This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3135362e36372e38362e302f32342d3234203d3e20313336373837.roa File: 3135362e36372e38362e302f32342d3234203d3e20313336373837.roa (raw, json) Hash identifier: qM8nrCViCuDgJQSmSEwm9BhYwWI0V0TP6+3D9nBDKU4= Subject key identifier: 61:C0:18:EB:E9:65:1F:87:AA:AF:FD:FE:DA:F8:41:70:03:BA:FA:EF Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Certificate serial: 35149ADABFB8916EFE3E717E373309E69AC96D01 Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3135362e36372e38362e302f32342d3234203d3e20313336373837.roa Signing time: Sat 03 Jan 2026 22:51:15 +0000 ROA not before: Sat 03 Jan 2026 22:46:15 +0000 ROA not after: Sat 02 Jan 2027 22:51:15 +0000 asID: 136787 IP address blocks: 156.67.86.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 14:41:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:14:9a:da:bf:b8:91:6e:fe:3e:71:7e:37:33:09:e6:9a:c9:6d:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Validity Not Before: Jan 3 22:46:15 2026 GMT Not After : Jan 2 22:51:15 2027 GMT Subject: CN=61C018EBE9651F87AAAFFDFEDAF8417003BAFAEF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:22:22:c6:26:d2:14:3b:d0:2b:0d:66:54:3a: d5:ca:8c:72:6b:f9:db:c4:22:c2:71:d6:56:3a:1d: 2b:e2:37:e3:f6:44:96:04:41:f1:f9:6d:73:6d:9f: e4:ab:8d:97:02:41:9b:eb:63:27:f9:22:2b:5d:a1: df:ca:ed:80:0f:72:b0:53:c7:24:a5:d8:d5:71:4a: 3a:07:6a:8b:04:43:a0:df:35:31:79:a1:88:0f:d6: 81:1c:0d:f1:23:68:e4:57:a1:97:06:1e:4e:23:ed: 10:bd:90:fb:e0:df:ba:4c:be:bf:07:de:c4:e7:41: dd:1d:d0:83:57:48:a8:68:85:9b:2c:67:35:24:8f: 6f:22:d3:0d:c3:ef:7a:93:de:b9:2d:6a:66:17:43: 43:d5:59:e1:c7:ab:61:bd:b6:64:6d:c0:98:67:43: 5b:5c:7a:2f:d9:05:00:87:68:b2:15:bf:59:f0:f7: f9:60:36:74:6b:e0:5f:0a:fe:a4:1d:21:82:67:63: 28:56:a0:60:55:2d:aa:36:29:41:1c:e3:63:64:d2: 4a:c6:a6:95:fd:dd:c3:af:4b:96:a7:13:3c:a6:42: 35:b2:97:4a:e0:3d:81:e7:1d:a8:3c:b8:99:91:f7: 95:92:8e:b7:fc:6f:bc:ef:ab:6a:cf:e4:e6:42:3f: e0:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:C0:18:EB:E9:65:1F:87:AA:AF:FD:FE:DA:F8:41:70:03:BA:FA:EF X509v3 Authority Key Identifier: keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3135362e36372e38362e302f32342d3234203d3e20313336373837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 156.67.86.0/24 Signature Algorithm: sha256WithRSAEncryption 0e:12:54:ca:22:91:b1:3f:91:31:07:f8:66:23:93:ba:81:51: 16:fc:23:55:31:e1:cb:a5:9c:0a:4f:e7:47:79:9c:62:ff:54: f1:90:45:e6:bc:ee:03:5b:29:fc:2c:7f:91:57:e3:ed:7f:10: 9d:c3:f3:d3:f0:e5:9d:ae:9c:b7:be:2d:bb:69:9b:84:99:a7: 30:cf:d7:c2:c1:cb:13:71:76:df:1a:31:d5:b5:cf:3f:c3:10: 46:80:88:f2:26:b2:8d:cb:fe:8f:f9:a1:dd:d9:2b:c7:ac:21: f2:52:ab:05:1d:58:00:0b:cc:0b:0d:47:08:0c:2c:b9:72:9b: 5d:0d:d0:32:83:aa:bd:be:b4:d2:c3:a3:be:a9:63:d4:a4:cf: c9:b1:fe:d7:be:25:f9:01:65:db:c2:6e:e5:41:52:f8:60:7a: 0d:e2:fb:e7:42:4e:17:1f:cb:ed:5c:3d:ca:aa:ac:be:d4:b7: fc:49:d5:23:00:46:30:5f:07:ee:29:39:f9:31:93:9e:6f:8c: 0a:27:2d:01:8b:24:62:d6:cc:16:cd:46:d8:3d:79:9f:eb:8f: 70:a9:da:5a:7e:ea:0f:c1:05:7e:1a:03:6e:da:6a:7b:20:5a: 78:9c:3c:60:36:95:38:a8:83:d2:8c:92:89:5d:52:f9:c0:04: 99:9d:ea:d6 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUNRSa2r+4kW7+PnF+NzMJ5prJbQEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0 ZWE3Nzc5YzAeFw0yNjAxMDMyMjQ2MTVaFw0yNzAxMDIyMjUxMTVaMDMxMTAvBgNV BAMTKDYxQzAxOEVCRTk2NTFGODdBQUFGRkRGRURBRjg0MTcwMDNCQUZBRUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsIiLGJtIUO9ArDWZUOtXKjHJr +dvEIsJx1lY6HSviN+P2RJYEQfH5bXNtn+SrjZcCQZvrYyf5Iitdod/K7YAPcrBT xySl2NVxSjoHaosEQ6DfNTF5oYgP1oEcDfEjaORXoZcGHk4j7RC9kPvg37pMvr8H 3sTnQd0d0INXSKhohZssZzUkj28i0w3D73qT3rktamYXQ0PVWeHHq2G9tmRtwJhn Q1tcei/ZBQCHaLIVv1nw9/lgNnRr4F8K/qQdIYJnYyhWoGBVLao2KUEc42Nk0krG ppX93cOvS5anEzymQjWyl0rgPYHnHag8uJmR95WSjrf8b7zvq2rP5OZCP+AVAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUYcAY6+llH4eqr/3+2vhBcAO6+u8wHwYDVR0j BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2 bmQ1dy5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzEzNTM2MmUzNjM3MmUzODM2 MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzEzMzM2MzczODM3LnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA nENWMA0GCSqGSIb3DQEBCwUAA4IBAQAOElTKIpGxP5ExB/hmI5O6gVEW/CNVMeHL pZwKT+dHeZxi/1TxkEXmvO4DWyn8LH+RV+PtfxCdw/PT8OWdrpy3vi27aZuEmacw z9fCwcsTcXbfGjHVtc8/wxBGgIjyJrKNy/6P+aHd2SvHrCHyUqsFHVgAC8wLDUcI DCy5cptdDdAyg6q9vrTSw6O+qWPUpM/Jsf7XviX5AWXbwm7lQVL4YHoN4vvnQk4X H8vtXD3Kqqy+1Lf8SdUjAEYwXwfuKTn5MZOeb4wKJy0BiyRi1swWzUbYPXmf649w qdpafuoPwQV+GgNu2mp7IFp4nDxgNpU4qIPSjJKJXVL5wASZnerW -----END CERTIFICATE-----Generated at Tue Jan 27 05:47:23 2026 by rpki-client