This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38322e3134392e38312e302f32342d3234203d3e20313336373837.roa File: 38322e3134392e38312e302f32342d3234203d3e20313336373837.roa (raw, json) Hash identifier: E0Pm69Nl1iZHpp59j/+HJz8pcWBiFdd0GdMg00Wwxeo= Subject key identifier: 97:56:2F:C5:51:D9:DF:AA:22:F7:6A:51:B1:22:E9:A0:A6:04:18:1F Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Certificate serial: 1B2A652097FB4995E19FFEFBC3812D5F6796ADE1 Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38322e3134392e38312e302f32342d3234203d3e20313336373837.roa Signing time: Fri 28 Nov 2025 19:50:00 +0000 ROA not before: Fri 28 Nov 2025 19:45:00 +0000 ROA not after: Fri 27 Nov 2026 19:50:00 +0000 asID: 136787 IP address blocks: 82.149.81.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 05 Dec 2025 21:22:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:2a:65:20:97:fb:49:95:e1:9f:fe:fb:c3:81:2d:5f:67:96:ad:e1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Validity Not Before: Nov 28 19:45:00 2025 GMT Not After : Nov 27 19:50:00 2026 GMT Subject: CN=97562FC551D9DFAA22F76A51B122E9A0A604181F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:12:a3:f8:9b:1e:22:51:2a:e6:7c:98:80:b7: c2:49:80:6b:c8:c6:45:7c:39:9b:e6:af:97:af:c2: 7a:32:38:18:f1:89:e6:d5:77:08:ab:5f:44:00:07: fc:16:1c:4d:c5:b3:24:c4:5e:fe:43:93:e4:0f:e6: d0:bd:dc:ca:51:f5:12:10:e5:82:d4:af:69:ea:f1: a7:e6:ff:47:56:e4:18:66:53:8e:52:1a:83:90:24: fe:e6:d5:68:d5:ab:67:11:52:76:84:8a:e1:cd:7b: 39:44:e2:e1:7c:60:d7:43:37:26:68:8e:e3:e4:a6: a6:2e:f4:26:c1:2c:ad:e3:fc:8a:ac:87:32:30:71: 2c:ff:72:d7:2f:7a:6e:39:37:b4:b9:99:37:0a:11: 68:5c:d3:a2:c4:74:b4:cb:8f:28:2c:d3:ee:85:5e: 7e:4d:81:71:61:f6:40:f3:7f:55:6a:6e:5d:1c:49: 6b:80:04:e2:60:1f:d0:7a:31:b0:9f:58:20:64:b7: bb:40:30:57:00:79:65:59:68:d2:93:31:c3:0f:e6: 79:1a:91:cd:d5:7b:00:ef:25:70:d8:ac:98:af:cf: 95:16:f0:12:42:d8:03:f1:2d:51:99:77:dc:47:dd: 84:c7:b9:74:32:d1:de:53:1b:c6:fe:b3:cc:d6:8e: c2:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:56:2F:C5:51:D9:DF:AA:22:F7:6A:51:B1:22:E9:A0:A6:04:18:1F X509v3 Authority Key Identifier: keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38322e3134392e38312e302f32342d3234203d3e20313336373837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 82.149.81.0/24 Signature Algorithm: sha256WithRSAEncryption 3a:48:37:9f:28:27:7e:b3:0d:5a:b3:ba:72:f6:54:a4:93:12: 9b:ed:65:27:3a:66:80:0c:61:e3:ca:1d:63:e8:e4:95:3c:9a: 9a:cb:be:0d:b8:2d:0e:68:54:a4:fd:39:3b:6e:10:f1:64:17: c7:d5:0c:92:8b:34:19:8e:33:12:11:98:be:0f:3e:a5:49:7b: f7:24:b6:87:6f:83:20:0d:bf:38:e7:dd:5b:65:5c:b7:1f:86: a6:ea:53:49:08:fe:f8:5f:df:72:b5:8d:7c:7c:ac:9b:cc:00: e7:50:27:de:b3:11:d3:ee:fa:ae:94:4b:8a:55:c0:c8:fe:29: 48:fb:34:5f:ea:49:11:52:f7:c1:23:6b:17:bd:4e:a4:a8:15: d7:5e:7e:df:c1:ef:a8:18:a0:ca:71:a7:12:1a:66:24:70:74: a1:05:e5:76:b7:a7:fa:3e:65:c6:f5:ae:15:cb:9d:75:17:5d: 21:cc:3a:af:66:d2:53:5a:8f:92:a7:c7:e8:0b:ab:02:2b:d6: 5d:ba:6e:df:6f:13:63:85:09:86:a0:9a:60:59:9c:21:58:f1: 19:6f:3e:2a:eb:80:03:34:da:46:ff:45:68:75:3a:c0:0e:73: 9b:7a:59:df:bf:d3:2f:db:f7:03:d1:90:8a:d4:0a:8c:33:d9: 9c:98:6a:32 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUGyplIJf7SZXhn/77w4EtX2eWreEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0 ZWE3Nzc5YzAeFw0yNTExMjgxOTQ1MDBaFw0yNjExMjcxOTUwMDBaMDMxMTAvBgNV BAMTKDk3NTYyRkM1NTFEOURGQUEyMkY3NkE1MUIxMjJFOUEwQTYwNDE4MUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIEqP4mx4iUSrmfJiAt8JJgGvI xkV8OZvmr5evwnoyOBjxiebVdwirX0QAB/wWHE3FsyTEXv5Dk+QP5tC93MpR9RIQ 5YLUr2nq8afm/0dW5BhmU45SGoOQJP7m1WjVq2cRUnaEiuHNezlE4uF8YNdDNyZo juPkpqYu9CbBLK3j/IqshzIwcSz/ctcvem45N7S5mTcKEWhc06LEdLTLjygs0+6F Xn5NgXFh9kDzf1Vqbl0cSWuABOJgH9B6MbCfWCBkt7tAMFcAeWVZaNKTMcMP5nka kc3VewDvJXDYrJivz5UW8BJC2APxLVGZd9xH3YTHuXQy0d5TG8b+s8zWjsKDAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUl1YvxVHZ36oi92pRsSLpoKYEGB8wHwYDVR0j BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2 bmQ1dy5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzgzMjJlMzEzNDM5MmUzODMx MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzEzMzM2MzczODM3LnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA UpVRMA0GCSqGSIb3DQEBCwUAA4IBAQA6SDefKCd+sw1as7py9lSkkxKb7WUnOmaA DGHjyh1j6OSVPJqay74NuC0OaFSk/Tk7bhDxZBfH1QySizQZjjMSEZi+Dz6lSXv3 JLaHb4MgDb84591bZVy3H4am6lNJCP74X99ytY18fKybzADnUCfesxHT7vqulEuK VcDI/ilI+zRf6kkRUvfBI2sXvU6kqBXXXn7fwe+oGKDKcacSGmYkcHShBeV2t6f6 PmXG9a4Vy511F10hzDqvZtJTWo+Sp8foC6sCK9Zdum7fbxNjhQmGoJpgWZwhWPEZ bz4q64ADNNpG/0VodTrADnObelnfv9Mv2/cD0ZCK1AqMM9mcmGoy -----END CERTIFICATE-----Generated at Fri Dec 5 05:40:21 2025 by rpki-client