This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/71476d62-9cfa-4871-a2d9-fadf5781c11b/2/326131343a316563373a663030653a3a2f34382d3438203d3e203336383332.roa File: 326131343a316563373a663030653a3a2f34382d3438203d3e203336383332.roa (raw, json) Hash identifier: NchO6Xk6Xarz93hp9H8fOtN5l3Sk4YKm9dDl0QiIwEY= Subject key identifier: 56:86:69:18:49:57:78:5A:19:11:F7:E9:88:43:1E:DE:C1:B4:56:FC Certificate issuer: /CN=1DBD1D47FD8E4574C8421743C9CC5F0EF83E0E71 Certificate serial: 073737A48DF2DB83AF814B36A5933E06D8E9B123 Authority key identifier: 1D:BD:1D:47:FD:8E:45:74:C8:42:17:43:C9:CC:5F:0E:F8:3E:0E:71 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/1DBD1D47FD8E4574C8421743C9CC5F0EF83E0E71.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/71476d62-9cfa-4871-a2d9-fadf5781c11b/2/326131343a316563373a663030653a3a2f34382d3438203d3e203336383332.roa Signing time: Sun 07 Dec 2025 18:21:39 +0000 ROA not before: Sun 07 Dec 2025 18:16:39 +0000 ROA not after: Sun 06 Dec 2026 18:21:39 +0000 asID: 36832 IP address blocks: 2a14:1ec7:f00e::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/71476d62-9cfa-4871-a2d9-fadf5781c11b/2/1DBD1D47FD8E4574C8421743C9CC5F0EF83E0E71.crl rsync://rsync.paas.rpki.ripe.net/repository/71476d62-9cfa-4871-a2d9-fadf5781c11b/2/1DBD1D47FD8E4574C8421743C9CC5F0EF83E0E71.mft rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/1DBD1D47FD8E4574C8421743C9CC5F0EF83E0E71.cer rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/3134EE987E08D8B5583FEEF621A03150C4F35434.crl rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/3134EE987E08D8B5583FEEF621A03150C4F35434.mft rsync://rpki.ripe.net/repository/DEFAULT/MTTumH4I2LVYP-72IaAxUMTzVDQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 13 Dec 2025 07:39:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:37:37:a4:8d:f2:db:83:af:81:4b:36:a5:93:3e:06:d8:e9:b1:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1DBD1D47FD8E4574C8421743C9CC5F0EF83E0E71 Validity Not Before: Dec 7 18:16:39 2025 GMT Not After : Dec 6 18:21:39 2026 GMT Subject: CN=568669184957785A1911F7E988431EDEC1B456FC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:71:f9:5b:f6:8a:48:67:a7:5a:1b:4d:26:98: 11:64:c8:6c:f2:dd:08:57:3a:dc:9a:97:f4:62:7d: 7b:a7:c3:00:f0:44:91:4e:97:ba:37:89:e5:cf:52: b6:68:c1:2a:9e:01:af:e8:7d:75:96:07:08:83:e7: fe:99:61:2f:09:93:d0:6a:45:61:d3:80:14:17:5e: 69:6f:a4:72:28:71:44:44:5c:b8:d5:a4:3b:58:f6: 53:ee:0a:b8:ab:1a:3e:44:80:d8:a5:9d:ba:b7:7a: f9:e7:8c:68:92:f6:4f:82:2b:8b:01:37:b8:26:c9: 0b:94:07:39:ba:7d:1f:dd:13:c9:62:44:c0:b0:2e: e9:2a:32:4b:3f:e3:e2:4a:81:c8:ad:cb:a1:ba:15: e1:5a:73:0a:6c:46:f9:ea:cc:1f:32:3b:9b:d4:40: a7:f6:08:ef:2d:97:26:a4:b1:ab:60:67:ae:d4:c6: aa:bb:fb:4a:85:4d:b0:ff:59:78:44:6a:f8:78:f7: 92:10:e1:c7:3d:ea:d3:05:e9:f3:b9:73:d1:fb:7e: f0:f9:3e:6f:43:67:93:90:76:56:00:a8:65:a1:89: 92:2a:7e:d1:a3:28:e8:4d:4b:97:94:81:3d:f2:25: 1d:90:4f:2a:c5:17:79:da:65:ad:db:41:e8:db:49: 26:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:86:69:18:49:57:78:5A:19:11:F7:E9:88:43:1E:DE:C1:B4:56:FC X509v3 Authority Key Identifier: keyid:1D:BD:1D:47:FD:8E:45:74:C8:42:17:43:C9:CC:5F:0E:F8:3E:0E:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/71476d62-9cfa-4871-a2d9-fadf5781c11b/2/1DBD1D47FD8E4574C8421743C9CC5F0EF83E0E71.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/1DBD1D47FD8E4574C8421743C9CC5F0EF83E0E71.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/71476d62-9cfa-4871-a2d9-fadf5781c11b/2/326131343a316563373a663030653a3a2f34382d3438203d3e203336383332.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:1ec7:f00e::/48 Signature Algorithm: sha256WithRSAEncryption c1:e6:55:fe:7f:3a:95:ed:35:2d:aa:d0:cf:39:a9:ce:1b:81: ec:58:3f:a3:4e:8f:4c:7e:38:74:de:c5:71:2e:88:ff:4b:fc: ce:12:ec:02:a7:c3:dd:9f:4b:b0:1e:c2:55:a9:cd:5d:b0:47: fa:1a:05:39:71:48:e4:d9:85:31:69:48:9d:62:6b:5a:d8:b3: 57:d1:f4:19:b7:11:31:f8:69:ed:ec:f7:fa:3a:8e:0e:11:dd: 1c:8b:de:53:fa:57:3a:38:61:cc:7e:f0:39:6f:74:73:cc:69: 73:5b:d0:61:b1:49:8d:0f:f1:7b:e6:c3:15:8b:73:74:82:b4: c9:34:7a:29:8f:b0:80:60:d5:fd:c9:63:fe:03:64:df:29:e3: c0:ce:74:b3:34:32:8a:54:bc:6e:80:96:45:e4:29:4b:f7:7f: ba:02:7a:92:ef:50:ea:46:6f:83:66:65:51:93:83:b1:a5:3d: 4d:a0:8b:67:22:d6:11:ea:a9:2c:b7:fd:c8:17:13:d3:40:f1: 6c:f3:0f:17:dc:6a:e0:69:22:8e:31:74:16:f2:a6:0e:6a:ec: c0:98:e9:4a:20:07:2d:8e:b7:ca:f9:13:24:4e:89:6c:84:93: af:a2:f4:46:30:6e:79:22:15:d8:b4:ec:c4:ee:9f:59:93:9a: 70:fb:d5:72 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgIUBzc3pI3y24OvgUs2pZM+BtjpsSMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMURCRDFENDdGRDhFNDU3NEM4NDIxNzQzQzlDQzVGMEVG ODNFMEU3MTAeFw0yNTEyMDcxODE2MzlaFw0yNjEyMDYxODIxMzlaMDMxMTAvBgNV BAMTKDU2ODY2OTE4NDk1Nzc4NUExOTExRjdFOTg4NDMxRURFQzFCNDU2RkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEcflb9opIZ6daG00mmBFkyGzy 3QhXOtyal/RifXunwwDwRJFOl7o3ieXPUrZowSqeAa/ofXWWBwiD5/6ZYS8Jk9Bq RWHTgBQXXmlvpHIocUREXLjVpDtY9lPuCrirGj5EgNilnbq3evnnjGiS9k+CK4sB N7gmyQuUBzm6fR/dE8liRMCwLukqMks/4+JKgcity6G6FeFacwpsRvnqzB8yO5vU QKf2CO8tlyaksatgZ67Uxqq7+0qFTbD/WXhEavh495IQ4cc96tMF6fO5c9H7fvD5 Pm9DZ5OQdlYAqGWhiZIqftGjKOhNS5eUgT3yJR2QTyrFF3naZa3bQejbSSYVAgMB AAGjggKDMIICfzAdBgNVHQ4EFgQUVoZpGElXeFoZEffpiEMe3sG0VvwwHwYDVR0j BBgwFoAUHb0dR/2ORXTIQhdDycxfDvg+DnEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNzE0NzZkNjItOWNmYS00ODcxLWEyZDktZmFkZjU3ODFj MTFiLzIvMURCRDFENDdGRDhFNDU3NEM4NDIxNzQzQzlDQzVGMEVGODNFMEU3MS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8xYTNiYjkzZi05OGE0LTRj N2UtYTBlMS04MDU3YTRmMDg2YzkvMC8xREJEMUQ0N0ZEOEU0NTc0Qzg0MjE3NDND OUNDNUYwRUY4M0UwRTcxLmNlcjCBtQYIKwYBBQUHAQsEgagwgaUwgaIGCCsGAQUF BzALhoGVcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS83MTQ3NmQ2Mi05Y2ZhLTQ4NzEtYTJkOS1mYWRmNTc4MWMxMWIvMi8zMjYxMzEz NDNhMzE2NTYzMzczYTY2MzAzMDY1M2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzMz NjM4MzMzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcB BwEB/wQTMBEwDwQCAAIwCQMHACoUHsfwDjANBgkqhkiG9w0BAQsFAAOCAQEAweZV /n86le01LarQzzmpzhuB7Fg/o06PTH44dN7FcS6I/0v8zhLsAqfD3Z9LsB7CVanN XbBH+hoFOXFI5NmFMWlInWJrWtizV9H0GbcRMfhp7ez3+jqODhHdHIveU/pXOjhh zH7wOW90c8xpc1vQYbFJjQ/xe+bDFYtzdIK0yTR6KY+wgGDV/clj/gNk3ynjwM50 szQyilS8boCWReQpS/d/ugJ6ku9Q6kZvg2ZlUZODsaU9TaCLZyLWEeqpLLf9yBcT 00DxbPMPF9xq4GkijjF0FvKmDmrswJjpSiAHLY63yvkTJE6JbISTr6L0RjBueSIV 2LTsxO6fWZOacPvVcg== -----END CERTIFICATE-----Generated at Fri Dec 12 11:27:56 2025 by rpki-client