This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/34352e3133342e3139302e302f32342d3234203d3e20313336373837.roa File: 34352e3133342e3139302e302f32342d3234203d3e20313336373837.roa (raw, json) Hash identifier: tD5FGoi2wGaSlO/wzDSYU0YqO8HzIO7lQEjKaAjWvnc= Subject key identifier: 08:41:24:C4:13:00:BF:87:AA:06:08:08:B8:FC:CA:22:D3:B5:17:6E Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Certificate serial: 656D2ED491F782BFE3969DC31C06751A70CE02B5 Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/34352e3133342e3139302e302f32342d3234203d3e20313336373837.roa Signing time: Fri 28 Nov 2025 19:49:58 +0000 ROA not before: Fri 28 Nov 2025 19:44:58 +0000 ROA not after: Fri 27 Nov 2026 19:49:58 +0000 asID: 136787 IP address blocks: 45.134.190.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 05 Dec 2025 21:22:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:6d:2e:d4:91:f7:82:bf:e3:96:9d:c3:1c:06:75:1a:70:ce:02:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Validity Not Before: Nov 28 19:44:58 2025 GMT Not After : Nov 27 19:49:58 2026 GMT Subject: CN=084124C41300BF87AA060808B8FCCA22D3B5176E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:fa:55:b6:39:3e:7a:67:8c:ea:9d:ad:30:7e: 01:71:20:8b:f4:da:8f:ef:fe:d5:50:3e:cb:04:ea: f5:32:42:dd:b4:59:34:95:cb:d8:6e:d7:25:0c:54: e1:b4:3d:e5:25:41:bc:94:97:94:aa:5c:11:2d:2f: 7d:09:ab:7e:87:68:47:29:58:25:ad:91:6e:9f:42: 19:57:d0:ea:1a:15:d0:da:91:4d:90:73:7b:df:78: 96:a5:23:fd:a1:0e:24:26:ed:f3:88:53:59:e4:17: cc:2f:e6:8b:18:6a:fb:29:d5:a7:6d:7c:88:47:35: 39:0f:44:d8:45:a9:81:87:db:19:b3:5c:42:7d:97: 98:37:67:ad:bd:4f:a3:62:3b:a1:93:b4:d1:63:fe: 4a:8c:15:15:b5:34:54:1e:36:d8:6b:f4:e7:0c:11: d3:f5:ed:48:67:1b:63:a7:d7:21:87:0b:3e:8e:7a: 1d:58:11:0d:60:46:20:c4:97:13:2a:69:7a:38:0c: ab:38:d8:b1:70:0d:54:9b:39:c5:32:15:7a:66:9e: fa:fa:75:14:3f:49:32:1d:a4:d4:db:a1:dc:bb:a9: 92:7d:e5:6c:53:5b:a0:39:53:e2:aa:4b:15:bc:33: fd:7b:e5:0d:76:99:cf:a9:25:37:f9:dd:b4:a8:8c: 65:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:41:24:C4:13:00:BF:87:AA:06:08:08:B8:FC:CA:22:D3:B5:17:6E X509v3 Authority Key Identifier: keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/34352e3133342e3139302e302f32342d3234203d3e20313336373837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.134.190.0/24 Signature Algorithm: sha256WithRSAEncryption 21:fa:bf:23:59:65:bb:2b:98:54:f4:95:41:11:3c:54:79:04: a4:4a:ac:5f:f4:c0:5e:c2:94:8d:ed:30:19:e9:fe:59:9e:d1: ef:57:80:bf:88:1d:08:12:c6:2e:71:9e:49:b1:fe:b8:f6:49: 87:f0:41:12:f4:ce:1f:04:69:f8:b5:90:a7:83:c3:46:07:5c: b7:cc:a1:1e:17:53:2b:f5:27:df:28:da:9f:6e:27:33:34:96: c6:7b:b6:91:3f:68:34:6d:70:fa:5e:fb:f0:6b:f6:85:c5:83: ca:70:72:a5:89:b1:52:1f:91:e4:f2:09:5e:31:5a:4a:5f:d6: c7:9c:ad:ce:fa:bc:45:28:a9:b5:6d:7c:47:ba:38:6e:85:93: c9:02:a2:02:88:8f:c7:7f:21:58:dd:07:4e:6b:2c:fa:53:9e: 47:0b:d9:fd:7b:7e:59:2a:00:0d:67:91:48:13:f3:79:76:0c: f9:0d:25:48:43:60:5e:8c:34:2b:5a:79:36:6d:95:ce:d0:14: dc:dc:9b:02:e2:14:ac:45:7c:66:b4:75:4c:c8:fa:cd:63:13: 92:68:af:90:66:c2:37:31:72:fe:4c:e3:70:ac:cb:03:f1:9e: 1b:bf:90:0e:3a:94:0f:34:e9:bf:ff:e1:03:80:e2:cd:08:f5: fb:50:36:d3 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUZW0u1JH3gr/jlp3DHAZ1GnDOArUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0 ZWE3Nzc5YzAeFw0yNTExMjgxOTQ0NThaFw0yNjExMjcxOTQ5NThaMDMxMTAvBgNV BAMTKDA4NDEyNEM0MTMwMEJGODdBQTA2MDgwOEI4RkNDQTIyRDNCNTE3NkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3+lW2OT56Z4zqna0wfgFxIIv0 2o/v/tVQPssE6vUyQt20WTSVy9hu1yUMVOG0PeUlQbyUl5SqXBEtL30Jq36HaEcp WCWtkW6fQhlX0OoaFdDakU2Qc3vfeJalI/2hDiQm7fOIU1nkF8wv5osYavsp1adt fIhHNTkPRNhFqYGH2xmzXEJ9l5g3Z629T6NiO6GTtNFj/kqMFRW1NFQeNthr9OcM EdP17UhnG2On1yGHCz6Oeh1YEQ1gRiDElxMqaXo4DKs42LFwDVSbOcUyFXpmnvr6 dRQ/STIdpNTbody7qZJ95WxTW6A5U+KqSxW8M/175Q12mc+pJTf53bSojGVRAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUCEEkxBMAv4eqBggIuPzKItO1F24wHwYDVR0j BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2 bmQ1dy5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzQzNTJlMzEzMzM0MmUzMTM5 MzAyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMTMzMzYzNzM4Mzcucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAAthr4wDQYJKoZIhvcNAQELBQADggEBACH6vyNZZbsrmFT0lUERPFR5BKRKrF/0 wF7ClI3tMBnp/lme0e9XgL+IHQgSxi5xnkmx/rj2SYfwQRL0zh8Eafi1kKeDw0YH XLfMoR4XUyv1J98o2p9uJzM0lsZ7tpE/aDRtcPpe+/Br9oXFg8pwcqWJsVIfkeTy CV4xWkpf1secrc76vEUoqbVtfEe6OG6Fk8kCogKIj8d/IVjdB05rLPpTnkcL2f17 flkqAA1nkUgT83l2DPkNJUhDYF6MNCtaeTZtlc7QFNzcmwLiFKxFfGa0dUzI+s1j E5Jor5Bmwjcxcv5M43CsywPxnhu/kA46lA806b//4QOA4s0I9ftQNtM= -----END CERTIFICATE-----Generated at Fri Dec 5 05:39:21 2025 by rpki-client