This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3135362e36372e3130362e302f32342d3234203d3e20313336373837.roa File: 3135362e36372e3130362e302f32342d3234203d3e20313336373837.roa (raw, json) Hash identifier: SROSNFx1woTR6wCV+ileFdt0/AMieWVBsk0Psr9CODc= Subject key identifier: 45:BD:03:4E:54:15:CA:A0:CB:0A:88:C9:7C:D6:3B:39:81:D1:13:3C Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Certificate serial: 0FD9A6F3D0CB166AC78E099E1585EE26C09AE1D7 Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3135362e36372e3130362e302f32342d3234203d3e20313336373837.roa Signing time: Sat 03 Jan 2026 22:51:15 +0000 ROA not before: Sat 03 Jan 2026 22:46:15 +0000 ROA not after: Sat 02 Jan 2027 22:51:15 +0000 asID: 136787 IP address blocks: 156.67.106.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 01:05:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:d9:a6:f3:d0:cb:16:6a:c7:8e:09:9e:15:85:ee:26:c0:9a:e1:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Validity Not Before: Jan 3 22:46:15 2026 GMT Not After : Jan 2 22:51:15 2027 GMT Subject: CN=45BD034E5415CAA0CB0A88C97CD63B3981D1133C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:30:a9:65:c4:9a:57:c5:a0:9e:cb:4e:dd:bb: 34:1a:5f:77:31:47:6c:00:ee:ff:a0:50:66:fd:13: 0b:32:0e:5f:8b:51:77:fa:93:50:d3:9a:55:89:43: f8:96:a1:c2:b3:27:2b:0a:93:ab:05:8a:f0:fc:b2: 34:c0:8c:9f:e1:5f:bf:c3:68:42:91:78:f6:91:54: aa:97:47:54:33:7a:c0:b2:31:1d:c1:09:61:03:79: 62:cb:a7:f9:6f:76:ef:f7:25:6b:35:c2:3f:6f:f1: a8:40:b8:b3:80:5f:88:b9:6f:79:aa:3d:eb:75:db: 8d:35:06:19:1a:b7:ac:65:70:71:0d:41:ef:c8:12: 31:26:ec:e1:46:76:c7:9b:e0:c7:ba:b7:a2:54:9c: 26:6a:69:5a:a1:ae:7b:dc:d6:ca:fa:43:ee:f9:f9: b1:7a:aa:5b:b2:85:23:1d:1c:1d:f2:e0:fc:2b:ec: 0b:82:03:61:46:bd:11:4e:6e:1a:15:28:ed:cd:ab: 58:f4:85:89:b3:9f:cb:9f:38:64:1e:c9:a3:31:3e: 00:1c:e3:7a:38:b6:1e:15:ff:66:e5:63:3c:16:0a: 37:58:25:7e:d5:64:f5:10:0a:a0:30:c9:90:26:6c: f2:35:2f:60:cb:26:83:70:c8:07:a7:86:8a:67:eb: 84:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:BD:03:4E:54:15:CA:A0:CB:0A:88:C9:7C:D6:3B:39:81:D1:13:3C X509v3 Authority Key Identifier: keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3135362e36372e3130362e302f32342d3234203d3e20313336373837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 156.67.106.0/24 Signature Algorithm: sha256WithRSAEncryption 73:54:1c:37:6b:7b:50:3b:30:e4:8b:64:d6:17:53:76:e3:8b: 7a:40:57:0c:07:ca:01:ef:0c:f7:04:bd:9f:5f:83:6a:63:d2: f4:79:a3:2d:c0:6e:71:43:6f:3c:b3:a7:f0:3f:2e:de:20:01: 94:80:44:0c:ae:56:6b:c0:40:ac:34:a9:2a:11:2b:1c:74:69: 46:f5:8e:99:d5:06:e9:f9:fd:57:63:f4:c4:75:3e:4f:9f:ad: 2f:10:47:0f:f2:34:1a:79:f2:b2:74:5e:bc:17:3a:3c:ee:3e: cc:87:f2:ce:3d:fd:bd:4a:62:ab:ca:84:4e:f1:b7:51:b9:d3: 60:e3:f5:fa:d8:fc:d8:1f:2b:d3:de:37:99:fd:41:25:e0:2c: ff:49:fc:96:36:a2:b7:8e:bb:f8:79:6e:09:43:52:84:d0:34: 59:01:a5:24:c0:94:03:ef:c3:ad:d0:0a:da:cf:8f:f5:01:52: d2:6e:3e:b9:8f:b8:45:2b:f9:c2:66:6c:8c:f0:cb:40:20:02: af:94:e6:5d:6f:74:a8:38:65:6f:36:b4:69:cf:ce:4d:8d:d3: 31:0f:fa:42:ac:87:2b:c5:f6:82:34:26:2c:db:8f:d5:dd:5a: f2:5b:8c:a0:eb:2b:c3:79:91:03:ce:ac:fc:7b:e7:cc:8e:4e: 15:c2:ab:3b -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUD9mm89DLFmrHjgmeFYXuJsCa4dcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0 ZWE3Nzc5YzAeFw0yNjAxMDMyMjQ2MTVaFw0yNzAxMDIyMjUxMTVaMDMxMTAvBgNV BAMTKDQ1QkQwMzRFNTQxNUNBQTBDQjBBODhDOTdDRDYzQjM5ODFEMTEzM0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYMKllxJpXxaCey07duzQaX3cx R2wA7v+gUGb9EwsyDl+LUXf6k1DTmlWJQ/iWocKzJysKk6sFivD8sjTAjJ/hX7/D aEKRePaRVKqXR1QzesCyMR3BCWEDeWLLp/lvdu/3JWs1wj9v8ahAuLOAX4i5b3mq Pet12401Bhkat6xlcHENQe/IEjEm7OFGdseb4Me6t6JUnCZqaVqhrnvc1sr6Q+75 +bF6qluyhSMdHB3y4Pwr7AuCA2FGvRFObhoVKO3Nq1j0hYmzn8ufOGQeyaMxPgAc 43o4th4V/2blYzwWCjdYJX7VZPUQCqAwyZAmbPI1L2DLJoNwyAenhopn64QVAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQURb0DTlQVyqDLCojJfNY7OYHREzwwHwYDVR0j BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2 bmQ1dy5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzEzNTM2MmUzNjM3MmUzMTMw MzYyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMTMzMzYzNzM4Mzcucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BACcQ2owDQYJKoZIhvcNAQELBQADggEBAHNUHDdre1A7MOSLZNYXU3bji3pAVwwH ygHvDPcEvZ9fg2pj0vR5oy3AbnFDbzyzp/A/Lt4gAZSARAyuVmvAQKw0qSoRKxx0 aUb1jpnVBun5/Vdj9MR1Pk+frS8QRw/yNBp58rJ0XrwXOjzuPsyH8s49/b1KYqvK hE7xt1G502Dj9frY/NgfK9PeN5n9QSXgLP9J/JY2oreOu/h5bglDUoTQNFkBpSTA lAPvw63QCtrPj/UBUtJuPrmPuEUr+cJmbIzwy0AgAq+U5l1vdKg4ZW82tGnPzk2N 0zEP+kKshyvF9oI0Jizbj9XdWvJbjKDrK8N5kQPOrPx758yOThXCqzs= -----END CERTIFICATE-----Generated at Mon Jan 19 14:28:34 2026 by rpki-client