This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/326131343a316563373a666666663a3a2f34382d3438203d3e20323030313739.roa File: 326131343a316563373a666666663a3a2f34382d3438203d3e20323030313739.roa (raw, json) Hash identifier: XuQKj6LnTQvpgGqSnWZyBkgZgiMu2bqG4KDi3+Nxn60= Subject key identifier: B4:FC:BD:37:C0:04:CD:AB:75:46:42:B4:39:D3:30:A5:31:43:20:B5 Certificate issuer: /CN=3134ee987e08d8b5583feef621a03150c4f35434 Certificate serial: 09BEACC0E7A74B4701143EA62A047356962A8C9A Authority key identifier: 31:34:EE:98:7E:08:D8:B5:58:3F:EE:F6:21:A0:31:50:C4:F3:54:34 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MTTumH4I2LVYP-72IaAxUMTzVDQ.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/326131343a316563373a666666663a3a2f34382d3438203d3e20323030313739.roa Signing time: Fri 16 Jan 2026 18:55:49 +0000 ROA not before: Fri 16 Jan 2026 18:50:49 +0000 ROA not after: Fri 15 Jan 2027 18:55:49 +0000 asID: 200179 IP address blocks: 2a14:1ec7:ffff::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/3134EE987E08D8B5583FEEF621A03150C4F35434.crl rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/3134EE987E08D8B5583FEEF621A03150C4F35434.mft rsync://rpki.ripe.net/repository/DEFAULT/MTTumH4I2LVYP-72IaAxUMTzVDQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 09:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:be:ac:c0:e7:a7:4b:47:01:14:3e:a6:2a:04:73:56:96:2a:8c:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3134ee987e08d8b5583feef621a03150c4f35434 Validity Not Before: Jan 16 18:50:49 2026 GMT Not After : Jan 15 18:55:49 2027 GMT Subject: CN=B4FCBD37C004CDAB754642B439D330A5314320B5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:e2:15:db:32:33:55:1a:72:2f:76:4c:e5:de: 75:f8:d8:4f:b5:b8:55:cf:5c:ca:c2:93:2f:a7:55: 0b:39:73:5c:d0:6d:fb:b4:f4:7d:2d:be:d8:38:60: 73:ae:c8:b2:a7:68:86:45:72:6e:2f:25:8c:aa:60: c8:f8:5d:59:7a:d7:83:f0:fc:32:a3:84:6f:9f:81: 4f:f7:ca:f6:30:2d:54:99:25:fa:6a:f2:f2:48:b2: 50:be:07:1b:c7:3e:34:ba:c0:d9:85:c1:3a:33:8b: 6d:f3:2f:b6:52:2b:a5:4e:30:fe:2e:db:58:a0:c4: 67:76:66:d7:0e:f9:3a:64:e9:10:cc:70:c1:93:32: a2:c6:ff:d2:26:a3:9c:b2:f1:32:94:2a:25:c0:62: 3e:bf:58:0b:ab:6c:b9:1f:55:48:37:11:10:73:6f: 69:e4:d0:8f:4a:af:62:39:17:33:15:7f:e1:c7:96: 9f:96:cc:53:2a:7b:40:a5:b8:0d:88:78:3a:ef:4b: 73:20:dd:ce:72:d0:4f:72:aa:ab:16:ff:ec:59:de: ac:fd:9d:18:ed:b4:f4:0d:54:a7:a4:6e:ae:eb:50: d1:02:fb:b9:66:16:cc:a7:8b:88:63:5a:65:74:ad: 3c:06:ad:ca:24:e2:b8:0b:b1:fa:66:fe:c1:9b:6b: 38:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:FC:BD:37:C0:04:CD:AB:75:46:42:B4:39:D3:30:A5:31:43:20:B5 X509v3 Authority Key Identifier: keyid:31:34:EE:98:7E:08:D8:B5:58:3F:EE:F6:21:A0:31:50:C4:F3:54:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/3134EE987E08D8B5583FEEF621A03150C4F35434.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MTTumH4I2LVYP-72IaAxUMTzVDQ.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/326131343a316563373a666666663a3a2f34382d3438203d3e20323030313739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:1ec7:ffff::/48 Signature Algorithm: sha256WithRSAEncryption 20:ac:c1:9f:b4:36:96:ad:4b:4c:5b:b3:df:48:0b:91:10:25: d5:d5:35:89:3d:55:2a:82:5b:48:9f:9e:1a:d9:15:1b:cc:40: 90:d5:6a:27:bb:fe:bf:2e:74:b7:ce:3e:94:06:78:96:bf:4d: 90:bf:cd:43:22:5b:61:ee:f4:32:8f:7f:3e:b2:a7:54:26:cc: 17:56:d2:d8:42:7e:4f:6f:1f:e8:9d:49:98:88:3e:2c:f2:71: c1:70:db:f5:be:ef:82:f9:db:73:7f:bd:6f:b8:fc:7e:96:16: 82:b1:c8:00:ce:e3:41:1d:dc:b8:6e:c9:93:59:e4:54:ac:76: 13:99:ad:5e:78:96:f8:67:9b:03:29:bf:5b:6c:d4:13:34:1a: 46:57:98:ef:72:d9:24:52:db:b6:24:d3:01:e0:ac:40:af:18: 48:55:e9:1c:e8:d5:e6:ea:4f:ad:8a:4d:a1:65:e5:19:bd:3a: ff:17:01:3e:2c:05:d1:4b:42:e7:d4:18:35:63:43:c7:3c:dd: 4b:b2:6f:c4:ae:f5:2a:d1:9f:2d:ba:55:00:7e:e6:5b:19:33: 3c:54:f6:80:94:fe:2d:45:46:d5:3e:5a:c1:2f:71:de:c6:cd: d4:d0:e9:a9:0b:04:8f:2e:5d:b9:bd:ad:64:79:3a:a4:98:0c: 95:0b:85:a7 -----BEGIN CERTIFICATE----- MIIFQDCCBCigAwIBAgIUCb6swOenS0cBFD6mKgRzVpYqjJowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzEzNGVlOTg3ZTA4ZDhiNTU4M2ZlZWY2MjFhMDMxNTBj NGYzNTQzNDAeFw0yNjAxMTYxODUwNDlaFw0yNzAxMTUxODU1NDlaMDMxMTAvBgNV BAMTKEI0RkNCRDM3QzAwNENEQUI3NTQ2NDJCNDM5RDMzMEE1MzE0MzIwQjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJ4hXbMjNVGnIvdkzl3nX42E+1 uFXPXMrCky+nVQs5c1zQbfu09H0tvtg4YHOuyLKnaIZFcm4vJYyqYMj4XVl614Pw /DKjhG+fgU/3yvYwLVSZJfpq8vJIslC+BxvHPjS6wNmFwTozi23zL7ZSK6VOMP4u 21igxGd2ZtcO+Tpk6RDMcMGTMqLG/9Imo5yy8TKUKiXAYj6/WAurbLkfVUg3ERBz b2nk0I9Kr2I5FzMVf+HHlp+WzFMqe0CluA2IeDrvS3Mg3c5y0E9yqqsW/+xZ3qz9 nRjttPQNVKekbq7rUNEC+7lmFsyni4hjWmV0rTwGrcok4rgLsfpm/sGbazhpAgMB AAGjggJKMIICRjAdBgNVHQ4EFgQUtPy9N8AEzat1RkK0OdMwpTFDILUwHwYDVR0j BBgwFoAUMTTumH4I2LVYP+72IaAxUMTzVDQwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMWEzYmI5M2YtOThhNC00YzdlLWEwZTEtODA1N2E0ZjA4 NmM5LzAvMzEzNEVFOTg3RTA4RDhCNTU4M0ZFRUY2MjFBMDMxNTBDNEYzNTQzNC5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL01UVHVtSDRJMkxWWVAtNzJJYUF4VU1U elZEUS5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMWEzYmI5M2Yt OThhNC00YzdlLWEwZTEtODA1N2E0ZjA4NmM5LzAvMzI2MTMxMzQzYTMxNjU2MzM3 M2E2NjY2NjY2NjNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzAzMDMxMzczOS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACoUHsf//zANBgkqhkiG9w0BAQsFAAOCAQEAIKzBn7Q2lq1LTFuz 30gLkRAl1dU1iT1VKoJbSJ+eGtkVG8xAkNVqJ7v+vy50t84+lAZ4lr9NkL/NQyJb Ye70Mo9/PrKnVCbMF1bS2EJ+T28f6J1JmIg+LPJxwXDb9b7vgvnbc3+9b7j8fpYW grHIAM7jQR3cuG7Jk1nkVKx2E5mtXniW+GebAym/W2zUEzQaRleY73LZJFLbtiTT AeCsQK8YSFXpHOjV5upPrYpNoWXlGb06/xcBPiwF0UtC59QYNWNDxzzdS7JvxK71 KtGfLbpVAH7mWxkzPFT2gJT+LUVG1T5awS9x3sbN1NDpqQsEjy5dub2tZHk6pJgM lQuFpw== -----END CERTIFICATE-----Generated at Wed Jan 21 14:16:09 2026 by rpki-client