This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/322e35382e38332e302f32342d3332203d3e203531313637.roa File: 322e35382e38332e302f32342d3332203d3e203531313637.roa (raw, json) Hash identifier: 8eZIf56eZMdUcW+7F2KbNdLA3cJqqJjW4/YPmOGU/EM= Subject key identifier: BD:CB:59:A9:EB:5F:08:6A:75:10:1A:14:A5:CB:F2:2C:EF:28:D3:44 Certificate issuer: /CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959 Certificate serial: 689EC0DF45FE48A8703C10477CEA5620A895F836 Authority key identifier: 09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/322e35382e38332e302f32342d3332203d3e203531313637.roa Signing time: Fri 21 Nov 2025 15:49:11 +0000 ROA not before: Fri 21 Nov 2025 15:44:11 +0000 ROA not after: Fri 20 Nov 2026 15:49:11 +0000 asID: 51167 IP address blocks: 2.58.83.0/24 maxlen: 32 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.mft rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:9e:c0:df:45:fe:48:a8:70:3c:10:47:7c:ea:56:20:a8:95:f8:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959 Validity Not Before: Nov 21 15:44:11 2025 GMT Not After : Nov 20 15:49:11 2026 GMT Subject: CN=BDCB59A9EB5F086A75101A14A5CBF22CEF28D344 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:db:2d:00:ad:83:c4:80:b0:f5:dd:78:b4:be: 0c:3f:92:1d:f2:32:2f:a5:48:9c:e9:f8:93:75:e7: a9:3b:f5:77:db:f2:86:66:bd:c4:a4:30:ce:91:f0: b9:ef:b7:a8:01:4c:9b:98:bd:6a:27:f9:57:9f:9b: 2c:24:a4:0b:67:b3:69:73:44:ca:62:35:1c:b4:3d: 15:d4:29:c6:1b:f1:2e:b1:f1:ca:fd:1f:e6:a1:56: 51:54:67:87:c1:3a:e2:06:9d:52:01:12:92:90:fc: e8:22:3f:4f:91:40:b0:40:02:7a:66:7a:1b:3a:b2: fc:5a:3d:74:5a:8d:81:46:a9:2e:f1:60:7f:d8:c3: 33:ca:d9:24:b0:c6:75:2e:42:93:d5:c8:15:ec:cb: 51:fa:03:ba:ce:38:e1:da:c3:0c:69:8e:a1:a9:ac: 3a:45:ef:9e:d6:10:ce:21:24:16:f7:a8:6c:f6:71: c7:4e:3f:db:93:80:bc:23:44:f1:da:7f:bc:2c:81: 18:3f:90:da:5c:07:25:40:8a:5d:4c:e4:d9:1b:56: 8f:ea:61:fb:27:53:30:b7:81:a4:0c:c8:37:a0:9c: 62:c3:e1:fd:5a:b0:a7:e0:ff:18:9d:0a:57:00:c6: 7e:36:05:a1:2e:f1:15:4f:47:fd:bd:ae:e4:69:08: 9d:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:CB:59:A9:EB:5F:08:6A:75:10:1A:14:A5:CB:F2:2C:EF:28:D3:44 X509v3 Authority Key Identifier: keyid:09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/322e35382e38332e302f32342d3332203d3e203531313637.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 2.58.83.0/24 Signature Algorithm: sha256WithRSAEncryption a2:77:32:a8:30:f3:73:20:a2:12:02:55:10:2e:ea:42:83:63: c7:03:9e:33:4a:f2:60:d2:3f:1e:9a:37:0d:c8:75:4b:3d:07: 0c:13:d9:06:08:66:8c:ba:10:d8:af:20:ca:9a:85:ad:90:f5: 73:8e:04:1f:1b:69:9b:48:ed:1f:d7:b1:f9:bf:9a:e1:d0:7d: 74:fa:f3:b5:37:5e:10:4d:05:1e:b5:e4:4e:35:b7:a0:f2:75: b8:cf:39:57:fa:8c:39:2b:23:a1:94:48:ad:09:ba:f4:d5:f5: b3:37:d6:c1:ef:0a:87:71:1c:d4:a4:7e:1b:df:48:d6:59:e2: 55:92:ea:a1:8a:f9:27:57:ab:6d:00:dd:d3:2f:f4:c8:09:9f: 39:7e:5f:75:13:10:82:3f:f5:42:08:19:73:1d:99:16:4f:c3: db:32:7a:2d:2e:d5:3e:a8:28:45:da:79:9d:7c:53:5c:ca:5d: 87:be:5e:b9:34:97:3c:61:ac:a3:ca:3f:65:4b:48:46:e4:c6: 85:72:25:9c:97:13:c9:ff:a1:e2:bf:ec:54:f8:0c:f6:77:b8: 53:55:f7:a5:c2:55:06:63:b4:4a:5d:6e:1a:9c:75:b4:51:04: c9:e0:50:b5:b9:14:0c:b5:5d:2e:90:46:eb:81:17:88:ca:5e: 2b:e0:47:7e -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUaJ7A30X+SKhwPBBHfOpWIKiV+DYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDk3YTI4Zjc3ZWIwYTRhYzM1NGE4YWMyODc1NGIyYTNi YmUzYTk1OTAeFw0yNTExMjExNTQ0MTFaFw0yNjExMjAxNTQ5MTFaMDMxMTAvBgNV BAMTKEJEQ0I1OUE5RUI1RjA4NkE3NTEwMUExNEE1Q0JGMjJDRUYyOEQzNDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDC2y0ArYPEgLD13Xi0vgw/kh3y Mi+lSJzp+JN156k79Xfb8oZmvcSkMM6R8Lnvt6gBTJuYvWon+VefmywkpAtns2lz RMpiNRy0PRXUKcYb8S6x8cr9H+ahVlFUZ4fBOuIGnVIBEpKQ/OgiP0+RQLBAAnpm ehs6svxaPXRajYFGqS7xYH/YwzPK2SSwxnUuQpPVyBXsy1H6A7rOOOHawwxpjqGp rDpF757WEM4hJBb3qGz2ccdOP9uTgLwjRPHaf7wsgRg/kNpcByVAil1M5NkbVo/q YfsnUzC3gaQMyDegnGLD4f1asKfg/xidClcAxn42BaEu8RVPR/29ruRpCJ3VAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUvctZqetfCGp1EBoUpcvyLO8o00QwHwYDVR0j BBgwFoAUCXoo936wpKw1SorCh1Syo7vjqVkwDgYDVR0PAQH/BAQDAgeAMIGYBgNV HR8EgZAwgY0wgYqggYeggYSGgYFyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5L2ZlMzcwOGEwLTY3ZDUtNGFjMi1hYmM0LWEzMzI1OTBi OTlhZi8xNzcvMDk3QTI4Rjc3RUIwQTRBQzM1NEE4QUMyODc1NEIyQTNCQkUzQTk1 OS5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2ku cmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0NYb285MzZ3cEt3MVNvckNoMVN5 bzd2anFWay5jZXIwgakGCCsGAQUFBwELBIGcMIGZMIGWBggrBgEFBQcwC4aBiXJz eW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4 YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzE3Ny8zMjJlMzUzODJlMzgz MzJlMzAyZjMyMzQyZDMzMzIyMDNkM2UyMDM1MzEzMTM2Mzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAC OlMwDQYJKoZIhvcNAQELBQADggEBAKJ3Mqgw83MgohICVRAu6kKDY8cDnjNK8mDS Px6aNw3IdUs9BwwT2QYIZoy6ENivIMqaha2Q9XOOBB8baZtI7R/Xsfm/muHQfXT6 87U3XhBNBR615E41t6DydbjPOVf6jDkrI6GUSK0JuvTV9bM31sHvCodxHNSkfhvf SNZZ4lWS6qGK+SdXq20A3dMv9MgJnzl+X3UTEII/9UIIGXMdmRZPw9syei0u1T6o KEXaeZ18U1zKXYe+Xrk0lzxhrKPKP2VLSEbkxoVyJZyXE8n/oeK/7FT4DPZ3uFNV 96XCVQZjtEpdbhqcdbRRBMngULW5FAy1XS6QRuuBF4jKXivgR34= -----END CERTIFICATE-----Generated at Sat Dec 6 12:50:55 2025 by rpki-client