This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/38352e3230382e3135362e302f32342d3234203d3e20313336373837.roa File: 38352e3230382e3135362e302f32342d3234203d3e20313336373837.roa (raw, json) Hash identifier: m/u8uiyF6D1y3rkJqMh9TwEFBG/3WmYCmniMsZco4nA= Subject key identifier: 01:22:66:A4:BF:55:E7:D1:7F:47:41:5F:5E:DB:C5:46:F9:24:71:B2 Certificate issuer: /CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959 Certificate serial: 01B9C731616560485FA32092BCD64AAAD25DCB3E Authority key identifier: 09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/38352e3230382e3135362e302f32342d3234203d3e20313336373837.roa Signing time: Fri 21 Nov 2025 15:48:59 +0000 ROA not before: Fri 21 Nov 2025 15:43:59 +0000 ROA not after: Fri 20 Nov 2026 15:48:59 +0000 asID: 136787 IP address blocks: 85.208.156.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.mft rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:b9:c7:31:61:65:60:48:5f:a3:20:92:bc:d6:4a:aa:d2:5d:cb:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959 Validity Not Before: Nov 21 15:43:59 2025 GMT Not After : Nov 20 15:48:59 2026 GMT Subject: CN=012266A4BF55E7D17F47415F5EDBC546F92471B2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:7f:5b:f2:dc:81:58:df:c0:44:50:1a:ae:1c: 5e:db:ce:95:6f:96:8a:b7:cb:e2:37:44:e1:08:52: 79:75:0c:b8:eb:25:9c:99:91:af:f6:54:3b:b5:47: 7c:c0:eb:9d:87:9f:a3:a5:0f:6d:01:f7:7c:2d:41: 7e:30:f2:4b:06:e6:67:bf:93:02:17:d1:23:87:35: 80:8a:f8:da:2f:97:7b:ac:9e:20:78:22:7d:47:8c: d2:41:5d:3c:e4:82:bf:4d:d0:23:d3:3a:54:22:f7: c5:56:ab:52:05:00:4c:a1:19:19:72:47:ee:7e:a2: 31:b7:2d:13:07:00:54:6e:e6:e9:70:6a:e3:d8:d4: 16:03:89:57:85:c5:0e:d5:88:cd:1c:44:d4:a3:cf: 3a:1d:3b:80:9e:db:19:70:a1:e6:8d:ca:20:a1:ac: f2:7d:10:4c:2d:cf:86:fc:9f:c5:02:11:c1:91:d1: fe:d1:6c:e1:a2:68:8d:ff:e3:b3:c4:f4:f9:40:41: 3d:a1:9b:9e:4d:7f:f3:b5:39:2d:f0:41:36:df:75: b2:18:26:be:58:74:58:28:ba:6c:81:65:7a:c6:8b: 32:1e:ca:3f:55:e5:e2:58:fc:a1:77:03:f8:bb:0d: fc:2d:81:bf:2a:8b:13:c6:71:67:62:97:9f:70:47: bd:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:22:66:A4:BF:55:E7:D1:7F:47:41:5F:5E:DB:C5:46:F9:24:71:B2 X509v3 Authority Key Identifier: keyid:09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/38352e3230382e3135362e302f32342d3234203d3e20313336373837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 85.208.156.0/24 Signature Algorithm: sha256WithRSAEncryption 84:1e:62:a2:69:48:51:0d:b7:71:98:2d:d5:44:ee:91:56:70: d9:b7:61:42:34:5a:75:34:63:75:cb:e1:01:4e:59:c8:92:08: 10:99:bc:7a:50:ce:3f:1e:da:2a:5f:c8:fc:90:c1:94:a8:cc: 50:73:1a:69:d4:78:c1:0a:64:07:d2:17:63:fe:ef:95:f8:74: 3e:04:6b:43:6b:ed:5d:b5:27:09:f7:e8:a7:0f:fd:10:22:24: 4b:05:02:68:d8:be:af:39:4e:1f:63:7e:78:d7:11:0f:17:7c: 90:6b:a1:4a:7e:85:0d:1f:05:58:ac:d3:d0:cf:4b:58:f0:41: 77:e1:0e:fb:14:66:4c:c5:ed:78:fe:f8:33:9a:ef:51:9e:37: 39:2d:fc:e5:e2:5d:73:16:4e:6a:81:e5:c0:5b:8e:cd:b0:44: 2a:9e:5c:b2:b7:a4:a9:51:e7:11:e5:d3:01:5b:0f:ae:9a:f1: f2:ed:3f:84:84:15:0f:c8:2d:42:e3:92:ea:44:59:ef:50:3a: cc:6f:12:48:c4:72:5f:55:a7:b6:e3:a6:d6:3d:64:05:eb:4b: 8e:1b:9d:6c:ec:00:ea:a4:f5:d5:89:88:f1:26:24:30:58:9e: b7:19:ef:57:21:96:9e:d4:12:52:a3:bb:8b:3a:ba:3a:bc:64: ff:b1:bd:21 -----BEGIN CERTIFICATE----- MIIFOjCCBCKgAwIBAgIUAbnHMWFlYEhfoyCSvNZKqtJdyz4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDk3YTI4Zjc3ZWIwYTRhYzM1NGE4YWMyODc1NGIyYTNi YmUzYTk1OTAeFw0yNTExMjExNTQzNTlaFw0yNjExMjAxNTQ4NTlaMDMxMTAvBgNV BAMTKDAxMjI2NkE0QkY1NUU3RDE3RjQ3NDE1RjVFREJDNTQ2RjkyNDcxQjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpf1vy3IFY38BEUBquHF7bzpVv loq3y+I3ROEIUnl1DLjrJZyZka/2VDu1R3zA652Hn6OlD20B93wtQX4w8ksG5me/ kwIX0SOHNYCK+Novl3usniB4In1HjNJBXTzkgr9N0CPTOlQi98VWq1IFAEyhGRly R+5+ojG3LRMHAFRu5ulwauPY1BYDiVeFxQ7ViM0cRNSjzzodO4Ce2xlwoeaNyiCh rPJ9EEwtz4b8n8UCEcGR0f7RbOGiaI3/47PE9PlAQT2hm55Nf/O1OS3wQTbfdbIY Jr5YdFgoumyBZXrGizIeyj9V5eJY/KF3A/i7Dfwtgb8qixPGcWdil59wR71JAgMB AAGjggJEMIICQDAdBgNVHQ4EFgQUASJmpL9V59F/R0FfXtvFRvkkcbIwHwYDVR0j BBgwFoAUCXoo936wpKw1SorCh1Syo7vjqVkwDgYDVR0PAQH/BAQDAgeAMIGYBgNV HR8EgZAwgY0wgYqggYeggYSGgYFyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5L2ZlMzcwOGEwLTY3ZDUtNGFjMi1hYmM0LWEzMzI1OTBi OTlhZi8xNzcvMDk3QTI4Rjc3RUIwQTRBQzM1NEE4QUMyODc1NEIyQTNCQkUzQTk1 OS5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2ku cmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0NYb285MzZ3cEt3MVNvckNoMVN5 bzd2anFWay5jZXIwgbEGCCsGAQUFBwELBIGkMIGhMIGeBggrBgEFBQcwC4aBkXJz eW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4 YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzE3Ny8zODM1MmUzMjMwMzgy ZTMxMzUzNjJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzMzNjM3MzgzNy5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAFXQnDANBgkqhkiG9w0BAQsFAAOCAQEAhB5iomlIUQ23cZgt1UTukVZw 2bdhQjRadTRjdcvhAU5ZyJIIEJm8elDOPx7aKl/I/JDBlKjMUHMaadR4wQpkB9IX Y/7vlfh0PgRrQ2vtXbUnCffopw/9ECIkSwUCaNi+rzlOH2N+eNcRDxd8kGuhSn6F DR8FWKzT0M9LWPBBd+EO+xRmTMXteP74M5rvUZ43OS385eJdcxZOaoHlwFuOzbBE Kp5csrekqVHnEeXTAVsPrprx8u0/hIQVD8gtQuOS6kRZ71A6zG8SSMRyX1WntuOm 1j1kBetLjhudbOwA6qT11YmI8SYkMFietxnvVyGWntQSUqO7izq6Orxk/7G9IQ== -----END CERTIFICATE-----Generated at Sat Dec 6 09:25:50 2025 by rpki-client