:70:a0:0b: 22:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:F5:94:B8:32:B5:96:C3:97:76:BD:4F:21:D7:58:FE:4C:BC:E7:B1 X509v3 Authority Key Identifier: keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3233392e3134382e302f32342d3234203d3e20313336373837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.239.148.0/24 Signature Algorithm: sha256WithRSAEncryption 7e:21:3a:5d:92:8d:95:06:4e:ae:66:1a:17:b7:10:2c:99:78: 41:0b:6b:53:32:89:1d:89:bd:37:e6:87:e3:5c:ea:8a:98:22: 54:ef:6f:74:9a:8b:ec:b6:c7:af:84:f2:b9:6d:f2:b3:ea:58: b3:b3:b5:55:9c:06:7a:fa:ce:7a:d6:62:7b:2d:d3:ea:c6:f8: 26:9a:0f:09:ec:99:6b:cc:1d:37:b6:39:6d:99:41:56:25:b4: 99:e6:97:95:0c:ee:59:66:fd:b8:51:ed:f0:72:11:8e:27:0d: 5d:4a:22:ba:4b:25:af:57:0e:67:8e:f2:97:60:f7:8a:3b:ff: 2e:b7:64:78:ad:5d:0d:05:e5:01:47:64:75:b8:94:df:a5:59: 7d:86:98:ef:ea:46:f2:04:e6:d1:c1:4d:25:27:5d:f5:73:03: e1:d8:c4:b0:fe:82:a5:3f:15:fa:d3:4d:2e:2d:4b:73:82:a3: 5a:07:ac:15:4a:4f:cc:10:e7:91:f1:c9:8f:d3:b1:81:c8:b7: 35:27:3d:79:aa:80:4b:e9:b5:ff:a7:19:93:8e:14:3e:27:f1: c7:73:64:d8:55:bf:94:e0:e2:f6:c9:92:ba:25:5d:8d:e8:00: 0f:8d:6d:a7:61:3a:dd:21:3b:da:10:f3:de:72:4a:06:5a:ab: 8c:b2:43:bf -----BEGIN CERTIFICATE----- MIIFNzCCBB+gAwIBAgIUAm7k24J1nh4HPvF3KSlUx8+i9B4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0 ZWE3Nzc5YzAeFw0yNTExMjgxOTQ0NTlaFw0yNjExMjcxOTQ5NTlaMDMxMTAvBgNV BAMTKDdBRjU5NEI4MzJCNTk2QzM5Nzc2QkQ0RjIxRDc1OEZFNENCQ0U3QjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDN0cbjiQbCXkXiPjsSbMNp0n6T EG7HqqJy1uRTIBasuFK17MyG5vqpua10ktL0OR+x6Rtzk7gQLwmM7TLsWnfQwKyP OB/np3DqgNT/4+qQ1J4PSgby1zrTYd6Jrjcw9laYdmaHV6n0MLIqxyCjyTgSQUNN FVteUmsnkAPoFq38UsHUbypjSMMdBc/qMMLwPVpGyglWx9+CyqGc26kk29C3bXR+ +2G0/jlVcZtyJQF8uAn8pwkhGXyqvDZodjBLzufhafY7I7+DqcAsJ4mUjHLEtbLM 1HCoKesb53dp4K4apYEPAf9or3/5iEhBb8uZwjXLw7SKkdHOoK4QSHCgCyLnAgMB AAGjggJBMIICPTAdBgNVHQ4EFgQUevWUuDK1lsOXdr1PIddY/ky857EwHwYDVR0j BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2 bmQ1dy5jZXIwgbEGCCsGAQUFBwELBIGkMIGhMIGeBggrBgEFBQcwC4aBkXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzEzODM1MmUzMjMzMzkyZTMx MzQzODJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzMzNjM3MzgzNy5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEALnvlDANBgkqhkiG9w0BAQsFAAOCAQEAfiE6XZKNlQZOrmYaF7cQLJl4QQtr UzKJHYm9N+aH41zqipgiVO9vdJqL7LbHr4TyuW3ys+pYs7O1VZwGevrOetZiey3T 6sb4JpoPCeyZa8wdN7Y5bZlBViW0meaXlQzuWWb9uFHt8HIRjicNXUoiukslr1cO Z47yl2D3ijv/LrdkeK1dDQXlAUdkdbiU36VZfYaY7+pG8gTm0cFNJSdd9XMD4djE sP6CpT8V+tNNLi1Lc4KjWgesFUpPzBDnkfHJj9Oxgci3NSc9eaqAS+m1/6cZk44U Pifxx3Nk2FW/lODi9smSuiVdjegAD41tp2E63SE72hDz3nJKBlqrjLJDvw== -----END CERTIFICATE-----Generated at Fri Dec 5 05:40:17 2025 by rpki-client