This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3233392e3135302e302f32342d3234203d3e20313336373837.roa File: 3138352e3233392e3135302e302f32342d3234203d3e20313336373837.roa (raw, json) Hash identifier: kiOdCBFZHG0mplASMr9w9ppI7Z/Qgx4sOLm1U58KV5o= Subject key identifier: 19:10:1B:5C:07:64:35:69:07:31:B0:1D:18:34:E9:D6:15:39:0A:88 Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Certificate serial: 2F2EE7A2678416D18EEC5473BA0B6A5804B35484 Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3233392e3135302e302f32342d3234203d3e20313336373837.roa Signing time: Fri 28 Nov 2025 19:49:59 +0000 ROA not before: Fri 28 Nov 2025 19:44:59 +0000 ROA not after: Fri 27 Nov 2026 19:49:59 +0000 asID: 136787 IP address blocks: 185.239.150.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 05 Dec 2025 21:22:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:2e:e7:a2:67:84:16:d1:8e:ec:54:73:ba:0b:6a:58:04:b3:54:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Validity Not Before: Nov 28 19:44:59 2025 GMT Not After : Nov 27 19:49:59 2026 GMT Subject: CN=19101B5C076435690731B01D1834E9D615390A88 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:a3:ab:10:66:47:55:95:0d:63:72:69:2d:6c: c6:0d:b9:7d:3e:68:ec:41:e3:1f:17:6c:5a:5f:7a: 84:07:30:a1:bf:e5:8c:66:48:84:d5:99:96:53:8d: b8:bb:ca:c0:11:54:fd:74:58:7b:10:1c:ec:9f:86: 03:22:5a:da:31:7b:85:cc:b3:c0:4d:c5:70:3e:28: 74:4c:00:a1:b3:80:cf:7c:4f:17:ce:1b:15:1d:60: 6b:93:dd:6d:f1:f6:27:2d:6f:88:59:3f:d0:fa:9c: 34:ae:c7:22:8a:12:b7:d9:e9:64:57:d1:82:ed:a5: 9d:50:33:6d:f4:02:31:56:66:9d:6c:e8:6a:88:30: 5c:dd:65:96:4d:74:65:d2:2f:c1:7a:55:46:ec:9d: 12:4a:93:2a:ae:45:5c:39:c8:10:0c:2d:84:27:ac: ed:e8:30:09:8e:bc:11:25:bb:b3:ed:a8:b7:f3:b1: a6:c6:b5:84:3c:f6:a4:de:56:ad:58:c0:f8:45:a7: 1f:9c:b1:ab:a2:a3:b1:c9:79:f4:8c:16:bc:1b:d8: ff:46:ff:1e:45:bc:a6:b5:67:9d:4f:5a:11:30:aa: db:fb:e2:14:dc:25:5f:1e:63:3c:ba:c9:d9:ab:be: 65:73:21:c7:b2:80:66:22:66:cd:9f:4a:69:92:72: 57:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:10:1B:5C:07:64:35:69:07:31:B0:1D:18:34:E9:D6:15:39:0A:88 X509v3 Authority Key Identifier: keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3233392e3135302e302f32342d3234203d3e20313336373837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.239.150.0/24 Signature Algorithm: sha256WithRSAEncryption 77:36:8d:96:45:35:f2:b6:4e:1a:4e:47:9f:64:40:a7:b1:57: 45:b5:65:48:39:23:1a:80:38:23:07:1e:3a:76:e6:6c:3f:07: 8e:05:9c:52:e2:78:4a:94:0e:f1:5e:cf:ac:72:f5:c5:ed:68: 98:9a:ac:39:1a:54:38:11:28:4d:8b:b0:65:07:37:79:61:28: fc:26:3e:6b:1a:f3:88:81:f0:ff:01:17:df:73:b8:1a:8b:ea: 64:68:4f:36:27:a9:1e:ab:7b:68:c3:df:ad:66:2e:ec:45:89: 90:b8:14:95:2f:9c:f0:1b:ba:cb:33:16:bc:96:21:92:71:1e: ae:88:86:a5:8a:49:bf:0a:f3:a9:64:6a:64:07:a6:4e:2d:15: 03:e3:8d:ad:f8:ab:b4:e7:83:a2:b8:f3:24:8a:b0:f2:5b:33: fe:8f:e2:c7:3f:95:df:af:51:62:a5:3e:1c:22:50:ae:3e:8d: 28:d6:3f:f9:36:ec:f4:ff:67:1f:5e:82:92:53:6d:d3:d2:7e: 66:b6:85:cf:91:50:e5:f4:67:70:2a:ff:47:be:58:a5:c4:83: e3:b4:e0:71:eb:19:f1:5e:49:f3:b3:c0:bd:4a:91:83:0c:2f: 17:27:fd:e3:a5:8a:0f:f4:06:2f:37:81:9a:b5:4b:57:a3:c8: c2:a9:54:2a -----BEGIN CERTIFICATE----- MIIFNzCCBB+gAwIBAgIULy7nomeEFtGO7FRzugtqWASzVIQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0 ZWE3Nzc5YzAeFw0yNTExMjgxOTQ0NTlaFw0yNjExMjcxOTQ5NTlaMDMxMTAvBgNV BAMTKDE5MTAxQjVDMDc2NDM1NjkwNzMxQjAxRDE4MzRFOUQ2MTUzOTBBODgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMo6sQZkdVlQ1jcmktbMYNuX0+ aOxB4x8XbFpfeoQHMKG/5YxmSITVmZZTjbi7ysARVP10WHsQHOyfhgMiWtoxe4XM s8BNxXA+KHRMAKGzgM98TxfOGxUdYGuT3W3x9ictb4hZP9D6nDSuxyKKErfZ6WRX 0YLtpZ1QM230AjFWZp1s6GqIMFzdZZZNdGXSL8F6VUbsnRJKkyquRVw5yBAMLYQn rO3oMAmOvBElu7PtqLfzsabGtYQ89qTeVq1YwPhFpx+csauio7HJefSMFrwb2P9G /x5FvKa1Z51PWhEwqtv74hTcJV8eYzy6ydmrvmVzIceygGYiZs2fSmmSclcPAgMB AAGjggJBMIICPTAdBgNVHQ4EFgQUGRAbXAdkNWkHMbAdGDTp1hU5CogwHwYDVR0j BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2 bmQ1dy5jZXIwgbEGCCsGAQUFBwELBIGkMIGhMIGeBggrBgEFBQcwC4aBkXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzEzODM1MmUzMjMzMzkyZTMx MzUzMDJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzMzNjM3MzgzNy5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEALnvljANBgkqhkiG9w0BAQsFAAOCAQEAdzaNlkU18rZOGk5Hn2RAp7FXRbVl SDkjGoA4IwceOnbmbD8HjgWcUuJ4SpQO8V7PrHL1xe1omJqsORpUOBEoTYuwZQc3 eWEo/CY+axrziIHw/wEX33O4GovqZGhPNiepHqt7aMPfrWYu7EWJkLgUlS+c8Bu6 yzMWvJYhknEeroiGpYpJvwrzqWRqZAemTi0VA+ONrfirtOeDorjzJIqw8lsz/o/i xz+V369RYqU+HCJQrj6NKNY/+Tbs9P9nH16CklNt09J+ZraFz5FQ5fRncCr/R75Y pcSD47TgcesZ8V5J87PAvUqRgwwvFyf946WKD/QGLzeBmrVLV6PIwqlUKg== -----END CERTIFICATE-----Generated at Fri Dec 5 05:40:21 2025 by rpki-client