This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/352e3138302e3135302e302f32342d3332203d3e203531313637.roa File: 352e3138302e3135302e302f32342d3332203d3e203531313637.roa (raw, json) Hash identifier: obDW+WhItHjdAT4wfvMS6e3TT1SdPi7XujKJsWXhiPg= Subject key identifier: 81:B7:68:C9:6A:72:02:53:19:0E:8C:9E:45:33:F1:CA:4C:3C:9F:85 Certificate issuer: /CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959 Certificate serial: 7434BFDF4B514C2B26559F6252E631F08F795A9A Authority key identifier: 09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/352e3138302e3135302e302f32342d3332203d3e203531313637.roa Signing time: Fri 28 Nov 2025 11:49:24 +0000 ROA not before: Fri 28 Nov 2025 11:44:24 +0000 ROA not after: Fri 27 Nov 2026 11:49:24 +0000 asID: 51167 IP address blocks: 5.180.150.0/24 maxlen: 32 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.mft rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 04:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:34:bf:df:4b:51:4c:2b:26:55:9f:62:52:e6:31:f0:8f:79:5a:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959 Validity Not Before: Nov 28 11:44:24 2025 GMT Not After : Nov 27 11:49:24 2026 GMT Subject: CN=81B768C96A720253190E8C9E4533F1CA4C3C9F85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:67:03:5e:e4:ee:35:28:5e:cb:4f:f3:49:df: 19:c5:26:e7:a6:54:9a:24:dc:6d:c5:5c:b9:28:2c: e9:c5:5c:ad:d1:37:2b:ad:c9:b6:d8:75:35:c4:a1: 59:0b:cb:05:1c:e2:2d:ae:91:68:3d:57:24:ac:51: 94:18:87:8d:fc:18:b5:ee:42:d7:f0:6d:b8:5e:29: 52:0b:10:d6:b9:40:e5:12:fb:15:48:e5:a3:c7:b4: 2d:5e:51:b4:8e:db:bf:be:16:c3:19:f1:11:4b:df: c8:27:53:57:31:49:70:0c:07:6c:d2:5b:0a:af:18: 17:ae:b1:9b:1d:dd:59:46:31:9e:b7:3c:1c:5d:4e: 55:f1:a6:a7:dd:ba:93:6b:90:1d:d9:16:e1:43:1c: 78:41:61:8e:3e:cf:bc:de:2e:93:bd:c2:58:fa:1d: 1b:4e:93:28:93:8c:43:e7:14:b3:f3:ef:56:34:e8: 5f:a2:12:6d:65:98:22:3b:a9:2f:06:90:f2:c6:e4: 34:99:8e:74:8f:d9:99:1e:f6:1b:16:de:0d:10:d1: 6d:0b:13:67:34:da:84:d7:d2:60:e9:4a:52:ac:c8: a3:15:9d:f2:d9:fa:34:ab:a6:1f:f4:e4:89:c3:3a: c2:a2:9b:a8:5b:8f:11:eb:72:5a:fe:4b:41:50:5b: e4:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:B7:68:C9:6A:72:02:53:19:0E:8C:9E:45:33:F1:CA:4C:3C:9F:85 X509v3 Authority Key Identifier: keyid:09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/352e3138302e3135302e302f32342d3332203d3e203531313637.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.180.150.0/24 Signature Algorithm: sha256WithRSAEncryption b8:bc:24:1c:5e:2f:10:a1:62:c6:2d:d2:d3:00:47:f2:94:f3: 15:04:77:93:b8:e2:79:56:cf:4a:96:8d:00:b7:26:17:cf:e1: 69:1f:fd:1a:04:75:3f:63:30:c7:3c:40:ec:d2:53:67:e4:9c: 9e:27:93:02:5c:90:13:eb:f9:63:bb:3d:ea:92:4c:a5:5d:34: e3:5c:32:f5:50:3a:08:bf:52:53:25:eb:ff:03:69:7d:c2:41: 0a:21:e9:f3:46:07:98:94:ef:04:5e:a9:1d:93:5b:c2:d0:68: 74:af:23:9a:e3:a2:45:94:5f:16:cb:67:77:e9:4b:f7:be:82: d3:07:5c:1c:38:df:2f:61:ef:8f:8c:33:a3:1e:e4:17:4f:83: 4e:7c:79:1c:ab:be:74:d9:df:bf:06:a1:1c:43:99:19:8e:de: d7:87:1d:8f:30:13:b7:98:97:45:c1:e8:b3:ae:dc:7a:02:86: 7c:ab:c1:c0:c4:07:34:d2:9a:01:77:13:ab:80:d0:37:44:90: 5f:ba:f7:1e:59:ed:bc:c7:29:01:22:7c:aa:cd:57:22:40:5a: 31:21:d2:65:24:6f:d8:3f:ef:53:da:2d:a1:f4:7a:d5:09:7f: 80:5e:75:01:37:72:43:9b:99:ae:fb:94:6d:d1:da:04:91:b8: 7e:b1:b5:e8 -----BEGIN CERTIFICATE----- MIIFNjCCBB6gAwIBAgIUdDS/30tRTCsmVZ9iUuYx8I95WpowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDk3YTI4Zjc3ZWIwYTRhYzM1NGE4YWMyODc1NGIyYTNi YmUzYTk1OTAeFw0yNTExMjgxMTQ0MjRaFw0yNjExMjcxMTQ5MjRaMDMxMTAvBgNV BAMTKDgxQjc2OEM5NkE3MjAyNTMxOTBFOEM5RTQ1MzNGMUNBNEMzQzlGODUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnZwNe5O41KF7LT/NJ3xnFJuem VJok3G3FXLkoLOnFXK3RNyutybbYdTXEoVkLywUc4i2ukWg9VySsUZQYh438GLXu QtfwbbheKVILENa5QOUS+xVI5aPHtC1eUbSO27++FsMZ8RFL38gnU1cxSXAMB2zS WwqvGBeusZsd3VlGMZ63PBxdTlXxpqfdupNrkB3ZFuFDHHhBYY4+z7zeLpO9wlj6 HRtOkyiTjEPnFLPz71Y06F+iEm1lmCI7qS8GkPLG5DSZjnSP2Zke9hsW3g0Q0W0L E2c02oTX0mDpSlKsyKMVnfLZ+jSrph/05InDOsKim6hbjxHrclr+S0FQW+SnAgMB AAGjggJAMIICPDAdBgNVHQ4EFgQUgbdoyWpyAlMZDoyeRTPxykw8n4UwHwYDVR0j BBgwFoAUCXoo936wpKw1SorCh1Syo7vjqVkwDgYDVR0PAQH/BAQDAgeAMIGYBgNV HR8EgZAwgY0wgYqggYeggYSGgYFyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5L2ZlMzcwOGEwLTY3ZDUtNGFjMi1hYmM0LWEzMzI1OTBi OTlhZi8xNzcvMDk3QTI4Rjc3RUIwQTRBQzM1NEE4QUMyODc1NEIyQTNCQkUzQTk1 OS5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2ku cmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0NYb285MzZ3cEt3MVNvckNoMVN5 bzd2anFWay5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJz eW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4 YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzE3Ny8zNTJlMzEzODMwMmUz MTM1MzAyZTMwMmYzMjM0MmQzMzMyMjAzZDNlMjAzNTMxMzEzNjM3LnJvYTAYBgNV HSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQABbSWMA0GCSqGSIb3DQEBCwUAA4IBAQC4vCQcXi8QoWLGLdLTAEfylPMVBHeT uOJ5Vs9Klo0AtyYXz+FpH/0aBHU/YzDHPEDs0lNn5JyeJ5MCXJAT6/ljuz3qkkyl XTTjXDL1UDoIv1JTJev/A2l9wkEKIenzRgeYlO8EXqkdk1vC0Gh0ryOa46JFlF8W y2d36Uv3voLTB1wcON8vYe+PjDOjHuQXT4NOfHkcq7502d+/BqEcQ5kZjt7Xhx2P MBO3mJdFweizrtx6AoZ8q8HAxAc00poBdxOrgNA3RJBfuvceWe28xykBInyqzVci QFoxIdJlJG/YP+9T2i2h9HrVCX+AXnUBN3JDm5mu+5Rt0doEkbh+sbXo -----END CERTIFICATE-----Generated at Thu Dec 18 08:37:55 2025 by rpki-client