This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38342e35342e32312e302f32342d3234203d3e20313336373837.roa File: 38342e35342e32312e302f32342d3234203d3e20313336373837.roa (raw, json) Hash identifier: q2N+lyA8O8tOIixD3cTLrAFWQfR4BtiGgPKJj4b9bqc= Subject key identifier: 64:C5:83:BC:35:FB:60:09:50:45:61:B3:D4:1B:97:A7:1C:E8:11:34 Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Certificate serial: 68A76CC59185C5C3DA830B4B75B350BF7B0058A9 Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38342e35342e32312e302f32342d3234203d3e20313336373837.roa Signing time: Sun 16 Nov 2025 18:48:53 +0000 ROA not before: Sun 16 Nov 2025 18:43:53 +0000 ROA not after: Sun 15 Nov 2026 18:48:53 +0000 asID: 136787 IP address blocks: 84.54.21.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 05 Dec 2025 21:22:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:a7:6c:c5:91:85:c5:c3:da:83:0b:4b:75:b3:50:bf:7b:00:58:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Validity Not Before: Nov 16 18:43:53 2025 GMT Not After : Nov 15 18:48:53 2026 GMT Subject: CN=64C583BC35FB6009504561B3D41B97A71CE81134 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:e0:6f:6f:27:7f:24:dd:57:28:6a:f7:9d:ab: 13:34:63:33:b4:b8:d7:dd:73:bd:12:d2:61:ed:e9: b7:bd:17:e0:80:72:32:27:0a:75:c5:78:3c:41:92: 63:62:8f:e8:05:88:44:87:53:9b:59:bd:aa:5a:08: 03:3d:c2:53:97:c1:c5:12:46:20:1d:ee:37:97:ec: 7b:f2:1a:8a:79:d7:4e:a4:24:30:b0:aa:6b:0a:bd: 6e:a7:07:36:a6:a3:a0:41:6c:c0:20:ba:b1:85:a0: dd:0e:5b:3b:ed:36:71:53:f0:0f:c1:bd:d8:aa:85: 3a:49:fd:a7:e8:17:49:66:30:eb:e6:be:9b:5a:d3: d0:7a:a1:4c:c8:f2:f6:c4:66:70:37:cf:cd:06:a6: f6:02:87:a5:0d:9e:92:f7:99:f1:6f:29:a9:5a:56: c3:4e:8f:ab:f3:66:53:cc:31:4b:cd:0c:ab:da:82: bd:8e:a2:8d:2c:7b:56:2f:8c:88:22:a1:bb:d4:9c: 40:e7:7f:e6:41:bb:b4:04:74:01:bc:51:ee:f7:ba: 63:ce:ca:ac:b4:5b:ff:ff:d6:bf:f7:41:a2:f9:90: d8:f1:3a:c4:6f:8e:63:c2:f4:80:de:c2:b6:1a:11: 22:95:39:59:df:b1:31:2b:eb:d2:e5:82:1e:05:33: f7:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:C5:83:BC:35:FB:60:09:50:45:61:B3:D4:1B:97:A7:1C:E8:11:34 X509v3 Authority Key Identifier: keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38342e35342e32312e302f32342d3234203d3e20313336373837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 84.54.21.0/24 Signature Algorithm: sha256WithRSAEncryption 64:41:cd:e8:5e:eb:8e:5d:73:6d:83:84:fe:63:8f:e1:7c:ab: 72:86:f5:5c:07:a8:e1:6f:86:ae:de:09:89:5a:5b:64:a4:a9: 7c:3c:3d:9b:75:ab:39:33:b0:aa:c8:88:7f:4f:a6:a2:f7:28: 62:6c:a7:97:e3:1f:98:f0:c9:d9:12:47:44:bf:9f:9f:7b:5e: 73:04:a1:a8:5b:55:95:dc:dc:b1:65:0d:b0:27:db:7d:54:74: 85:90:5d:33:9f:1d:0b:28:66:8c:8c:99:f5:b3:2f:94:c1:e9: d0:0e:cb:a4:36:2a:29:c0:ce:e1:5d:d8:98:f6:3c:88:97:bf: d0:ea:af:b0:c0:1c:4b:81:51:11:23:56:40:a0:0a:40:3d:51: 64:1d:b4:5f:e9:d1:dc:43:72:99:e5:ba:39:ab:f1:45:c5:7b: 32:76:d5:91:73:23:a0:a6:76:71:1e:9c:ac:a8:65:ed:5e:d5: ef:40:d0:aa:1b:4d:ff:85:db:8e:c9:fd:15:3a:a5:a1:bf:2b: 90:e6:20:bb:e7:b9:de:54:78:fe:f8:55:70:dc:66:cf:15:f8: 41:d7:f6:29:dd:2d:86:fc:e3:62:8e:84:ee:57:34:83:b1:1d: 1d:a1:9c:58:af:5f:f8:84:d9:fe:33:2f:a0:96:77:bd:9d:36: 7c:cc:2f:c7 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUaKdsxZGFxcPagwtLdbNQv3sAWKkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0 ZWE3Nzc5YzAeFw0yNTExMTYxODQzNTNaFw0yNjExMTUxODQ4NTNaMDMxMTAvBgNV BAMTKDY0QzU4M0JDMzVGQjYwMDk1MDQ1NjFCM0Q0MUI5N0E3MUNFODExMzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDe4G9vJ38k3VcoavedqxM0YzO0 uNfdc70S0mHt6be9F+CAcjInCnXFeDxBkmNij+gFiESHU5tZvapaCAM9wlOXwcUS RiAd7jeX7HvyGop5106kJDCwqmsKvW6nBzamo6BBbMAgurGFoN0OWzvtNnFT8A/B vdiqhTpJ/afoF0lmMOvmvpta09B6oUzI8vbEZnA3z80GpvYCh6UNnpL3mfFvKala VsNOj6vzZlPMMUvNDKvagr2Ooo0se1YvjIgiobvUnEDnf+ZBu7QEdAG8Ue73umPO yqy0W///1r/3QaL5kNjxOsRvjmPC9IDewrYaESKVOVnfsTEr69Llgh4FM/e5AgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUZMWDvDX7YAlQRWGz1BuXpxzoETQwHwYDVR0j BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2 bmQ1dy5jZXIwgasGCCsGAQUFBwELBIGeMIGbMIGYBggrBgEFBQcwC4aBi3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzgzNDJlMzUzNDJlMzIzMTJl MzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzMzNjM3MzgzNy5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFQ2 FTANBgkqhkiG9w0BAQsFAAOCAQEAZEHN6F7rjl1zbYOE/mOP4Xyrcob1XAeo4W+G rt4JiVpbZKSpfDw9m3WrOTOwqsiIf0+movcoYmynl+MfmPDJ2RJHRL+fn3tecwSh qFtVldzcsWUNsCfbfVR0hZBdM58dCyhmjIyZ9bMvlMHp0A7LpDYqKcDO4V3YmPY8 iJe/0OqvsMAcS4FRESNWQKAKQD1RZB20X+nR3ENymeW6OavxRcV7MnbVkXMjoKZ2 cR6crKhl7V7V70DQqhtN/4Xbjsn9FTqlob8rkOYgu+e53lR4/vhVcNxmzxX4Qdf2 Kd0thvzjYo6E7lc0g7EdHaGcWK9f+ITZ/jMvoJZ3vZ02fMwvxw== -----END CERTIFICATE-----Generated at Fri Dec 5 05:37:58 2025 by rpki-client