This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3231322e39372e36372e302f32342d3234203d3e20313336373837.roa File: 3231322e39372e36372e302f32342d3234203d3e20313336373837.roa (raw, json) Hash identifier: 9mAEYc//tFd5v39+CyY8k2SXFVq87m1fhnKM44uSM/I= Subject key identifier: E6:D6:19:C2:E1:E0:95:9F:A4:33:FE:B5:25:DB:A0:82:75:BB:D3:56 Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Certificate serial: 23CBF77456248E7B1E7787A69A80D39466149A1C Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3231322e39372e36372e302f32342d3234203d3e20313336373837.roa Signing time: Fri 28 Nov 2025 19:49:58 +0000 ROA not before: Fri 28 Nov 2025 19:44:58 +0000 ROA not after: Fri 27 Nov 2026 19:49:58 +0000 asID: 136787 IP address blocks: 212.97.67.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 05 Dec 2025 21:22:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:cb:f7:74:56:24:8e:7b:1e:77:87:a6:9a:80:d3:94:66:14:9a:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Validity Not Before: Nov 28 19:44:58 2025 GMT Not After : Nov 27 19:49:58 2026 GMT Subject: CN=E6D619C2E1E0959FA433FEB525DBA08275BBD356 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:63:94:63:c0:24:3b:74:1c:f0:08:9d:67:05: c8:0a:f2:7e:01:f9:96:00:a4:eb:79:3f:eb:63:50: cc:ac:6a:f2:8b:a9:27:79:ce:82:6f:b5:aa:68:75: 96:ff:fe:90:06:98:52:d0:64:94:d8:03:b7:4d:a8: 3e:dc:d0:75:c7:ec:e9:1a:e4:39:91:3f:43:27:5a: eb:d9:27:f5:9e:ab:c3:b1:01:fe:1b:3c:21:b8:74: 0d:e7:d3:d7:c7:ff:00:c7:46:5d:f6:e8:16:25:1c: c9:c4:0f:8d:ae:0c:30:27:59:71:3f:2f:10:82:b0: 9f:35:98:6f:b5:2f:ae:9e:30:fc:dc:d1:35:b6:c2: 46:fa:2d:20:f2:4f:00:75:a2:73:29:43:ce:cc:db: 90:06:ad:6e:c7:ce:0e:c0:ab:7e:76:13:01:2d:0f: ce:a3:ca:75:c3:35:8b:ba:57:49:b0:72:fe:40:40: fa:d3:40:be:38:3e:98:67:4d:28:69:a8:2a:da:e6: 34:9b:b7:21:90:cb:5a:35:07:85:81:6d:5f:20:47: 84:b7:92:e9:84:79:07:1d:eb:7f:1a:d8:37:87:6a: c0:40:1d:e3:bd:01:2b:be:43:20:01:32:41:a2:42: 4f:36:fd:72:69:fa:45:88:52:22:2b:bd:ee:46:cc: b7:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:D6:19:C2:E1:E0:95:9F:A4:33:FE:B5:25:DB:A0:82:75:BB:D3:56 X509v3 Authority Key Identifier: keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3231322e39372e36372e302f32342d3234203d3e20313336373837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 212.97.67.0/24 Signature Algorithm: sha256WithRSAEncryption 85:3b:f3:66:a8:6c:d1:a6:10:38:e6:de:fd:e7:ca:03:17:3a: a8:26:9a:87:38:f8:64:04:cb:21:ef:57:f2:4b:2a:dc:34:74: 39:4e:42:89:08:29:9f:ce:b5:61:0f:68:bf:3b:00:31:86:79: df:3f:a5:82:2a:dd:35:01:01:92:cc:95:7c:63:7d:ca:21:f7: 81:46:db:a9:50:cc:85:77:82:6d:6f:03:44:eb:c0:2f:df:04: 6a:37:9d:67:0a:c0:64:63:01:a9:00:56:fe:16:41:4b:0a:78: ab:fd:78:9b:7d:3a:73:2d:68:78:b2:64:0d:67:2c:6f:b4:24: 64:50:60:3e:07:85:88:b6:d2:be:a1:56:9a:14:e3:96:9c:cf: 82:73:47:83:5f:a8:72:40:7b:59:81:60:4f:46:c1:85:b8:3b: 64:ac:bb:d3:2f:f3:f7:c2:e6:14:27:28:20:c7:94:23:7d:28: 1e:8c:b9:a4:71:f9:cf:31:ea:33:50:1d:59:9b:e8:f4:16:21: 1e:57:76:6a:08:7f:81:c1:2d:e3:8a:ff:44:13:d0:57:0a:49: ca:20:ed:ec:62:59:34:fe:26:75:48:9e:7f:6d:5a:07:b5:03: 14:35:fb:8d:c0:b7:06:da:27:9a:04:7f:1c:99:13:49:b0:c1: 45:17:a3:ef -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUI8v3dFYkjnsed4emmoDTlGYUmhwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0 ZWE3Nzc5YzAeFw0yNTExMjgxOTQ0NThaFw0yNjExMjcxOTQ5NThaMDMxMTAvBgNV BAMTKEU2RDYxOUMyRTFFMDk1OUZBNDMzRkVCNTI1REJBMDgyNzVCQkQzNTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGY5RjwCQ7dBzwCJ1nBcgK8n4B +ZYApOt5P+tjUMysavKLqSd5zoJvtapodZb//pAGmFLQZJTYA7dNqD7c0HXH7Oka 5DmRP0MnWuvZJ/Weq8OxAf4bPCG4dA3n09fH/wDHRl326BYlHMnED42uDDAnWXE/ LxCCsJ81mG+1L66eMPzc0TW2wkb6LSDyTwB1onMpQ87M25AGrW7Hzg7Aq352EwEt D86jynXDNYu6V0mwcv5AQPrTQL44PphnTShpqCra5jSbtyGQy1o1B4WBbV8gR4S3 kumEeQcd638a2DeHasBAHeO9ASu+QyABMkGiQk82/XJp+kWIUiIrve5GzLdlAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU5tYZwuHglZ+kM/61JduggnW701YwHwYDVR0j BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2 bmQ1dy5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzIzMTMyMmUzOTM3MmUzNjM3 MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzEzMzM2MzczODM3LnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA 1GFDMA0GCSqGSIb3DQEBCwUAA4IBAQCFO/NmqGzRphA45t7958oDFzqoJpqHOPhk BMsh71fySyrcNHQ5TkKJCCmfzrVhD2i/OwAxhnnfP6WCKt01AQGSzJV8Y33KIfeB RtupUMyFd4JtbwNE68Av3wRqN51nCsBkYwGpAFb+FkFLCnir/XibfTpzLWh4smQN ZyxvtCRkUGA+B4WIttK+oVaaFOOWnM+Cc0eDX6hyQHtZgWBPRsGFuDtkrLvTL/P3 wuYUJyggx5QjfSgejLmkcfnPMeozUB1Zm+j0FiEeV3ZqCH+BwS3jiv9EE9BXCknK IO3sYlk0/iZ1SJ5/bVoHtQMUNfuNwLcG2ieaBH8cmRNJsMFFF6Pv -----END CERTIFICATE-----Generated at Fri Dec 5 05:41:43 2025 by rpki-client