This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3139332e392e33322e302f32342d3234203d3e20313336373837.roa File: 3139332e392e33322e302f32342d3234203d3e20313336373837.roa (raw, json) Hash identifier: tILQ8s/wdWo7AeisDbkXgNK1CMrU5NbxcHoYTJN+7/U= Subject key identifier: 43:51:62:EC:3B:4F:20:78:AD:83:00:A6:38:F9:C8:AA:64:BC:5C:4A Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Certificate serial: 69E71A323DF8115B671D90D36DA703A234B69D3D Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3139332e392e33322e302f32342d3234203d3e20313336373837.roa Signing time: Fri 28 Nov 2025 19:50:00 +0000 ROA not before: Fri 28 Nov 2025 19:45:00 +0000 ROA not after: Fri 27 Nov 2026 19:50:00 +0000 asID: 136787 IP address blocks: 193.9.32.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 05 Dec 2025 21:22:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:e7:1a:32:3d:f8:11:5b:67:1d:90:d3:6d:a7:03:a2:34:b6:9d:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Validity Not Before: Nov 28 19:45:00 2025 GMT Not After : Nov 27 19:50:00 2026 GMT Subject: CN=435162EC3B4F2078AD8300A638F9C8AA64BC5C4A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:2d:fb:34:f7:24:2d:f5:b9:36:60:46:d2:7f: 2a:ee:ef:cf:46:f6:fe:fc:3d:37:7c:69:45:65:63: be:fa:bf:52:1c:08:05:e1:bd:fd:eb:42:d6:af:6f: 5c:eb:a1:83:cb:05:56:26:dd:80:37:76:ca:4e:ec: ec:b7:b3:56:eb:f7:87:5a:ec:bc:93:fe:63:dd:a4: c9:01:6f:f1:83:90:59:db:28:3e:0f:c5:bb:ae:ac: 2c:d9:46:bf:d9:6c:1d:a2:aa:07:eb:cf:88:ee:fa: f1:5a:d0:52:13:b7:48:bc:34:15:18:b9:a2:9f:53: ad:75:53:7c:5a:b3:22:c0:d9:91:27:5d:e6:05:e2: 03:e3:c5:d0:e8:c4:29:dd:db:80:8b:d9:8a:c1:a9: f8:ae:36:70:b2:64:84:e0:a0:d2:f0:86:c1:52:39: 64:4b:90:12:be:1a:55:eb:37:be:e7:b4:6c:0c:a6: 2a:1b:23:86:b2:2f:99:14:47:77:66:f1:69:bc:93: 4a:e1:57:1a:9e:83:a0:fd:d4:4c:04:42:35:e4:24: 68:c6:69:3f:05:5b:f9:17:21:1f:89:6f:28:44:1d: fc:43:c3:c4:d1:36:44:1d:1f:71:1a:ed:f9:1d:2f: 74:dd:ae:37:0e:23:71:bd:2e:3e:d0:a1:97:ac:7b: b2:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:51:62:EC:3B:4F:20:78:AD:83:00:A6:38:F9:C8:AA:64:BC:5C:4A X509v3 Authority Key Identifier: keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3139332e392e33322e302f32342d3234203d3e20313336373837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.9.32.0/24 Signature Algorithm: sha256WithRSAEncryption 1b:8c:c8:b1:2f:c2:2e:d1:3e:df:45:6b:63:b1:59:e1:b2:9a: 98:3a:cb:08:a1:a1:90:76:bd:a9:a8:d4:67:34:cb:1a:43:5f: 9c:69:0a:74:28:ca:95:8a:07:28:1c:15:3c:08:73:24:00:6c: a7:59:10:c6:2f:74:01:a3:37:dd:2f:dd:eb:16:1c:37:3d:7e: 87:61:51:68:0c:16:3f:6e:59:71:13:fa:46:cc:33:4c:b7:d4: 49:a3:45:95:27:0c:f6:a8:d9:a1:d5:17:cd:5c:f4:0d:35:f9: 28:06:d3:ab:39:23:96:ab:6d:36:89:ee:84:f8:12:e4:ad:50: 78:a8:02:95:84:48:6f:5b:19:a8:d5:c3:5b:c8:3d:8a:2d:f6: 4a:d0:b3:f3:ce:3b:fd:de:10:4c:c5:eb:1c:69:a7:06:69:05: e3:1f:7e:63:5d:6c:fe:f5:82:bd:1f:e6:4c:3f:a9:59:28:64: 03:f1:55:f9:3a:c6:27:b7:ac:f1:de:9b:c8:99:83:b1:e9:1d: 7a:66:1b:20:1b:33:0e:25:21:c6:67:3e:71:8e:02:1d:ac:d3: 44:e6:cb:fd:d7:18:b2:6c:4d:f8:cb:05:28:c7:2f:4f:fb:53: b7:59:95:d2:bd:13:4e:66:92:6f:f4:90:49:27:85:11:f1:a8: 46:9b:ba:5f -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUaecaMj34EVtnHZDTbacDojS2nT0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0 ZWE3Nzc5YzAeFw0yNTExMjgxOTQ1MDBaFw0yNjExMjcxOTUwMDBaMDMxMTAvBgNV BAMTKDQzNTE2MkVDM0I0RjIwNzhBRDgzMDBBNjM4RjlDOEFBNjRCQzVDNEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDqLfs09yQt9bk2YEbSfyru789G 9v78PTd8aUVlY776v1IcCAXhvf3rQtavb1zroYPLBVYm3YA3dspO7Oy3s1br94da 7LyT/mPdpMkBb/GDkFnbKD4PxbuurCzZRr/ZbB2iqgfrz4ju+vFa0FITt0i8NBUY uaKfU611U3xasyLA2ZEnXeYF4gPjxdDoxCnd24CL2YrBqfiuNnCyZITgoNLwhsFS OWRLkBK+GlXrN77ntGwMpiobI4ayL5kUR3dm8Wm8k0rhVxqeg6D91EwEQjXkJGjG aT8FW/kXIR+JbyhEHfxDw8TRNkQdH3Ea7fkdL3TdrjcOI3G9Lj7QoZese7LhAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUQ1Fi7DtPIHitgwCmOPnIqmS8XEowHwYDVR0j BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2 bmQ1dy5jZXIwgasGCCsGAQUFBwELBIGeMIGbMIGYBggrBgEFBQcwC4aBi3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzEzOTMzMmUzOTJlMzMzMjJl MzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzMzNjM3MzgzNy5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMEJ IDANBgkqhkiG9w0BAQsFAAOCAQEAG4zIsS/CLtE+30VrY7FZ4bKamDrLCKGhkHa9 qajUZzTLGkNfnGkKdCjKlYoHKBwVPAhzJABsp1kQxi90AaM33S/d6xYcNz1+h2FR aAwWP25ZcRP6RswzTLfUSaNFlScM9qjZodUXzVz0DTX5KAbTqzkjlqttNonuhPgS 5K1QeKgClYRIb1sZqNXDW8g9ii32StCz8847/d4QTMXrHGmnBmkF4x9+Y11s/vWC vR/mTD+pWShkA/FV+TrGJ7es8d6byJmDsekdemYbIBszDiUhxmc+cY4CHazTRObL /dcYsmxN+MsFKMcvT/tTt1mV0r0TTmaSb/SQSSeFEfGoRpu6Xw== -----END CERTIFICATE-----Generated at Fri Dec 5 05:39:24 2025 by rpki-client