This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3135362e36372e3132322e302f32342d3234203d3e20313336373837.roa File: 3135362e36372e3132322e302f32342d3234203d3e20313336373837.roa (raw, json) Hash identifier: b6CVdg9nBEjV3qI01Yp7ff1Fn/OY+e6OkwCGkeLcj64= Subject key identifier: 06:69:45:67:91:5E:2B:B8:A5:EA:7A:9C:0C:74:C7:37:C7:1C:7E:CC Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Certificate serial: 179A394E51CEF1F12DFEE22189EF6130DCE10174 Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3135362e36372e3132322e302f32342d3234203d3e20313336373837.roa Signing time: Sat 03 Jan 2026 22:51:14 +0000 ROA not before: Sat 03 Jan 2026 22:46:14 +0000 ROA not after: Sat 02 Jan 2027 22:51:14 +0000 asID: 136787 IP address blocks: 156.67.122.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 01:05:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:9a:39:4e:51:ce:f1:f1:2d:fe:e2:21:89:ef:61:30:dc:e1:01:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Validity Not Before: Jan 3 22:46:14 2026 GMT Not After : Jan 2 22:51:14 2027 GMT Subject: CN=06694567915E2BB8A5EA7A9C0C74C737C71C7ECC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:53:5d:70:c3:9c:e4:9d:72:aa:06:50:a8:40: be:4e:2d:bd:7d:78:12:aa:cb:4d:73:22:a1:be:85: 60:1d:e8:b7:a6:74:f7:8c:49:89:8c:57:78:65:55: e8:33:74:a0:a1:3f:44:05:36:3f:2e:5e:46:e7:af: ec:b3:5b:d8:bd:27:7d:e8:2d:de:64:eb:13:f4:5d: 75:5c:3a:d5:8f:68:d3:58:5e:40:d4:db:af:c8:77: 1f:f6:0a:de:ca:c8:3e:0a:af:38:c6:19:d0:e5:a9: 29:0b:a6:3a:67:ad:9c:25:14:19:8a:c3:0a:36:65: 59:9f:5f:73:2f:3b:34:e1:9d:82:b9:ee:5d:24:e5: 90:32:c7:f1:68:19:9e:d7:4b:a2:27:57:fa:44:c6: a7:18:99:c6:d1:b0:5a:d3:a2:27:f3:3c:ad:ea:71: c4:4f:06:74:3b:51:d4:96:33:68:d6:7c:d0:e0:55: 27:f3:48:4d:da:9e:40:70:2a:f9:aa:77:50:a9:7d: d1:9e:17:21:b7:54:b3:b7:7b:cf:dc:00:2a:74:e5: e3:81:9b:06:c5:ed:4e:c2:7d:b4:0b:10:4e:3d:89: 82:fd:67:b8:b6:b4:3b:ae:23:9c:96:ac:51:82:19: 7d:0d:6f:62:57:97:e1:50:a2:ce:6c:83:5e:76:aa: 54:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:69:45:67:91:5E:2B:B8:A5:EA:7A:9C:0C:74:C7:37:C7:1C:7E:CC X509v3 Authority Key Identifier: keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3135362e36372e3132322e302f32342d3234203d3e20313336373837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 156.67.122.0/24 Signature Algorithm: sha256WithRSAEncryption 48:bc:0f:a2:36:bf:75:0b:4d:55:62:e1:8d:7d:99:f1:30:30: c0:70:e0:2d:6c:4d:b0:89:32:35:d8:90:88:0e:ea:ab:72:15: 1e:19:d5:07:c2:80:d5:08:cf:95:0e:d8:9b:dd:19:6b:76:60: 6d:3e:73:5d:44:d9:f6:b9:d7:3e:1e:2a:1a:25:9c:80:48:0d: 04:7a:dd:2c:e1:95:2c:bb:be:5e:06:33:8a:ef:56:96:45:ce: 2c:06:cf:09:fd:a0:9e:21:72:3a:1d:4d:44:48:d5:b2:e2:12: 5f:b3:c1:dd:3a:9c:90:be:74:59:11:08:37:88:f9:51:42:d3: 0c:0f:58:fc:a4:f5:22:d5:92:e8:c3:3b:14:b6:b7:b0:39:a0: 9a:c8:5f:0d:c6:8e:04:3b:07:aa:f0:de:de:0f:0d:34:4c:31: 57:08:e5:15:95:a7:cd:ee:93:aa:35:0c:84:ca:4d:e7:c5:ab: f8:ac:32:bf:59:e5:23:7d:1e:79:46:3a:92:63:9d:3c:86:ab: 7d:dc:13:7c:db:4e:46:5c:f3:4f:e7:fb:8a:47:67:e8:27:88: 8a:c6:6a:28:cf:13:9c:0b:cc:75:6b:a7:6f:15:1f:5f:fc:95: ef:5a:0f:de:fe:98:32:66:61:02:9f:ec:3d:08:1f:88:e3:85: af:89:80:c5 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUF5o5TlHO8fEt/uIhie9hMNzhAXQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0 ZWE3Nzc5YzAeFw0yNjAxMDMyMjQ2MTRaFw0yNzAxMDIyMjUxMTRaMDMxMTAvBgNV BAMTKDA2Njk0NTY3OTE1RTJCQjhBNUVBN0E5QzBDNzRDNzM3QzcxQzdFQ0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtU11ww5zknXKqBlCoQL5OLb19 eBKqy01zIqG+hWAd6LemdPeMSYmMV3hlVegzdKChP0QFNj8uXkbnr+yzW9i9J33o Ld5k6xP0XXVcOtWPaNNYXkDU26/Idx/2Ct7KyD4KrzjGGdDlqSkLpjpnrZwlFBmK wwo2ZVmfX3MvOzThnYK57l0k5ZAyx/FoGZ7XS6InV/pExqcYmcbRsFrToifzPK3q ccRPBnQ7UdSWM2jWfNDgVSfzSE3ankBwKvmqd1CpfdGeFyG3VLO3e8/cACp05eOB mwbF7U7CfbQLEE49iYL9Z7i2tDuuI5yWrFGCGX0Nb2JXl+FQos5sg152qlTvAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUBmlFZ5FeK7il6nqcDHTHN8ccfswwHwYDVR0j BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2 bmQ1dy5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzEzNTM2MmUzNjM3MmUzMTMy MzIyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMTMzMzYzNzM4Mzcucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BACcQ3owDQYJKoZIhvcNAQELBQADggEBAEi8D6I2v3ULTVVi4Y19mfEwMMBw4C1s TbCJMjXYkIgO6qtyFR4Z1QfCgNUIz5UO2JvdGWt2YG0+c11E2fa51z4eKholnIBI DQR63SzhlSy7vl4GM4rvVpZFziwGzwn9oJ4hcjodTURI1bLiEl+zwd06nJC+dFkR CDeI+VFC0wwPWPyk9SLVkujDOxS2t7A5oJrIXw3GjgQ7B6rw3t4PDTRMMVcI5RWV p83uk6o1DITKTefFq/isMr9Z5SN9HnlGOpJjnTyGq33cE3zbTkZc80/n+4pHZ+gn iIrGaijPE5wLzHVrp28VH1/8le9aD97+mDJmYQKf7D0IH4jjha+JgMU= -----END CERTIFICATE-----Generated at Mon Jan 19 14:28:28 2026 by rpki-client