This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/34352e38382e3138382e302f32342d3332203d3e203531313637.roa File: 34352e38382e3138382e302f32342d3332203d3e203531313637.roa (raw, json) Hash identifier: j/3SlKDugtgzjMKsd6b0Jn99c/f9aRLqNjTHNuudb7I= Subject key identifier: B2:2F:19:8E:78:37:26:D8:61:64:EF:6E:38:EF:F6:89:49:65:B3:6A Certificate issuer: /CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959 Certificate serial: 4B9EDDBAFFBAF37DE5DE13EC6E1D10AB8B3F5E80 Authority key identifier: 09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/34352e38382e3138382e302f32342d3332203d3e203531313637.roa Signing time: Fri 28 Nov 2025 11:49:47 +0000 ROA not before: Fri 28 Nov 2025 11:44:47 +0000 ROA not after: Fri 27 Nov 2026 11:49:47 +0000 asID: 51167 IP address blocks: 45.88.188.0/24 maxlen: 32 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.mft rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 17 Dec 2025 09:00:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:9e:dd:ba:ff:ba:f3:7d:e5:de:13:ec:6e:1d:10:ab:8b:3f:5e:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959 Validity Not Before: Nov 28 11:44:47 2025 GMT Not After : Nov 27 11:49:47 2026 GMT Subject: CN=B22F198E783726D86164EF6E38EFF6894965B36A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:4e:76:af:77:62:ca:5b:7a:71:d5:ce:6d:ca: 3e:89:07:cd:f6:3b:04:87:ca:e6:40:cc:32:6e:70: 35:26:62:dd:73:a6:86:56:3c:e8:3e:d6:97:51:dc: 74:86:9a:a3:86:50:bc:db:2a:f3:11:c9:3e:c3:0f: 1d:4f:cb:5e:26:b4:b6:9c:df:fb:52:18:bd:64:14: e0:19:84:27:50:d2:e9:d8:c7:de:65:f4:0b:d4:a4: 17:82:c5:80:ab:d6:60:6b:84:4d:06:0b:96:f6:5c: 18:a6:9d:b6:62:72:ac:bc:fd:83:01:b4:89:d7:31: 7f:44:1f:5a:95:34:1e:40:7f:6c:a1:92:1c:0f:e0: b7:99:0d:6d:ab:39:c3:6b:37:82:f2:c6:3b:8b:9a: 6f:46:cd:e9:e5:82:4a:bf:08:47:98:f3:94:51:7e: 44:0b:6f:53:5f:dd:a1:93:70:9d:d7:95:0f:06:70: 90:69:5b:ca:db:ff:07:71:1e:7d:57:0b:6e:6a:d0: 8f:00:8f:58:f1:08:32:b0:44:ba:20:c5:3d:33:4b: de:b5:5c:51:73:59:a8:f7:46:67:56:96:9a:ef:8f: 8a:2f:ce:1a:2b:fc:e6:fd:8e:c3:ce:cf:22:99:36: 32:e0:7f:41:f4:7c:3a:aa:a7:88:f2:04:a6:90:5a: ff:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:2F:19:8E:78:37:26:D8:61:64:EF:6E:38:EF:F6:89:49:65:B3:6A X509v3 Authority Key Identifier: keyid:09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/34352e38382e3138382e302f32342d3332203d3e203531313637.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.88.188.0/24 Signature Algorithm: sha256WithRSAEncryption 97:17:1b:08:29:b8:11:56:0d:9c:36:d4:29:f6:15:0d:14:9e: 5e:f5:ce:15:3a:73:42:f0:a6:f1:00:25:75:cd:1e:d2:63:4e: e4:a3:ec:4c:4d:10:6f:9e:31:a5:c0:9b:d9:88:d7:e8:a0:06: 1b:57:1c:51:84:28:0a:47:03:da:bd:a9:5c:82:ad:d6:85:e6: 8b:f1:86:22:28:2c:19:24:9c:5a:01:10:25:71:b0:0b:af:77: 74:c0:2e:8a:88:77:26:43:4a:7f:f2:6c:b5:d7:24:4e:ec:59: 86:60:5c:d5:5f:e4:e8:a9:59:8f:7b:de:87:6d:ed:02:a7:ef: 10:53:e7:8e:66:bc:46:1d:32:6e:82:40:f7:21:17:38:71:43: 75:c0:4b:af:80:d6:eb:25:54:de:28:c9:9a:d0:09:cd:ea:83: 7d:23:08:d3:d6:8e:c7:1c:f0:07:59:22:e4:99:e9:53:30:69: 81:3e:f1:06:91:4b:bc:ad:da:a7:d6:f8:b7:0e:12:ae:10:7c: 9a:ff:45:0b:95:96:68:84:fc:aa:aa:19:3b:6f:b2:8b:a3:96: 33:78:8e:cb:81:28:dd:14:0e:49:82:0b:ac:12:78:d8:6d:db: 5d:27:97:1e:e2:a6:d6:19:71:a0:84:c0:e6:45:6a:f3:ff:e8: 33:55:83:d1 -----BEGIN CERTIFICATE----- MIIFNjCCBB6gAwIBAgIUS57duv+6833l3hPsbh0Qq4s/XoAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDk3YTI4Zjc3ZWIwYTRhYzM1NGE4YWMyODc1NGIyYTNi YmUzYTk1OTAeFw0yNTExMjgxMTQ0NDdaFw0yNjExMjcxMTQ5NDdaMDMxMTAvBgNV BAMTKEIyMkYxOThFNzgzNzI2RDg2MTY0RUY2RTM4RUZGNjg5NDk2NUIzNkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNTnavd2LKW3px1c5tyj6JB832 OwSHyuZAzDJucDUmYt1zpoZWPOg+1pdR3HSGmqOGULzbKvMRyT7DDx1Py14mtLac 3/tSGL1kFOAZhCdQ0unYx95l9AvUpBeCxYCr1mBrhE0GC5b2XBimnbZicqy8/YMB tInXMX9EH1qVNB5Af2yhkhwP4LeZDW2rOcNrN4LyxjuLmm9Gzenlgkq/CEeY85RR fkQLb1Nf3aGTcJ3XlQ8GcJBpW8rb/wdxHn1XC25q0I8Aj1jxCDKwRLogxT0zS961 XFFzWaj3RmdWlprvj4ovzhor/Ob9jsPOzyKZNjLgf0H0fDqqp4jyBKaQWv+NAgMB AAGjggJAMIICPDAdBgNVHQ4EFgQUsi8Zjng3JthhZO9uOO/2iUlls2owHwYDVR0j BBgwFoAUCXoo936wpKw1SorCh1Syo7vjqVkwDgYDVR0PAQH/BAQDAgeAMIGYBgNV HR8EgZAwgY0wgYqggYeggYSGgYFyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5L2ZlMzcwOGEwLTY3ZDUtNGFjMi1hYmM0LWEzMzI1OTBi OTlhZi8xNzcvMDk3QTI4Rjc3RUIwQTRBQzM1NEE4QUMyODc1NEIyQTNCQkUzQTk1 OS5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2ku cmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0NYb285MzZ3cEt3MVNvckNoMVN5 bzd2anFWay5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJz eW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4 YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzE3Ny8zNDM1MmUzODM4MmUz MTM4MzgyZTMwMmYzMjM0MmQzMzMyMjAzZDNlMjAzNTMxMzEzNjM3LnJvYTAYBgNV HSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQALVi8MA0GCSqGSIb3DQEBCwUAA4IBAQCXFxsIKbgRVg2cNtQp9hUNFJ5e9c4V OnNC8KbxACV1zR7SY07ko+xMTRBvnjGlwJvZiNfooAYbVxxRhCgKRwPavalcgq3W heaL8YYiKCwZJJxaARAlcbALr3d0wC6KiHcmQ0p/8my11yRO7FmGYFzVX+ToqVmP e96Hbe0Cp+8QU+eOZrxGHTJugkD3IRc4cUN1wEuvgNbrJVTeKMma0AnN6oN9IwjT 1o7HHPAHWSLkmelTMGmBPvEGkUu8rdqn1vi3DhKuEHya/0ULlZZohPyqqhk7b7KL o5YzeI7LgSjdFA5JggusEnjYbdtdJ5ce4qbWGXGghMDmRWrz/+gzVYPR -----END CERTIFICATE-----Generated at Tue Dec 16 14:00:38 2025 by rpki-client