This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3135352e3133332e312e302f32342d3234203d3e20313336373837.roa File: 3135352e3133332e312e302f32342d3234203d3e20313336373837.roa (raw, json) Hash identifier: udoQdj+wMfoi5EkL2kZFC8yhXieYQoE43ixYc2A5N88= Subject key identifier: 6D:AA:4C:5C:AA:7A:44:5B:70:D3:20:EA:A4:B9:63:73:AC:D2:13:67 Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Certificate serial: 7C07C18B97672EC5469DDB5CBD1534041609F37C Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3135352e3133332e312e302f32342d3234203d3e20313336373837.roa Signing time: Mon 29 Dec 2025 09:51:06 +0000 ROA not before: Mon 29 Dec 2025 09:46:06 +0000 ROA not after: Mon 28 Dec 2026 09:51:06 +0000 asID: 136787 IP address blocks: 155.133.1.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 14:41:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:07:c1:8b:97:67:2e:c5:46:9d:db:5c:bd:15:34:04:16:09:f3:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Validity Not Before: Dec 29 09:46:06 2025 GMT Not After : Dec 28 09:51:06 2026 GMT Subject: CN=6DAA4C5CAA7A445B70D320EAA4B96373ACD21367 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:3c:50:85:e3:7a:09:25:f7:fd:65:41:d3:72: ef:93:92:1d:12:fd:20:df:d1:a8:59:2b:bf:75:1e: 4c:1e:d6:14:0f:99:e7:e2:6a:ff:3f:00:8a:c1:d2: 6c:b2:a9:b6:2b:87:5e:6f:23:f0:60:2b:d4:48:cc: a3:b2:01:cc:76:38:eb:77:ff:47:3a:fe:3f:0d:f5: fd:6f:3e:9d:5c:41:c9:8a:d4:54:55:8a:66:a3:35: e5:4a:1e:b4:82:a0:8d:af:dc:82:26:0f:3c:f1:04: f3:c6:35:58:f0:b7:ef:6c:83:f3:af:f8:4e:fd:ad: df:89:ec:8a:8b:8d:54:66:5c:48:92:cb:fd:cb:f4: 9b:13:bc:14:d6:75:4d:d8:24:c5:21:31:1d:f7:7c: 6a:2e:77:f2:7c:71:56:f1:f0:0d:63:1b:d3:6d:b8: 52:86:b2:3a:bc:d2:c9:a0:48:8d:46:e3:8a:59:02: 54:1b:7b:0c:6d:61:dd:25:05:cc:38:97:e2:ff:f4: 61:d4:9b:d5:7f:72:3c:df:7a:47:e0:35:d6:df:90: dd:be:6f:8a:17:7b:77:c2:53:44:eb:e3:11:a6:06: 26:4d:37:59:bc:5a:c6:b4:c7:04:40:d6:f7:49:da: 06:a3:e5:3b:cf:5d:ce:14:0d:fe:7c:59:fc:3e:2b: fe:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:AA:4C:5C:AA:7A:44:5B:70:D3:20:EA:A4:B9:63:73:AC:D2:13:67 X509v3 Authority Key Identifier: keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3135352e3133332e312e302f32342d3234203d3e20313336373837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 155.133.1.0/24 Signature Algorithm: sha256WithRSAEncryption 82:c2:cb:4c:c4:e9:34:a4:20:52:75:9f:9e:ab:cc:10:6e:75: f4:ad:ea:ef:dc:7e:57:d1:10:49:cd:00:9d:28:27:93:cb:78: e4:45:2f:86:38:49:61:c6:49:a1:57:04:11:cf:d2:4b:dc:2b: 71:32:90:e6:7a:2a:79:b2:33:e9:a5:c6:50:26:92:02:0f:71: e0:d2:55:4c:cf:36:b1:12:70:6c:c3:3f:3c:e3:87:b4:23:22: f6:b8:50:17:16:23:cf:a7:19:d6:ac:3d:a7:f7:af:ba:58:37: 82:29:83:89:f8:6e:1b:ce:a8:93:20:95:1b:a2:1e:3e:72:40: 17:2b:64:45:fc:bf:e2:00:4d:99:91:dc:18:0d:24:93:dd:42: 8f:4c:03:fa:3d:ad:f0:df:e3:41:c5:b8:91:0b:2d:5e:dc:a9: 63:ed:0e:24:c9:e5:b9:88:d7:44:2c:3b:c6:eb:a1:11:c4:80: d5:89:a8:7a:1c:cb:fb:16:05:3f:ab:a4:17:05:e1:73:5b:04: eb:e8:ed:de:c1:72:44:b7:2d:d8:91:3a:6f:f6:d2:65:a4:b9: 50:89:1f:14:9f:61:9a:e7:73:f0:72:9e:31:dc:0a:b0:de:9d: ab:42:1b:a1:ef:6d:fd:a0:5a:62:b8:e4:3b:97:ad:ee:72:bc: 06:80:a1:fa -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUfAfBi5dnLsVGndtcvRU0BBYJ83wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0 ZWE3Nzc5YzAeFw0yNTEyMjkwOTQ2MDZaFw0yNjEyMjgwOTUxMDZaMDMxMTAvBgNV BAMTKDZEQUE0QzVDQUE3QTQ0NUI3MEQzMjBFQUE0Qjk2MzczQUNEMjEzNjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMPFCF43oJJff9ZUHTcu+Tkh0S /SDf0ahZK791Hkwe1hQPmefiav8/AIrB0myyqbYrh15vI/BgK9RIzKOyAcx2OOt3 /0c6/j8N9f1vPp1cQcmK1FRVimajNeVKHrSCoI2v3IImDzzxBPPGNVjwt+9sg/Ov +E79rd+J7IqLjVRmXEiSy/3L9JsTvBTWdU3YJMUhMR33fGoud/J8cVbx8A1jG9Nt uFKGsjq80smgSI1G44pZAlQbewxtYd0lBcw4l+L/9GHUm9V/cjzfekfgNdbfkN2+ b4oXe3fCU0Tr4xGmBiZNN1m8Wsa0xwRA1vdJ2gaj5TvPXc4UDf58Wfw+K/6fAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUbapMXKp6RFtw0yDqpLljc6zSE2cwHwYDVR0j BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2 bmQ1dy5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzEzNTM1MmUzMTMzMzMyZTMx MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzEzMzM2MzczODM3LnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA m4UBMA0GCSqGSIb3DQEBCwUAA4IBAQCCwstMxOk0pCBSdZ+eq8wQbnX0rerv3H5X 0RBJzQCdKCeTy3jkRS+GOElhxkmhVwQRz9JL3CtxMpDmeip5sjPppcZQJpICD3Hg 0lVMzzaxEnBswz8844e0IyL2uFAXFiPPpxnWrD2n96+6WDeCKYOJ+G4bzqiTIJUb oh4+ckAXK2RF/L/iAE2ZkdwYDSST3UKPTAP6Pa3w3+NBxbiRCy1e3Klj7Q4kyeW5 iNdELDvG66ERxIDViah6HMv7FgU/q6QXBeFzWwTr6O3ewXJEty3YkTpv9tJlpLlQ iR8Un2Ga53Pwcp4x3Aqw3p2rQhuh7239oFpiuOQ7l63ucrwGgKH6 -----END CERTIFICATE-----Generated at Tue Jan 27 04:26:41 2026 by rpki-client