This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/39352e3231342e3131322e302f32342d3234203d3e20313336373837.roa File: 39352e3231342e3131322e302f32342d3234203d3e20313336373837.roa (raw, json) Hash identifier: wnm55Hv7hjqSsBizPwLIwqW+N+2MnobE6momeY3650A= Subject key identifier: 4D:2F:AA:DC:AA:0F:76:4C:A7:B6:9B:1B:6F:5E:B3:74:08:74:34:92 Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Certificate serial: 7E113857433D6B7A711E89052D84EBD056CEDD55 Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/39352e3231342e3131322e302f32342d3234203d3e20313336373837.roa Signing time: Fri 28 Nov 2025 19:49:57 +0000 ROA not before: Fri 28 Nov 2025 19:44:57 +0000 ROA not after: Fri 27 Nov 2026 19:49:57 +0000 asID: 136787 IP address blocks: 95.214.112.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 05 Dec 2025 21:22:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:11:38:57:43:3d:6b:7a:71:1e:89:05:2d:84:eb:d0:56:ce:dd:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Validity Not Before: Nov 28 19:44:57 2025 GMT Not After : Nov 27 19:49:57 2026 GMT Subject: CN=4D2FAADCAA0F764CA7B69B1B6F5EB37408743492 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:6c:c8:6a:bc:cc:69:0b:20:cf:5c:4c:4f:40: 17:e0:37:d5:c4:36:98:8f:aa:a7:94:8d:c7:c1:0c: f1:82:af:30:32:49:ae:98:09:d5:a2:90:3b:21:8a: 8a:68:df:7a:3f:8c:d8:1d:13:96:44:a0:90:0c:09: d0:bf:28:be:24:79:92:46:24:21:0b:ba:54:03:1f: a7:31:ab:82:ac:9a:6d:43:88:4c:27:57:64:70:0d: f8:8b:ca:3f:81:7e:36:b4:ba:16:0f:ae:e0:9b:7a: 3e:4e:df:92:bf:77:f5:4c:75:19:ed:a9:27:d0:84: 7b:50:f8:82:30:95:85:cd:58:ec:6d:c4:fb:dd:ab: cd:88:a1:c7:a9:1f:a8:dd:00:45:38:d2:84:44:89: 1a:1b:6f:49:76:bf:4c:61:47:8b:f4:0f:6c:a7:b7: 86:49:22:37:03:06:8f:bd:0e:0b:f6:a7:70:06:c9: 6f:1d:a9:53:5a:3b:24:cc:d7:7f:b5:9d:f4:89:ac: 03:64:77:9a:8a:a0:76:32:76:d2:cb:75:12:6d:51: c1:ae:64:42:11:51:c8:4b:bf:8f:39:2a:be:e2:d2: ab:fb:ec:70:9a:a1:e1:ea:fd:21:3c:48:08:b9:be: 92:d8:c2:92:03:42:2a:ae:06:fb:18:88:e5:d4:34: 70:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:2F:AA:DC:AA:0F:76:4C:A7:B6:9B:1B:6F:5E:B3:74:08:74:34:92 X509v3 Authority Key Identifier: keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/39352e3231342e3131322e302f32342d3234203d3e20313336373837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 95.214.112.0/24 Signature Algorithm: sha256WithRSAEncryption 72:b9:4b:a9:bc:96:e2:05:c3:cc:cd:48:95:20:8f:2a:56:75: 5d:b6:2a:62:f0:22:8e:20:2c:63:c4:8e:62:83:c7:37:cf:22: 3a:41:fc:e1:bb:62:85:78:db:b3:12:04:27:bb:53:9b:aa:74: 18:91:de:c8:9c:b4:1f:b1:6c:a6:87:f5:78:5f:c3:bc:04:30: b6:2c:47:24:30:c2:43:ff:ba:9f:19:03:e9:d4:4e:82:05:c9: 35:e7:16:95:12:52:7f:b6:99:f1:1f:df:13:c5:c0:c1:3d:71: 7e:5f:77:93:f9:0a:68:8e:7d:55:18:ab:4e:47:f6:63:68:91: 8f:6b:9e:14:84:c7:6d:c8:c6:47:ad:76:d0:fe:ed:40:f6:a3: 70:20:98:80:1e:23:ab:d5:3f:56:7f:77:67:7e:70:0f:89:ff: 9b:ce:2b:3a:44:ff:79:0b:cc:c5:af:2a:b9:e7:20:cc:6d:b4: 53:9b:d8:61:4c:b5:5e:c1:9e:e6:42:5a:11:aa:49:a3:89:22: e8:9a:f4:fd:82:6f:28:50:77:01:77:30:2e:45:c1:ac:81:62: 0d:71:26:67:93:3c:93:37:71:65:8a:2a:f4:08:91:1c:14:4c: fa:8a:52:18:e4:dc:c6:78:c5:2c:38:e8:6a:83:33:0b:86:bd: c2:4a:dc:26 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUfhE4V0M9a3pxHokFLYTr0FbO3VUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0 ZWE3Nzc5YzAeFw0yNTExMjgxOTQ0NTdaFw0yNjExMjcxOTQ5NTdaMDMxMTAvBgNV BAMTKDREMkZBQURDQUEwRjc2NENBN0I2OUIxQjZGNUVCMzc0MDg3NDM0OTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjbMhqvMxpCyDPXExPQBfgN9XE NpiPqqeUjcfBDPGCrzAySa6YCdWikDshiopo33o/jNgdE5ZEoJAMCdC/KL4keZJG JCELulQDH6cxq4Ksmm1DiEwnV2RwDfiLyj+Bfja0uhYPruCbej5O35K/d/VMdRnt qSfQhHtQ+IIwlYXNWOxtxPvdq82IocepH6jdAEU40oREiRobb0l2v0xhR4v0D2yn t4ZJIjcDBo+9Dgv2p3AGyW8dqVNaOyTM13+1nfSJrANkd5qKoHYydtLLdRJtUcGu ZEIRUchLv485Kr7i0qv77HCaoeHq/SE8SAi5vpLYwpIDQiquBvsYiOXUNHBnAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUTS+q3KoPdkyntpsbb16zdAh0NJIwHwYDVR0j BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2 bmQ1dy5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzkzNTJlMzIzMTM0MmUzMTMx MzIyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMTMzMzYzNzM4Mzcucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABf1nAwDQYJKoZIhvcNAQELBQADggEBAHK5S6m8luIFw8zNSJUgjypWdV22KmLw Io4gLGPEjmKDxzfPIjpB/OG7YoV427MSBCe7U5uqdBiR3sictB+xbKaH9Xhfw7wE MLYsRyQwwkP/up8ZA+nUToIFyTXnFpUSUn+2mfEf3xPFwME9cX5fd5P5CmiOfVUY q05H9mNokY9rnhSEx23IxketdtD+7UD2o3AgmIAeI6vVP1Z/d2d+cA+J/5vOKzpE /3kLzMWvKrnnIMxttFOb2GFMtV7BnuZCWhGqSaOJIuia9P2CbyhQdwF3MC5FwayB Yg1xJmeTPJM3cWWKKvQIkRwUTPqKUhjk3MZ4xSw46GqDMwuGvcJK3CY= -----END CERTIFICATE-----Generated at Fri Dec 5 05:40:20 2025 by rpki-client