This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/326131343a373538313a343835303a3a2f34342d3438203d3e20323135333739.roa File: 326131343a373538313a343835303a3a2f34342d3438203d3e20323135333739.roa (raw, json) Hash identifier: MBbahVlOUY0BFTONMtnmzy3HTHvtjPISBdqoM0Cyb4U= Subject key identifier: 29:14:C4:22:0C:F3:16:D1:B3:1F:88:58:B5:77:36:A3:29:FF:8F:B2 Certificate issuer: /CN=8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C Certificate serial: 5E09A7788A0A98A39B569960110F1603196E0FFB Authority key identifier: 8E:07:D3:1C:64:52:F7:A6:B2:4E:63:CD:DC:49:0E:12:E0:AF:B3:8C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/326131343a373538313a343835303a3a2f34342d3438203d3e20323135333739.roa Signing time: Thu 29 Jan 2026 16:01:31 +0000 ROA not before: Thu 29 Jan 2026 15:56:31 +0000 ROA not after: Thu 28 Jan 2027 16:01:31 +0000 asID: 215379 IP address blocks: 2a14:7581:4850::/44 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.crl rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 02 Feb 2026 16:50:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:09:a7:78:8a:0a:98:a3:9b:56:99:60:11:0f:16:03:19:6e:0f:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C Validity Not Before: Jan 29 15:56:31 2026 GMT Not After : Jan 28 16:01:31 2027 GMT Subject: CN=2914C4220CF316D1B31F8858B57736A329FF8FB2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:d3:24:e5:f9:fa:8d:03:7a:ad:06:fe:a3:50: 40:33:59:c7:9c:c7:6e:09:e1:45:29:93:6f:a2:a5: 64:1d:b4:d7:e4:5f:b2:e0:63:2b:cd:3d:03:a1:22: a9:2b:2e:df:8f:31:3e:68:f0:a2:6e:8a:8c:ea:b3: 0d:94:fe:4b:20:0a:ca:2e:30:e1:33:b2:8c:19:87: 61:f9:47:ee:2d:bf:76:ac:50:b6:ba:d1:10:bc:4d: 40:d6:a0:18:be:40:d8:8c:85:e6:a6:56:f1:6e:a5: f5:09:ea:68:d2:95:6e:9b:93:c8:8a:47:cf:30:fd: 4a:59:a2:3b:09:c7:eb:23:b6:d4:a4:a3:1a:96:0b: 7a:65:66:92:f8:a8:0e:f5:61:7e:e7:25:d4:81:f9: 41:1c:4a:0e:8e:21:d9:c3:a5:e7:97:28:08:53:93: 1c:1f:52:47:82:22:03:7d:73:c2:b3:e2:2f:48:e8: 2f:5f:b6:60:38:32:b0:d7:70:95:22:a6:bf:65:4c: 25:8a:95:81:53:88:ea:a7:9f:69:0d:aa:7e:5a:a3: 62:2a:c7:bb:1a:fe:64:88:1f:4a:85:1e:d3:17:10: e8:30:8e:61:44:2e:29:01:6a:75:06:53:7d:af:9e: b1:9f:ba:89:03:ca:07:af:f4:8f:f2:bf:cb:0b:f8: 88:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:14:C4:22:0C:F3:16:D1:B3:1F:88:58:B5:77:36:A3:29:FF:8F:B2 X509v3 Authority Key Identifier: keyid:8E:07:D3:1C:64:52:F7:A6:B2:4E:63:CD:DC:49:0E:12:E0:AF:B3:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/326131343a373538313a343835303a3a2f34342d3438203d3e20323135333739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:4850::/44 Signature Algorithm: sha256WithRSAEncryption 6c:8c:83:1d:00:ab:a2:58:4e:78:3b:52:66:83:04:e5:a5:df: a5:21:71:c2:99:bd:cf:e2:81:d7:d7:a7:4e:0f:de:25:3b:70: f9:b3:fa:0a:c6:cd:9c:a8:10:48:5a:ce:97:b5:23:b6:7f:d0: 29:18:01:d7:a1:04:4b:b2:5a:0b:17:12:d5:5f:5b:48:ae:aa: bb:d0:72:ea:ee:c1:f4:70:96:67:3b:b6:1b:83:9c:97:97:9a: 35:3f:a2:21:c0:53:d9:b1:39:d9:8f:e5:91:0c:ec:be:d8:ee: 3d:e1:75:13:b4:c6:f0:4d:3b:f4:29:2d:a3:49:bd:a9:84:46: 18:79:61:d0:d0:30:c7:32:a9:88:82:7b:27:91:2e:72:0e:30: fa:fb:15:dd:3f:15:3a:07:30:2d:1d:71:45:03:e3:b8:39:85: db:cd:62:d2:dc:b9:ca:e1:e7:35:9c:d1:30:0e:cf:12:b3:39: 23:9e:ea:1d:52:56:c0:03:1d:a7:0b:f0:34:e8:36:c6:e2:16: 3e:c0:86:72:d6:91:b9:83:48:f8:59:f0:d9:a3:41:e2:fe:ea: 0f:ce:e3:22:e4:96:bc:fb:1c:37:b3:d7:40:92:e0:19:c0:4b: 78:52:56:cc:c7:5e:e3:5f:3f:e7:90:d8:d2:e5:bd:c8:a6:20: 49:57:d6:57 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUXgmneIoKmKObVplgEQ8WAxluD/swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEUwN0QzMUM2NDUyRjdBNkIyNEU2M0NEREM0OTBFMTJF MEFGQjM4QzAeFw0yNjAxMjkxNTU2MzFaFw0yNzAxMjgxNjAxMzFaMDMxMTAvBgNV BAMTKDI5MTRDNDIyMENGMzE2RDFCMzFGODg1OEI1NzczNkEzMjlGRjhGQjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC90yTl+fqNA3qtBv6jUEAzWcec x24J4UUpk2+ipWQdtNfkX7LgYyvNPQOhIqkrLt+PMT5o8KJuiozqsw2U/ksgCsou MOEzsowZh2H5R+4tv3asULa60RC8TUDWoBi+QNiMheamVvFupfUJ6mjSlW6bk8iK R88w/UpZojsJx+sjttSkoxqWC3plZpL4qA71YX7nJdSB+UEcSg6OIdnDpeeXKAhT kxwfUkeCIgN9c8Kz4i9I6C9ftmA4MrDXcJUipr9lTCWKlYFTiOqnn2kNqn5ao2Iq x7sa/mSIH0qFHtMXEOgwjmFELikBanUGU32vnrGfuokDygev9I/yv8sL+IilAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUKRTEIgzzFtGzH4hYtXc2oyn/j7IwHwYDVR0j BBgwFoAUjgfTHGRS96ayTmPN3EkOEuCvs4wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMzExZTQ3YzQtMDJmMC00NjU3LTkwMjItZDJiODNjZmY4 NzU1LzQvOEUwN0QzMUM2NDUyRjdBNkIyNEU2M0NEREM0OTBFMTJFMEFGQjM4Qy5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC84RTA3RDMxQzY0NTJGN0E2QjI0RTYzQ0RE QzQ5MEUxMkUwQUZCMzhDLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8zMTFlNDdjNC0wMmYwLTQ2NTctOTAyMi1kMmI4M2NmZjg3NTUvNC8zMjYxMzEz NDNhMzczNTM4MzEzYTM0MzgzNTMwM2EzYTJmMzQzNDJkMzQzODIwM2QzZTIwMzIz MTM1MzMzNzM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcEKhR1gUhQMA0GCSqGSIb3DQEBCwUAA4IBAQBs jIMdAKuiWE54O1JmgwTlpd+lIXHCmb3P4oHX16dOD94lO3D5s/oKxs2cqBBIWs6X tSO2f9ApGAHXoQRLsloLFxLVX1tIrqq70HLq7sH0cJZnO7Ybg5yXl5o1P6IhwFPZ sTnZj+WRDOy+2O494XUTtMbwTTv0KS2jSb2phEYYeWHQ0DDHMqmIgnsnkS5yDjD6 +xXdPxU6BzAtHXFFA+O4OYXbzWLS3LnK4ec1nNEwDs8SszkjnuodUlbAAx2nC/A0 6DbG4hY+wIZy1pG5g0j4WfDZo0Hi/uoPzuMi5Ja8+xw3s9dAkuAZwEt4UlbMx17j Xz/nkNjS5b3IpiBJV9ZX -----END CERTIFICATE-----Generated at Mon Feb 2 08:18:06 2026 by rpki-client