This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/326131343a373538313a343934303a3a2f34342d3438203d3e20313335363539.roa File: 326131343a373538313a343934303a3a2f34342d3438203d3e20313335363539.roa (raw, json) Hash identifier: 8xEoc2WbgF3aR/A4BmGA/5swJlN4eULU8RI9MBQf5A8= Subject key identifier: 61:31:E4:B4:BE:02:CC:28:F1:32:C6:A2:6F:F5:8F:0C:6B:E7:40:19 Certificate issuer: /CN=8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C Certificate serial: 15891D6D18B992448E181C8505FB5AEBC3CF1067 Authority key identifier: 8E:07:D3:1C:64:52:F7:A6:B2:4E:63:CD:DC:49:0E:12:E0:AF:B3:8C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/326131343a373538313a343934303a3a2f34342d3438203d3e20313335363539.roa Signing time: Sat 31 Jan 2026 22:01:31 +0000 ROA not before: Sat 31 Jan 2026 21:56:31 +0000 ROA not after: Sat 30 Jan 2027 22:01:31 +0000 asID: 135659 IP address blocks: 2a14:7581:4940::/44 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.crl rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 03 Feb 2026 06:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:89:1d:6d:18:b9:92:44:8e:18:1c:85:05:fb:5a:eb:c3:cf:10:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C Validity Not Before: Jan 31 21:56:31 2026 GMT Not After : Jan 30 22:01:31 2027 GMT Subject: CN=6131E4B4BE02CC28F132C6A26FF58F0C6BE74019 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:9a:8f:8f:84:30:e7:78:c1:57:f7:ef:df:ed: 16:47:f6:35:95:03:d0:7d:e5:6e:57:04:14:51:a2: b7:55:d1:1c:43:8f:3d:b0:be:a7:57:65:5c:d3:f9: 52:27:7a:d4:8b:2c:c9:77:58:73:d3:99:ee:2b:04: dd:3d:56:80:e3:d0:60:ea:a8:00:4b:21:78:0d:f6: aa:4c:2a:7d:6e:a2:f9:fe:01:9e:fa:99:6b:ef:7d: cc:bb:47:df:82:46:1d:ef:cf:4d:73:b1:30:23:5e: 5d:40:0d:98:d8:3e:ce:c9:55:d8:c9:6d:06:29:74: 36:15:6e:55:98:df:b5:7f:a5:9d:4b:4c:d9:ed:08: 56:cb:3f:d6:6e:50:4e:41:85:62:f6:33:2c:c5:17: 81:26:18:c9:d8:a8:69:0f:7b:fc:f9:41:69:7e:98: 52:7a:a9:92:f0:1c:8a:81:b5:ae:ff:ab:0a:41:a3: ed:6c:ba:4d:99:ac:d3:9e:52:34:68:40:90:89:c4: 90:58:56:0d:9c:37:c0:f8:78:d1:76:24:e3:d3:68: 04:92:9e:67:34:2a:1c:f8:5f:75:84:fe:2c:a5:13: a0:69:67:98:d9:25:59:ee:5b:b1:ad:ef:39:c9:20: ba:8e:fb:bf:ab:65:2d:52:a8:98:9f:7c:72:d1:fe: cd:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:31:E4:B4:BE:02:CC:28:F1:32:C6:A2:6F:F5:8F:0C:6B:E7:40:19 X509v3 Authority Key Identifier: keyid:8E:07:D3:1C:64:52:F7:A6:B2:4E:63:CD:DC:49:0E:12:E0:AF:B3:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/326131343a373538313a343934303a3a2f34342d3438203d3e20313335363539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:4940::/44 Signature Algorithm: sha256WithRSAEncryption 75:1e:2c:b3:9b:63:7d:b8:71:d3:59:26:07:24:38:d1:18:3e: 29:b0:e3:e7:dc:67:f9:82:dc:fd:c5:55:af:7f:ae:9e:e0:c1: 01:33:d2:a0:f2:32:4a:6b:1a:44:2a:eb:7d:77:9e:63:b8:d3: 75:0d:8e:3f:43:38:92:c8:b7:c0:00:2a:2c:2f:03:95:4d:65: b6:35:0a:a9:b1:89:39:a6:3b:b8:b6:55:34:40:b4:58:18:9d: d1:fb:75:78:02:3a:16:b2:c9:0a:63:b3:73:5e:4d:a6:c3:61: f1:19:24:c7:00:cf:0a:1a:f2:3a:de:b4:59:d1:56:9e:d3:89: 1b:00:2c:0c:18:fc:65:20:95:d5:17:83:15:f3:35:a4:47:08: e6:66:82:7f:e7:f9:74:f0:97:7a:54:a7:92:58:81:3c:7f:6b: 28:5d:74:34:e7:74:eb:3a:96:6c:a7:b2:eb:cb:ec:99:ec:6b: ea:57:46:26:79:62:82:f4:4b:64:76:ef:64:26:f4:90:f0:97: 21:6b:3a:3d:2d:01:85:92:b7:95:b3:03:dd:2c:79:3f:42:a8: 4c:bd:fe:97:80:de:70:e2:d8:73:f7:82:dc:4d:85:0c:2c:9b: 5f:a2:cc:f2:23:34:1b:5f:7a:96:0f:95:09:ed:6c:d6:d1:25: dc:d0:04:58 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUFYkdbRi5kkSOGByFBfta68PPEGcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEUwN0QzMUM2NDUyRjdBNkIyNEU2M0NEREM0OTBFMTJF MEFGQjM4QzAeFw0yNjAxMzEyMTU2MzFaFw0yNzAxMzAyMjAxMzFaMDMxMTAvBgNV BAMTKDYxMzFFNEI0QkUwMkNDMjhGMTMyQzZBMjZGRjU4RjBDNkJFNzQwMTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdmo+PhDDneMFX9+/f7RZH9jWV A9B95W5XBBRRordV0RxDjz2wvqdXZVzT+VInetSLLMl3WHPTme4rBN09VoDj0GDq qABLIXgN9qpMKn1uovn+AZ76mWvvfcy7R9+CRh3vz01zsTAjXl1ADZjYPs7JVdjJ bQYpdDYVblWY37V/pZ1LTNntCFbLP9ZuUE5BhWL2MyzFF4EmGMnYqGkPe/z5QWl+ mFJ6qZLwHIqBta7/qwpBo+1suk2ZrNOeUjRoQJCJxJBYVg2cN8D4eNF2JOPTaASS nmc0Khz4X3WE/iylE6BpZ5jZJVnuW7Gt7znJILqO+7+rZS1SqJiffHLR/s23AgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUYTHktL4CzCjxMsaib/WPDGvnQBkwHwYDVR0j BBgwFoAUjgfTHGRS96ayTmPN3EkOEuCvs4wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMzExZTQ3YzQtMDJmMC00NjU3LTkwMjItZDJiODNjZmY4 NzU1LzQvOEUwN0QzMUM2NDUyRjdBNkIyNEU2M0NEREM0OTBFMTJFMEFGQjM4Qy5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC84RTA3RDMxQzY0NTJGN0E2QjI0RTYzQ0RE QzQ5MEUxMkUwQUZCMzhDLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8zMTFlNDdjNC0wMmYwLTQ2NTctOTAyMi1kMmI4M2NmZjg3NTUvNC8zMjYxMzEz NDNhMzczNTM4MzEzYTM0MzkzNDMwM2EzYTJmMzQzNDJkMzQzODIwM2QzZTIwMzEz MzM1MzYzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcEKhR1gUlAMA0GCSqGSIb3DQEBCwUAA4IBAQB1 Hiyzm2N9uHHTWSYHJDjRGD4psOPn3Gf5gtz9xVWvf66e4MEBM9Kg8jJKaxpEKut9 d55juNN1DY4/QziSyLfAACosLwOVTWW2NQqpsYk5pju4tlU0QLRYGJ3R+3V4AjoW sskKY7NzXk2mw2HxGSTHAM8KGvI63rRZ0Vae04kbACwMGPxlIJXVF4MV8zWkRwjm ZoJ/5/l08Jd6VKeSWIE8f2soXXQ053TrOpZsp7Lry+yZ7GvqV0YmeWKC9Etkdu9k JvSQ8Jchazo9LQGFkreVswPdLHk/QqhMvf6XgN5w4thz94LcTYUMLJtfoszyIzQb X3qWD5UJ7WzW0SXc0ARY -----END CERTIFICATE-----Generated at Mon Feb 2 12:53:46 2026 by rpki-client