This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/326131343a373538313a343833303a3a2f34342d3438203d3e20323135323231.roa File: 326131343a373538313a343833303a3a2f34342d3438203d3e20323135323231.roa (raw, json) Hash identifier: Yud6VyEfzu6bUn3ZGGTJfpmlFiOU2yKLbFt5IH7TKH4= Subject key identifier: 28:D9:25:02:DA:FD:C7:12:EE:0C:4A:D3:AA:F2:56:DD:74:E2:0A:1F Certificate issuer: /CN=8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C Certificate serial: 1B6C8BEA9DBCF4FD2196EE3D40B121B4C58A0EAB Authority key identifier: 8E:07:D3:1C:64:52:F7:A6:B2:4E:63:CD:DC:49:0E:12:E0:AF:B3:8C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/326131343a373538313a343833303a3a2f34342d3438203d3e20323135323231.roa Signing time: Wed 28 Jan 2026 13:01:31 +0000 ROA not before: Wed 28 Jan 2026 12:56:31 +0000 ROA not after: Wed 27 Jan 2027 13:01:31 +0000 asID: 215221 IP address blocks: 2a14:7581:4830::/44 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.crl rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 03 Feb 2026 06:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:6c:8b:ea:9d:bc:f4:fd:21:96:ee:3d:40:b1:21:b4:c5:8a:0e:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C Validity Not Before: Jan 28 12:56:31 2026 GMT Not After : Jan 27 13:01:31 2027 GMT Subject: CN=28D92502DAFDC712EE0C4AD3AAF256DD74E20A1F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:14:9d:b9:47:6d:b3:ef:14:20:fe:1a:85:80: 96:37:c4:18:ce:3d:ff:3e:30:90:12:b5:05:89:f9: 91:e1:58:ed:2b:e8:78:d5:07:62:0d:ec:30:3c:60: 94:63:35:00:8f:75:db:a7:16:5a:f3:51:e5:ea:34: 8f:b3:67:2c:26:e6:52:98:20:89:93:db:94:3b:15: 94:3c:4a:a4:eb:2f:85:f2:6d:d2:bc:96:ea:72:e1: 87:b2:18:97:d1:13:32:33:3e:01:ff:f2:13:40:1a: f8:f3:66:cd:6f:5f:8a:03:44:89:a8:5e:59:e9:c8: 44:a8:18:b6:f4:69:13:12:20:48:a0:6c:8e:7a:42: a5:61:81:60:af:4b:72:50:5c:f1:80:2d:48:27:43: ab:0e:db:37:61:93:a5:30:16:24:af:65:89:27:9d: 6a:e6:f3:cd:47:ab:8b:79:11:cd:e1:04:cb:b7:80: 12:85:8e:78:46:e6:e7:01:85:b9:79:54:83:f6:58: b4:0a:42:19:3c:ca:db:90:d5:85:42:28:f2:c8:ac: 3b:d8:12:78:82:09:68:4a:58:81:4c:b6:1b:79:b5: 51:ec:70:de:d6:65:87:2d:8a:cd:e1:5e:d5:a4:a3: b9:60:7f:09:e4:82:4f:58:e9:6b:1a:62:2a:fd:d7: 92:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:D9:25:02:DA:FD:C7:12:EE:0C:4A:D3:AA:F2:56:DD:74:E2:0A:1F X509v3 Authority Key Identifier: keyid:8E:07:D3:1C:64:52:F7:A6:B2:4E:63:CD:DC:49:0E:12:E0:AF:B3:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/326131343a373538313a343833303a3a2f34342d3438203d3e20323135323231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:4830::/44 Signature Algorithm: sha256WithRSAEncryption ab:e8:f9:e0:bf:70:09:1a:38:90:08:03:19:d6:d5:dc:27:9f: f7:20:b9:4d:c2:24:79:dc:fb:06:7c:ed:29:fb:3e:e0:22:ce: 02:70:ac:f5:28:96:d6:83:5b:18:ab:d3:de:03:c8:8c:73:0f: 87:77:33:07:df:51:b0:b3:1b:96:a3:54:e1:39:63:0d:49:f5: 0d:b1:58:0f:0c:3a:bf:ef:6e:59:78:ef:5b:99:0f:8f:42:27: e5:87:65:f5:13:4d:31:9c:bf:ef:63:d3:72:fd:03:d1:00:c4: 72:89:9f:f1:01:ca:6a:f5:86:63:fa:28:a4:c9:70:6a:c9:59: d9:f8:ba:24:05:e6:4a:a3:ad:dd:84:af:2e:f5:67:18:9f:6c: 73:06:fc:17:c7:d5:71:68:7a:bf:16:79:42:04:c7:73:e7:48: 12:1d:f2:77:40:42:fb:51:fe:be:9e:d1:82:b8:25:c4:e5:1a: aa:d8:70:e2:e6:e3:a7:43:7d:e9:ad:df:2d:4d:89:22:f1:6f: 1c:fb:b3:c5:59:ec:ea:ad:79:0e:b9:69:c0:04:c4:f3:58:fc: f9:76:2f:16:a5:36:20:f4:13:5f:cb:15:bd:ff:01:a0:eb:f8: da:81:22:73:4c:fa:ca:95:9e:fb:2f:e8:d9:0b:de:71:3e:cd: 98:fa:24:8d -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUG2yL6p289P0hlu49QLEhtMWKDqswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEUwN0QzMUM2NDUyRjdBNkIyNEU2M0NEREM0OTBFMTJF MEFGQjM4QzAeFw0yNjAxMjgxMjU2MzFaFw0yNzAxMjcxMzAxMzFaMDMxMTAvBgNV BAMTKDI4RDkyNTAyREFGREM3MTJFRTBDNEFEM0FBRjI1NkRENzRFMjBBMUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTFJ25R22z7xQg/hqFgJY3xBjO Pf8+MJAStQWJ+ZHhWO0r6HjVB2IN7DA8YJRjNQCPddunFlrzUeXqNI+zZywm5lKY IImT25Q7FZQ8SqTrL4XybdK8lupy4YeyGJfREzIzPgH/8hNAGvjzZs1vX4oDRImo XlnpyESoGLb0aRMSIEigbI56QqVhgWCvS3JQXPGALUgnQ6sO2zdhk6UwFiSvZYkn nWrm881Hq4t5Ec3hBMu3gBKFjnhG5ucBhbl5VIP2WLQKQhk8ytuQ1YVCKPLIrDvY EniCCWhKWIFMtht5tVHscN7WZYctis3hXtWko7lgfwnkgk9Y6WsaYir915IZAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUKNklAtr9xxLuDErTqvJW3XTiCh8wHwYDVR0j BBgwFoAUjgfTHGRS96ayTmPN3EkOEuCvs4wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMzExZTQ3YzQtMDJmMC00NjU3LTkwMjItZDJiODNjZmY4 NzU1LzQvOEUwN0QzMUM2NDUyRjdBNkIyNEU2M0NEREM0OTBFMTJFMEFGQjM4Qy5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC84RTA3RDMxQzY0NTJGN0E2QjI0RTYzQ0RE QzQ5MEUxMkUwQUZCMzhDLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8zMTFlNDdjNC0wMmYwLTQ2NTctOTAyMi1kMmI4M2NmZjg3NTUvNC8zMjYxMzEz NDNhMzczNTM4MzEzYTM0MzgzMzMwM2EzYTJmMzQzNDJkMzQzODIwM2QzZTIwMzIz MTM1MzIzMjMxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcEKhR1gUgwMA0GCSqGSIb3DQEBCwUAA4IBAQCr 6Pngv3AJGjiQCAMZ1tXcJ5/3ILlNwiR53PsGfO0p+z7gIs4CcKz1KJbWg1sYq9Pe A8iMcw+HdzMH31GwsxuWo1ThOWMNSfUNsVgPDDq/725ZeO9bmQ+PQiflh2X1E00x nL/vY9Ny/QPRAMRyiZ/xAcpq9YZj+iikyXBqyVnZ+LokBeZKo63dhK8u9WcYn2xz BvwXx9VxaHq/FnlCBMdz50gSHfJ3QEL7Uf6+ntGCuCXE5Rqq2HDi5uOnQ33prd8t TYki8W8c+7PFWezqrXkOuWnABMTzWPz5di8WpTYg9BNfyxW9/wGg6/jagSJzTPrK lZ77L+jZC95xPs2Y+iSN -----END CERTIFICATE-----Generated at Mon Feb 2 14:28:03 2026 by rpki-client