This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38382e3231382e3230322e302f32342d3234203d3e20313336373837.roa File: 38382e3231382e3230322e302f32342d3234203d3e20313336373837.roa (raw, json) Hash identifier: PuD8zF4H+zMPnOpMQsoUl65sQxH/7iZnmUaAhqjEg5o= Subject key identifier: E1:E7:A1:4C:23:D9:41:F9:74:1F:71:11:90:21:F1:06:EE:47:59:F2 Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Certificate serial: 6F5250A2ED753E436A16FF627E3A6C047F4F6DD0 Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38382e3231382e3230322e302f32342d3234203d3e20313336373837.roa Signing time: Sun 16 Nov 2025 18:48:53 +0000 ROA not before: Sun 16 Nov 2025 18:43:53 +0000 ROA not after: Sun 15 Nov 2026 18:48:53 +0000 asID: 136787 IP address blocks: 88.218.202.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 05 Dec 2025 21:22:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:52:50:a2:ed:75:3e:43:6a:16:ff:62:7e:3a:6c:04:7f:4f:6d:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Validity Not Before: Nov 16 18:43:53 2025 GMT Not After : Nov 15 18:48:53 2026 GMT Subject: CN=E1E7A14C23D941F9741F71119021F106EE4759F2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:26:f8:07:59:70:fe:31:12:ea:cc:4f:87:62: 2c:08:aa:d0:be:ee:90:ee:47:8f:db:97:5c:fb:7d: 9d:ac:19:93:b9:0c:b8:0c:7b:66:b0:b0:c5:da:8b: 8d:23:7a:d1:7d:86:1e:c9:3c:00:67:88:bf:1d:f8: 64:53:10:ea:76:ea:8f:ce:a7:eb:0d:ed:b1:b0:56: 3c:68:68:86:a8:c9:72:81:15:af:97:f3:67:02:65: e9:27:37:f2:45:7d:a2:9b:0c:96:52:bc:75:41:d7: 5b:b4:2e:03:e7:1f:44:ad:21:45:1e:2b:95:79:51: ae:2a:e6:e3:a5:86:f9:6d:54:c1:ca:70:ba:25:b5: 3a:1a:01:d4:9d:f7:8a:ff:a6:d0:54:77:4f:66:73: c6:c0:59:54:09:e0:d7:52:d0:82:d0:31:c3:b3:2d: d5:ea:18:67:aa:58:5e:ef:a6:f2:ba:07:ed:52:64: 4e:f4:04:ac:7d:0f:c1:79:f6:42:e1:4c:07:f0:5f: ad:89:a7:3a:82:e5:7a:a5:5f:15:41:d2:0d:a3:18: 76:ca:ff:e3:f2:cd:10:96:68:7a:47:0f:fa:45:e6: f7:d7:ab:85:f2:a2:91:39:c6:a4:bb:ea:2b:9d:19: 01:1b:e4:b6:98:c9:9e:58:5b:a9:d7:c6:8e:a2:8f: ad:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:E7:A1:4C:23:D9:41:F9:74:1F:71:11:90:21:F1:06:EE:47:59:F2 X509v3 Authority Key Identifier: keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38382e3231382e3230322e302f32342d3234203d3e20313336373837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 88.218.202.0/24 Signature Algorithm: sha256WithRSAEncryption 09:ad:b6:20:e8:4c:59:d6:d5:49:24:8e:11:ab:b4:52:6c:c8: 7d:13:16:81:35:1f:d4:08:ef:2c:1a:bb:1d:5a:09:f4:21:26: 7f:60:aa:86:68:b2:03:2c:44:c0:90:49:97:ff:c3:00:c5:59: 83:b1:f7:9b:0d:3a:e1:3f:8b:b9:66:6e:97:13:cd:e5:6a:23: 4c:7e:32:ad:0f:af:b9:54:8d:83:d0:79:b0:22:c5:68:00:47: 25:e9:15:74:6d:f3:c2:e9:bb:64:f1:92:bd:ad:af:77:0f:37: f4:f4:93:87:a0:13:4c:2e:dc:f4:4e:45:17:e3:7e:68:59:4f: 18:d4:0e:fe:2d:55:59:f8:56:49:4f:da:dd:15:27:a3:d5:72: 7f:93:63:37:5e:36:03:9b:76:39:df:73:5d:a0:27:56:36:d7: ce:91:9d:c3:20:54:00:77:e3:8f:74:06:84:ce:00:33:ca:a1: 57:1f:6a:d6:d6:39:c5:8d:d7:f9:22:10:20:9a:74:a7:d2:5d: a0:fa:1d:75:90:cb:52:4c:f6:f7:53:d1:c8:37:0b:92:16:2a: f6:a8:41:41:c3:a6:6a:a8:d3:a5:d4:d5:a9:15:7d:43:86:58: 95:fc:10:f4:94:da:68:3d:27:49:0a:63:f3:c5:2e:76:17:59: ab:df:b0:84 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUb1JQou11PkNqFv9ifjpsBH9PbdAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0 ZWE3Nzc5YzAeFw0yNTExMTYxODQzNTNaFw0yNjExMTUxODQ4NTNaMDMxMTAvBgNV BAMTKEUxRTdBMTRDMjNEOTQxRjk3NDFGNzExMTkwMjFGMTA2RUU0NzU5RjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3JvgHWXD+MRLqzE+HYiwIqtC+ 7pDuR4/bl1z7fZ2sGZO5DLgMe2awsMXai40jetF9hh7JPABniL8d+GRTEOp26o/O p+sN7bGwVjxoaIaoyXKBFa+X82cCZeknN/JFfaKbDJZSvHVB11u0LgPnH0StIUUe K5V5Ua4q5uOlhvltVMHKcLoltToaAdSd94r/ptBUd09mc8bAWVQJ4NdS0ILQMcOz LdXqGGeqWF7vpvK6B+1SZE70BKx9D8F59kLhTAfwX62JpzqC5XqlXxVB0g2jGHbK /+PyzRCWaHpHD/pF5vfXq4XyopE5xqS76iudGQEb5LaYyZ5YW6nXxo6ij61zAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQU4eehTCPZQfl0H3ERkCHxBu5HWfIwHwYDVR0j BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2 bmQ1dy5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzgzODJlMzIzMTM4MmUzMjMw MzIyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMTMzMzYzNzM4Mzcucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABY2sowDQYJKoZIhvcNAQELBQADggEBAAmttiDoTFnW1UkkjhGrtFJsyH0TFoE1 H9QI7ywaux1aCfQhJn9gqoZosgMsRMCQSZf/wwDFWYOx95sNOuE/i7lmbpcTzeVq I0x+Mq0Pr7lUjYPQebAixWgARyXpFXRt88Lpu2Txkr2tr3cPN/T0k4egE0wu3PRO RRfjfmhZTxjUDv4tVVn4VklP2t0VJ6PVcn+TYzdeNgObdjnfc12gJ1Y2186RncMg VAB34490BoTOADPKoVcfatbWOcWN1/kiECCadKfSXaD6HXWQy1JM9vdT0cg3C5IW KvaoQUHDpmqo06XU1akVfUOGWJX8EPSU2mg9J0kKY/PFLnYXWavfsIQ= -----END CERTIFICATE-----Generated at Fri Dec 5 05:40:20 2025 by rpki-client