This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3139332e392e33352e302f32342d3234203d3e20313336373837.roa File: 3139332e392e33352e302f32342d3234203d3e20313336373837.roa (raw, json) Hash identifier: IqZmbUiFqFZbZJ9TjiBjQlQL9rDfQUI2CO4T1fiFFbA= Subject key identifier: A5:F9:83:49:31:9D:6B:6F:A2:44:0E:A3:0C:7B:DA:A3:BB:BC:D7:53 Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Certificate serial: 470D7174704DE40097C183B410A3224538DE1388 Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3139332e392e33352e302f32342d3234203d3e20313336373837.roa Signing time: Fri 28 Nov 2025 19:49:59 +0000 ROA not before: Fri 28 Nov 2025 19:44:59 +0000 ROA not after: Fri 27 Nov 2026 19:49:59 +0000 asID: 136787 IP address blocks: 193.9.35.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 05 Dec 2025 21:22:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:0d:71:74:70:4d:e4:00:97:c1:83:b4:10:a3:22:45:38:de:13:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Validity Not Before: Nov 28 19:44:59 2025 GMT Not After : Nov 27 19:49:59 2026 GMT Subject: CN=A5F98349319D6B6FA2440EA30C7BDAA3BBBCD753 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:de:6f:83:8a:d5:17:ae:29:a8:15:a4:7e:05: 1a:09:cd:d5:57:dd:31:eb:6f:90:5d:ed:2b:e6:72: 20:c8:c5:ce:e8:51:02:65:05:29:08:38:3c:a4:b3: 49:bc:24:48:ea:38:05:ab:46:ed:1b:9b:b0:58:47: b2:b2:2a:8a:71:76:08:b3:fe:e5:45:56:cc:15:8a: 0b:7d:f5:27:e8:37:b2:47:d6:e1:94:26:1b:26:d0: 97:c5:ac:01:3c:04:6a:99:af:b3:28:9f:51:fd:4f: c0:8d:79:39:8c:e4:db:89:a4:1c:a6:e5:ca:7d:c6: d4:59:f7:64:3b:a3:90:42:18:45:e3:e1:17:79:65: b6:e6:24:47:9b:cf:ec:9f:ef:76:f9:c6:fa:bf:5d: 2d:e3:85:2b:36:e6:9d:e1:41:8e:a5:aa:27:c2:3d: 5c:f6:73:95:e5:77:00:49:81:19:97:4a:b1:db:55: 75:22:fa:10:6d:45:b6:06:32:b0:b9:98:00:cd:4e: c1:ec:fe:f2:8e:1e:f0:80:82:45:12:79:69:73:b3: 00:e5:96:72:7e:b7:45:30:1b:b2:d1:44:57:59:fa: 32:8e:2b:a1:6b:5c:b3:5a:14:89:ad:9b:6b:11:72: 4d:b5:ba:e1:d4:90:9d:c1:30:5a:af:0b:6c:8a:7e: 16:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:F9:83:49:31:9D:6B:6F:A2:44:0E:A3:0C:7B:DA:A3:BB:BC:D7:53 X509v3 Authority Key Identifier: keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3139332e392e33352e302f32342d3234203d3e20313336373837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.9.35.0/24 Signature Algorithm: sha256WithRSAEncryption 0c:9b:7b:8d:ba:92:cc:9d:56:15:1b:68:b7:55:6d:88:5a:af: c0:7f:2b:35:68:81:14:61:dd:38:7a:f5:80:54:17:33:7c:7e: 0c:0e:18:3e:85:7b:b9:b4:b6:69:d0:30:ff:07:1a:75:5e:5e: e3:c9:aa:fb:9a:1c:9c:31:61:4f:fa:96:a4:14:99:2b:84:13: bd:ab:4a:e7:04:4b:8b:f1:ca:d1:c4:88:0a:20:bf:4c:85:73: bc:dc:7c:47:fe:f5:58:e0:e3:28:7a:d9:7b:e3:d8:e4:21:18: b6:90:fe:45:1d:9f:3f:fd:d4:1c:64:15:32:c3:d1:3b:cf:49: a6:78:0a:a1:10:9c:24:d4:39:28:ba:4b:39:58:b3:6f:e8:d9: 08:ea:3d:aa:ae:3b:32:75:6b:18:d3:67:83:85:93:25:10:ce: 2e:23:cb:2e:72:74:80:b5:5a:65:a9:b6:64:82:5a:12:b3:09: de:3f:ed:f1:22:ad:86:3f:13:8e:60:c3:03:65:fc:5b:10:3c: b3:c5:fa:34:aa:76:6c:a6:3b:38:71:f7:24:ed:cc:7a:96:13: f4:fa:da:8f:96:d5:08:99:71:ba:79:88:b4:80:d8:b2:b1:63: 12:b1:a6:7e:36:68:d4:54:0b:fc:77:27:b8:59:7b:2c:4d:f8: b1:81:89:f8 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIURw1xdHBN5ACXwYO0EKMiRTjeE4gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0 ZWE3Nzc5YzAeFw0yNTExMjgxOTQ0NTlaFw0yNjExMjcxOTQ5NTlaMDMxMTAvBgNV BAMTKEE1Rjk4MzQ5MzE5RDZCNkZBMjQ0MEVBMzBDN0JEQUEzQkJCQ0Q3NTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDr3m+DitUXrimoFaR+BRoJzdVX 3THrb5Bd7SvmciDIxc7oUQJlBSkIODyks0m8JEjqOAWrRu0bm7BYR7KyKopxdgiz /uVFVswVigt99SfoN7JH1uGUJhsm0JfFrAE8BGqZr7Mon1H9T8CNeTmM5NuJpBym 5cp9xtRZ92Q7o5BCGEXj4Rd5ZbbmJEebz+yf73b5xvq/XS3jhSs25p3hQY6lqifC PVz2c5XldwBJgRmXSrHbVXUi+hBtRbYGMrC5mADNTsHs/vKOHvCAgkUSeWlzswDl lnJ+t0UwG7LRRFdZ+jKOK6FrXLNaFImtm2sRck21uuHUkJ3BMFqvC2yKfhYFAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUpfmDSTGda2+iRA6jDHvao7u811MwHwYDVR0j BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2 bmQ1dy5jZXIwgasGCCsGAQUFBwELBIGeMIGbMIGYBggrBgEFBQcwC4aBi3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzEzOTMzMmUzOTJlMzMzNTJl MzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzMzNjM3MzgzNy5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMEJ IzANBgkqhkiG9w0BAQsFAAOCAQEADJt7jbqSzJ1WFRtot1VtiFqvwH8rNWiBFGHd OHr1gFQXM3x+DA4YPoV7ubS2adAw/wcadV5e48mq+5ocnDFhT/qWpBSZK4QTvatK 5wRLi/HK0cSICiC/TIVzvNx8R/71WODjKHrZe+PY5CEYtpD+RR2fP/3UHGQVMsPR O89JpngKoRCcJNQ5KLpLOVizb+jZCOo9qq47MnVrGNNng4WTJRDOLiPLLnJ0gLVa Zam2ZIJaErMJ3j/t8SKthj8TjmDDA2X8WxA8s8X6NKp2bKY7OHH3JO3MepYT9Pra j5bVCJlxunmItIDYsrFjErGmfjZo1FQL/HcnuFl7LE34sYGJ+A== -----END CERTIFICATE-----Generated at Fri Dec 5 05:41:37 2025 by rpki-client