This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/326131343a373538313a343831303a3a2f34342d3438203d3e20323135363734.roa File: 326131343a373538313a343831303a3a2f34342d3438203d3e20323135363734.roa (raw, json) Hash identifier: iVSqmJC3EENf/XVlR6YpWn7MgLMOJzCIs/ETJKcPCZ0= Subject key identifier: 2D:66:61:EB:C6:74:E3:5C:1E:9B:9A:07:44:B6:B0:F4:65:C2:18:15 Certificate issuer: /CN=8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C Certificate serial: 773A6C26AD16FEA51901F4019C8784BA9CD00E73 Authority key identifier: 8E:07:D3:1C:64:52:F7:A6:B2:4E:63:CD:DC:49:0E:12:E0:AF:B3:8C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/326131343a373538313a343831303a3a2f34342d3438203d3e20323135363734.roa Signing time: Mon 26 Jan 2026 11:01:31 +0000 ROA not before: Mon 26 Jan 2026 10:56:31 +0000 ROA not after: Mon 25 Jan 2027 11:01:31 +0000 asID: 215674 IP address blocks: 2a14:7581:4810::/44 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.crl rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 03 Feb 2026 06:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:3a:6c:26:ad:16:fe:a5:19:01:f4:01:9c:87:84:ba:9c:d0:0e:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C Validity Not Before: Jan 26 10:56:31 2026 GMT Not After : Jan 25 11:01:31 2027 GMT Subject: CN=2D6661EBC674E35C1E9B9A0744B6B0F465C21815 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:94:58:63:33:cd:a9:ea:29:07:15:77:55:25: bf:7a:03:7c:09:63:8e:01:5b:d7:51:b1:44:0d:3a: 99:89:74:a8:a1:b6:7c:9e:05:20:a2:7f:34:e8:e7: 79:67:2f:65:4f:3a:79:22:a3:ab:1a:b5:6f:a0:b8: 47:5a:11:ca:6b:25:b8:d6:05:81:65:c4:20:cc:1d: 93:fd:c6:dd:d2:31:da:4b:9b:62:86:54:7a:f6:bf: b4:3e:a4:c1:a2:e2:3a:ff:9c:80:57:f0:3e:b4:3a: f9:11:dc:74:0e:80:87:77:33:90:fb:b7:11:82:1e: 19:3c:a3:15:72:e1:dc:e7:84:2c:2e:5c:06:da:8f: 3d:d3:a6:ce:90:9e:c3:72:5c:0f:c8:c6:f9:dc:32: 51:f0:f5:c1:63:14:a7:38:da:f7:d8:f6:7c:02:21: 53:50:77:f3:d3:3f:69:c0:a8:61:24:6f:b8:00:4a: 17:64:6d:c1:5d:24:44:9b:5d:20:b4:fb:c1:d3:f2: 5b:3b:45:ea:2e:9a:2b:a1:5b:b0:a8:ea:3e:cc:89: ef:5f:31:24:00:38:e9:e1:46:bc:99:48:a3:19:ce: 09:47:a5:9a:47:0f:b1:81:8e:09:89:c4:c1:a3:0f: 44:2d:57:f6:b6:28:19:f6:1d:6c:48:ac:ca:44:eb: df:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:66:61:EB:C6:74:E3:5C:1E:9B:9A:07:44:B6:B0:F4:65:C2:18:15 X509v3 Authority Key Identifier: keyid:8E:07:D3:1C:64:52:F7:A6:B2:4E:63:CD:DC:49:0E:12:E0:AF:B3:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/326131343a373538313a343831303a3a2f34342d3438203d3e20323135363734.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:4810::/44 Signature Algorithm: sha256WithRSAEncryption 18:b2:69:b6:0c:f7:a9:db:a9:4f:a4:48:0c:46:47:44:6f:fd: 71:14:d1:27:ce:b2:06:6c:b3:a8:0f:ad:28:60:3f:96:a9:33: 4d:f9:0a:f6:fd:5c:09:b9:80:23:80:11:8e:15:6f:fe:d4:43: da:b2:f6:37:ce:36:b9:04:da:76:c9:84:2b:90:d0:02:61:7e: f2:ec:a3:17:ee:9f:41:42:e5:c6:d4:e3:f1:da:d3:18:01:b5: 09:4f:25:27:02:9c:ab:af:ac:c7:6f:86:c8:63:65:67:9c:b9: e8:51:3f:4c:f9:9c:70:ba:cf:b1:dc:89:0b:51:71:26:dc:41: 62:88:e2:8d:14:6b:5d:59:18:bf:68:09:75:d4:8c:86:ce:d2: 38:bb:fd:31:45:c3:0c:e7:df:4a:da:69:2b:45:85:92:f8:11: 25:21:d3:99:e9:7a:a7:2d:06:4b:23:a3:1f:44:bd:bf:cb:ab: 96:93:9f:fd:8d:ff:30:37:8b:15:9d:b4:a1:9b:7f:ec:f0:21: f9:68:34:ab:04:21:4b:25:34:6b:14:ce:02:ee:b0:2f:2f:8c: 18:56:c9:94:26:f2:b3:4a:8c:4f:06:b6:48:a0:e3:4a:78:8f: fa:a8:6c:62:a6:7f:f6:da:a0:30:10:96:76:86:5e:4d:91:b6: ce:f9:43:c3 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUdzpsJq0W/qUZAfQBnIeEupzQDnMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEUwN0QzMUM2NDUyRjdBNkIyNEU2M0NEREM0OTBFMTJF MEFGQjM4QzAeFw0yNjAxMjYxMDU2MzFaFw0yNzAxMjUxMTAxMzFaMDMxMTAvBgNV BAMTKDJENjY2MUVCQzY3NEUzNUMxRTlCOUEwNzQ0QjZCMEY0NjVDMjE4MTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNlFhjM82p6ikHFXdVJb96A3wJ Y44BW9dRsUQNOpmJdKihtnyeBSCifzTo53lnL2VPOnkio6satW+guEdaEcprJbjW BYFlxCDMHZP9xt3SMdpLm2KGVHr2v7Q+pMGi4jr/nIBX8D60OvkR3HQOgId3M5D7 txGCHhk8oxVy4dznhCwuXAbajz3Tps6QnsNyXA/IxvncMlHw9cFjFKc42vfY9nwC IVNQd/PTP2nAqGEkb7gAShdkbcFdJESbXSC0+8HT8ls7ReoumiuhW7Co6j7Mie9f MSQAOOnhRryZSKMZzglHpZpHD7GBjgmJxMGjD0QtV/a2KBn2HWxIrMpE69+3AgMB AAGjggKFMIICgTAdBgNVHQ4EFgQULWZh68Z041wem5oHRLaw9GXCGBUwHwYDVR0j BBgwFoAUjgfTHGRS96ayTmPN3EkOEuCvs4wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMzExZTQ3YzQtMDJmMC00NjU3LTkwMjItZDJiODNjZmY4 NzU1LzQvOEUwN0QzMUM2NDUyRjdBNkIyNEU2M0NEREM0OTBFMTJFMEFGQjM4Qy5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC84RTA3RDMxQzY0NTJGN0E2QjI0RTYzQ0RE QzQ5MEUxMkUwQUZCMzhDLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8zMTFlNDdjNC0wMmYwLTQ2NTctOTAyMi1kMmI4M2NmZjg3NTUvNC8zMjYxMzEz NDNhMzczNTM4MzEzYTM0MzgzMTMwM2EzYTJmMzQzNDJkMzQzODIwM2QzZTIwMzIz MTM1MzYzNzM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcEKhR1gUgQMA0GCSqGSIb3DQEBCwUAA4IBAQAY smm2DPep26lPpEgMRkdEb/1xFNEnzrIGbLOoD60oYD+WqTNN+Qr2/VwJuYAjgBGO FW/+1EPasvY3zja5BNp2yYQrkNACYX7y7KMX7p9BQuXG1OPx2tMYAbUJTyUnApyr r6zHb4bIY2VnnLnoUT9M+Zxwus+x3IkLUXEm3EFiiOKNFGtdWRi/aAl11IyGztI4 u/0xRcMM599K2mkrRYWS+BElIdOZ6XqnLQZLI6MfRL2/y6uWk5/9jf8wN4sVnbSh m3/s8CH5aDSrBCFLJTRrFM4C7rAvL4wYVsmUJvKzSoxPBrZIoONKeI/6qGxipn/2 2qAwEJZ2hl5NkbbO+UPD -----END CERTIFICATE-----Generated at Mon Feb 2 12:52:41 2026 by rpki-client