This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3135352e3133332e38312e302f32342d3234203d3e20313336373837.roa File: 3135352e3133332e38312e302f32342d3234203d3e20313336373837.roa (raw, json) Hash identifier: RHrvksLTG92qeQnsnzd14dqyJRgWGnaRxZiugEWMCew= Subject key identifier: B2:B9:97:36:2A:17:8F:5A:19:0A:D3:DE:7D:32:5D:A9:0A:2F:61:2A Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Certificate serial: 44C22D694383944E4CC8849D65A96E407BFA4B95 Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3135352e3133332e38312e302f32342d3234203d3e20313336373837.roa Signing time: Sat 03 Jan 2026 22:51:14 +0000 ROA not before: Sat 03 Jan 2026 22:46:14 +0000 ROA not after: Sat 02 Jan 2027 22:51:14 +0000 asID: 136787 IP address blocks: 155.133.81.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 01:05:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:c2:2d:69:43:83:94:4e:4c:c8:84:9d:65:a9:6e:40:7b:fa:4b:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Validity Not Before: Jan 3 22:46:14 2026 GMT Not After : Jan 2 22:51:14 2027 GMT Subject: CN=B2B997362A178F5A190AD3DE7D325DA90A2F612A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:ef:8d:02:93:9e:86:a6:09:05:1a:76:5b:02: 4c:28:79:8b:bc:a1:4b:6d:02:30:93:5d:02:57:47: 4f:a6:ed:0f:bb:72:c7:60:79:fd:8e:c9:61:11:c5: 69:c0:96:95:6e:2b:d4:a6:22:c0:47:22:8a:3e:31: d5:5f:72:57:b2:8d:9d:6e:ce:3b:45:41:ad:e4:78: 23:18:3b:67:f8:fd:b7:5e:40:be:4c:3e:a2:b4:65: 89:a3:e1:d6:e4:fa:59:a5:0c:78:61:ed:0f:ae:f4: 8d:1f:d0:2e:e5:46:dd:0f:ce:bd:3e:89:2d:19:65: 69:f8:4b:8d:d4:ad:ef:04:ea:ee:e3:fc:1c:48:24: b7:e8:32:5f:82:44:8c:8a:49:7b:1b:cc:da:ef:05: 14:2c:d3:7a:cb:73:09:24:d3:72:b0:ac:f7:b4:1b: 63:83:94:59:0e:c0:a6:f7:c9:4a:ce:58:87:33:69: 5f:36:4a:d1:df:06:ac:47:57:66:5d:30:be:c4:b1: 10:89:67:e6:d8:c7:3c:be:34:b2:f6:20:28:e3:ab: ed:2b:b0:e9:d5:c8:31:54:69:b2:49:0c:ef:5d:23: b5:9e:0e:d6:aa:79:ca:88:79:2a:87:b5:63:63:1b: 80:59:06:c2:61:7a:17:84:16:ac:ad:ec:50:0c:56: 97:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:B9:97:36:2A:17:8F:5A:19:0A:D3:DE:7D:32:5D:A9:0A:2F:61:2A X509v3 Authority Key Identifier: keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3135352e3133332e38312e302f32342d3234203d3e20313336373837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 155.133.81.0/24 Signature Algorithm: sha256WithRSAEncryption 9b:a4:d0:cb:2e:06:1f:e3:c1:50:98:fc:e6:1a:21:d2:a2:a4: 2f:ea:8d:a5:9c:c0:06:ce:d2:c6:42:a8:22:47:1b:02:f3:c8: b0:41:65:af:ad:45:67:c1:a9:63:10:9f:30:5f:76:a9:c3:2a: 02:95:7e:36:66:64:12:de:31:60:ad:d2:eb:07:83:47:c5:da: 3c:af:c0:d7:a1:f7:62:8f:88:e9:90:56:f3:84:fb:c5:bf:e1: 95:a0:7b:66:b7:ba:11:d1:6b:d6:fe:43:b6:3f:9c:dc:ad:0e: 03:7e:cd:76:8f:c3:b8:23:0a:91:b9:45:45:9f:2d:91:43:e9: ec:c0:a2:04:43:7e:4d:20:8c:dd:18:6c:6b:6e:01:a8:fb:99: d4:13:7f:28:d9:5c:24:1d:e7:73:31:1a:f7:5d:ef:2f:52:72: 7d:1e:ca:3f:cf:33:e8:ed:2b:ed:ef:33:a4:4e:13:84:74:d0: fd:c3:1c:9e:cf:b3:48:26:66:07:ef:57:37:91:71:5f:5d:6b: 27:86:fb:cd:bf:c3:e8:9a:07:05:66:dc:93:43:79:72:a9:6a: fe:d1:0c:bd:39:a9:f3:59:b5:a7:63:ca:8b:92:b3:6e:85:63: d4:fa:29:ac:29:c9:5d:98:39:ee:1d:aa:14:ec:9a:46:c6:8a: 14:a1:ae:da -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIURMItaUODlE5MyISdZaluQHv6S5UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0 ZWE3Nzc5YzAeFw0yNjAxMDMyMjQ2MTRaFw0yNzAxMDIyMjUxMTRaMDMxMTAvBgNV BAMTKEIyQjk5NzM2MkExNzhGNUExOTBBRDNERTdEMzI1REE5MEEyRjYxMkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDX740Ck56GpgkFGnZbAkwoeYu8 oUttAjCTXQJXR0+m7Q+7csdgef2OyWERxWnAlpVuK9SmIsBHIoo+MdVfcleyjZ1u zjtFQa3keCMYO2f4/bdeQL5MPqK0ZYmj4dbk+lmlDHhh7Q+u9I0f0C7lRt0Pzr0+ iS0ZZWn4S43Ure8E6u7j/BxIJLfoMl+CRIyKSXsbzNrvBRQs03rLcwkk03KwrPe0 G2ODlFkOwKb3yUrOWIczaV82StHfBqxHV2ZdML7EsRCJZ+bYxzy+NLL2ICjjq+0r sOnVyDFUabJJDO9dI7WeDtaqecqIeSqHtWNjG4BZBsJheheEFqyt7FAMVpdfAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUsrmXNioXj1oZCtPefTJdqQovYSowHwYDVR0j BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2 bmQ1dy5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzEzNTM1MmUzMTMzMzMyZTM4 MzEyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMTMzMzYzNzM4Mzcucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BACbhVEwDQYJKoZIhvcNAQELBQADggEBAJuk0MsuBh/jwVCY/OYaIdKipC/qjaWc wAbO0sZCqCJHGwLzyLBBZa+tRWfBqWMQnzBfdqnDKgKVfjZmZBLeMWCt0usHg0fF 2jyvwNeh92KPiOmQVvOE+8W/4ZWge2a3uhHRa9b+Q7Y/nNytDgN+zXaPw7gjCpG5 RUWfLZFD6ezAogRDfk0gjN0YbGtuAaj7mdQTfyjZXCQd53MxGvdd7y9Scn0eyj/P M+jtK+3vM6ROE4R00P3DHJ7Ps0gmZgfvVzeRcV9dayeG+82/w+iaBwVm3JNDeXKp av7RDL05qfNZtadjyouSs26FY9T6KawpyV2YOe4dqhTsmkbGihShrto= -----END CERTIFICATE-----Generated at Mon Jan 19 14:27:28 2026 by rpki-client