This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/AS197555.roa File: AS197555.roa (raw, json) Hash identifier: ZZ8zMqGyTRwL/rvQmkx1hP7e1NSW1Zm22htg1I6Oezg= Subject key identifier: 1B:94:6C:D6:22:3D:28:AE:0E:25:27:96:CF:31:D2:DA:DA:3B:DD:83 Certificate issuer: /CN=9dfbff217105df8877d463f6e9bac28a4084d20c Certificate serial: 34BD7EA204416B393FE4AB2E89233A805FF52479 Authority key identifier: 9D:FB:FF:21:71:05:DF:88:77:D4:63:F6:E9:BA:C2:8A:40:84:D2:0C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nfv_IXEF34h31GP26brCikCE0gw.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/AS197555.roa Signing time: Wed 04 Feb 2026 12:57:35 +0000 ROA not before: Wed 04 Feb 2026 12:52:35 +0000 ROA not after: Wed 03 Feb 2027 12:57:35 +0000 asID: 197555 IP address blocks: 5.133.101.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/9DFBFF217105DF8877D463F6E9BAC28A4084D20C.crl rsync://rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/9DFBFF217105DF8877D463F6E9BAC28A4084D20C.mft rsync://rpki.ripe.net/repository/DEFAULT/nfv_IXEF34h31GP26brCikCE0gw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 06 Feb 2026 03:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:bd:7e:a2:04:41:6b:39:3f:e4:ab:2e:89:23:3a:80:5f:f5:24:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9dfbff217105df8877d463f6e9bac28a4084d20c Validity Not Before: Feb 4 12:52:35 2026 GMT Not After : Feb 3 12:57:35 2027 GMT Subject: CN=1B946CD6223D28AE0E252796CF31D2DADA3BDD83 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:a6:7e:11:88:d7:fc:9f:3c:8d:8b:f6:f3:80: 2c:79:9f:14:ee:5a:72:c0:7d:2d:d3:30:b0:0f:b9: 39:48:07:92:8c:c8:ea:59:54:35:95:51:e5:7b:05: 97:22:5c:fc:06:e1:98:96:41:bc:d4:1b:d5:9c:d9: 6b:b1:5d:83:55:a3:d7:aa:61:24:ef:65:a6:ac:5d: 42:bb:91:eb:92:57:a1:c3:b8:90:9b:80:cd:20:71: 63:2c:17:e6:d2:1d:71:c4:79:f8:4b:80:68:8e:42: 92:11:ac:de:62:52:99:c9:f8:58:fc:a0:6d:57:39: 4c:45:5d:4e:4b:61:90:b0:a3:76:3a:2a:21:b3:15: 5b:ca:64:0d:74:32:77:d1:69:8d:58:9d:7f:0b:8a: bb:e2:ca:a0:4f:97:c3:bb:b2:13:b2:a3:47:06:bb: be:ff:3f:f2:a4:00:37:8f:1a:3a:31:52:09:3c:35: a5:de:88:a1:32:8c:45:db:9c:15:52:6b:dc:f0:01: 51:95:82:02:4d:af:db:9c:e4:a5:54:ac:b4:b5:76: c4:ba:64:c6:fb:77:89:3b:bb:fa:82:f9:ff:82:b8: 02:91:4d:5e:d5:bd:eb:e4:0a:83:2a:e7:a7:24:9e: dd:c9:fd:82:b0:11:d4:9e:1f:d8:ed:a2:0b:55:ef: c1:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:94:6C:D6:22:3D:28:AE:0E:25:27:96:CF:31:D2:DA:DA:3B:DD:83 X509v3 Authority Key Identifier: keyid:9D:FB:FF:21:71:05:DF:88:77:D4:63:F6:E9:BA:C2:8A:40:84:D2:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/9DFBFF217105DF8877D463F6E9BAC28A4084D20C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nfv_IXEF34h31GP26brCikCE0gw.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/AS197555.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.133.101.0/24 Signature Algorithm: sha256WithRSAEncryption 7a:3d:15:9d:42:13:03:3d:2f:97:e4:92:4c:b7:51:cf:f9:8d: 0e:9a:de:5f:a9:43:83:6e:0f:ef:01:5c:7e:32:05:a8:fb:14: 9c:70:41:c5:1f:3a:ea:5e:ee:57:de:5b:4b:c1:91:00:05:b3: f4:4a:ae:59:8a:b7:30:be:d1:5c:11:7c:f4:82:85:68:94:31: ee:34:99:c9:bb:03:bf:34:9d:d5:c7:88:d3:bf:da:96:ae:df: 1e:7d:7f:fd:3a:7b:6e:45:ab:a1:67:f1:29:00:e3:e5:a5:31: 99:45:34:e8:d5:5d:90:08:e6:b2:80:fe:3c:2e:a6:1b:e4:30: 85:49:df:f9:56:2d:71:63:b3:bd:af:04:d7:6b:03:54:c3:76: b0:c8:61:bb:16:79:6e:7a:dd:67:b9:e1:97:15:de:91:d8:69: 79:35:b3:e5:29:17:49:5c:40:a0:a0:b9:43:5f:23:e8:78:3f: 7d:b4:29:b1:dd:51:44:b0:5d:32:ba:0d:eb:45:67:82:01:99: 71:de:8b:0c:7f:67:cc:35:0f:db:a4:be:19:a2:66:88:2f:3a: 36:9f:31:02:14:d8:28:14:e9:ae:c5:4a:3b:c5:02:d0:8c:1e: 15:32:c1:a1:ff:a5:be:f5:31:3e:96:74:43:0d:f3:e0:81:ca: e8:83:db:88 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgIUNL1+ogRBazk/5KsuiSM6gF/1JHkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOWRmYmZmMjE3MTA1ZGY4ODc3ZDQ2M2Y2ZTliYWMyOGE0 MDg0ZDIwYzAeFw0yNjAyMDQxMjUyMzVaFw0yNzAyMDMxMjU3MzVaMDMxMTAvBgNV BAMTKDFCOTQ2Q0Q2MjIzRDI4QUUwRTI1Mjc5NkNGMzFEMkRBREEzQkREODMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYpn4RiNf8nzyNi/bzgCx5nxTu WnLAfS3TMLAPuTlIB5KMyOpZVDWVUeV7BZciXPwG4ZiWQbzUG9Wc2WuxXYNVo9eq YSTvZaasXUK7keuSV6HDuJCbgM0gcWMsF+bSHXHEefhLgGiOQpIRrN5iUpnJ+Fj8 oG1XOUxFXU5LYZCwo3Y6KiGzFVvKZA10MnfRaY1YnX8LirviyqBPl8O7shOyo0cG u77/P/KkADePGjoxUgk8NaXeiKEyjEXbnBVSa9zwAVGVggJNr9uc5KVUrLS1dsS6 ZMb7d4k7u/qC+f+CuAKRTV7VvevkCoMq56cknt3J/YKwEdSeH9jtogtV78HHAgMB AAGjggIKMIICBjAdBgNVHQ4EFgQUG5Rs1iI9KK4OJSeWzzHS2to73YMwHwYDVR0j BBgwFoAUnfv/IXEF34h31GP26brCikCE0gwwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNTViNGQ5ZTgtNDExMS00Mzk0LWEzYTYtYmQ4MjUxZTdm YmJkLzAvOURGQkZGMjE3MTA1REY4ODc3RDQ2M0Y2RTlCQUMyOEE0MDg0RDIwQy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL25mdl9JWEVGMzRoMzFHUDI2YnJDaWtD RTBndy5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzU1YjRkOWU4LTQxMTEt NDM5NC1hM2E2LWJkODI1MWU3ZmJiZC8wL0FTMTk3NTU1LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQABYVl MA0GCSqGSIb3DQEBCwUAA4IBAQB6PRWdQhMDPS+X5JJMt1HP+Y0Omt5fqUODbg/v AVx+MgWo+xSccEHFHzrqXu5X3ltLwZEABbP0Sq5ZircwvtFcEXz0goVolDHuNJnJ uwO/NJ3Vx4jTv9qWrt8efX/9OntuRauhZ/EpAOPlpTGZRTTo1V2QCOaygP48LqYb 5DCFSd/5Vi1xY7O9rwTXawNUw3awyGG7Fnluet1nueGXFd6R2Gl5NbPlKRdJXECg oLlDXyPoeD99tCmx3VFEsF0yug3rRWeCAZlx3osMf2fMNQ/bpL4ZomaILzo2nzEC FNgoFOmuxUo7xQLQjB4VMsGh/6W+9TE+lnRDDfPggcrog9uI -----END CERTIFICATE-----Generated at Thu Feb 5 13:59:05 2026 by rpki-client