This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3139342e33322e3233332e302f32342d3234203d3e20313336373837.roa File: 3139342e33322e3233332e302f32342d3234203d3e20313336373837.roa (raw, json) Hash identifier: /yzzGbU+AdoG+mE4gOyYFs0G30gS55HEctTNY4qf5zY= Subject key identifier: 9B:8C:48:72:A1:1E:E4:1D:D6:2C:C3:05:ED:75:25:78:EB:10:F3:C5 Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Certificate serial: 19D6F1B77D61662FE721B46B1F858F3C2057CDAD Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3139342e33322e3233332e302f32342d3234203d3e20313336373837.roa Signing time: Sun 16 Nov 2025 18:48:53 +0000 ROA not before: Sun 16 Nov 2025 18:43:53 +0000 ROA not after: Sun 15 Nov 2026 18:48:53 +0000 asID: 136787 IP address blocks: 194.32.233.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 05 Dec 2025 21:22:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:d6:f1:b7:7d:61:66:2f:e7:21:b4:6b:1f:85:8f:3c:20:57:cd:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Validity Not Before: Nov 16 18:43:53 2025 GMT Not After : Nov 15 18:48:53 2026 GMT Subject: CN=9B8C4872A11EE41DD62CC305ED752578EB10F3C5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:cb:92:1b:af:67:17:c8:74:ec:0e:42:48:3a: 25:a6:c9:67:66:6a:83:06:ff:88:7e:0c:ac:88:9d: 4b:b7:1b:20:ad:76:5a:c4:0f:fc:b9:72:4c:c6:2f: c2:fd:64:4f:94:51:42:9e:71:d9:3a:ff:ca:48:53: bb:4e:70:b4:69:5f:09:4f:93:6d:a8:8a:ab:3c:2d: 89:6c:28:69:8b:64:14:1a:26:c9:85:6a:28:aa:87: e2:4c:bd:b6:b1:80:c6:ad:06:07:13:04:c7:5d:63: 2d:fb:32:fe:18:93:96:5a:49:ac:03:63:de:92:16: ac:0a:81:9b:e4:b0:25:18:94:dd:5d:99:28:a5:fa: 97:fa:73:c3:d3:59:4b:a1:60:bf:09:44:0f:e5:fe: 02:bc:fc:7b:6d:ba:8d:fa:67:a3:6e:6f:f5:d5:1d: 18:e5:b8:2f:3b:a0:36:96:89:ad:c0:90:6c:89:2a: 6f:e3:6c:aa:98:9e:0a:0f:69:b0:40:a1:53:07:b5: be:bf:57:c8:05:8f:42:6b:f8:66:ad:21:71:94:82: 44:88:23:ee:f9:37:f6:cd:5a:8d:b5:d8:4e:f5:89: 6d:0e:55:8a:5f:1a:8b:4f:00:ae:2b:59:4b:c4:fe: 20:d8:53:76:cf:84:1e:d6:a7:2f:60:2c:98:60:e1: b0:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:8C:48:72:A1:1E:E4:1D:D6:2C:C3:05:ED:75:25:78:EB:10:F3:C5 X509v3 Authority Key Identifier: keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3139342e33322e3233332e302f32342d3234203d3e20313336373837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.32.233.0/24 Signature Algorithm: sha256WithRSAEncryption 2d:cd:56:86:aa:50:ed:cb:bb:ed:03:16:1c:c0:f5:bc:45:d4: 65:2c:4e:fe:b7:51:04:60:e8:88:11:09:75:ff:eb:fe:45:25: 0e:94:98:9e:cb:17:60:22:66:c6:bb:52:d2:51:ba:7c:ba:98: e5:b9:0e:28:0a:52:dc:1a:78:22:7e:c5:c1:ab:3e:29:e7:1b: 4e:09:a9:79:62:fd:34:af:ae:ac:cc:54:c5:a1:9a:ae:4c:c1: fc:2e:a5:d0:ed:f9:71:53:81:14:62:81:b0:3e:6c:ba:36:dc: 48:10:4b:e1:43:03:8a:4b:c8:cf:ec:36:b5:51:ee:be:26:96: c6:11:d7:c7:9a:22:f8:5d:ca:a0:17:69:0a:f1:59:00:f0:ca: 51:73:e7:21:18:ab:be:47:03:b1:40:2e:e6:c3:85:48:8a:b6: 02:6f:ab:b7:61:dc:04:cb:79:1b:f9:74:dc:b1:b5:56:42:f4: 7b:04:62:27:a6:36:b8:68:ab:41:7a:9a:97:58:73:9b:c3:39: c2:61:f8:79:81:0d:a7:07:e9:a3:03:58:7b:54:36:be:f7:2b: 66:73:4e:eb:b5:b4:7b:36:1f:56:6f:f5:58:18:23:e6:40:3a: c7:e2:fb:fc:cf:2d:3a:88:d7:d9:e8:7c:c3:ab:fd:e0:f7:14: aa:a3:df:f4 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUGdbxt31hZi/nIbRrH4WPPCBXza0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0 ZWE3Nzc5YzAeFw0yNTExMTYxODQzNTNaFw0yNjExMTUxODQ4NTNaMDMxMTAvBgNV BAMTKDlCOEM0ODcyQTExRUU0MURENjJDQzMwNUVENzUyNTc4RUIxMEYzQzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDty5Ibr2cXyHTsDkJIOiWmyWdm aoMG/4h+DKyInUu3GyCtdlrED/y5ckzGL8L9ZE+UUUKecdk6/8pIU7tOcLRpXwlP k22oiqs8LYlsKGmLZBQaJsmFaiiqh+JMvbaxgMatBgcTBMddYy37Mv4Yk5ZaSawD Y96SFqwKgZvksCUYlN1dmSil+pf6c8PTWUuhYL8JRA/l/gK8/Httuo36Z6Nub/XV HRjluC87oDaWia3AkGyJKm/jbKqYngoPabBAoVMHtb6/V8gFj0Jr+GatIXGUgkSI I+75N/bNWo212E71iW0OVYpfGotPAK4rWUvE/iDYU3bPhB7Wpy9gLJhg4bBzAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUm4xIcqEe5B3WLMMF7XUleOsQ88UwHwYDVR0j BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2 bmQ1dy5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzEzOTM0MmUzMzMyMmUzMjMz MzMyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMTMzMzYzNzM4Mzcucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BADCIOkwDQYJKoZIhvcNAQELBQADggEBAC3NVoaqUO3Lu+0DFhzA9bxF1GUsTv63 UQRg6IgRCXX/6/5FJQ6UmJ7LF2AiZsa7UtJRuny6mOW5DigKUtwaeCJ+xcGrPinn G04JqXli/TSvrqzMVMWhmq5MwfwupdDt+XFTgRRigbA+bLo23EgQS+FDA4pLyM/s NrVR7r4mlsYR18eaIvhdyqAXaQrxWQDwylFz5yEYq75HA7FALubDhUiKtgJvq7dh 3ATLeRv5dNyxtVZC9HsEYiemNrhoq0F6mpdYc5vDOcJh+HmBDacH6aMDWHtUNr73 K2ZzTuu1tHs2H1Zv9VgYI+ZAOsfi+/zPLTqI19nofMOr/eD3FKqj3/Q= -----END CERTIFICATE-----Generated at Fri Dec 5 05:39:22 2025 by rpki-client