This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38392e3235302e36342e302f32312d3332203d3e203531313637.roa File: 38392e3235302e36342e302f32312d3332203d3e203531313637.roa (raw, json) Hash identifier: 4deZXly7JNLO1VMB1RIoy93V36/B69skilWGVyXdWYw= Subject key identifier: 55:B8:9A:8F:FA:24:6A:6F:65:EE:E2:36:68:26:EF:7F:F8:5F:72:F6 Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Certificate serial: 5184DF07126940989FFD8E90C061C62B5CC8863B Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38392e3235302e36342e302f32312d3332203d3e203531313637.roa Signing time: Thu 13 Nov 2025 17:48:51 +0000 ROA not before: Thu 13 Nov 2025 17:43:51 +0000 ROA not after: Thu 12 Nov 2026 17:48:51 +0000 asID: 51167 IP address blocks: 89.250.64.0/21 maxlen: 32 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 05 Dec 2025 21:22:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:84:df:07:12:69:40:98:9f:fd:8e:90:c0:61:c6:2b:5c:c8:86:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Validity Not Before: Nov 13 17:43:51 2025 GMT Not After : Nov 12 17:48:51 2026 GMT Subject: CN=55B89A8FFA246A6F65EEE2366826EF7FF85F72F6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:96:c1:e4:9e:5d:31:12:d0:0b:32:ee:97:88: a1:50:d1:dc:74:60:1f:d4:ce:f2:aa:91:7b:4f:4c: f2:74:72:c7:71:2a:4b:b0:19:88:b0:2b:bb:e4:ea: e2:77:b1:0c:9a:db:93:ce:8c:5b:8a:ee:5f:0e:38: 74:0f:62:99:33:f3:a2:87:e9:22:32:c2:a1:18:2c: 85:f9:f6:b1:39:30:42:54:ce:03:1a:8b:25:0b:97: f2:1d:89:30:18:33:23:e4:05:6b:52:d0:83:43:4a: 0a:69:5d:62:f8:e2:3e:cf:23:3b:a4:f1:b2:db:ef: 0e:ec:d0:50:8e:6a:5f:06:da:78:94:f6:34:3e:19: c5:e1:5f:6f:a4:ef:ce:36:0a:b1:10:17:61:ae:9d: 3f:d3:08:1b:d3:fc:5d:b0:e4:4e:26:0b:4c:66:39: a9:eb:92:1d:75:e2:89:90:25:22:ca:5c:df:aa:31: 2b:f8:31:38:0e:a3:0b:00:3b:4a:fe:35:7b:5b:63: 53:ec:20:22:b6:37:db:4f:d5:8c:f9:f0:64:b5:40: c4:ef:f1:92:ea:f2:6a:d3:1d:88:e6:1d:38:08:a8: c9:16:65:cb:d6:0e:d0:7e:1e:96:0d:dc:63:05:0c: 76:48:84:f3:ca:57:e1:b1:19:74:b1:9c:14:0d:a3: 01:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:B8:9A:8F:FA:24:6A:6F:65:EE:E2:36:68:26:EF:7F:F8:5F:72:F6 X509v3 Authority Key Identifier: keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38392e3235302e36342e302f32312d3332203d3e203531313637.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 89.250.64.0/21 Signature Algorithm: sha256WithRSAEncryption 7f:d5:34:12:36:83:8c:53:46:7b:81:45:b7:01:32:f7:24:e1: aa:2e:1e:66:ca:3f:a4:cd:79:ed:1c:de:93:e5:37:41:01:76: 81:56:b9:b7:70:06:ac:3f:75:cf:58:58:00:a4:7a:33:83:26: 12:12:46:0a:55:1e:23:7b:4d:b7:3e:ca:5b:c0:4c:31:c4:4d: db:ee:78:50:16:64:a5:23:92:7f:bd:63:40:bd:63:3f:5e:05: 61:8c:90:b9:94:d8:15:4c:63:67:70:a6:e3:86:6a:43:63:ba: 10:db:e8:b4:77:9d:f5:7c:23:73:14:62:1d:22:9a:d5:01:51: ec:38:20:d9:f8:d8:82:a6:64:e7:66:3d:27:bc:c4:ca:ba:11: 07:c5:5d:98:32:13:37:6f:5b:c9:b9:09:2a:96:ad:ca:11:a3: 7f:6e:6f:af:ea:76:be:70:9e:11:fa:dc:b7:10:e9:72:24:f4: 38:d0:5d:2d:33:73:0a:50:eb:21:10:00:d6:32:1f:fa:64:e7: c9:e8:62:2b:c9:b5:ec:59:c7:eb:0a:44:03:d8:8c:2d:14:0c: 51:94:1c:63:a3:38:48:4d:78:b3:f5:2a:4a:e4:38:f0:58:18: f7:37:d5:1f:cc:18:3d:7d:54:f0:41:5a:69:1a:a4:f0:e8:f8: 70:9d:2f:c6 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUUYTfBxJpQJif/Y6QwGHGK1zIhjswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0 ZWE3Nzc5YzAeFw0yNTExMTMxNzQzNTFaFw0yNjExMTIxNzQ4NTFaMDMxMTAvBgNV BAMTKDU1Qjg5QThGRkEyNDZBNkY2NUVFRTIzNjY4MjZFRjdGRjg1RjcyRjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCWlsHknl0xEtALMu6XiKFQ0dx0 YB/UzvKqkXtPTPJ0csdxKkuwGYiwK7vk6uJ3sQya25POjFuK7l8OOHQPYpkz86KH 6SIywqEYLIX59rE5MEJUzgMaiyULl/IdiTAYMyPkBWtS0INDSgppXWL44j7PIzuk 8bLb7w7s0FCOal8G2niU9jQ+GcXhX2+k7842CrEQF2GunT/TCBvT/F2w5E4mC0xm Oanrkh114omQJSLKXN+qMSv4MTgOowsAO0r+NXtbY1PsICK2N9tP1Yz58GS1QMTv 8ZLq8mrTHYjmHTgIqMkWZcvWDtB+HpYN3GMFDHZIhPPKV+GxGXSxnBQNowEDAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUVbiaj/okam9l7uI2aCbvf/hfcvYwHwYDVR0j BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2 bmQ1dy5jZXIwgasGCCsGAQUFBwELBIGeMIGbMIGYBggrBgEFBQcwC4aBi3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzgzOTJlMzIzNTMwMmUzNjM0 MmUzMDJmMzIzMTJkMzMzMjIwM2QzZTIwMzUzMTMxMzYzNy5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA1n6 QDANBgkqhkiG9w0BAQsFAAOCAQEAf9U0EjaDjFNGe4FFtwEy9yThqi4eZso/pM15 7Rzek+U3QQF2gVa5t3AGrD91z1hYAKR6M4MmEhJGClUeI3tNtz7KW8BMMcRN2+54 UBZkpSOSf71jQL1jP14FYYyQuZTYFUxjZ3Cm44ZqQ2O6ENvotHed9XwjcxRiHSKa 1QFR7Dgg2fjYgqZk52Y9J7zEyroRB8VdmDITN29bybkJKpatyhGjf25vr+p2vnCe EfrctxDpciT0ONBdLTNzClDrIRAA1jIf+mTnyehiK8m17FnH6wpEA9iMLRQMUZQc Y6M4SE14s/UqSuQ48FgY9zfVH8wYPX1U8EFaaRqk8Oj4cJ0vxg== -----END CERTIFICATE-----Generated at Fri Dec 5 06:23:35 2025 by rpki-client