This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3135332e39322e34302e302f32342d3234203d3e20313437303439.roa File: 3135332e39322e34302e302f32342d3234203d3e20313437303439.roa (raw, json) Hash identifier: H4lkwzsmQDP8FsBiidU8/z1rZW3aHqkFxb5KnRzGUcs= Subject key identifier: F1:FC:11:C4:5F:4E:A1:CA:D0:63:4B:50:4A:39:9B:A4:E0:CE:43:A7 Certificate issuer: /CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959 Certificate serial: 135C5C0AEBE9D743B0715A45BCD3121E671569FA Authority key identifier: 09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3135332e39322e34302e302f32342d3234203d3e20313437303439.roa Signing time: Mon 29 Dec 2025 09:50:31 +0000 ROA not before: Mon 29 Dec 2025 09:45:31 +0000 ROA not after: Mon 28 Dec 2026 09:50:31 +0000 asID: 147049 IP address blocks: 153.92.40.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.mft rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 01:10:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:5c:5c:0a:eb:e9:d7:43:b0:71:5a:45:bc:d3:12:1e:67:15:69:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959 Validity Not Before: Dec 29 09:45:31 2025 GMT Not After : Dec 28 09:50:31 2026 GMT Subject: CN=F1FC11C45F4EA1CAD0634B504A399BA4E0CE43A7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:c3:f0:71:da:09:fa:6c:f2:42:ea:81:ef:7b: f3:b9:30:14:0e:fe:95:51:32:dc:b1:b8:f3:2d:2c: 4e:09:38:6b:ac:6e:e5:b9:bb:66:d8:00:cf:b0:95: 0d:35:0a:6d:de:00:56:15:18:3e:a9:2e:37:86:69: b7:39:ab:08:26:5c:20:3d:84:ea:4f:d8:02:f2:5e: 93:4e:c5:76:86:53:d7:d7:7b:37:a8:d8:3c:58:31: c1:30:9d:be:b5:dd:2c:39:31:83:87:ea:dc:36:8c: ff:9b:22:43:40:70:55:e4:77:d9:67:5a:ff:e5:6f: 44:bb:4d:76:0a:32:42:3e:de:98:7b:af:1b:99:a6: db:3e:66:6f:d5:e7:29:56:2d:cd:11:34:bc:a9:75: 70:9f:c2:c0:37:c8:03:11:e3:42:20:d6:39:f1:8d: 18:1c:9a:0c:06:9f:7e:92:7c:49:da:a0:da:bd:17: e7:0c:b3:eb:4c:0e:33:0e:93:fb:c9:fe:a4:30:f0: 57:5e:3e:e3:b0:03:a3:ea:35:a6:8a:f2:cf:c0:9e: 12:ab:a6:83:d2:e6:7f:d9:21:a7:2d:c5:4f:50:c9: ed:ac:f2:57:53:c3:d7:95:18:7d:30:38:63:07:1c: 9c:19:60:6d:f5:c1:42:e9:94:48:ed:cd:f2:d3:f7: 30:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:FC:11:C4:5F:4E:A1:CA:D0:63:4B:50:4A:39:9B:A4:E0:CE:43:A7 X509v3 Authority Key Identifier: keyid:09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3135332e39322e34302e302f32342d3234203d3e20313437303439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 153.92.40.0/24 Signature Algorithm: sha256WithRSAEncryption 88:e7:8e:c1:0f:0c:0c:5a:e0:e9:ff:5e:87:d2:e2:59:f9:42: 50:db:05:94:58:89:39:da:9d:07:a1:36:74:5a:8a:f0:cc:e4: 4a:ce:b9:95:7b:af:c1:b5:63:06:34:3b:9b:54:80:01:5e:05: 5c:13:6e:d2:28:37:c9:a1:4a:bc:90:58:8c:ef:d9:ae:fa:91: b3:df:32:27:4b:c4:ce:c7:2c:0a:7e:d5:d6:ac:85:a7:98:d2: e7:d1:a3:11:c6:e8:16:b1:a5:5e:40:b8:f5:f0:2e:d9:31:6e: f1:c2:57:61:bb:50:ec:10:65:6d:d0:65:97:09:3f:9e:3d:4f: ab:43:89:71:7c:f8:06:df:ca:c1:dc:cc:63:6f:d5:0f:dd:ec: af:ed:6e:2d:58:3d:e4:15:65:b9:eb:85:6c:5e:a9:1a:5c:3f: 08:8e:72:a4:ed:60:4d:31:e2:23:c2:d2:25:9d:7b:49:7c:41: 2f:b2:45:eb:62:eb:32:ff:6e:2a:d0:49:2d:f7:97:f7:49:ac: 3b:85:37:79:a7:0d:1c:18:38:1d:00:94:36:76:89:26:59:97: 79:8b:90:5c:03:06:be:17:56:a1:9e:a7:28:af:cf:c9:82:9c: d9:c4:fe:69:a0:02:08:d4:b0:27:0d:5c:9d:70:25:af:03:b9: 8f:1a:50:0f -----BEGIN CERTIFICATE----- MIIFODCCBCCgAwIBAgIUE1xcCuvp10OwcVpFvNMSHmcVafowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDk3YTI4Zjc3ZWIwYTRhYzM1NGE4YWMyODc1NGIyYTNi YmUzYTk1OTAeFw0yNTEyMjkwOTQ1MzFaFw0yNjEyMjgwOTUwMzFaMDMxMTAvBgNV BAMTKEYxRkMxMUM0NUY0RUExQ0FEMDYzNEI1MDRBMzk5QkE0RTBDRTQzQTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJw/Bx2gn6bPJC6oHve/O5MBQO /pVRMtyxuPMtLE4JOGusbuW5u2bYAM+wlQ01Cm3eAFYVGD6pLjeGabc5qwgmXCA9 hOpP2ALyXpNOxXaGU9fXezeo2DxYMcEwnb613Sw5MYOH6tw2jP+bIkNAcFXkd9ln Wv/lb0S7TXYKMkI+3ph7rxuZpts+Zm/V5ylWLc0RNLypdXCfwsA3yAMR40Ig1jnx jRgcmgwGn36SfEnaoNq9F+cMs+tMDjMOk/vJ/qQw8FdePuOwA6PqNaaK8s/AnhKr poPS5n/ZIactxU9Qye2s8ldTw9eVGH0wOGMHHJwZYG31wULplEjtzfLT9zBpAgMB AAGjggJCMIICPjAdBgNVHQ4EFgQU8fwRxF9OocrQY0tQSjmbpODOQ6cwHwYDVR0j BBgwFoAUCXoo936wpKw1SorCh1Syo7vjqVkwDgYDVR0PAQH/BAQDAgeAMIGYBgNV HR8EgZAwgY0wgYqggYeggYSGgYFyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5L2ZlMzcwOGEwLTY3ZDUtNGFjMi1hYmM0LWEzMzI1OTBi OTlhZi8xNzcvMDk3QTI4Rjc3RUIwQTRBQzM1NEE4QUMyODc1NEIyQTNCQkUzQTk1 OS5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2ku cmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0NYb285MzZ3cEt3MVNvckNoMVN5 bzd2anFWay5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3Jz eW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4 YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzE3Ny8zMTM1MzMyZTM5MzIy ZTM0MzAyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMTM0MzczMDM0Mzkucm9hMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACZXCgwDQYJKoZIhvcNAQELBQADggEBAIjnjsEPDAxa4On/XofS4ln5QlDb BZRYiTnanQehNnRaivDM5ErOuZV7r8G1YwY0O5tUgAFeBVwTbtIoN8mhSryQWIzv 2a76kbPfMidLxM7HLAp+1dashaeY0ufRoxHG6BaxpV5AuPXwLtkxbvHCV2G7UOwQ ZW3QZZcJP549T6tDiXF8+AbfysHczGNv1Q/d7K/tbi1YPeQVZbnrhWxeqRpcPwiO cqTtYE0x4iPC0iWde0l8QS+yReti6zL/birQSS33l/dJrDuFN3mnDRwYOB0AlDZ2 iSZZl3mLkFwDBr4XVqGepyivz8mCnNnE/mmgAgjUsCcNXJ1wJa8DuY8aUA8= -----END CERTIFICATE-----Generated at Mon Jan 19 17:36:03 2026 by rpki-client