This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38322e3134392e37392e302f32342d3234203d3e20313336373837.roa File: 38322e3134392e37392e302f32342d3234203d3e20313336373837.roa (raw, json) Hash identifier: iBmBv6KaSjb9bJkDqcv43gncQmxArDf8kJRPDNIGFTE= Subject key identifier: AA:3F:A6:20:01:35:EF:03:21:E8:4B:DC:DA:87:92:19:41:5D:BD:43 Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Certificate serial: 4C340F53CCB617EFB4DF4FD9D733232CCE4FE6DA Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38322e3134392e37392e302f32342d3234203d3e20313336373837.roa Signing time: Tue 02 Dec 2025 19:50:12 +0000 ROA not before: Tue 02 Dec 2025 19:45:12 +0000 ROA not after: Tue 01 Dec 2026 19:50:12 +0000 asID: 136787 IP address blocks: 82.149.79.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 05 Dec 2025 21:22:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:34:0f:53:cc:b6:17:ef:b4:df:4f:d9:d7:33:23:2c:ce:4f:e6:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Validity Not Before: Dec 2 19:45:12 2025 GMT Not After : Dec 1 19:50:12 2026 GMT Subject: CN=AA3FA6200135EF0321E84BDCDA879219415DBD43 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:1f:64:5a:a4:d5:fb:e1:66:8d:cb:14:2f:64: 55:93:52:3a:e2:6d:24:23:13:69:94:df:54:0b:f3: d5:6a:61:ff:79:1b:ef:94:71:72:74:58:a0:07:e2: e7:89:6c:d8:3e:f1:0f:06:30:ec:c3:a9:08:2f:76: e4:f2:b4:a8:3e:b4:88:68:4f:d9:1b:dc:da:f8:c2: 5d:de:1e:61:31:7c:7a:19:8a:95:10:7d:bd:f8:aa: 48:29:4f:dc:f0:9c:39:f2:7e:f3:45:6c:78:b0:16: bb:b1:6e:20:27:b4:1b:f7:57:d6:3f:24:82:70:7b: d0:5d:cf:7d:66:d1:bb:2b:97:dc:5d:e4:f1:b7:5c: 24:23:2a:86:ab:af:8f:7f:59:43:2e:16:22:5d:50: cf:61:4e:f0:79:b7:26:e3:64:15:2a:08:74:37:86: fd:76:6a:62:06:5f:0b:18:9e:80:be:b7:bc:fe:b4: fd:f0:6a:f6:15:89:0e:08:e1:a9:11:57:35:32:1a: ef:99:be:3e:4b:9f:37:bf:90:70:7a:a6:e6:8e:3f: b1:eb:36:cd:cb:81:0a:26:19:10:6d:2d:58:05:8f: f5:49:3c:40:64:58:76:0e:33:6a:f8:f1:9b:e8:bf: 76:02:84:0c:3b:7c:7d:83:8a:5f:0c:cd:2e:79:0e: 2f:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:3F:A6:20:01:35:EF:03:21:E8:4B:DC:DA:87:92:19:41:5D:BD:43 X509v3 Authority Key Identifier: keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38322e3134392e37392e302f32342d3234203d3e20313336373837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 82.149.79.0/24 Signature Algorithm: sha256WithRSAEncryption 2e:8f:f5:19:c6:c0:91:e8:e7:16:4f:ae:ea:c7:10:1e:57:77: 91:f8:b1:75:bb:b0:37:2f:53:41:e1:34:45:0f:c4:eb:75:8e: b2:33:6c:83:f7:c8:15:36:6c:ca:3a:7d:77:03:19:9d:9f:82: d5:5e:27:b7:92:4b:39:06:42:8b:a2:d3:a3:a9:be:6a:ed:d1: c4:fa:ae:46:08:dc:f6:70:39:ef:29:4f:b2:38:2a:67:75:fc: 5d:50:1c:4f:43:03:43:37:6d:2d:22:82:27:9c:b0:92:7d:09: aa:1c:61:56:17:94:ae:b2:37:0d:b3:df:55:07:06:59:f9:c3: 5a:06:00:28:5b:12:e9:d7:90:ec:60:60:10:8c:6c:76:43:a2: 6f:c6:0a:65:33:d5:6c:d7:91:39:a7:0c:9e:e0:16:9a:88:3e: 93:cf:f3:b1:5f:51:c6:ad:b3:52:eb:15:fa:e7:95:28:70:4a: 26:29:69:fd:0f:9f:a6:f6:9a:9c:c8:07:3b:23:64:51:d8:99: 40:15:e0:c8:e7:15:5f:da:f0:54:a7:d5:e1:aa:cc:95:66:5e: 52:8e:c2:19:01:4c:1e:ed:a2:fa:77:84:13:ad:8b:cc:ea:5a: 67:c4:00:a0:3e:28:a4:79:61:b4:fe:89:f6:5e:1a:f0:6c:08: ba:5b:a8:e2 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUTDQPU8y2F++030/Z1zMjLM5P5towDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0 ZWE3Nzc5YzAeFw0yNTEyMDIxOTQ1MTJaFw0yNjEyMDExOTUwMTJaMDMxMTAvBgNV BAMTKEFBM0ZBNjIwMDEzNUVGMDMyMUU4NEJEQ0RBODc5MjE5NDE1REJENDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwH2RapNX74WaNyxQvZFWTUjri bSQjE2mU31QL89VqYf95G++UcXJ0WKAH4ueJbNg+8Q8GMOzDqQgvduTytKg+tIho T9kb3Nr4wl3eHmExfHoZipUQfb34qkgpT9zwnDnyfvNFbHiwFruxbiAntBv3V9Y/ JIJwe9Bdz31m0bsrl9xd5PG3XCQjKoarr49/WUMuFiJdUM9hTvB5tybjZBUqCHQ3 hv12amIGXwsYnoC+t7z+tP3wavYViQ4I4akRVzUyGu+Zvj5Lnze/kHB6puaOP7Hr Ns3LgQomGRBtLVgFj/VJPEBkWHYOM2r48Zvov3YChAw7fH2Dil8MzS55Di/3AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUqj+mIAE17wMh6Evc2oeSGUFdvUMwHwYDVR0j BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2 bmQ1dy5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzgzMjJlMzEzNDM5MmUzNzM5 MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzEzMzM2MzczODM3LnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA UpVPMA0GCSqGSIb3DQEBCwUAA4IBAQAuj/UZxsCR6OcWT67qxxAeV3eR+LF1u7A3 L1NB4TRFD8TrdY6yM2yD98gVNmzKOn13Axmdn4LVXie3kks5BkKLotOjqb5q7dHE +q5GCNz2cDnvKU+yOCpndfxdUBxPQwNDN20tIoInnLCSfQmqHGFWF5SusjcNs99V BwZZ+cNaBgAoWxLp15DsYGAQjGx2Q6JvxgplM9Vs15E5pwye4BaaiD6Tz/OxX1HG rbNS6xX655UocEomKWn9D5+m9pqcyAc7I2RR2JlAFeDI5xVf2vBUp9XhqsyVZl5S jsIZAUwe7aL6d4QTrYvM6lpnxACgPiikeWG0/on2XhrwbAi6W6ji -----END CERTIFICATE-----Generated at Fri Dec 5 05:39:24 2025 by rpki-client