This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3135352e3133332e342e302f32342d3234203d3e203632323430.roa File: 3135352e3133332e342e302f32342d3234203d3e203632323430.roa (raw, json) Hash identifier: KrEk+zLiTR2lQD2QwJHIL/rKu8pfWWgzvq9noEnnn0Y= Subject key identifier: 0F:9F:D0:C7:3B:81:BE:5B:E8:00:34:EE:09:21:AA:A1:54:4A:17:24 Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Certificate serial: 28C449B8C66F5A7FD6ACA29ADD1F8FAFF7209BE7 Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3135352e3133332e342e302f32342d3234203d3e203632323430.roa Signing time: Mon 29 Dec 2025 09:50:40 +0000 ROA not before: Mon 29 Dec 2025 09:45:40 +0000 ROA not after: Mon 28 Dec 2026 09:50:40 +0000 asID: 62240 IP address blocks: 155.133.4.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 01:05:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:c4:49:b8:c6:6f:5a:7f:d6:ac:a2:9a:dd:1f:8f:af:f7:20:9b:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Validity Not Before: Dec 29 09:45:40 2025 GMT Not After : Dec 28 09:50:40 2026 GMT Subject: CN=0F9FD0C73B81BE5BE80034EE0921AAA1544A1724 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:e0:99:01:15:92:b5:1f:5e:a3:00:e7:49:8d: 5d:29:d4:b7:8b:f5:32:cf:b1:72:d8:4e:c1:f5:ac: 1a:d2:61:c4:19:c5:3a:10:ba:bd:e1:ef:ff:47:07: 43:8e:0c:f4:b5:1e:2b:e1:7b:a2:96:9c:d4:94:b9: 98:b7:c6:c0:1f:55:38:a7:0c:8a:93:81:06:b7:03: c0:a9:94:f3:ca:e0:56:c0:38:2a:db:9c:93:23:fd: a0:fb:9b:38:94:61:0d:26:4d:29:b1:e8:e4:f1:1e: da:cb:f8:bd:73:ba:33:e4:9a:df:96:84:12:44:7a: b3:e1:75:0b:b2:a3:ec:db:67:9c:c2:42:db:9f:31: 62:5b:08:07:dc:5b:dc:ae:0d:4d:9f:f1:49:51:4f: 16:f1:c8:21:a3:c7:af:1e:bd:1d:03:7c:1e:6b:03: 27:2a:62:79:69:e5:ec:d3:af:15:56:d8:fc:8c:07: ad:88:75:10:76:4c:f3:fc:a2:44:9c:f0:3e:a5:52: a7:3c:e0:03:43:20:80:a1:6f:db:60:f9:47:e0:82: 69:ec:8b:32:70:dd:0b:bc:87:1b:05:bf:bb:3a:55: 7c:db:0d:af:31:00:59:6a:65:e4:ed:91:f6:29:cf: 06:66:d3:f1:a9:31:6d:3f:18:1d:82:98:2a:3f:d5: d0:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:9F:D0:C7:3B:81:BE:5B:E8:00:34:EE:09:21:AA:A1:54:4A:17:24 X509v3 Authority Key Identifier: keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3135352e3133332e342e302f32342d3234203d3e203632323430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 155.133.4.0/24 Signature Algorithm: sha256WithRSAEncryption 7b:d7:d4:a3:e7:b8:b8:c3:9d:0a:8f:53:cf:88:3f:ad:89:96: 36:b9:67:b3:00:64:fc:23:40:9d:05:67:42:cf:e2:5d:39:54: 96:2f:b3:9d:96:82:b6:48:5e:60:c0:3a:27:00:84:18:c0:34: b7:2e:3b:4a:bb:cd:37:33:43:96:08:73:a0:aa:96:f8:d4:ef: 24:66:84:ee:3c:07:ba:59:8c:75:7d:ad:87:e3:20:1c:0c:ce: 67:52:ce:4c:f8:93:2d:da:d8:34:c4:63:92:66:d5:9b:58:5a: e1:b4:2a:a1:e9:e4:2b:7a:52:00:68:d3:5d:32:6d:41:95:8e: 62:d6:54:39:2a:0d:f9:e1:7d:29:3d:4f:3a:78:66:e5:e4:3d: e5:a1:85:db:70:1c:8e:65:1e:cc:54:63:2e:81:54:eb:0f:9e: 1d:19:0a:81:ca:3d:31:a7:24:11:c5:66:08:b7:dd:e7:af:08: 32:30:e2:61:2a:14:96:07:ba:4a:fb:e8:0d:c8:90:bd:15:79: 43:92:b8:e3:96:dc:61:09:63:79:41:66:7d:e9:4f:a3:5c:8c: 37:2e:ac:6f:56:07:3a:9c:89:6d:4e:16:0e:93:39:b8:02:02: 77:07:a4:64:af:ec:ce:67:57:a9:80:0f:61:30:66:ce:1f:48: a9:f0:43:97 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUKMRJuMZvWn/WrKKa3R+Pr/cgm+cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0 ZWE3Nzc5YzAeFw0yNTEyMjkwOTQ1NDBaFw0yNjEyMjgwOTUwNDBaMDMxMTAvBgNV BAMTKDBGOUZEMEM3M0I4MUJFNUJFODAwMzRFRTA5MjFBQUExNTQ0QTE3MjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC24JkBFZK1H16jAOdJjV0p1LeL 9TLPsXLYTsH1rBrSYcQZxToQur3h7/9HB0OODPS1Hivhe6KWnNSUuZi3xsAfVTin DIqTgQa3A8CplPPK4FbAOCrbnJMj/aD7mziUYQ0mTSmx6OTxHtrL+L1zujPkmt+W hBJEerPhdQuyo+zbZ5zCQtufMWJbCAfcW9yuDU2f8UlRTxbxyCGjx68evR0DfB5r AycqYnlp5ezTrxVW2PyMB62IdRB2TPP8okSc8D6lUqc84ANDIIChb9tg+Ufggmns izJw3Qu8hxsFv7s6VXzbDa8xAFlqZeTtkfYpzwZm0/GpMW0/GB2CmCo/1dAXAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUD5/QxzuBvlvoADTuCSGqoVRKFyQwHwYDVR0j BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2 bmQ1dy5jZXIwgasGCCsGAQUFBwELBIGeMIGbMIGYBggrBgEFBQcwC4aBi3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzEzNTM1MmUzMTMzMzMyZTM0 MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzYzMjMyMzQzMC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAJuF BDANBgkqhkiG9w0BAQsFAAOCAQEAe9fUo+e4uMOdCo9Tz4g/rYmWNrlnswBk/CNA nQVnQs/iXTlUli+znZaCtkheYMA6JwCEGMA0ty47SrvNNzNDlghzoKqW+NTvJGaE 7jwHulmMdX2th+MgHAzOZ1LOTPiTLdrYNMRjkmbVm1ha4bQqoenkK3pSAGjTXTJt QZWOYtZUOSoN+eF9KT1POnhm5eQ95aGF23AcjmUezFRjLoFU6w+eHRkKgco9Mack EcVmCLfd568IMjDiYSoUlge6SvvoDciQvRV5Q5K445bcYQljeUFmfelPo1yMNy6s b1YHOpyJbU4WDpM5uAICdwekZK/szmdXqYAPYTBmzh9IqfBDlw== -----END CERTIFICATE-----Generated at Mon Jan 19 14:25:56 2026 by rpki-client