This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3135352e3133332e31352e302f32342d3234203d3e20313336373837.roa File: 3135352e3133332e31352e302f32342d3234203d3e20313336373837.roa (raw, json) Hash identifier: vWaaQLI9O6Kq1BdZ5EUw0Fp/NNnESGsNYN+Z5uoHGJI= Subject key identifier: BC:D1:E9:40:01:65:F1:99:30:5B:72:DE:EC:D4:37:80:CD:78:8F:82 Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Certificate serial: 6257F8CF99D7EE718EF6D08EC2B430074113D67A Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3135352e3133332e31352e302f32342d3234203d3e20313336373837.roa Signing time: Mon 29 Dec 2025 09:50:53 +0000 ROA not before: Mon 29 Dec 2025 09:45:53 +0000 ROA not after: Mon 28 Dec 2026 09:50:53 +0000 asID: 136787 IP address blocks: 155.133.15.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 01:05:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:57:f8:cf:99:d7:ee:71:8e:f6:d0:8e:c2:b4:30:07:41:13:d6:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Validity Not Before: Dec 29 09:45:53 2025 GMT Not After : Dec 28 09:50:53 2026 GMT Subject: CN=BCD1E9400165F199305B72DEECD43780CD788F82 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:bb:c7:6d:13:3a:f0:41:49:95:64:02:15:0b: f4:38:62:75:4e:40:5a:23:b4:2a:0b:d0:fc:11:44: 74:7b:30:c9:62:51:37:b6:ea:c9:a0:b4:21:f0:f2: 9e:7c:d7:1c:60:61:dd:93:f2:7c:53:23:13:36:2a: b1:75:24:53:db:a4:bf:d8:eb:03:75:9c:84:2e:98: c6:47:6a:42:24:29:48:3c:c2:c3:c8:b6:4d:08:4a: fa:d2:44:62:3a:1e:ce:df:d3:1c:0e:b0:6b:f2:98: 7a:ad:bf:b5:bc:4c:bd:e8:83:00:90:45:e4:d7:a1: 49:d0:bd:53:23:5b:6c:6b:65:d0:6e:32:52:b5:99: 0d:77:80:e5:64:fc:f0:fb:ff:2e:61:2c:61:98:d9: 9e:51:e0:a6:7a:28:e2:8e:90:9e:32:5d:1a:b4:6b: b0:1c:65:94:44:c3:a8:da:3b:06:0a:72:f2:ee:de: 8c:e7:49:51:f2:c0:e0:f1:6c:ea:ef:0a:9b:92:4b: 46:2a:51:f4:d9:dd:57:e3:b0:44:b2:c0:15:79:de: dc:62:41:1a:58:f1:77:e2:24:11:33:0c:26:1b:77: fd:e8:52:f5:9a:22:9b:56:8d:b8:3d:3f:f7:3a:42: 81:f8:3e:16:33:0c:1f:61:95:a2:92:a2:fc:5b:a6: 6c:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:D1:E9:40:01:65:F1:99:30:5B:72:DE:EC:D4:37:80:CD:78:8F:82 X509v3 Authority Key Identifier: keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3135352e3133332e31352e302f32342d3234203d3e20313336373837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 155.133.15.0/24 Signature Algorithm: sha256WithRSAEncryption 5e:09:2a:50:9a:12:2b:eb:8d:e0:dc:16:86:c4:92:22:d8:84: 9c:75:d2:d7:9a:44:83:1b:7d:5c:c1:a0:50:1c:19:a8:e3:00: db:a4:4d:a3:81:64:fc:04:fa:ec:e6:04:f7:ae:29:4f:e9:04: c4:21:36:8e:24:18:a5:46:a6:cf:5a:30:98:62:98:49:c9:25: 4c:6b:3b:95:bf:d4:e2:71:7d:9a:e2:51:14:31:ee:3f:d3:f2: c7:a5:a7:0e:03:57:a7:56:05:83:6c:e7:51:26:6a:57:32:ba: b4:6b:27:bd:eb:b9:81:a6:78:8d:71:55:c3:84:dc:0c:a8:8d: 5f:a0:d7:d3:ff:ea:c9:ac:38:de:96:e2:a8:e7:3d:d8:e8:07: 1e:73:ed:2a:c3:fa:e6:5e:a7:07:8d:99:d6:c9:95:fd:af:3d: 56:53:7f:5e:ef:70:e2:c9:09:84:43:bf:21:61:90:9c:1f:53: 6b:c7:c6:e3:ca:23:04:a0:c7:19:a5:4a:69:bd:e1:d3:7d:ce: f8:fc:5f:ee:49:b1:aa:82:ed:75:6b:8e:8c:35:c2:fc:aa:0c: d3:56:b2:7a:e9:6f:18:db:9b:4d:e8:4a:a8:f9:23:b5:e3:98: 11:1e:d4:c7:8f:ce:79:32:0a:d6:84:d1:53:d7:e5:47:39:8e: 89:43:39:e4 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUYlf4z5nX7nGO9tCOwrQwB0ET1nowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0 ZWE3Nzc5YzAeFw0yNTEyMjkwOTQ1NTNaFw0yNjEyMjgwOTUwNTNaMDMxMTAvBgNV BAMTKEJDRDFFOTQwMDE2NUYxOTkzMDVCNzJERUVDRDQzNzgwQ0Q3ODhGODIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2u8dtEzrwQUmVZAIVC/Q4YnVO QFojtCoL0PwRRHR7MMliUTe26smgtCHw8p581xxgYd2T8nxTIxM2KrF1JFPbpL/Y 6wN1nIQumMZHakIkKUg8wsPItk0ISvrSRGI6Hs7f0xwOsGvymHqtv7W8TL3ogwCQ ReTXoUnQvVMjW2xrZdBuMlK1mQ13gOVk/PD7/y5hLGGY2Z5R4KZ6KOKOkJ4yXRq0 a7AcZZREw6jaOwYKcvLu3oznSVHywODxbOrvCpuSS0YqUfTZ3VfjsESywBV53txi QRpY8XfiJBEzDCYbd/3oUvWaIptWjbg9P/c6QoH4PhYzDB9hlaKSovxbpmyzAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUvNHpQAFl8ZkwW3Le7NQ3gM14j4IwHwYDVR0j BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2 bmQ1dy5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzEzNTM1MmUzMTMzMzMyZTMx MzUyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMTMzMzYzNzM4Mzcucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BACbhQ8wDQYJKoZIhvcNAQELBQADggEBAF4JKlCaEivrjeDcFobEkiLYhJx10tea RIMbfVzBoFAcGajjANukTaOBZPwE+uzmBPeuKU/pBMQhNo4kGKVGps9aMJhimEnJ JUxrO5W/1OJxfZriURQx7j/T8selpw4DV6dWBYNs51EmalcyurRrJ73ruYGmeI1x VcOE3AyojV+g19P/6smsON6W4qjnPdjoBx5z7SrD+uZepweNmdbJlf2vPVZTf17v cOLJCYRDvyFhkJwfU2vHxuPKIwSgxxmlSmm94dN9zvj8X+5JsaqC7XVrjow1wvyq DNNWsnrpbxjbm03oSqj5I7XjmBEe1MePznkyCtaE0VPX5Uc5jolDOeQ= -----END CERTIFICATE-----Generated at Mon Jan 19 14:27:30 2026 by rpki-client