This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3135352e3133332e352e302f32342d3234203d3e203632323430.roa File: 3135352e3133332e352e302f32342d3234203d3e203632323430.roa (raw, json) Hash identifier: YmCToXkUenR/V3T0IZNFlbSo/i5uuAqk96N9BmD6KZY= Subject key identifier: 47:61:DC:67:3E:1A:4F:60:FE:65:9B:6E:19:01:7B:CC:EE:9D:06:72 Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Certificate serial: 4D45331D82D0335BB725037DCCD413FB6980B6CA Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3135352e3133332e352e302f32342d3234203d3e203632323430.roa Signing time: Mon 29 Dec 2025 09:50:42 +0000 ROA not before: Mon 29 Dec 2025 09:45:42 +0000 ROA not after: Mon 28 Dec 2026 09:50:42 +0000 asID: 62240 IP address blocks: 155.133.5.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 01:05:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:45:33:1d:82:d0:33:5b:b7:25:03:7d:cc:d4:13:fb:69:80:b6:ca Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Validity Not Before: Dec 29 09:45:42 2025 GMT Not After : Dec 28 09:50:42 2026 GMT Subject: CN=4761DC673E1A4F60FE659B6E19017BCCEE9D0672 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:a6:4e:9c:c9:ff:41:dd:9f:a2:00:ee:1f:61: 2a:1a:b3:82:18:b3:b9:ea:3f:84:eb:a2:63:0f:ef: 04:35:08:cb:d0:9a:b4:12:8b:2a:6c:d0:d7:f2:8d: d3:e7:cb:b2:86:aa:44:44:62:e3:31:7f:af:71:df: 78:05:85:9f:21:a5:3a:61:c3:5b:57:b8:e6:e0:1d: c4:bc:6f:47:ae:06:c4:28:ef:ae:c2:46:66:c3:f6: b4:bb:cf:fc:a8:cc:8c:99:95:a7:d4:ad:bb:d3:fe: 48:18:8c:14:82:1f:46:db:ba:41:7e:98:e6:9b:78: aa:46:29:b5:f7:06:9c:8b:57:8f:b0:56:b1:ae:97: 84:3a:36:46:95:bf:85:6d:76:14:f9:8a:f9:d9:d4: f9:23:86:a0:17:56:eb:c4:0b:8f:fb:25:8f:bc:6e: 7f:e6:e0:98:ec:c3:27:bf:bd:48:e4:1a:a8:37:16: e6:dc:dd:ca:36:55:95:e8:5d:e5:a4:4e:92:28:2c: 2d:50:f8:99:95:99:e8:49:1f:85:74:ff:2d:30:dd: df:e6:8e:f7:ed:71:ec:4c:93:64:dc:2e:dd:cd:3c: 5f:99:a4:4b:33:2b:ba:b9:16:73:9b:77:4c:dc:bf: ef:29:24:1e:0f:21:27:c8:53:d4:b1:35:bb:12:8e: 49:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:61:DC:67:3E:1A:4F:60:FE:65:9B:6E:19:01:7B:CC:EE:9D:06:72 X509v3 Authority Key Identifier: keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3135352e3133332e352e302f32342d3234203d3e203632323430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 155.133.5.0/24 Signature Algorithm: sha256WithRSAEncryption 78:9a:81:0f:95:94:63:ba:f4:f1:80:fd:97:ce:fe:47:9f:61: f6:f2:ff:94:2a:da:14:8b:f3:fd:3f:fe:67:df:ab:05:8c:63: 55:24:fc:53:1f:61:d6:b4:35:55:35:61:4b:a8:db:e0:29:ec: 64:b5:6c:12:69:59:d4:3f:61:22:aa:9a:38:b2:12:dc:e2:74: 65:94:4a:ce:49:19:ca:f2:24:56:fc:2e:65:3a:77:9c:4f:49: 96:81:ad:0c:76:dc:3a:1d:89:2f:78:16:f3:c3:77:b6:4b:aa: b0:cb:9a:75:35:af:27:d3:d1:5a:72:69:a0:91:df:79:e6:ae: 56:43:51:32:3d:31:7b:3b:ce:e7:a7:94:c8:5a:8a:5b:ff:f6: 70:46:2b:7a:35:e4:45:4e:74:f4:69:c8:08:12:de:b7:7d:1d: d2:1f:cc:99:d9:39:7f:d1:1f:b7:b0:d7:e1:93:8e:f3:44:ee: 78:42:20:c7:78:16:40:78:40:3a:e5:74:c8:02:57:23:6b:0f: 2a:e3:9f:9f:c9:a0:28:3b:fb:b9:d5:12:ca:ec:15:48:c8:36: ac:5f:b1:a4:82:9c:4e:6b:8e:08:1f:21:39:ad:b0:e9:49:eb: 87:b2:7c:b0:93:a8:0d:06:83:54:33:2e:0a:3f:1a:87:c5:38: 6b:5c:c3:fe -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUTUUzHYLQM1u3JQN9zNQT+2mAtsowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0 ZWE3Nzc5YzAeFw0yNTEyMjkwOTQ1NDJaFw0yNjEyMjgwOTUwNDJaMDMxMTAvBgNV BAMTKDQ3NjFEQzY3M0UxQTRGNjBGRTY1OUI2RTE5MDE3QkNDRUU5RDA2NzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+pk6cyf9B3Z+iAO4fYSoas4IY s7nqP4TromMP7wQ1CMvQmrQSiyps0NfyjdPny7KGqkREYuMxf69x33gFhZ8hpTph w1tXuObgHcS8b0euBsQo767CRmbD9rS7z/yozIyZlafUrbvT/kgYjBSCH0bbukF+ mOabeKpGKbX3BpyLV4+wVrGul4Q6NkaVv4VtdhT5ivnZ1PkjhqAXVuvEC4/7JY+8 bn/m4Jjswye/vUjkGqg3Fubc3co2VZXoXeWkTpIoLC1Q+JmVmehJH4V0/y0w3d/m jvftcexMk2TcLt3NPF+ZpEszK7q5FnObd0zcv+8pJB4PISfIU9SxNbsSjknHAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUR2HcZz4aT2D+ZZtuGQF7zO6dBnIwHwYDVR0j BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2 bmQ1dy5jZXIwgasGCCsGAQUFBwELBIGeMIGbMIGYBggrBgEFBQcwC4aBi3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzEzNTM1MmUzMTMzMzMyZTM1 MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzYzMjMyMzQzMC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAJuF BTANBgkqhkiG9w0BAQsFAAOCAQEAeJqBD5WUY7r08YD9l87+R59h9vL/lCraFIvz /T/+Z9+rBYxjVST8Ux9h1rQ1VTVhS6jb4CnsZLVsEmlZ1D9hIqqaOLIS3OJ0ZZRK zkkZyvIkVvwuZTp3nE9JloGtDHbcOh2JL3gW88N3tkuqsMuadTWvJ9PRWnJpoJHf eeauVkNRMj0xezvO56eUyFqKW//2cEYrejXkRU509GnICBLet30d0h/Mmdk5f9Ef t7DX4ZOO80TueEIgx3gWQHhAOuV0yAJXI2sPKuOfn8mgKDv7udUSyuwVSMg2rF+x pIKcTmuOCB8hOa2w6Unrh7J8sJOoDQaDVDMuCj8ah8U4a1zD/g== -----END CERTIFICATE-----Generated at Mon Jan 19 14:25:57 2026 by rpki-client