This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/33372e36302e3234302e302f32302d3332203d3e203531313637.roa File: 33372e36302e3234302e302f32302d3332203d3e203531313637.roa (raw, json) Hash identifier: 7V+TyCtl4idTLecZ87CrkWRWBykl/4nQQxjWq+XDEQY= Subject key identifier: 80:D4:E1:FB:B7:5C:5A:49:D6:97:DC:7A:62:BF:A7:A9:C7:41:CE:9B Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Certificate serial: 78786F80264E1C39B9610ECD3A9A7F27D33210E6 Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/33372e36302e3234302e302f32302d3332203d3e203531313637.roa Signing time: Thu 27 Nov 2025 10:49:14 +0000 ROA not before: Thu 27 Nov 2025 10:44:14 +0000 ROA not after: Thu 26 Nov 2026 10:49:14 +0000 asID: 51167 IP address blocks: 37.60.240.0/20 maxlen: 32 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 05 Dec 2025 21:22:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:78:6f:80:26:4e:1c:39:b9:61:0e:cd:3a:9a:7f:27:d3:32:10:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Validity Not Before: Nov 27 10:44:14 2025 GMT Not After : Nov 26 10:49:14 2026 GMT Subject: CN=80D4E1FBB75C5A49D697DC7A62BFA7A9C741CE9B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:d2:fd:7c:22:bc:49:bf:60:db:ae:27:c2:77: e3:6d:78:ee:2a:cc:88:ea:11:e4:23:37:89:ae:ab: 3f:be:07:83:71:39:b7:6f:4f:f3:db:9b:4b:43:d2: 5a:b3:a6:98:e4:9e:45:8b:5b:3f:5e:83:2b:70:be: bc:4d:a9:d3:07:20:13:24:48:cb:a2:88:d8:4f:39: 63:5a:1d:93:be:49:27:c4:dc:d4:94:94:7f:0c:a1: c3:13:fb:f0:9e:32:6f:1e:6f:75:f6:2b:4c:0e:73: 5a:bd:62:2d:79:d5:af:fa:c1:a1:0d:40:53:ee:80: ee:3b:bf:88:fa:7e:88:82:92:f3:d4:ae:75:cf:06: 42:f0:4d:3d:2e:0b:83:31:76:d9:ef:54:2f:b6:3d: 48:50:a6:30:40:8d:57:78:b6:f6:2d:ba:81:44:8a: 5d:34:55:6a:b0:17:dc:92:40:11:99:2d:25:66:1b: 67:25:c0:15:5a:93:64:0f:2c:8a:ec:e1:ea:05:bb: e3:95:8f:9b:90:8d:a2:aa:b9:d6:38:a4:f9:9f:40: 30:99:92:6d:20:a9:6a:17:0f:ed:33:21:12:8b:3f: cf:63:03:a5:8c:b4:3a:ab:a1:81:36:07:5a:5c:40: 09:23:1d:e8:df:04:ad:a3:70:f3:a9:4d:bb:4e:3b: a5:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:D4:E1:FB:B7:5C:5A:49:D6:97:DC:7A:62:BF:A7:A9:C7:41:CE:9B X509v3 Authority Key Identifier: keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/33372e36302e3234302e302f32302d3332203d3e203531313637.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.60.240.0/20 Signature Algorithm: sha256WithRSAEncryption 65:98:be:78:e0:4c:3e:4b:bd:39:e3:a8:46:a6:0a:92:e5:73: 33:86:a2:bf:2b:ba:b2:09:49:fe:b0:2d:e2:b4:90:26:8a:62: 13:cd:d1:e6:90:02:36:0d:fd:e8:6c:37:f0:c9:50:5b:99:68: 97:20:c6:59:99:92:99:1d:05:7e:de:47:d4:bc:44:3c:3e:1d: 6d:bb:f8:6a:4e:f7:8a:dc:69:56:b6:0b:fa:c0:0e:48:ac:6d: b1:89:92:09:38:a0:d0:33:88:b6:c4:c5:e7:3c:4b:74:51:af: 07:42:c1:9d:f8:43:24:6c:a3:0e:fb:18:63:1d:f6:3c:89:6a: 7f:bf:f8:a9:25:2d:76:12:3b:a0:14:8d:97:dc:3a:86:8b:1d: cc:dc:21:52:e9:04:ba:6f:f7:dd:9b:ab:79:ac:34:98:94:7c: d1:7c:7f:b9:02:34:9d:54:75:4b:b2:d4:39:74:db:4e:35:77: ec:c6:a6:56:be:80:71:f6:7d:f4:4c:de:53:36:8e:5e:ed:85: 61:ae:5c:e2:c5:90:64:9a:4b:02:af:8d:1b:b3:de:24:00:d6: 15:16:b9:4d:b0:9f:e7:81:3d:dc:eb:52:f9:bd:8c:e3:f3:0e: cc:72:c3:1a:07:14:fd:68:4b:c1:58:bc:79:bb:75:04:54:c1: 2b:b9:33:cf -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUeHhvgCZOHDm5YQ7NOpp/J9MyEOYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0 ZWE3Nzc5YzAeFw0yNTExMjcxMDQ0MTRaFw0yNjExMjYxMDQ5MTRaMDMxMTAvBgNV BAMTKDgwRDRFMUZCQjc1QzVBNDlENjk3REM3QTYyQkZBN0E5Qzc0MUNFOUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCi0v18IrxJv2DbrifCd+NteO4q zIjqEeQjN4muqz++B4NxObdvT/Pbm0tD0lqzppjknkWLWz9egytwvrxNqdMHIBMk SMuiiNhPOWNaHZO+SSfE3NSUlH8MocMT+/CeMm8eb3X2K0wOc1q9Yi151a/6waEN QFPugO47v4j6foiCkvPUrnXPBkLwTT0uC4MxdtnvVC+2PUhQpjBAjVd4tvYtuoFE il00VWqwF9ySQBGZLSVmG2clwBVak2QPLIrs4eoFu+OVj5uQjaKqudY4pPmfQDCZ km0gqWoXD+0zIRKLP89jA6WMtDqroYE2B1pcQAkjHejfBK2jcPOpTbtOO6X5AgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUgNTh+7dcWknWl9x6Yr+nqcdBzpswHwYDVR0j BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2 bmQ1dy5jZXIwgasGCCsGAQUFBwELBIGeMIGbMIGYBggrBgEFBQcwC4aBi3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzMzNzJlMzYzMDJlMzIzNDMw MmUzMDJmMzIzMDJkMzMzMjIwM2QzZTIwMzUzMTMxMzYzNy5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBCU8 8DANBgkqhkiG9w0BAQsFAAOCAQEAZZi+eOBMPku9OeOoRqYKkuVzM4aivyu6sglJ /rAt4rSQJopiE83R5pACNg396Gw38MlQW5lolyDGWZmSmR0Fft5H1LxEPD4dbbv4 ak73itxpVrYL+sAOSKxtsYmSCTig0DOItsTF5zxLdFGvB0LBnfhDJGyjDvsYYx32 PIlqf7/4qSUtdhI7oBSNl9w6hosdzNwhUukEum/33Zureaw0mJR80Xx/uQI0nVR1 S7LUOXTbTjV37MamVr6AcfZ99EzeUzaOXu2FYa5c4sWQZJpLAq+NG7PeJADWFRa5 TbCf54E93OtS+b2M4/MOzHLDGgcU/WhLwVi8ebt1BFTBK7kzzw== -----END CERTIFICATE-----Generated at Fri Dec 5 06:23:35 2025 by rpki-client