This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3231322e39372e36392e302f32342d3234203d3e20313336373837.roa File: 3231322e39372e36392e302f32342d3234203d3e20313336373837.roa (raw, json) Hash identifier: Z4VnagT12AdbjWQVBQtkq1XpErcuL7DxyYOKHS/uUJU= Subject key identifier: 9A:15:2D:82:22:2A:FD:AB:EA:A2:F3:E8:4F:03:B6:DC:EC:CF:80:C4 Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Certificate serial: 2AD55550DB5EB5CFB972924917104749DB9687D1 Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3231322e39372e36392e302f32342d3234203d3e20313336373837.roa Signing time: Tue 02 Dec 2025 19:50:12 +0000 ROA not before: Tue 02 Dec 2025 19:45:12 +0000 ROA not after: Tue 01 Dec 2026 19:50:12 +0000 asID: 136787 IP address blocks: 212.97.69.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 05 Dec 2025 21:22:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:d5:55:50:db:5e:b5:cf:b9:72:92:49:17:10:47:49:db:96:87:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Validity Not Before: Dec 2 19:45:12 2025 GMT Not After : Dec 1 19:50:12 2026 GMT Subject: CN=9A152D82222AFDABEAA2F3E84F03B6DCECCF80C4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:50:bf:23:15:16:d0:e5:55:6d:24:07:d3:a0: 62:5c:4b:ea:c6:94:9e:3f:f9:bc:06:42:72:2f:56: 7a:cb:da:85:b6:59:dd:ef:d5:f3:14:b7:dc:ee:a0: 19:6d:a4:19:ee:d7:90:88:6e:2e:a1:e8:40:e1:bd: f2:cd:bd:69:a0:6f:71:b1:a3:28:4b:c4:d9:a4:45: 39:f4:b6:9e:15:90:4e:cd:05:ef:b8:bb:a7:9f:c3: ac:f0:0c:de:3c:f3:22:c6:1d:f4:74:c1:2e:39:41: ce:e2:04:07:6c:5e:08:74:4b:c5:17:17:1a:a6:24: bb:c8:8c:cd:97:35:a2:46:22:12:11:df:3f:a3:2a: 38:74:c4:14:ec:1c:e6:d7:d0:13:45:eb:a1:cd:ad: f6:95:c8:db:26:9f:68:49:5f:27:a8:0c:b2:fd:b4: c6:47:19:c7:4a:9a:11:53:dc:83:25:49:44:c3:74: c9:cd:75:ea:29:02:01:ed:40:b7:43:40:20:80:65: 3e:55:fe:95:1f:45:d4:25:1e:2f:e1:e2:2f:91:02: c6:6c:2e:00:b1:92:6c:a2:43:08:7c:4f:19:7f:b5: dd:7e:22:32:37:93:5e:e5:d6:18:f9:f3:a8:fe:14: 9a:23:5f:b1:75:0e:08:c7:e6:2a:6e:a0:4e:15:ed: bc:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:15:2D:82:22:2A:FD:AB:EA:A2:F3:E8:4F:03:B6:DC:EC:CF:80:C4 X509v3 Authority Key Identifier: keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3231322e39372e36392e302f32342d3234203d3e20313336373837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 212.97.69.0/24 Signature Algorithm: sha256WithRSAEncryption 6f:7a:df:8c:e1:3d:5c:3d:ef:f3:57:65:4e:66:af:29:f6:6e: 66:c5:d7:6a:ce:55:15:92:82:5f:ad:dc:1e:1e:5c:dd:0f:84: 15:c2:a3:f4:c0:5e:b6:9d:72:d6:38:bb:14:39:67:cb:24:35: 1d:6d:9b:db:bc:3c:55:d1:2d:a0:f8:5e:a8:f2:d4:9c:ed:ae: 64:7d:6f:19:a3:bd:a6:cc:a6:af:7b:e1:04:c2:da:51:97:22: 71:87:26:6a:2f:45:f8:33:10:29:4c:ba:2d:f1:06:83:53:e6: fa:dd:bc:c2:ae:4c:5e:80:62:74:62:c3:7b:45:8a:2a:9e:35: c8:63:22:24:f0:ba:a6:dc:34:0b:7a:9a:95:e9:8d:96:8a:9a: 6b:22:40:be:d9:35:c4:7b:72:fa:0b:78:0e:56:4d:94:c7:f4: d7:a0:40:1e:f9:e6:bf:c5:8f:ae:2c:7a:3f:b0:ff:5b:ce:94: 7b:f7:ee:cc:5e:21:f1:37:80:e4:ab:73:6e:4f:e7:e3:1a:32: 82:c1:cc:b1:f5:78:86:82:be:e2:e2:5a:e5:3f:ca:75:1f:c1: 52:2f:c5:7c:12:0f:25:48:b1:a6:61:4a:ee:eb:61:2d:23:ab: a4:f1:c9:74:4a:3e:01:53:b3:77:39:64:9f:19:6d:e9:36:3b: 4b:a0:e8:32 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUKtVVUNtetc+5cpJJFxBHSduWh9EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0 ZWE3Nzc5YzAeFw0yNTEyMDIxOTQ1MTJaFw0yNjEyMDExOTUwMTJaMDMxMTAvBgNV BAMTKDlBMTUyRDgyMjIyQUZEQUJFQUEyRjNFODRGMDNCNkRDRUNDRjgwQzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKUL8jFRbQ5VVtJAfToGJcS+rG lJ4/+bwGQnIvVnrL2oW2Wd3v1fMUt9zuoBltpBnu15CIbi6h6EDhvfLNvWmgb3Gx oyhLxNmkRTn0tp4VkE7NBe+4u6efw6zwDN488yLGHfR0wS45Qc7iBAdsXgh0S8UX FxqmJLvIjM2XNaJGIhIR3z+jKjh0xBTsHObX0BNF66HNrfaVyNsmn2hJXyeoDLL9 tMZHGcdKmhFT3IMlSUTDdMnNdeopAgHtQLdDQCCAZT5V/pUfRdQlHi/h4i+RAsZs LgCxkmyiQwh8Txl/td1+IjI3k17l1hj586j+FJojX7F1DgjH5ipuoE4V7bwtAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUmhUtgiIq/avqovPoTwO23OzPgMQwHwYDVR0j BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2 bmQ1dy5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzIzMTMyMmUzOTM3MmUzNjM5 MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzEzMzM2MzczODM3LnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA 1GFFMA0GCSqGSIb3DQEBCwUAA4IBAQBvet+M4T1cPe/zV2VOZq8p9m5mxddqzlUV koJfrdweHlzdD4QVwqP0wF62nXLWOLsUOWfLJDUdbZvbvDxV0S2g+F6o8tSc7a5k fW8Zo72mzKave+EEwtpRlyJxhyZqL0X4MxApTLot8QaDU+b63bzCrkxegGJ0YsN7 RYoqnjXIYyIk8Lqm3DQLepqV6Y2WipprIkC+2TXEe3L6C3gOVk2Ux/TXoEAe+ea/ xY+uLHo/sP9bzpR79+7MXiHxN4Dkq3NuT+fjGjKCwcyx9XiGgr7i4lrlP8p1H8FS L8V8Eg8lSLGmYUru62EtI6uk8cl0Sj4BU7N3OWSfGW3pNjtLoOgy -----END CERTIFICATE-----Generated at Fri Dec 5 05:39:26 2025 by rpki-client