This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38382e3231382e3230332e302f32342d3234203d3e20313336373837.roa File: 38382e3231382e3230332e302f32342d3234203d3e20313336373837.roa (raw, json) Hash identifier: P8zPnIEahfQROIHobGdwFiT/I69XMx2ktNrCmC9cnqo= Subject key identifier: 29:A8:B9:92:42:FC:B9:0E:EA:0D:BF:5A:96:CA:68:3F:1A:13:F5:B9 Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Certificate serial: 4D2D50668E08CA7F2F91D0D9D970B21C6F1EE1FA Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38382e3231382e3230332e302f32342d3234203d3e20313336373837.roa Signing time: Sun 16 Nov 2025 18:48:52 +0000 ROA not before: Sun 16 Nov 2025 18:43:52 +0000 ROA not after: Sun 15 Nov 2026 18:48:52 +0000 asID: 136787 IP address blocks: 88.218.203.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 05 Dec 2025 21:22:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:2d:50:66:8e:08:ca:7f:2f:91:d0:d9:d9:70:b2:1c:6f:1e:e1:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Validity Not Before: Nov 16 18:43:52 2025 GMT Not After : Nov 15 18:48:52 2026 GMT Subject: CN=29A8B99242FCB90EEA0DBF5A96CA683F1A13F5B9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:f0:61:22:e4:60:98:67:7a:81:c4:2e:77:c7: 35:e7:26:a2:df:e6:7b:fd:4e:9c:90:14:53:8b:80: 95:81:e8:35:6e:e8:6b:10:b1:fe:b4:a5:06:71:2e: ae:f9:1a:21:9f:5e:53:14:bf:7d:12:2f:92:1d:38: 93:dc:05:51:2c:75:92:71:9a:0d:a0:27:9b:ab:8a: 30:05:06:45:92:9f:60:d9:32:96:75:9a:24:35:08: ab:24:dd:43:83:2e:dc:05:f4:f5:55:82:27:23:1f: 3f:97:3a:14:ff:f1:25:ba:d9:da:16:48:4a:e1:88: 4a:af:5e:0f:54:26:bb:f1:c2:14:1f:f5:94:13:3e: 3d:56:26:6f:a1:9e:bd:99:32:5a:c2:3a:89:c4:12: 35:a1:42:d8:e7:02:c7:6b:de:c5:c4:0c:93:89:be: c9:22:be:b3:3c:49:48:a0:53:8a:77:ba:77:0b:0f: 33:dc:44:96:2b:c6:4e:3e:91:93:5f:23:60:04:a8: 8c:72:2b:fa:ca:d5:40:cf:a9:00:14:c0:92:b5:53: 98:c8:34:79:15:2d:4b:e6:1e:fd:f5:45:8c:16:c7: aa:cc:b2:c9:e3:1c:48:61:00:be:44:a1:fe:7d:a1: 0f:61:dd:a1:f4:b6:e7:d5:08:e5:22:5f:5a:4c:53: be:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:A8:B9:92:42:FC:B9:0E:EA:0D:BF:5A:96:CA:68:3F:1A:13:F5:B9 X509v3 Authority Key Identifier: keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38382e3231382e3230332e302f32342d3234203d3e20313336373837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 88.218.203.0/24 Signature Algorithm: sha256WithRSAEncryption 38:e0:2a:32:96:db:51:7f:96:36:63:d2:d1:19:cb:f3:5e:b3: 23:4f:97:77:86:52:0d:76:a0:95:87:39:e6:05:9b:0b:bc:07: 81:3b:8c:21:59:55:c2:26:45:57:53:aa:87:5e:b6:62:6f:bb: 31:8f:f4:c2:52:10:9c:91:d7:cd:f5:e7:12:71:3f:0d:be:f8: a8:31:f0:c7:ed:86:ed:74:b5:8f:cf:66:04:d8:9f:32:ed:f8: f8:7e:2a:bd:36:44:6f:e5:3d:bc:7e:88:8e:e4:3a:16:b6:59: 40:96:5c:03:cf:99:cc:7b:6a:e9:35:0e:49:b1:2a:63:c0:7e: 15:dd:cf:b2:3b:30:94:38:42:92:fd:34:1c:c4:67:92:8c:de: 50:01:be:d6:e2:55:05:90:44:73:f7:66:b6:1b:8b:ba:22:74: ab:64:35:94:7b:ae:c2:50:f3:ab:19:b9:98:e9:fc:5b:f1:d1: a8:97:32:3e:a4:6c:5f:a8:46:38:12:8b:fc:95:70:d7:5d:4f: 70:35:bf:e4:3c:30:a3:92:55:a9:2e:6f:c4:ef:2b:d5:a6:0a: e7:e2:aa:24:f3:33:20:1d:0b:4e:65:7e:08:ba:7e:18:24:4e: 66:20:c9:69:df:87:84:47:8f:03:7c:ac:a6:a6:ff:ef:48:41: d6:6c:ee:86 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUTS1QZo4Iyn8vkdDZ2XCyHG8e4fowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0 ZWE3Nzc5YzAeFw0yNTExMTYxODQzNTJaFw0yNjExMTUxODQ4NTJaMDMxMTAvBgNV BAMTKDI5QThCOTkyNDJGQ0I5MEVFQTBEQkY1QTk2Q0E2ODNGMUExM0Y1QjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDU8GEi5GCYZ3qBxC53xzXnJqLf 5nv9TpyQFFOLgJWB6DVu6GsQsf60pQZxLq75GiGfXlMUv30SL5IdOJPcBVEsdZJx mg2gJ5urijAFBkWSn2DZMpZ1miQ1CKsk3UODLtwF9PVVgicjHz+XOhT/8SW62doW SErhiEqvXg9UJrvxwhQf9ZQTPj1WJm+hnr2ZMlrCOonEEjWhQtjnAsdr3sXEDJOJ vskivrM8SUigU4p3uncLDzPcRJYrxk4+kZNfI2AEqIxyK/rK1UDPqQAUwJK1U5jI NHkVLUvmHv31RYwWx6rMssnjHEhhAL5Eof59oQ9h3aH0tufVCOUiX1pMU75/AgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUKai5kkL8uQ7qDb9alspoPxoT9bkwHwYDVR0j BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2 bmQ1dy5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzgzODJlMzIzMTM4MmUzMjMw MzMyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMTMzMzYzNzM4Mzcucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABY2sswDQYJKoZIhvcNAQELBQADggEBADjgKjKW21F/ljZj0tEZy/NesyNPl3eG Ug12oJWHOeYFmwu8B4E7jCFZVcImRVdTqodetmJvuzGP9MJSEJyR18315xJxPw2+ +Kgx8Mfthu10tY/PZgTYnzLt+Ph+Kr02RG/lPbx+iI7kOha2WUCWXAPPmcx7auk1 DkmxKmPAfhXdz7I7MJQ4QpL9NBzEZ5KM3lABvtbiVQWQRHP3ZrYbi7oidKtkNZR7 rsJQ86sZuZjp/Fvx0aiXMj6kbF+oRjgSi/yVcNddT3A1v+Q8MKOSVakub8TvK9Wm CufiqiTzMyAdC05lfgi6fhgkTmYgyWnfh4RHjwN8rKam/+9IQdZs7oY= -----END CERTIFICATE-----Generated at Fri Dec 5 05:40:17 2025 by rpki-client