This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3135352e3133332e38392e302f32342d3234203d3e20313336373837.roa File: 3135352e3133332e38392e302f32342d3234203d3e20313336373837.roa (raw, json) Hash identifier: 8E0/EI9HOcyEgvtmc90GAnXKGblAIzUZhrNNdmJYZfs= Subject key identifier: 4C:93:71:25:70:AE:35:81:DF:10:71:D9:0A:49:01:50:7F:9C:0C:4B Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Certificate serial: 2E0C9D24F4F9DB310B1D41E816370BA7AFEF0BCD Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3135352e3133332e38392e302f32342d3234203d3e20313336373837.roa Signing time: Mon 29 Dec 2025 09:51:01 +0000 ROA not before: Mon 29 Dec 2025 09:46:01 +0000 ROA not after: Mon 28 Dec 2026 09:51:01 +0000 asID: 136787 IP address blocks: 155.133.89.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 01:05:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:0c:9d:24:f4:f9:db:31:0b:1d:41:e8:16:37:0b:a7:af:ef:0b:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Validity Not Before: Dec 29 09:46:01 2025 GMT Not After : Dec 28 09:51:01 2026 GMT Subject: CN=4C93712570AE3581DF1071D90A4901507F9C0C4B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:03:12:57:fe:50:f8:42:30:2c:bc:2a:ea:78: cd:ca:a4:ba:d7:a0:f7:7c:c5:4c:aa:98:53:24:e5: 91:dc:6d:b6:77:f1:5d:55:d1:04:ee:dd:bd:69:2a: a2:d2:ed:4b:e7:25:22:ec:45:91:88:4c:32:b5:8e: 5a:0e:af:98:7c:18:e6:9e:9e:94:19:26:d9:0c:86: 15:f0:a8:25:80:f6:fc:86:98:b1:4a:8f:07:2b:18: 00:96:d0:81:70:ec:5f:9d:05:e6:7a:a6:cc:22:df: 36:5d:04:fc:57:f2:9e:f9:32:bc:60:2f:26:f0:8a: eb:74:8a:f0:18:77:46:72:1c:96:b7:0c:94:3a:d2: 97:7e:e9:5a:d5:08:dd:21:ac:5a:54:6f:1c:34:40: 37:bd:51:ba:f2:43:1b:b1:e1:34:a0:16:bd:ad:26: fc:05:3b:d2:5c:bc:7e:c6:ef:69:9e:11:d4:71:0c: 26:88:59:4c:cb:9a:51:df:3f:1e:f4:da:b2:eb:b6: 01:3e:12:21:43:a1:2b:a8:e2:c9:bf:19:c1:2d:70: e4:dc:fd:bc:21:66:3e:63:7f:69:1d:98:12:b5:c5: 00:c8:ff:d2:53:33:48:e5:29:de:a9:16:5a:bc:ae: 1b:50:ba:cb:d3:57:81:a5:98:73:b7:41:ae:e6:f0: 33:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:93:71:25:70:AE:35:81:DF:10:71:D9:0A:49:01:50:7F:9C:0C:4B X509v3 Authority Key Identifier: keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3135352e3133332e38392e302f32342d3234203d3e20313336373837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 155.133.89.0/24 Signature Algorithm: sha256WithRSAEncryption 93:1a:e1:a3:14:70:bb:29:0c:ed:99:aa:06:9e:6b:f3:31:eb: e4:85:36:7c:a8:b8:f8:55:cf:d9:a0:a5:28:a6:f3:78:8f:3f: 0c:7e:dd:d3:5c:10:52:8b:c4:60:4c:81:43:5a:7d:56:40:d8: ab:eb:02:8c:bd:e2:1b:ce:f1:84:cb:75:fd:d8:1f:8b:1a:f2: d9:05:68:eb:cd:d3:b8:6f:12:63:3b:84:e9:4f:30:cc:97:9c: 86:92:10:59:b6:72:9a:15:97:ec:17:17:68:7d:b6:38:14:25: f1:a7:23:b7:f3:71:ee:64:aa:34:2f:fe:d4:1c:d1:54:0e:fe: 66:ff:81:83:9a:b7:3a:dd:2d:34:34:6d:25:91:33:02:da:84: 6a:df:bd:22:fb:79:ec:09:e6:dd:83:d7:64:90:5d:00:19:10: 1f:a4:7f:6f:f7:e7:98:bc:3a:c4:93:8a:17:4c:76:c1:83:07: 60:32:67:04:32:61:b3:fa:36:4d:4e:d9:1b:62:0b:28:34:fc: ac:58:55:8f:8d:a4:14:ba:27:12:29:64:7b:19:8e:94:4e:db: ce:a8:67:18:2c:ff:f1:da:34:f0:cd:94:da:1a:b0:88:b1:e3: 33:bf:2f:52:35:e9:fa:6b:55:2f:ad:69:b1:2f:e2:7b:38:e4: 10:f3:7a:ee -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIULgydJPT52zELHUHoFjcLp6/vC80wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0 ZWE3Nzc5YzAeFw0yNTEyMjkwOTQ2MDFaFw0yNjEyMjgwOTUxMDFaMDMxMTAvBgNV BAMTKDRDOTM3MTI1NzBBRTM1ODFERjEwNzFEOTBBNDkwMTUwN0Y5QzBDNEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCuAxJX/lD4QjAsvCrqeM3KpLrX oPd8xUyqmFMk5ZHcbbZ38V1V0QTu3b1pKqLS7UvnJSLsRZGITDK1jloOr5h8GOae npQZJtkMhhXwqCWA9vyGmLFKjwcrGACW0IFw7F+dBeZ6pswi3zZdBPxX8p75Mrxg Lybwiut0ivAYd0ZyHJa3DJQ60pd+6VrVCN0hrFpUbxw0QDe9UbryQxux4TSgFr2t JvwFO9JcvH7G72meEdRxDCaIWUzLmlHfPx702rLrtgE+EiFDoSuo4sm/GcEtcOTc /bwhZj5jf2kdmBK1xQDI/9JTM0jlKd6pFlq8rhtQusvTV4GlmHO3Qa7m8DNdAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUTJNxJXCuNYHfEHHZCkkBUH+cDEswHwYDVR0j BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2 bmQ1dy5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzEzNTM1MmUzMTMzMzMyZTM4 MzkyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMTMzMzYzNzM4Mzcucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BACbhVkwDQYJKoZIhvcNAQELBQADggEBAJMa4aMUcLspDO2Zqgaea/Mx6+SFNnyo uPhVz9mgpSim83iPPwx+3dNcEFKLxGBMgUNafVZA2KvrAoy94hvO8YTLdf3YH4sa 8tkFaOvN07hvEmM7hOlPMMyXnIaSEFm2cpoVl+wXF2h9tjgUJfGnI7fzce5kqjQv /tQc0VQO/mb/gYOatzrdLTQ0bSWRMwLahGrfvSL7eewJ5t2D12SQXQAZEB+kf2/3 55i8OsSTihdMdsGDB2AyZwQyYbP6Nk1O2RtiCyg0/KxYVY+NpBS6JxIpZHsZjpRO 286oZxgs//HaNPDNlNoasIix4zO/L1I16fprVS+tabEv4ns45BDzeu4= -----END CERTIFICATE-----Generated at Mon Jan 19 14:28:12 2026 by rpki-client