This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/37382e33312e3234382e302f32342d3234203d3e20383334.roa File: 37382e33312e3234382e302f32342d3234203d3e20383334.roa (raw, json) Hash identifier: kMkq/veUZ5SbKkf0McXulr4hZcthcucXVIrTUzZulzo= Subject key identifier: EC:50:DB:6D:56:F7:57:0E:F3:56:79:5C:4D:ED:D3:36:25:60:C8:CA Certificate issuer: /CN=088469d1a33085ff88b3e599d223ca74c2313a3a Certificate serial: 7EBB5C96D12E3A3AB0D10B6B80D9CCED7FEC9411 Authority key identifier: 08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/37382e33312e3234382e302f32342d3234203d3e20383334.roa Signing time: Thu 27 Nov 2025 16:14:02 +0000 ROA not before: Thu 27 Nov 2025 16:09:02 +0000 ROA not after: Thu 26 Nov 2026 16:14:02 +0000 asID: 834 IP address blocks: 78.31.248.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.mft rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 05:02:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:bb:5c:96:d1:2e:3a:3a:b0:d1:0b:6b:80:d9:cc:ed:7f:ec:94:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=088469d1a33085ff88b3e599d223ca74c2313a3a Validity Not Before: Nov 27 16:09:02 2025 GMT Not After : Nov 26 16:14:02 2026 GMT Subject: CN=EC50DB6D56F7570EF356795C4DEDD3362560C8CA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:f2:de:a3:5d:7a:18:eb:7e:b2:3c:4c:5a:28: f1:ec:6b:19:28:08:25:cf:34:2c:f2:2f:b6:dd:8b: 24:17:e6:a1:bf:b0:d3:82:05:ab:cc:e8:86:1c:a5: d9:81:49:78:81:83:d0:19:7f:ec:8c:3e:82:0d:bf: 50:6e:f5:51:97:81:dd:c7:14:63:bb:c7:8f:66:c3: 67:4d:a2:51:83:38:7e:fd:5d:7c:e8:60:d7:0b:b8: c2:e6:10:a2:e5:14:18:ee:0f:65:96:be:dc:78:35: fd:73:b6:6e:ac:7f:24:3c:69:75:3f:24:75:20:0a: e2:0b:1c:35:4c:31:4d:ad:b1:20:8c:b0:a4:a7:76: 04:40:70:f2:64:ff:e8:d8:18:10:bc:ea:ce:5e:21: 95:f3:99:b6:fc:39:ad:31:76:ff:f7:b4:1f:3f:bc: 96:25:fc:55:93:09:69:88:1c:2e:13:c4:2f:35:31: ed:e4:0b:68:8e:ce:98:9f:cc:c6:41:27:ca:44:22: c3:a0:33:e1:d7:99:63:58:90:d1:d1:38:aa:21:f5: 17:1b:e7:25:50:02:a9:e9:b5:e0:61:1a:09:ca:87: ca:a9:7b:d2:b8:21:1b:ae:91:cc:af:58:cc:fa:3a: a2:ac:25:53:08:97:24:42:ae:19:62:91:bb:d5:06: e0:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:50:DB:6D:56:F7:57:0E:F3:56:79:5C:4D:ED:D3:36:25:60:C8:CA X509v3 Authority Key Identifier: keyid:08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/37382e33312e3234382e302f32342d3234203d3e20383334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 78.31.248.0/24 Signature Algorithm: sha256WithRSAEncryption 91:ee:9d:f7:6e:95:d8:5a:5c:6d:93:3f:5c:d1:3f:f3:54:39: c3:56:2b:0c:21:bf:2c:f4:39:15:79:6f:4e:de:01:4b:57:79: d4:f4:d2:6a:6b:db:87:08:a4:27:1b:69:83:5d:72:f1:6c:99: 9a:39:eb:fb:74:ac:42:f8:c0:d1:c9:1c:1b:72:54:de:20:89: 97:b0:cd:51:c2:da:cf:ec:6e:64:8b:08:80:27:04:8b:d2:0e: e1:c3:55:73:c1:57:bd:ba:a8:cc:e3:eb:e5:f6:2e:80:7e:bc: f3:f0:dc:6b:b9:96:e3:24:eb:45:18:3f:0b:d5:bd:94:44:ff: fc:15:99:4d:f4:f8:d3:50:d1:a7:a3:72:09:14:9f:c1:b1:fd: 01:24:57:05:cd:7c:68:33:f8:c3:ae:34:74:ec:6b:83:ae:69: 55:e0:8b:21:30:53:53:92:37:b4:30:86:2d:d1:82:6f:82:5f: a3:12:8f:f9:69:f3:68:81:5b:e5:94:eb:8a:04:7f:5c:aa:ae: 26:2a:38:8b:36:53:58:a1:3b:13:af:75:c9:2c:5d:61:99:d1: 4f:e1:ab:3a:e8:cd:8a:0e:78:76:61:7e:49:19:11:36:bd:6d: 3c:9b:7b:85:c1:6f:67:6d:d3:f1:dd:33:de:c9:20:3d:72:97: ab:22:e5:1b -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUfrtcltEuOjqw0QtrgNnM7X/slBEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDg4NDY5ZDFhMzMwODVmZjg4YjNlNTk5ZDIyM2NhNzRj MjMxM2EzYTAeFw0yNTExMjcxNjA5MDJaFw0yNjExMjYxNjE0MDJaMDMxMTAvBgNV BAMTKEVDNTBEQjZENTZGNzU3MEVGMzU2Nzk1QzRERUREMzM2MjU2MEM4Q0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCv8t6jXXoY636yPExaKPHsaxko CCXPNCzyL7bdiyQX5qG/sNOCBavM6IYcpdmBSXiBg9AZf+yMPoINv1Bu9VGXgd3H FGO7x49mw2dNolGDOH79XXzoYNcLuMLmEKLlFBjuD2WWvtx4Nf1ztm6sfyQ8aXU/ JHUgCuILHDVMMU2tsSCMsKSndgRAcPJk/+jYGBC86s5eIZXzmbb8Oa0xdv/3tB8/ vJYl/FWTCWmIHC4TxC81Me3kC2iOzpifzMZBJ8pEIsOgM+HXmWNYkNHROKoh9Rcb 5yVQAqnpteBhGgnKh8qpe9K4IRuukcyvWMz6OqKsJVMIlyRCrhlikbvVBuARAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQU7FDbbVb3Vw7zVnlcTe3TNiVgyMowHwYDVR0j BBgwFoAUCIRp0aMwhf+Is+WZ0iPKdMIxOjowDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzUvMDg4NDY5RDFBMzMwODVGRjg4QjNFNTk5RDIyM0NBNzRDMjMxM0EzQS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0NJUnAwYU13aGYtSXMtV1owaVBLZE1J eE9qby5jZXIwgacGCCsGAQUFBwELBIGaMIGXMIGUBggrBgEFBQcwC4aBh3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzUvMzczODJlMzMzMTJlMzIzNDM4 MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzgzMzM0LnJvYTAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQATh/4MA0G CSqGSIb3DQEBCwUAA4IBAQCR7p33bpXYWlxtkz9c0T/zVDnDVisMIb8s9DkVeW9O 3gFLV3nU9NJqa9uHCKQnG2mDXXLxbJmaOev7dKxC+MDRyRwbclTeIImXsM1RwtrP 7G5kiwiAJwSL0g7hw1VzwVe9uqjM4+vl9i6Afrzz8NxruZbjJOtFGD8L1b2URP/8 FZlN9PjTUNGno3IJFJ/Bsf0BJFcFzXxoM/jDrjR07GuDrmlV4IshMFNTkje0MIYt 0YJvgl+jEo/5afNogVvllOuKBH9cqq4mKjiLNlNYoTsTr3XJLF1hmdFP4as66M2K Dnh2YX5JGRE2vW08m3uFwW9nbdPx3TPeySA9cperIuUb -----END CERTIFICATE-----Generated at Fri Dec 5 13:11:00 2025 by rpki-client