This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3c8e4e11-3aca-4305-acd4-f05e6c909115/1/326131343a373538313a383030303a3a2f33362d3430203d3e203530333835.roa File: 326131343a373538313a383030303a3a2f33362d3430203d3e203530333835.roa (raw, json) Hash identifier: Em5jZEM0Z1oJ1UofjCQGnCq9Pql9aI7sK4Y5UkTysUg= Subject key identifier: B4:45:D9:35:A1:E0:EC:EC:3F:D3:8F:25:25:B7:99:5D:F5:21:46:E5 Certificate issuer: /CN=0874801164DC95F0AB9CCD4BD304A3EF78E9F39B Certificate serial: 3BA9C6A96B311FF7EF194DAAF8AF97E4CE8D8E08 Authority key identifier: 08:74:80:11:64:DC:95:F0:AB:9C:CD:4B:D3:04:A3:EF:78:E9:F3:9B Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/0874801164DC95F0AB9CCD4BD304A3EF78E9F39B.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3c8e4e11-3aca-4305-acd4-f05e6c909115/1/326131343a373538313a383030303a3a2f33362d3430203d3e203530333835.roa Signing time: Sat 10 Jan 2026 18:04:52 +0000 ROA not before: Sat 10 Jan 2026 17:59:52 +0000 ROA not after: Sat 09 Jan 2027 18:04:52 +0000 asID: 50385 IP address blocks: 2a14:7581:8000::/36 maxlen: 40 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/3c8e4e11-3aca-4305-acd4-f05e6c909115/1/0874801164DC95F0AB9CCD4BD304A3EF78E9F39B.crl rsync://rsync.paas.rpki.ripe.net/repository/3c8e4e11-3aca-4305-acd4-f05e6c909115/1/0874801164DC95F0AB9CCD4BD304A3EF78E9F39B.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/0874801164DC95F0AB9CCD4BD304A3EF78E9F39B.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 21 Jan 2026 11:26:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:a9:c6:a9:6b:31:1f:f7:ef:19:4d:aa:f8:af:97:e4:ce:8d:8e:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0874801164DC95F0AB9CCD4BD304A3EF78E9F39B Validity Not Before: Jan 10 17:59:52 2026 GMT Not After : Jan 9 18:04:52 2027 GMT Subject: CN=B445D935A1E0ECEC3FD38F2525B7995DF52146E5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:09:a4:65:1a:3b:ed:77:01:b9:21:f1:b0:42: fd:2b:ae:a2:8e:d2:97:af:66:33:1c:c3:96:b0:b0: 21:11:88:c9:78:20:c8:00:c1:8a:31:ef:99:c1:d4: 54:e2:db:10:84:45:bc:65:bc:85:8e:50:99:f2:a8: 34:a7:ad:aa:52:ef:9f:f2:4a:19:e0:c1:6e:b7:8e: 67:05:c7:f5:43:3b:0e:06:81:23:1a:19:7c:13:08: 7b:de:7e:9c:29:cf:f4:89:35:5d:e0:03:d8:21:5a: af:6a:47:62:b1:ad:d0:55:f4:75:29:a3:c6:11:9f: 8e:67:3f:2d:6f:c0:ef:ea:96:cc:7d:9e:bc:47:73: 45:98:8e:26:dc:cb:d8:e5:59:38:32:0f:40:97:22: cb:cd:a2:c3:95:db:70:ee:95:ea:f7:eb:2b:66:25: 59:38:9f:44:ec:95:ff:04:da:62:6c:f3:c9:74:c3: 03:7f:6c:dc:76:45:96:c6:a5:6a:aa:3b:8f:1f:1f: b1:6c:1e:2a:f2:f9:7e:46:1d:94:52:57:32:89:7e: 04:09:43:7c:04:24:de:f1:40:a8:d1:8c:5e:3a:59: 04:05:23:7b:7e:4f:92:e6:9c:f3:ac:10:a6:04:fe: aa:06:dd:82:63:43:0a:16:1a:dd:6c:50:d1:4e:cd: b6:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:45:D9:35:A1:E0:EC:EC:3F:D3:8F:25:25:B7:99:5D:F5:21:46:E5 X509v3 Authority Key Identifier: keyid:08:74:80:11:64:DC:95:F0:AB:9C:CD:4B:D3:04:A3:EF:78:E9:F3:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/3c8e4e11-3aca-4305-acd4-f05e6c909115/1/0874801164DC95F0AB9CCD4BD304A3EF78E9F39B.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/0874801164DC95F0AB9CCD4BD304A3EF78E9F39B.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3c8e4e11-3aca-4305-acd4-f05e6c909115/1/326131343a373538313a383030303a3a2f33362d3430203d3e203530333835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:8000::/36 Signature Algorithm: sha256WithRSAEncryption d6:9a:59:c2:26:90:d8:a3:34:f6:7d:30:1b:e0:1f:1d:85:66: 1e:db:52:f5:a7:45:ba:6a:9d:e2:10:9b:de:c2:e6:aa:d2:fc: dd:d0:b5:0f:4b:e8:5f:16:d2:59:ce:9c:45:e6:cc:12:d3:da: db:8b:31:fe:48:5e:3b:34:a5:a6:50:42:81:1d:70:f9:ed:cb: 1f:35:8e:0b:4e:95:40:ee:58:eb:07:c3:34:6e:eb:18:58:64: 2f:80:57:ea:60:c9:6d:ce:34:72:67:ce:06:2a:34:16:8e:30: f0:ad:43:a0:0e:38:27:ae:bf:13:ba:ae:35:27:ff:d8:d4:04: 1a:fb:f2:b6:6b:40:a2:19:d3:f7:b8:3f:25:8f:34:a6:bb:bf: a4:79:ca:b3:e1:fc:be:c7:1f:9a:76:32:cf:ce:38:b5:db:56: 39:e3:05:ed:af:a1:a1:c8:7b:e6:0a:46:cf:99:49:f2:4b:55: 4b:98:06:d0:f8:df:6e:92:b9:c6:c8:3d:5e:f2:ee:84:54:fc: 29:7c:bd:d3:f1:4a:22:8c:bc:6f:3d:d4:1b:66:59:38:ef:d7: 29:9f:2b:53:cb:c8:58:bb:42:18:2a:81:5a:85:f5:65:c6:36: e3:0d:51:5a:d5:af:e8:db:31:aa:85:cb:ce:a3:f0:b2:82:e7: 6f:dc:40:a6 -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgIUO6nGqWsxH/fvGU2q+K+X5M6NjggwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDg3NDgwMTE2NERDOTVGMEFCOUNDRDRCRDMwNEEzRUY3 OEU5RjM5QjAeFw0yNjAxMTAxNzU5NTJaFw0yNzAxMDkxODA0NTJaMDMxMTAvBgNV BAMTKEI0NDVEOTM1QTFFMEVDRUMzRkQzOEYyNTI1Qjc5OTVERjUyMTQ2RTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDiCaRlGjvtdwG5IfGwQv0rrqKO 0pevZjMcw5awsCERiMl4IMgAwYox75nB1FTi2xCERbxlvIWOUJnyqDSnrapS75/y ShngwW63jmcFx/VDOw4GgSMaGXwTCHvefpwpz/SJNV3gA9ghWq9qR2KxrdBV9HUp o8YRn45nPy1vwO/qlsx9nrxHc0WYjibcy9jlWTgyD0CXIsvNosOV23Duler36ytm JVk4n0Tslf8E2mJs88l0wwN/bNx2RZbGpWqqO48fH7FsHiry+X5GHZRSVzKJfgQJ Q3wEJN7xQKjRjF46WQQFI3t+T5LmnPOsEKYE/qoG3YJjQwoWGt1sUNFOzbaNAgMB AAGjggKCMIICfjAdBgNVHQ4EFgQUtEXZNaHg7Ow/048lJbeZXfUhRuUwHwYDVR0j BBgwFoAUCHSAEWTclfCrnM1L0wSj73jp85swDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvM2M4ZTRlMTEtM2FjYS00MzA1LWFjZDQtZjA1ZTZjOTA5 MTE1LzEvMDg3NDgwMTE2NERDOTVGMEFCOUNDRDRCRDMwNEEzRUY3OEU5RjM5Qi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8wODc0ODAxMTY0REM5NUYwQUI5Q0NENEJE MzA0QTNFRjc4RTlGMzlCLmNlcjCBtQYIKwYBBQUHAQsEgagwgaUwgaIGCCsGAQUF BzALhoGVcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8zYzhlNGUxMS0zYWNhLTQzMDUtYWNkNC1mMDVlNmM5MDkxMTUvMS8zMjYxMzEz NDNhMzczNTM4MzEzYTM4MzAzMDMwM2EzYTJmMzMzNjJkMzQzMDIwM2QzZTIwMzUz MDMzMzgzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcB BwEB/wQSMBAwDgQCAAIwCAMGBCoUdYGAMA0GCSqGSIb3DQEBCwUAA4IBAQDWmlnC JpDYozT2fTAb4B8dhWYe21L1p0W6ap3iEJvewuaq0vzd0LUPS+hfFtJZzpxF5swS 09rbizH+SF47NKWmUEKBHXD57csfNY4LTpVA7ljrB8M0busYWGQvgFfqYMltzjRy Z84GKjQWjjDwrUOgDjgnrr8Tuq41J//Y1AQa+/K2a0CiGdP3uD8ljzSmu7+kecqz 4fy+xx+adjLPzji121Y54wXtr6GhyHvmCkbPmUnyS1VLmAbQ+N9ukrnGyD1e8u6E VPwpfL3T8UoijLxvPdQbZlk479cpnytTy8hYu0IYKoFahfVlxjbjDVFa1a/o2zGq hcvOo/Cygudv3ECm -----END CERTIFICATE-----Generated at Wed Jan 21 01:11:44 2026 by rpki-client