This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38322e3134392e38332e302f32342d3234203d3e20313336373837.roa File: 38322e3134392e38332e302f32342d3234203d3e20313336373837.roa (raw, json) Hash identifier: XImgTGBCUhdinjX/Mrn+o/KrinfsF9auego71+mt1U4= Subject key identifier: DC:0E:5A:83:C0:E0:FE:E6:32:F3:FF:E9:A8:91:69:09:15:E7:63:F6 Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Certificate serial: 1A0B84AC6E9550D942E9841C0FC44C9589164A49 Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38322e3134392e38332e302f32342d3234203d3e20313336373837.roa Signing time: Fri 28 Nov 2025 19:49:59 +0000 ROA not before: Fri 28 Nov 2025 19:44:59 +0000 ROA not after: Fri 27 Nov 2026 19:49:59 +0000 asID: 136787 IP address blocks: 82.149.83.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 05 Dec 2025 21:22:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:0b:84:ac:6e:95:50:d9:42:e9:84:1c:0f:c4:4c:95:89:16:4a:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Validity Not Before: Nov 28 19:44:59 2025 GMT Not After : Nov 27 19:49:59 2026 GMT Subject: CN=DC0E5A83C0E0FEE632F3FFE9A891690915E763F6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:f5:a6:43:43:57:c0:14:c1:63:98:68:b3:82: d4:80:cf:ac:a5:ea:ae:20:62:71:d6:db:07:55:28: cb:6d:c5:1c:65:40:e8:fd:54:29:c6:98:47:88:33: 0e:9f:81:6b:e4:99:8a:96:aa:e1:34:1e:50:fb:54: 6e:4e:07:b3:93:27:e1:c0:59:df:2e:05:66:c9:5e: 80:70:09:43:c1:c1:f2:d0:9a:d9:1b:60:5d:de:9f: 6d:7e:20:45:93:aa:66:77:79:e5:ec:2a:b8:ab:98: 25:03:ac:f4:bb:1b:52:be:a6:75:13:27:ea:fd:d4: 03:21:04:24:fd:46:e5:22:d0:28:1f:b3:fa:ad:11: dc:25:0b:40:9e:30:f1:8a:28:4f:0e:49:d1:54:fe: d3:7b:40:16:24:0f:14:08:b8:a0:eb:d1:27:42:5d: 9e:f1:2b:a0:84:7f:fa:a2:01:58:ef:c6:3e:3b:a9: 28:7a:3b:70:d7:ce:de:ab:eb:98:3f:f4:d7:62:f2: 1a:fb:15:25:7b:c0:ff:15:89:f3:7a:82:ab:18:32: 97:f6:2a:d7:55:81:71:ca:f4:33:4e:08:b2:f5:2d: 41:a0:f4:a3:43:62:ff:0f:15:0b:71:7a:ce:8d:5a: 08:bf:94:ba:ee:37:f4:21:82:66:b0:0e:3e:6e:35: 00:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:0E:5A:83:C0:E0:FE:E6:32:F3:FF:E9:A8:91:69:09:15:E7:63:F6 X509v3 Authority Key Identifier: keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38322e3134392e38332e302f32342d3234203d3e20313336373837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 82.149.83.0/24 Signature Algorithm: sha256WithRSAEncryption 54:16:33:0b:1d:f9:0d:4b:b1:bf:15:ff:7c:f7:87:29:28:10: 0a:2d:09:72:fb:ab:a0:47:24:b4:07:6b:a6:2f:cd:8b:11:a4: 8b:3a:43:74:9c:df:ca:c5:8f:c5:2c:d5:42:1f:2a:0e:4b:b8: 9c:1a:4f:92:7d:2f:20:a3:37:b3:d8:1e:37:db:15:a7:21:10: 80:61:e9:09:9b:f0:65:81:90:9d:3c:e8:33:3b:ab:1a:bf:73: 1e:5f:9e:4f:5e:82:d3:56:ae:70:18:c3:fe:76:a8:45:62:14: eb:23:92:7d:f5:17:d4:0b:da:fa:29:31:36:95:76:ff:5e:cc: 34:4a:9f:bf:e3:c5:5f:b9:f7:16:1b:f2:d9:50:5c:80:7a:a1: 0b:5d:ec:a3:3a:d3:d2:7a:39:93:cb:1e:60:93:d5:9c:ea:22: 38:f5:47:2a:71:a9:38:01:58:23:30:6d:a7:85:69:9a:88:eb: 60:c3:89:08:97:4b:1f:85:e6:5d:97:59:5e:4e:bc:27:11:6e: af:9f:79:4d:a8:35:93:76:3d:6b:f9:12:84:95:97:bf:80:28: d2:7b:43:b8:22:b5:39:3a:81:7f:c5:f6:ce:49:02:2d:d6:ed: e4:7c:9e:da:ad:d2:0e:47:7a:de:80:4f:86:ca:c6:47:59:f1: 66:8b:67:ef -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUGguErG6VUNlC6YQcD8RMlYkWSkkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0 ZWE3Nzc5YzAeFw0yNTExMjgxOTQ0NTlaFw0yNjExMjcxOTQ5NTlaMDMxMTAvBgNV BAMTKERDMEU1QTgzQzBFMEZFRTYzMkYzRkZFOUE4OTE2OTA5MTVFNzYzRjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZ9aZDQ1fAFMFjmGizgtSAz6yl 6q4gYnHW2wdVKMttxRxlQOj9VCnGmEeIMw6fgWvkmYqWquE0HlD7VG5OB7OTJ+HA Wd8uBWbJXoBwCUPBwfLQmtkbYF3en21+IEWTqmZ3eeXsKrirmCUDrPS7G1K+pnUT J+r91AMhBCT9RuUi0Cgfs/qtEdwlC0CeMPGKKE8OSdFU/tN7QBYkDxQIuKDr0SdC XZ7xK6CEf/qiAVjvxj47qSh6O3DXzt6r65g/9Ndi8hr7FSV7wP8VifN6gqsYMpf2 KtdVgXHK9DNOCLL1LUGg9KNDYv8PFQtxes6NWgi/lLruN/QhgmawDj5uNQAdAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU3A5ag8Dg/uYy8//pqJFpCRXnY/YwHwYDVR0j BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2 bmQ1dy5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzgzMjJlMzEzNDM5MmUzODMz MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzEzMzM2MzczODM3LnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA UpVTMA0GCSqGSIb3DQEBCwUAA4IBAQBUFjMLHfkNS7G/Ff9894cpKBAKLQly+6ug RyS0B2umL82LEaSLOkN0nN/KxY/FLNVCHyoOS7icGk+SfS8gozez2B432xWnIRCA YekJm/BlgZCdPOgzO6sav3MeX55PXoLTVq5wGMP+dqhFYhTrI5J99RfUC9r6KTE2 lXb/Xsw0Sp+/48VfufcWG/LZUFyAeqELXeyjOtPSejmTyx5gk9Wc6iI49Ucqcak4 AVgjMG2nhWmaiOtgw4kIl0sfheZdl1leTrwnEW6vn3lNqDWTdj1r+RKElZe/gCjS e0O4IrU5OoF/xfbOSQIt1u3kfJ7ardIOR3regE+GysZHWfFmi2fv -----END CERTIFICATE-----Generated at Fri Dec 5 05:39:21 2025 by rpki-client