This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/39322e3131392e31332e302f32342d3234203d3e20383334.roa File: 39322e3131392e31332e302f32342d3234203d3e20383334.roa (raw, json) Hash identifier: jriXkB5egU9eT9FL72ZTI74MY143n3XKtLErz1lc74k= Subject key identifier: B0:50:94:51:B4:8A:51:85:BD:5A:98:0A:61:1F:E4:2B:34:03:70:C5 Certificate issuer: /CN=70cbd7a9817e470009c0f40ea1e370aa79b5fd91 Certificate serial: 286F55DF0D9C25F5339F32E053C19FC4C9D14950 Authority key identifier: 70:CB:D7:A9:81:7E:47:00:09:C0:F4:0E:A1:E3:70:AA:79:B5:FD:91 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cMvXqYF-RwAJwPQOoeNwqnm1_ZE.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/39322e3131392e31332e302f32342d3234203d3e20383334.roa Signing time: Sun 14 Dec 2025 10:10:41 +0000 ROA not before: Sun 14 Dec 2025 10:05:41 +0000 ROA not after: Sun 13 Dec 2026 10:10:41 +0000 asID: 834 IP address blocks: 92.119.13.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/70CBD7A9817E470009C0F40EA1E370AA79B5FD91.crl rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/70CBD7A9817E470009C0F40EA1E370AA79B5FD91.mft rsync://rpki.ripe.net/repository/DEFAULT/cMvXqYF-RwAJwPQOoeNwqnm1_ZE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 16 Dec 2025 00:56:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:6f:55:df:0d:9c:25:f5:33:9f:32:e0:53:c1:9f:c4:c9:d1:49:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=70cbd7a9817e470009c0f40ea1e370aa79b5fd91 Validity Not Before: Dec 14 10:05:41 2025 GMT Not After : Dec 13 10:10:41 2026 GMT Subject: CN=B0509451B48A5185BD5A980A611FE42B340370C5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:ab:af:3a:8a:b1:98:95:3e:4c:27:cb:b6:d2: 24:50:95:b4:41:c0:57:44:91:51:ba:23:ce:40:8c: ea:8e:92:16:35:8d:1a:3d:8c:da:54:ad:d9:58:08: 72:61:1b:25:c9:01:4d:93:19:45:bd:57:18:4d:57: bf:ca:85:7f:b5:c8:fb:22:3c:7c:24:96:37:fb:93: fb:a1:69:8c:7f:24:47:6e:7a:46:a3:0f:a4:64:f7: e6:a3:78:e4:bd:3f:09:28:b7:97:34:ad:d1:ff:af: 11:ea:41:7e:62:e5:c7:0e:8d:3c:85:14:0b:02:44: 5a:47:ad:1a:28:73:f0:4f:a9:0e:0b:4e:0f:95:68: 00:85:4b:0c:07:fe:53:54:aa:52:38:aa:83:93:4e: ef:3a:2b:f6:86:d8:d1:dd:f8:a4:d0:7a:45:ca:fb: e3:0e:04:91:db:1e:ec:cc:e3:1f:b3:4f:b3:78:b5: 66:15:16:2a:5d:31:2a:1a:db:54:1d:51:af:9f:0e: 36:1a:5a:66:1c:53:10:d0:12:79:0c:09:01:ee:68: c1:7d:12:66:8d:f2:1d:ab:6c:33:e8:e4:81:cb:79: 95:51:ba:db:f8:f1:56:b6:01:bc:40:47:5b:87:b4: dc:57:85:94:4b:ad:bd:d4:28:06:5f:02:0c:41:2b: fd:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:50:94:51:B4:8A:51:85:BD:5A:98:0A:61:1F:E4:2B:34:03:70:C5 X509v3 Authority Key Identifier: keyid:70:CB:D7:A9:81:7E:47:00:09:C0:F4:0E:A1:E3:70:AA:79:B5:FD:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/70CBD7A9817E470009C0F40EA1E370AA79B5FD91.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cMvXqYF-RwAJwPQOoeNwqnm1_ZE.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/39322e3131392e31332e302f32342d3234203d3e20383334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 92.119.13.0/24 Signature Algorithm: sha256WithRSAEncryption c1:80:1c:f8:cb:c6:0a:38:18:f7:f3:10:7c:a4:ec:5c:53:bf: 80:5f:8a:2b:0f:93:b6:3c:5d:2b:d1:3d:33:d8:38:39:49:9a: 03:54:d2:58:1a:22:48:40:60:c2:09:de:ae:4a:f1:7b:2a:9e: 26:b4:e0:fb:ff:38:3d:29:ae:e0:7b:50:9d:5e:7b:07:f4:ad: 96:7e:22:15:3c:25:2e:2c:29:9e:ab:33:f7:b9:a6:33:fb:17: 34:af:54:b3:e2:f9:b2:8b:5a:01:87:04:49:19:bd:9b:94:e0: b1:b5:47:2b:42:51:e8:06:09:49:fb:58:ac:39:5a:a7:a8:27: 6b:1c:5c:25:db:0e:b1:94:ae:52:de:85:d0:c6:34:b8:82:76: cd:52:a5:da:b4:02:8b:9a:a2:33:2e:b6:cc:c0:f4:ce:02:32: 40:c4:c7:81:19:c3:1b:f0:cc:01:38:3a:24:6a:de:c1:9a:0d: a1:10:29:6a:9f:e7:a0:73:06:5f:d8:56:4d:03:84:96:9e:9e: 68:b1:db:68:57:9a:49:a5:b3:de:9f:6f:4e:9e:9c:46:f2:ed: 9b:ca:61:88:4a:25:17:dc:92:57:e5:33:f8:ee:60:e7:ac:7e: 0d:38:25:f1:26:cd:72:33:d8:47:27:3e:33:98:5b:8a:5c:db: be:48:de:cd -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUKG9V3w2cJfUznzLgU8GfxMnRSVAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzBjYmQ3YTk4MTdlNDcwMDA5YzBmNDBlYTFlMzcwYWE3 OWI1ZmQ5MTAeFw0yNTEyMTQxMDA1NDFaFw0yNjEyMTMxMDEwNDFaMDMxMTAvBgNV BAMTKEIwNTA5NDUxQjQ4QTUxODVCRDVBOTgwQTYxMUZFNDJCMzQwMzcwQzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjq686irGYlT5MJ8u20iRQlbRB wFdEkVG6I85AjOqOkhY1jRo9jNpUrdlYCHJhGyXJAU2TGUW9VxhNV7/KhX+1yPsi PHwkljf7k/uhaYx/JEduekajD6Rk9+ajeOS9Pwkot5c0rdH/rxHqQX5i5ccOjTyF FAsCRFpHrRooc/BPqQ4LTg+VaACFSwwH/lNUqlI4qoOTTu86K/aG2NHd+KTQekXK ++MOBJHbHuzM4x+zT7N4tWYVFipdMSoa21QdUa+fDjYaWmYcUxDQEnkMCQHuaMF9 EmaN8h2rbDPo5IHLeZVRutv48Va2AbxAR1uHtNxXhZRLrb3UKAZfAgxBK/03AgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUsFCUUbSKUYW9WpgKYR/kKzQDcMUwHwYDVR0j BBgwFoAUcMvXqYF+RwAJwPQOoeNwqnm1/ZEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYjczMzJhZjAtZGQ3My00NzU1LTlkMjAtNjkzZWE4Mjg5 ZjhhLzAvNzBDQkQ3QTk4MTdFNDcwMDA5QzBGNDBFQTFFMzcwQUE3OUI1RkQ5MS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2NNdlhxWUYtUndBSndQUU9vZU53cW5t MV9aRS5jZXIwgacGCCsGAQUFBwELBIGaMIGXMIGUBggrBgEFBQcwC4aBh3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYjczMzJhZjAt ZGQ3My00NzU1LTlkMjAtNjkzZWE4Mjg5ZjhhLzAvMzkzMjJlMzEzMTM5MmUzMTMz MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzgzMzM0LnJvYTAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAXHcNMA0G CSqGSIb3DQEBCwUAA4IBAQDBgBz4y8YKOBj38xB8pOxcU7+AX4orD5O2PF0r0T0z 2Dg5SZoDVNJYGiJIQGDCCd6uSvF7Kp4mtOD7/zg9Ka7ge1CdXnsH9K2WfiIVPCUu LCmeqzP3uaYz+xc0r1Sz4vmyi1oBhwRJGb2blOCxtUcrQlHoBglJ+1isOVqnqCdr HFwl2w6xlK5S3oXQxjS4gnbNUqXatAKLmqIzLrbMwPTOAjJAxMeBGcMb8MwBODok at7Bmg2hEClqn+egcwZf2FZNA4SWnp5osdtoV5pJpbPen29OnpxG8u2bymGISiUX 3JJX5TP47mDnrH4NOCXxJs1yM9hHJz4zmFuKXNu+SN7N -----END CERTIFICATE-----Generated at Mon Dec 15 17:21:37 2025 by rpki-client