This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3135362e36372e3132352e302f32342d3234203d3e20313336373837.roa File: 3135362e36372e3132352e302f32342d3234203d3e20313336373837.roa (raw, json) Hash identifier: oUrecb6PXL7yN7MJobRiWPItbJPNrA/hOr7Yc/QGInw= Subject key identifier: A7:0C:55:AD:60:54:EB:A7:55:09:30:BD:8A:1F:41:6E:70:1D:A5:E3 Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Certificate serial: 69632961AEEC8553F033513D28033F05CD27EDE2 Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3135362e36372e3132352e302f32342d3234203d3e20313336373837.roa Signing time: Mon 29 Dec 2025 09:50:41 +0000 ROA not before: Mon 29 Dec 2025 09:45:41 +0000 ROA not after: Mon 28 Dec 2026 09:50:41 +0000 asID: 136787 IP address blocks: 156.67.125.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 01:05:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:63:29:61:ae:ec:85:53:f0:33:51:3d:28:03:3f:05:cd:27:ed:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Validity Not Before: Dec 29 09:45:41 2025 GMT Not After : Dec 28 09:50:41 2026 GMT Subject: CN=A70C55AD6054EBA7550930BD8A1F416E701DA5E3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:81:c4:64:43:20:41:61:e2:6b:26:fb:56:b9: 31:81:41:9b:8d:f7:4d:be:53:fb:6f:97:bf:b8:5d: fa:ba:1f:05:be:cf:e4:2b:6a:37:20:e0:72:76:e6: 65:1b:fa:90:0d:dd:e5:b4:6e:39:c4:7b:8a:dd:40: 31:cf:d1:9a:a5:8d:8c:0c:21:06:9c:b2:87:29:b6: 62:a4:78:a9:15:8e:9f:19:8a:ed:8b:30:80:e8:01: 33:68:31:bf:38:04:1b:72:01:0c:3e:2f:0c:82:89: 38:3e:3e:4d:d1:7d:ef:35:fe:9a:f6:79:fe:99:e5: 0b:6e:d5:ef:18:35:9b:6b:63:e2:ca:9c:2b:c4:2c: fa:d8:a7:54:22:92:c4:62:c3:35:49:8e:16:ea:57: c1:84:fd:af:f4:70:bb:72:68:e3:ca:b7:72:50:d6: 16:cc:37:a0:02:d3:60:5e:73:1a:3b:d6:85:5e:3c: 70:df:8b:bd:7e:9b:74:4c:6e:48:21:61:c1:3e:bd: a4:25:3e:0b:5a:db:a7:61:80:3e:04:db:d1:cf:8a: 15:d3:1f:56:a7:ec:90:ff:d6:de:7a:5f:4e:96:79: 39:95:73:81:5c:fa:c6:86:49:e7:7a:f9:05:36:d5: fb:7b:56:03:43:b8:f0:31:fc:00:c8:29:a9:b7:2b: 36:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:0C:55:AD:60:54:EB:A7:55:09:30:BD:8A:1F:41:6E:70:1D:A5:E3 X509v3 Authority Key Identifier: keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3135362e36372e3132352e302f32342d3234203d3e20313336373837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 156.67.125.0/24 Signature Algorithm: sha256WithRSAEncryption 32:89:eb:6b:b6:9d:17:29:ea:b5:13:a1:a4:f4:35:32:68:ff: fb:61:2c:0d:d1:c2:74:14:a6:31:73:df:af:9d:8b:75:61:cb: 60:bb:6c:a0:7c:56:67:46:a9:9b:d1:54:9a:9e:0b:d5:64:71: 64:8c:86:3d:a5:4c:eb:fa:17:87:7f:cb:06:67:ca:3c:1f:ba: 81:dd:67:18:75:fd:51:39:22:7e:43:b5:9d:3c:ae:35:26:07: 50:35:e2:b3:a9:b2:60:ae:ca:a7:e8:3a:e0:61:e7:d5:16:55: d6:c4:4a:8f:7c:8e:2b:c9:81:6b:1b:f3:c8:3a:cb:c0:0e:57: 09:24:6f:76:8e:68:af:69:3d:a6:85:64:ff:dc:a0:48:64:89: 3a:43:58:19:95:52:80:7d:8c:99:72:bc:8a:ac:48:55:d2:cf: a6:a4:14:95:da:88:ca:02:b4:8c:32:d0:41:0b:e3:99:10:eb: 27:a6:49:85:97:88:11:03:8f:10:13:f2:cf:95:a9:36:0c:6a: 08:0a:e0:ac:7e:93:f3:cc:e8:c2:fd:cf:f5:26:9f:dd:62:ba: f6:ea:e3:eb:81:a8:dd:82:69:b0:48:78:0e:df:51:dd:32:56: 0a:52:de:f9:7e:e8:46:3d:3f:36:04:76:28:60:2f:9a:70:59: 7b:d8:37:be -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUaWMpYa7shVPwM1E9KAM/Bc0n7eIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0 ZWE3Nzc5YzAeFw0yNTEyMjkwOTQ1NDFaFw0yNjEyMjgwOTUwNDFaMDMxMTAvBgNV BAMTKEE3MEM1NUFENjA1NEVCQTc1NTA5MzBCRDhBMUY0MTZFNzAxREE1RTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDogcRkQyBBYeJrJvtWuTGBQZuN 902+U/tvl7+4Xfq6HwW+z+Qrajcg4HJ25mUb+pAN3eW0bjnEe4rdQDHP0ZqljYwM IQacsocptmKkeKkVjp8Ziu2LMIDoATNoMb84BBtyAQw+LwyCiTg+Pk3Rfe81/pr2 ef6Z5Qtu1e8YNZtrY+LKnCvELPrYp1QiksRiwzVJjhbqV8GE/a/0cLtyaOPKt3JQ 1hbMN6AC02Becxo71oVePHDfi71+m3RMbkghYcE+vaQlPgta26dhgD4E29HPihXT H1an7JD/1t56X06WeTmVc4Fc+saGSed6+QU21ft7VgNDuPAx/ADIKam3KzbxAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUpwxVrWBU66dVCTC9ih9BbnAdpeMwHwYDVR0j BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2 bmQ1dy5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzEzNTM2MmUzNjM3MmUzMTMy MzUyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMTMzMzYzNzM4Mzcucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BACcQ30wDQYJKoZIhvcNAQELBQADggEBADKJ62u2nRcp6rUToaT0NTJo//thLA3R wnQUpjFz36+di3Vhy2C7bKB8VmdGqZvRVJqeC9VkcWSMhj2lTOv6F4d/ywZnyjwf uoHdZxh1/VE5In5DtZ08rjUmB1A14rOpsmCuyqfoOuBh59UWVdbESo98jivJgWsb 88g6y8AOVwkkb3aOaK9pPaaFZP/coEhkiTpDWBmVUoB9jJlyvIqsSFXSz6akFJXa iMoCtIwy0EEL45kQ6yemSYWXiBEDjxAT8s+VqTYMaggK4Kx+k/PM6ML9z/Umn91i uvbq4+uBqN2CabBIeA7fUd0yVgpS3vl+6EY9PzYEdihgL5pwWXvYN74= -----END CERTIFICATE-----Generated at Mon Jan 19 14:28:30 2026 by rpki-client