This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38342e35342e32322e302f32342d3234203d3e20313336373837.roa File: 38342e35342e32322e302f32342d3234203d3e20313336373837.roa (raw, json) Hash identifier: aNITKtMISl+IG6iXyf6kc22LcEZTGYz7+gm5LLW/aIg= Subject key identifier: EB:A6:72:87:E5:3C:BA:01:AF:87:C2:FD:5E:B8:91:DB:16:9C:D3:94 Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Certificate serial: 052694E7631E11F681E9C518D7A352D314617745 Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38342e35342e32322e302f32342d3234203d3e20313336373837.roa Signing time: Sun 16 Nov 2025 18:48:53 +0000 ROA not before: Sun 16 Nov 2025 18:43:53 +0000 ROA not after: Sun 15 Nov 2026 18:48:53 +0000 asID: 136787 IP address blocks: 84.54.22.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 05 Dec 2025 21:22:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:26:94:e7:63:1e:11:f6:81:e9:c5:18:d7:a3:52:d3:14:61:77:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Validity Not Before: Nov 16 18:43:53 2025 GMT Not After : Nov 15 18:48:53 2026 GMT Subject: CN=EBA67287E53CBA01AF87C2FD5EB891DB169CD394 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:78:f1:53:09:00:13:b8:5b:07:42:c2:3f:d2: 35:c2:99:3e:65:4b:5c:58:9c:d5:b9:36:f4:c7:41: 64:06:1b:57:a9:9d:9e:25:c9:d9:16:4d:c0:1e:12: ed:f7:a4:6e:a6:09:62:64:ac:af:eb:64:43:6a:54: a6:77:a7:2f:3d:f3:6b:91:2f:e4:55:91:af:f1:17: d2:ee:a1:97:71:e9:72:f2:e9:b4:5f:96:2a:ef:ea: 23:68:92:4b:68:62:a7:9d:43:3d:24:b1:4a:cf:1f: 66:f4:71:cc:ad:0e:a8:3f:fd:1c:a9:83:09:09:d9: 1f:7f:87:dd:f4:9d:4c:c7:52:1e:7e:ef:ed:0b:72: d7:de:06:8f:1a:ff:f5:0c:76:dd:61:0b:b6:44:4d: 86:d2:c5:a2:4a:a2:db:14:da:70:80:d0:5e:b3:ab: 0e:cb:7c:f0:38:c2:3f:24:f3:bd:3b:55:27:41:d5: 91:e1:88:29:69:c7:a3:c3:23:0c:d5:c6:71:9d:29: 34:29:8f:d4:de:87:57:c6:06:1b:d5:3a:80:48:69: ce:97:40:a2:a6:9c:53:89:5f:da:58:2b:d2:e1:c5: 6b:41:f5:57:1c:ee:88:bf:49:74:1d:e4:de:a1:f0: 9b:8f:48:8a:56:bb:c3:1d:70:0b:eb:01:f7:6c:fe: a5:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:A6:72:87:E5:3C:BA:01:AF:87:C2:FD:5E:B8:91:DB:16:9C:D3:94 X509v3 Authority Key Identifier: keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38342e35342e32322e302f32342d3234203d3e20313336373837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 84.54.22.0/24 Signature Algorithm: sha256WithRSAEncryption 4a:50:0d:c3:61:c6:0e:43:96:2e:99:2d:4e:81:dc:9f:c3:cb: d8:09:d5:51:00:e7:02:57:33:76:ca:22:e6:56:04:be:13:11: dc:f2:2a:14:8d:e2:b6:d9:56:68:78:a2:71:0d:31:c4:65:c7: e6:a8:12:cd:d1:6f:9c:7a:ff:cf:43:bf:5c:98:d4:d9:21:53: a5:03:d7:02:3c:fb:8c:5b:bb:bd:d8:cc:d4:12:41:2d:44:90: 6a:7a:ec:db:04:49:ef:70:b9:82:22:7d:20:e3:8a:e3:43:cc: 4d:20:f7:bd:07:f1:54:87:61:98:e7:44:7c:d0:bf:ed:7f:83: a8:95:e8:9b:d3:3f:6a:6f:6d:dc:fa:1c:2d:51:71:8d:ad:74: 5b:8a:c6:99:c6:66:04:25:30:c0:26:06:b7:b9:8b:77:5e:78: a1:88:57:02:a0:ba:75:3f:82:7a:e6:5d:79:83:3d:6b:59:0c: 8b:b7:fb:d6:9d:37:9d:0c:3d:ff:1d:cf:bb:d4:47:4f:2c:ab: e0:36:77:5d:4c:01:93:cf:81:c1:cc:8c:5b:db:6d:86:2d:cb: e7:29:ad:c5:b8:f9:55:08:6c:47:73:9d:b6:13:95:cd:88:94: af:b3:ba:46:59:30:af:2f:19:21:1e:5f:07:9c:85:76:7a:ce: d1:7b:50:37 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUBSaU52MeEfaB6cUY16NS0xRhd0UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0 ZWE3Nzc5YzAeFw0yNTExMTYxODQzNTNaFw0yNjExMTUxODQ4NTNaMDMxMTAvBgNV BAMTKEVCQTY3Mjg3RTUzQ0JBMDFBRjg3QzJGRDVFQjg5MURCMTY5Q0QzOTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtePFTCQATuFsHQsI/0jXCmT5l S1xYnNW5NvTHQWQGG1epnZ4lydkWTcAeEu33pG6mCWJkrK/rZENqVKZ3py8982uR L+RVka/xF9LuoZdx6XLy6bRflirv6iNokktoYqedQz0ksUrPH2b0ccytDqg//Ryp gwkJ2R9/h930nUzHUh5+7+0LctfeBo8a//UMdt1hC7ZETYbSxaJKotsU2nCA0F6z qw7LfPA4wj8k8707VSdB1ZHhiClpx6PDIwzVxnGdKTQpj9Teh1fGBhvVOoBIac6X QKKmnFOJX9pYK9LhxWtB9Vcc7oi/SXQd5N6h8JuPSIpWu8MdcAvrAfds/qV9AgMB AAGjggI7MIICNzAdBgNVHQ4EFgQU66Zyh+U8ugGvh8L9XriR2xac05QwHwYDVR0j BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2 bmQ1dy5jZXIwgasGCCsGAQUFBwELBIGeMIGbMIGYBggrBgEFBQcwC4aBi3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzgzNDJlMzUzNDJlMzIzMjJl MzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzMzNjM3MzgzNy5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFQ2 FjANBgkqhkiG9w0BAQsFAAOCAQEASlANw2HGDkOWLpktToHcn8PL2AnVUQDnAlcz dsoi5lYEvhMR3PIqFI3ittlWaHiicQ0xxGXH5qgSzdFvnHr/z0O/XJjU2SFTpQPX Ajz7jFu7vdjM1BJBLUSQanrs2wRJ73C5giJ9IOOK40PMTSD3vQfxVIdhmOdEfNC/ 7X+DqJXom9M/am9t3PocLVFxja10W4rGmcZmBCUwwCYGt7mLd154oYhXAqC6dT+C euZdeYM9a1kMi7f71p03nQw9/x3Pu9RHTyyr4DZ3XUwBk8+BwcyMW9tthi3L5ymt xbj5VQhsR3OdthOVzYiUr7O6Rlkwry8ZIR5fB5yFdnrO0XtQNw== -----END CERTIFICATE-----Generated at Fri Dec 5 05:38:25 2025 by rpki-client