This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3135352e3133332e37362e302f32342d3234203d3e20313336373837.roa File: 3135352e3133332e37362e302f32342d3234203d3e20313336373837.roa (raw, json) Hash identifier: bb9ULYtxj5B0ZjSFx8AGz4RoajgQ2a4PI7S6BMB8e5o= Subject key identifier: 21:BF:7E:3D:6A:F6:53:EB:F2:DE:65:76:27:64:29:F5:7C:FC:D4:C7 Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Certificate serial: 3185E7329F0E0F947FE18E7E261431B5CE429C3D Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3135352e3133332e37362e302f32342d3234203d3e20313336373837.roa Signing time: Mon 29 Dec 2025 09:51:00 +0000 ROA not before: Mon 29 Dec 2025 09:46:00 +0000 ROA not after: Mon 28 Dec 2026 09:51:00 +0000 asID: 136787 IP address blocks: 155.133.76.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 14:41:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:85:e7:32:9f:0e:0f:94:7f:e1:8e:7e:26:14:31:b5:ce:42:9c:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Validity Not Before: Dec 29 09:46:00 2025 GMT Not After : Dec 28 09:51:00 2026 GMT Subject: CN=21BF7E3D6AF653EBF2DE6576276429F57CFCD4C7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:79:2b:f7:45:66:6c:13:fa:2c:48:48:51:c9: 13:96:c5:d0:a1:5b:56:48:82:b2:8d:00:a6:50:e0: 30:b5:8f:b4:5a:f3:3c:f4:6d:8c:02:4d:9e:21:a3: 06:fd:ba:92:6b:63:90:69:04:57:19:9b:c4:43:5a: ef:16:a8:43:5b:25:b0:70:99:7c:a2:83:86:ae:b7: f3:f5:5b:e5:9c:ff:34:4f:b0:99:2a:7a:ed:40:85: 91:6d:88:b4:90:af:23:ba:6b:3a:65:12:14:66:6e: 5f:d4:22:c1:98:61:f3:75:48:5b:b0:f9:88:47:eb: 21:9a:9a:8b:c0:f9:3e:8f:d3:b2:dd:ac:3c:73:db: 62:7b:0e:73:b2:a2:d8:a5:25:4e:e1:68:3c:a5:85: bf:66:a4:26:10:3c:f0:44:df:e8:d8:d4:35:79:40: 60:76:ed:41:1f:b8:a5:4a:ab:85:9b:a4:9b:83:6a: 4f:db:2f:7e:59:38:a0:c9:f1:03:84:36:de:1e:ed: a2:1f:a2:24:f0:fa:37:a3:69:43:62:d8:ea:b7:71: 6a:48:8e:f8:99:02:bc:6e:bc:fb:eb:30:28:94:05: 3e:97:d5:71:da:bf:e6:ad:51:55:50:c2:43:cb:27: 25:fc:da:2e:c4:5f:c3:59:eb:b2:81:f0:eb:b4:f6: da:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:BF:7E:3D:6A:F6:53:EB:F2:DE:65:76:27:64:29:F5:7C:FC:D4:C7 X509v3 Authority Key Identifier: keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3135352e3133332e37362e302f32342d3234203d3e20313336373837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 155.133.76.0/24 Signature Algorithm: sha256WithRSAEncryption 93:3c:ec:45:ab:db:e7:18:f2:35:75:de:fe:1d:7f:05:a9:95: e0:c0:31:68:d0:5c:36:e6:d8:e0:2f:a6:f1:91:44:5b:fd:9d: 4f:c8:74:a0:e0:e2:8b:3c:a1:5c:9d:3e:bf:53:d5:05:d2:f5: ac:fa:d1:c7:c3:0a:11:63:8e:79:96:47:f2:91:36:2a:5c:dd: e7:40:a2:e8:cb:9b:aa:81:ec:8e:8d:c7:8f:8c:65:d5:6b:ee: 7b:95:fc:65:da:59:97:bc:47:82:25:65:e9:79:84:14:4f:39: 82:a4:d6:7a:26:cb:ca:94:02:ae:07:e8:f8:fb:73:e0:bc:2f: 74:6e:7a:3b:76:6c:3d:15:23:f9:de:86:bb:eb:29:d8:5b:16: 13:9d:d2:88:fc:7d:53:21:56:8b:96:03:0f:ec:3e:40:a5:e0: bb:e9:69:ef:b9:59:6c:58:7f:17:6a:fa:71:01:6e:92:05:64: 8a:bd:8e:45:77:08:73:fc:42:8f:69:ab:24:10:df:59:c1:ab: da:32:68:c5:a5:ff:77:41:eb:ee:b8:2d:18:ae:76:7b:e1:74: 1c:31:e9:b3:46:93:6d:3c:87:5b:82:e5:55:a5:6b:38:23:3e: 9c:18:53:80:b6:41:b5:af:e3:45:30:e8:3d:90:8d:6d:b0:7f: c1:9b:63:8a -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUMYXnMp8OD5R/4Y5+JhQxtc5CnD0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0 ZWE3Nzc5YzAeFw0yNTEyMjkwOTQ2MDBaFw0yNjEyMjgwOTUxMDBaMDMxMTAvBgNV BAMTKDIxQkY3RTNENkFGNjUzRUJGMkRFNjU3NjI3NjQyOUY1N0NGQ0Q0QzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDqeSv3RWZsE/osSEhRyROWxdCh W1ZIgrKNAKZQ4DC1j7Ra8zz0bYwCTZ4howb9upJrY5BpBFcZm8RDWu8WqENbJbBw mXyig4aut/P1W+Wc/zRPsJkqeu1AhZFtiLSQryO6azplEhRmbl/UIsGYYfN1SFuw +YhH6yGamovA+T6P07LdrDxz22J7DnOyotilJU7haDylhb9mpCYQPPBE3+jY1DV5 QGB27UEfuKVKq4WbpJuDak/bL35ZOKDJ8QOENt4e7aIfoiTw+jejaUNi2Oq3cWpI jviZArxuvPvrMCiUBT6X1XHav+atUVVQwkPLJyX82i7EX8NZ67KB8Ou09trXAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUIb9+PWr2U+vy3mV2J2Qp9Xz81McwHwYDVR0j BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2 bmQ1dy5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzEzNTM1MmUzMTMzMzMyZTM3 MzYyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMTMzMzYzNzM4Mzcucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BACbhUwwDQYJKoZIhvcNAQELBQADggEBAJM87EWr2+cY8jV13v4dfwWpleDAMWjQ XDbm2OAvpvGRRFv9nU/IdKDg4os8oVydPr9T1QXS9az60cfDChFjjnmWR/KRNipc 3edAoujLm6qB7I6Nx4+MZdVr7nuV/GXaWZe8R4IlZel5hBRPOYKk1nomy8qUAq4H 6Pj7c+C8L3Ruejt2bD0VI/nehrvrKdhbFhOd0oj8fVMhVouWAw/sPkCl4Lvpae+5 WWxYfxdq+nEBbpIFZIq9jkV3CHP8Qo9pqyQQ31nBq9oyaMWl/3dB6+64LRiudnvh dBwx6bNGk208h1uC5VWlazgjPpwYU4C2QbWv40Uw6D2QjW2wf8GbY4o= -----END CERTIFICATE-----Generated at Tue Jan 27 04:26:18 2026 by rpki-client