This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/34352e39352e3136302e302f32342d3234203d3e20313336373837.roa File: 34352e39352e3136302e302f32342d3234203d3e20313336373837.roa (raw, json) Hash identifier: efqbenp39+NgEdIoN4vdg+NpfQeTEx9pbR38vWsCNvQ= Subject key identifier: FA:B4:7E:01:8A:62:CF:41:F4:F8:FB:B6:E3:23:7C:07:50:F7:1A:BE Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Certificate serial: 372A207746800DF67B194E3E0EFBDC520B0D1904 Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/34352e39352e3136302e302f32342d3234203d3e20313336373837.roa Signing time: Fri 28 Nov 2025 19:49:56 +0000 ROA not before: Fri 28 Nov 2025 19:44:56 +0000 ROA not after: Fri 27 Nov 2026 19:49:56 +0000 asID: 136787 IP address blocks: 45.95.160.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 05 Dec 2025 21:22:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:2a:20:77:46:80:0d:f6:7b:19:4e:3e:0e:fb:dc:52:0b:0d:19:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Validity Not Before: Nov 28 19:44:56 2025 GMT Not After : Nov 27 19:49:56 2026 GMT Subject: CN=FAB47E018A62CF41F4F8FBB6E3237C0750F71ABE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:1b:2c:8c:c2:94:dd:5b:11:d8:25:59:0d:43: d3:91:54:ab:46:fa:95:16:2d:05:cb:13:7a:cc:70: 75:d7:f5:fb:0a:e6:a6:f1:1f:6f:07:46:07:ad:40: 0f:2d:da:83:a9:b0:f8:e9:20:f7:aa:ba:67:f1:b6: fd:4a:06:5a:34:05:4f:db:e8:ba:aa:79:7d:a3:b5: 3b:e5:52:f7:68:6f:a4:74:88:6a:da:92:e7:62:85: 46:fb:1f:d1:ee:3a:cb:c0:2b:1b:4f:45:ef:22:9e: 05:b1:4c:49:dd:10:80:64:9a:5b:bd:42:af:42:66: 98:15:b0:c1:ae:f2:8f:91:11:c0:25:6f:5f:7b:d8: 93:8b:16:f1:45:b4:91:20:f1:16:93:bb:b9:43:ba: 01:e2:66:a9:f3:e1:94:27:5c:33:3e:d1:ca:d9:22: 6a:bc:1b:9e:23:3c:f0:6a:56:e0:5d:cc:23:4a:76: d7:e8:36:36:1e:2a:33:94:a1:ea:8e:7d:e1:da:2d: 35:64:84:13:41:98:64:66:e0:ed:b2:20:50:ee:37: a8:04:5c:fc:98:6e:e6:d5:97:b0:9e:d6:42:2a:05: 11:e8:f4:00:15:13:08:1f:14:ee:50:a4:7d:98:9a: 07:75:72:cb:34:f6:ab:2c:9c:22:bb:d4:19:45:93: 29:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:B4:7E:01:8A:62:CF:41:F4:F8:FB:B6:E3:23:7C:07:50:F7:1A:BE X509v3 Authority Key Identifier: keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/34352e39352e3136302e302f32342d3234203d3e20313336373837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.95.160.0/24 Signature Algorithm: sha256WithRSAEncryption 2f:1a:57:5e:8b:b6:6a:5b:cc:df:ae:e4:99:97:26:90:ff:29: 35:19:7e:a5:84:aa:f8:85:41:fc:22:43:11:e3:75:4f:45:ad: 86:eb:40:70:7a:77:96:a4:c1:07:dd:fa:e1:11:62:38:78:11: ce:aa:32:14:2e:ac:0d:3c:b8:98:68:9d:43:58:01:c5:cd:d3: 24:2f:69:6f:d2:48:94:17:53:6f:0e:1f:e4:b8:8b:0b:f1:f1: 15:cd:97:36:37:3a:d3:ee:36:a4:fa:79:ff:83:7d:6d:25:f6: 54:9f:7a:70:96:2f:d3:e1:fa:ef:a7:ef:ad:06:8d:73:9e:b3: c2:6f:a3:b6:d3:2d:0a:c0:9e:6f:81:f9:d2:10:84:f9:82:48: 91:0d:96:14:c1:aa:20:ce:04:16:87:3e:64:d4:32:ff:0c:56: 13:23:98:27:26:8f:57:37:f6:45:70:46:9e:f4:26:85:b7:f1: d1:d8:fc:2d:95:6d:a7:11:1b:73:c8:7f:d8:07:0c:db:54:97: 76:08:d5:34:a9:69:78:61:ad:17:4a:77:91:2f:8e:86:ef:63: b4:88:a7:a3:43:72:6d:67:b6:1d:fb:14:ea:7b:f3:c2:d8:17: 34:d4:f1:b7:3e:8a:d2:db:7c:64:88:85:93:a2:f8:e8:ba:3c: 3e:04:3c:cf -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUNyogd0aADfZ7GU4+DvvcUgsNGQQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0 ZWE3Nzc5YzAeFw0yNTExMjgxOTQ0NTZaFw0yNjExMjcxOTQ5NTZaMDMxMTAvBgNV BAMTKEZBQjQ3RTAxOEE2MkNGNDFGNEY4RkJCNkUzMjM3QzA3NTBGNzFBQkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCeGyyMwpTdWxHYJVkNQ9ORVKtG +pUWLQXLE3rMcHXX9fsK5qbxH28HRgetQA8t2oOpsPjpIPequmfxtv1KBlo0BU/b 6LqqeX2jtTvlUvdob6R0iGrakudihUb7H9HuOsvAKxtPRe8ingWxTEndEIBkmlu9 Qq9CZpgVsMGu8o+REcAlb1972JOLFvFFtJEg8RaTu7lDugHiZqnz4ZQnXDM+0crZ Imq8G54jPPBqVuBdzCNKdtfoNjYeKjOUoeqOfeHaLTVkhBNBmGRm4O2yIFDuN6gE XPyYbubVl7Ce1kIqBRHo9AAVEwgfFO5QpH2Ymgd1css09qssnCK71BlFkynTAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU+rR+AYpiz0H0+Pu24yN8B1D3Gr4wHwYDVR0j BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2 bmQ1dy5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzQzNTJlMzkzNTJlMzEzNjMw MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzEzMzM2MzczODM3LnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA LV+gMA0GCSqGSIb3DQEBCwUAA4IBAQAvGldei7ZqW8zfruSZlyaQ/yk1GX6lhKr4 hUH8IkMR43VPRa2G60BweneWpMEH3frhEWI4eBHOqjIULqwNPLiYaJ1DWAHFzdMk L2lv0kiUF1NvDh/kuIsL8fEVzZc2NzrT7jak+nn/g31tJfZUn3pwli/T4frvp++t Bo1znrPCb6O20y0KwJ5vgfnSEIT5gkiRDZYUwaogzgQWhz5k1DL/DFYTI5gnJo9X N/ZFcEae9CaFt/HR2PwtlW2nERtzyH/YBwzbVJd2CNU0qWl4Ya0XSneRL46G72O0 iKejQ3JtZ7Yd+xTqe/PC2Bc01PG3PorS23xkiIWTovjoujw+BDzP -----END CERTIFICATE-----Generated at Fri Dec 5 05:37:54 2025 by rpki-client