This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3139332e392e33342e302f32342d3234203d3e20313336373837.roa File: 3139332e392e33342e302f32342d3234203d3e20313336373837.roa (raw, json) Hash identifier: 4YVYe2wbqC0uQLz5vLvqmfkQCYEbpSqYpx9+/7miwzU= Subject key identifier: A0:F6:2B:39:57:0D:AC:7B:28:92:B2:EB:50:32:3E:F2:B7:B5:5A:6B Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Certificate serial: 6CB0D583F153FF0FDEDC2ECE268A9DB7C4F8FA5D Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3139332e392e33342e302f32342d3234203d3e20313336373837.roa Signing time: Fri 28 Nov 2025 19:49:56 +0000 ROA not before: Fri 28 Nov 2025 19:44:56 +0000 ROA not after: Fri 27 Nov 2026 19:49:56 +0000 asID: 136787 IP address blocks: 193.9.34.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 05 Dec 2025 21:22:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:b0:d5:83:f1:53:ff:0f:de:dc:2e:ce:26:8a:9d:b7:c4:f8:fa:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Validity Not Before: Nov 28 19:44:56 2025 GMT Not After : Nov 27 19:49:56 2026 GMT Subject: CN=A0F62B39570DAC7B2892B2EB50323EF2B7B55A6B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:b3:d2:5c:00:f8:11:4b:6a:d8:8b:d2:53:4b: 71:9d:fd:b5:c8:91:10:e1:c9:8a:80:4a:a7:80:c9: a0:29:62:fe:79:f3:75:d1:48:5b:0f:b9:39:19:bc: 86:69:49:ae:32:68:a9:f0:bb:e0:42:8c:58:b6:43: ee:96:2e:c3:c9:06:f4:02:5a:ee:1e:ed:00:f4:15: f0:ab:29:b6:c8:9b:d6:fc:0c:6d:78:7b:5d:50:cb: 2a:60:2c:ff:3f:57:a9:41:3c:ab:c2:25:53:00:6f: 04:b8:af:cd:0b:f4:ac:96:71:52:ba:ea:07:90:bc: 85:79:52:ea:a1:c6:83:fd:a1:d2:d0:5c:f7:f8:85: 9a:55:a1:a2:14:0b:8e:82:09:a3:d0:5d:87:9a:9d: 57:14:eb:4e:54:f4:27:ce:c7:96:39:86:79:7e:37: 92:aa:43:5e:0b:cf:ef:da:16:82:e4:93:5e:fe:ca: 5a:e9:99:1a:d9:7f:1e:91:38:24:ab:9c:9d:67:bf: 62:24:3c:8a:99:12:55:92:4a:8d:af:28:64:82:e6: 0d:de:27:05:90:f4:64:f2:19:e3:51:1d:dd:bf:3e: c0:b3:92:b9:28:ee:bf:46:ed:3c:73:05:d8:c4:a6: c4:a1:75:52:e6:09:f9:10:99:5c:5c:f5:3a:18:bf: 41:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:F6:2B:39:57:0D:AC:7B:28:92:B2:EB:50:32:3E:F2:B7:B5:5A:6B X509v3 Authority Key Identifier: keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3139332e392e33342e302f32342d3234203d3e20313336373837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.9.34.0/24 Signature Algorithm: sha256WithRSAEncryption 12:bb:2c:10:e9:54:36:9c:53:e0:ff:9a:61:50:a3:01:e5:81: ee:2e:c5:1b:1e:cb:9b:b5:ef:a5:09:22:15:e5:3a:1c:72:b0: 13:9f:15:e6:8f:36:1d:ca:59:f5:bc:73:81:2c:64:cd:dc:e6: 86:05:71:af:61:fa:3f:43:af:6d:42:8b:45:05:72:79:0e:c2: 8b:3b:90:e6:b2:26:1e:9a:57:06:73:89:f4:a6:79:b8:de:34: 98:4e:8f:15:a3:4f:8e:ae:67:e2:6c:c0:0d:b1:ad:47:9e:48: 29:2e:e4:64:2a:01:9f:ce:a2:ad:3d:81:18:c4:b6:5e:9b:b6: 96:d9:1c:5d:bb:91:c0:42:86:fd:fa:92:52:d7:9a:50:fa:46: 6b:7e:78:43:4a:2d:75:74:cd:93:89:d7:84:f2:4f:ff:74:b6: 34:f3:41:06:4b:95:93:56:60:4d:5e:32:f9:4f:b6:aa:69:d0: 72:53:88:14:66:6b:80:05:42:1d:d1:45:fa:86:ad:fe:32:20: 9d:7d:5b:dc:8f:8b:54:69:93:0b:63:e1:82:12:ec:55:be:bf: 16:2b:bf:5d:73:af:48:ad:2c:4c:0e:10:0f:f1:1e:47:bb:bc: 9d:6f:7d:df:3e:64:40:48:32:06:8c:96:d5:3e:88:7d:f7:f9: 5b:59:09:d6 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUbLDVg/FT/w/e3C7OJoqdt8T4+l0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0 ZWE3Nzc5YzAeFw0yNTExMjgxOTQ0NTZaFw0yNjExMjcxOTQ5NTZaMDMxMTAvBgNV BAMTKEEwRjYyQjM5NTcwREFDN0IyODkyQjJFQjUwMzIzRUYyQjdCNTVBNkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFs9JcAPgRS2rYi9JTS3Gd/bXI kRDhyYqASqeAyaApYv5583XRSFsPuTkZvIZpSa4yaKnwu+BCjFi2Q+6WLsPJBvQC Wu4e7QD0FfCrKbbIm9b8DG14e11QyypgLP8/V6lBPKvCJVMAbwS4r80L9KyWcVK6 6geQvIV5UuqhxoP9odLQXPf4hZpVoaIUC46CCaPQXYeanVcU605U9CfOx5Y5hnl+ N5KqQ14Lz+/aFoLkk17+ylrpmRrZfx6ROCSrnJ1nv2IkPIqZElWSSo2vKGSC5g3e JwWQ9GTyGeNRHd2/PsCzkrko7r9G7TxzBdjEpsShdVLmCfkQmVxc9ToYv0FjAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUoPYrOVcNrHsokrLrUDI+8re1WmswHwYDVR0j BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2 bmQ1dy5jZXIwgasGCCsGAQUFBwELBIGeMIGbMIGYBggrBgEFBQcwC4aBi3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzEzOTMzMmUzOTJlMzMzNDJl MzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzMzNjM3MzgzNy5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMEJ IjANBgkqhkiG9w0BAQsFAAOCAQEAErssEOlUNpxT4P+aYVCjAeWB7i7FGx7Lm7Xv pQkiFeU6HHKwE58V5o82HcpZ9bxzgSxkzdzmhgVxr2H6P0OvbUKLRQVyeQ7CizuQ 5rImHppXBnOJ9KZ5uN40mE6PFaNPjq5n4mzADbGtR55IKS7kZCoBn86irT2BGMS2 Xpu2ltkcXbuRwEKG/fqSUteaUPpGa354Q0otdXTNk4nXhPJP/3S2NPNBBkuVk1Zg TV4y+U+2qmnQclOIFGZrgAVCHdFF+oat/jIgnX1b3I+LVGmTC2PhghLsVb6/Fiu/ XXOvSK0sTA4QD/EeR7u8nW993z5kQEgyBoyW1T6Ifff5W1kJ1g== -----END CERTIFICATE-----Generated at Fri Dec 5 05:38:49 2025 by rpki-client