This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3135352e3133332e32302e302f32342d3234203d3e203632323430.roa File: 3135352e3133332e32302e302f32342d3234203d3e203632323430.roa (raw, json) Hash identifier: FYBmCOfsLbnFAYkDMSbKt72oMGAxKd7q4HQ1wOe30uI= Subject key identifier: B2:02:F5:39:37:12:54:97:4F:2D:94:3C:A7:0E:3F:7C:27:41:9F:3A Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Certificate serial: 01019B00FB3887C9E85A1092D8A78E13B65CE24C Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3135352e3133332e32302e302f32342d3234203d3e203632323430.roa Signing time: Tue 06 Jan 2026 14:51:20 +0000 ROA not before: Tue 06 Jan 2026 14:46:20 +0000 ROA not after: Tue 05 Jan 2027 14:51:20 +0000 asID: 62240 IP address blocks: 155.133.20.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 01:05:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:01:9b:00:fb:38:87:c9:e8:5a:10:92:d8:a7:8e:13:b6:5c:e2:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Validity Not Before: Jan 6 14:46:20 2026 GMT Not After : Jan 5 14:51:20 2027 GMT Subject: CN=B202F539371254974F2D943CA70E3F7C27419F3A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:f5:38:f0:f4:41:c5:52:5e:d6:87:7e:99:fc: 78:98:7d:08:d1:78:c4:9e:36:94:57:60:d2:a6:28: f8:27:30:8c:e8:63:b8:f7:f3:31:b5:c3:b3:ee:0f: 5e:30:1d:bc:04:99:4a:a5:70:7f:4d:ea:9a:6f:0f: f3:c4:2a:f7:a5:f3:89:a8:ad:29:0b:cd:25:47:1a: 75:3e:3a:5b:d9:76:ae:be:a9:dd:25:ff:cb:6c:70: 2e:cc:c2:81:eb:4f:ea:58:8e:41:9f:92:5c:9a:aa: 00:da:11:30:db:09:59:31:45:b1:ec:9b:12:ed:c7: c4:d3:a7:8e:f3:53:ff:ff:cb:47:e1:0d:87:28:59: a0:53:09:b0:22:5c:ba:f6:f3:8b:2a:76:db:23:b9: 4c:e2:99:09:5b:ee:48:1d:c6:ff:4b:3a:45:30:33: 3b:87:53:ee:0f:09:e6:63:26:15:eb:a6:07:0f:ca: 5a:93:3f:ed:19:42:a4:7a:cf:b8:fd:44:80:b2:03: a3:bd:14:74:98:c5:31:40:6a:e6:de:ce:8c:a8:46: 65:56:de:93:9a:d7:4e:3c:5f:bd:f7:c5:1e:96:e4: 8b:f5:9f:28:91:b6:e2:c5:c3:08:40:f9:9a:65:f5: 1b:80:9c:ab:59:09:5e:00:cb:40:f8:07:f2:4d:97: 78:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:02:F5:39:37:12:54:97:4F:2D:94:3C:A7:0E:3F:7C:27:41:9F:3A X509v3 Authority Key Identifier: keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3135352e3133332e32302e302f32342d3234203d3e203632323430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 155.133.20.0/24 Signature Algorithm: sha256WithRSAEncryption 00:bd:06:d1:b2:d4:8f:38:9f:4f:85:e6:3a:b6:a5:4d:39:8f: 42:4e:be:aa:89:53:85:69:3d:da:56:ff:ee:af:96:ff:fd:6c: 14:05:8e:0c:e3:2b:90:60:36:6a:2b:63:51:d6:df:e8:45:2f: d8:43:c4:ae:8a:56:8e:3b:4b:b1:13:c8:bb:fa:c1:94:6f:89: 59:c5:3f:2b:21:ec:c9:fe:ee:60:d9:7c:03:56:52:88:6b:5f: 13:45:05:d5:fd:ce:17:83:e5:63:ed:9d:66:41:ea:4c:e4:e6: 56:d4:0c:8d:ba:10:0c:b7:2a:25:de:3f:bf:6b:a6:7c:1c:43: c3:b4:95:1a:fe:f6:e0:d6:c6:ac:28:13:80:d7:f7:26:ef:ae: 01:fa:e0:0f:fc:1b:9a:c5:4b:ab:84:ff:d9:2f:1e:67:14:df: 21:64:d3:08:94:7a:4d:e0:1c:e0:7c:4e:52:67:73:8e:c9:bf: f2:49:4d:cf:51:bb:00:a6:f7:57:d1:bf:02:bc:8b:98:c9:85: 6a:13:d9:b1:98:6a:7e:1b:20:40:be:5e:3c:0a:7f:bd:1f:33: b4:cc:e2:cf:2a:fe:22:e9:23:ff:9d:80:47:56:17:22:1f:d5: e7:e0:a8:d7:9b:5d:6b:1e:68:60:fa:fd:28:32:c8:d1:4b:73: 5a:a2:d1:20 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUAQGbAPs4h8noWhCS2KeOE7Zc4kwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0 ZWE3Nzc5YzAeFw0yNjAxMDYxNDQ2MjBaFw0yNzAxMDUxNDUxMjBaMDMxMTAvBgNV BAMTKEIyMDJGNTM5MzcxMjU0OTc0RjJEOTQzQ0E3MEUzRjdDMjc0MTlGM0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCh9Tjw9EHFUl7Wh36Z/HiYfQjR eMSeNpRXYNKmKPgnMIzoY7j38zG1w7PuD14wHbwEmUqlcH9N6ppvD/PEKvel84mo rSkLzSVHGnU+OlvZdq6+qd0l/8tscC7MwoHrT+pYjkGfklyaqgDaETDbCVkxRbHs mxLtx8TTp47zU///y0fhDYcoWaBTCbAiXLr284sqdtsjuUzimQlb7kgdxv9LOkUw MzuHU+4PCeZjJhXrpgcPylqTP+0ZQqR6z7j9RICyA6O9FHSYxTFAaubezoyoRmVW 3pOa1048X733xR6W5Iv1nyiRtuLFwwhA+Zpl9RuAnKtZCV4Ay0D4B/JNl3h3AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUsgL1OTcSVJdPLZQ8pw4/fCdBnzowHwYDVR0j BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2 bmQ1dy5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzEzNTM1MmUzMTMzMzMyZTMy MzAyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzNjMyMzIzNDMwLnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA m4UUMA0GCSqGSIb3DQEBCwUAA4IBAQAAvQbRstSPOJ9PheY6tqVNOY9CTr6qiVOF aT3aVv/ur5b//WwUBY4M4yuQYDZqK2NR1t/oRS/YQ8SuilaOO0uxE8i7+sGUb4lZ xT8rIezJ/u5g2XwDVlKIa18TRQXV/c4Xg+Vj7Z1mQepM5OZW1AyNuhAMtyol3j+/ a6Z8HEPDtJUa/vbg1sasKBOA1/cm764B+uAP/BuaxUurhP/ZLx5nFN8hZNMIlHpN 4BzgfE5SZ3OOyb/ySU3PUbsApvdX0b8CvIuYyYVqE9mxmGp+GyBAvl48Cn+9HzO0 zOLPKv4i6SP/nYBHVhciH9Xn4KjXm11rHmhg+v0oMsjRS3NaotEg -----END CERTIFICATE-----Generated at Mon Jan 19 14:26:13 2026 by rpki-client