This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a33623a3a2f34382d3438203d3e20323135353839.roa File: 326131313a323963303a33623a3a2f34382d3438203d3e20323135353839.roa (raw, json) Hash identifier: wkmLy52Tzhc4oxPWWg5dCLlO31P6SyuTwx8nYRRuah4= Subject key identifier: 78:0C:F3:2D:2D:74:1F:79:A5:12:C5:D3:E3:FA:22:B7:6F:EA:09:BE Certificate issuer: /CN=e96d85996e9354d1005e44c781d38adcf1082873 Certificate serial: 1733552A4ED4446D82E42BE3252678CAC4311E67 Authority key identifier: E9:6D:85:99:6E:93:54:D1:00:5E:44:C7:81:D3:8A:DC:F1:08:28:73 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a33623a3a2f34382d3438203d3e20323135353839.roa Signing time: Tue 09 Dec 2025 18:22:43 +0000 ROA not before: Tue 09 Dec 2025 18:17:43 +0000 ROA not after: Tue 08 Dec 2026 18:22:43 +0000 asID: 215589 IP address blocks: 2a11:29c0:3b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.crl rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.mft rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 10 Dec 2025 20:41:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:33:55:2a:4e:d4:44:6d:82:e4:2b:e3:25:26:78:ca:c4:31:1e:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e96d85996e9354d1005e44c781d38adcf1082873 Validity Not Before: Dec 9 18:17:43 2025 GMT Not After : Dec 8 18:22:43 2026 GMT Subject: CN=780CF32D2D741F79A512C5D3E3FA22B76FEA09BE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:f4:cf:27:79:8a:9c:3d:0d:1f:18:8d:a1:8b: de:03:7f:ee:1e:3f:52:64:4e:13:c5:f1:86:28:c3: 32:aa:c5:1e:cb:78:c6:8d:50:12:3f:5d:5e:d9:0d: 75:85:ef:39:5d:db:fa:6f:0f:bf:4a:6e:03:77:8c: fe:4d:10:9e:65:6e:22:2f:1a:67:d4:31:04:ca:2e: 45:7d:67:43:61:e2:2e:2f:4f:62:ac:f2:8c:05:60: 96:0a:98:ad:a3:29:77:7d:bf:52:ae:10:f9:0a:0e: 1c:15:cc:7f:7d:37:08:6e:77:8e:ad:7d:99:18:9f: e0:e5:ea:33:b8:b8:34:b2:74:4d:08:a0:ab:3f:4c: 53:ff:13:58:c7:ee:5e:ac:79:1c:f8:e6:b8:ae:60: 86:31:de:98:66:c8:3b:96:f7:da:bd:d5:65:c8:79: 78:25:56:4d:48:0a:8c:77:d4:f6:07:30:e2:5f:f9: 2a:17:07:dd:18:b7:05:3e:35:d3:11:ff:6b:92:ed: 51:6b:3b:bb:50:28:26:04:b4:af:79:7d:66:ab:20: 37:2b:67:7e:7b:ed:d2:c3:ff:09:f6:99:03:dc:6d: 16:f5:2e:f0:dc:0a:be:c5:9f:77:d1:7f:0b:c4:08: 53:c9:a9:16:30:7a:07:52:03:cc:1e:46:f1:52:77: b1:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:0C:F3:2D:2D:74:1F:79:A5:12:C5:D3:E3:FA:22:B7:6F:EA:09:BE X509v3 Authority Key Identifier: keyid:E9:6D:85:99:6E:93:54:D1:00:5E:44:C7:81:D3:8A:DC:F1:08:28:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a33623a3a2f34382d3438203d3e20323135353839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a11:29c0:3b::/48 Signature Algorithm: sha256WithRSAEncryption 94:e6:89:5d:9b:03:8e:c4:c3:cc:2d:0c:fa:b7:a8:ee:bf:52: fa:49:27:c7:69:15:a0:e9:72:22:ee:d8:a6:a6:0b:0c:ff:2a: c9:70:3f:be:20:b0:21:78:e4:41:1b:29:ed:0c:36:3a:0f:16: e2:4c:fd:e5:da:1d:fd:07:f9:1d:de:74:34:da:e6:ba:3d:de: fb:8e:99:b2:95:33:70:50:b8:79:2d:bd:7d:14:21:c9:97:fb: 12:fc:fe:1d:ae:12:32:93:52:09:ce:b9:fb:37:6a:74:5e:d3: 99:df:87:db:a5:64:fa:fa:7b:46:e7:06:c3:b8:4d:27:5e:48: d8:44:1b:cf:45:fe:66:d3:c6:63:fe:55:b1:4d:96:24:e7:c7: c8:c9:47:ab:6c:ca:31:ac:7c:11:d9:16:f5:92:32:b1:4c:66: f0:ef:d4:ee:2c:d0:8d:e7:08:79:2b:67:0b:33:51:f5:78:bb: 52:c8:6d:7c:5a:df:c0:1d:66:d5:8b:db:82:fe:11:2d:c7:c9: 51:6f:13:f4:24:6f:b8:56:d7:3c:da:c3:a0:2e:40:ea:a5:5b: 63:bc:fb:af:c9:a0:05:e2:6f:89:79:aa:b6:11:33:c8:98:31: 97:1a:84:04:c2:01:68:00:5c:12:9b:01:e5:a8:6f:f8:c7:e6: cb:c6:07:2f -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgIUFzNVKk7URG2C5CvjJSZ4ysQxHmcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoZTk2ZDg1OTk2ZTkzNTRkMTAwNWU0NGM3ODFkMzhhZGNm MTA4Mjg3MzAeFw0yNTEyMDkxODE3NDNaFw0yNjEyMDgxODIyNDNaMDMxMTAvBgNV BAMTKDc4MENGMzJEMkQ3NDFGNzlBNTEyQzVEM0UzRkEyMkI3NkZFQTA5QkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDS9M8neYqcPQ0fGI2hi94Df+4e P1JkThPF8YYowzKqxR7LeMaNUBI/XV7ZDXWF7zld2/pvD79KbgN3jP5NEJ5lbiIv GmfUMQTKLkV9Z0Nh4i4vT2Ks8owFYJYKmK2jKXd9v1KuEPkKDhwVzH99Nwhud46t fZkYn+Dl6jO4uDSydE0IoKs/TFP/E1jH7l6seRz45riuYIYx3phmyDuW99q91WXI eXglVk1ICox31PYHMOJf+SoXB90YtwU+NdMR/2uS7VFrO7tQKCYEtK95fWarIDcr Z3577dLD/wn2mQPcbRb1LvDcCr7Fn3fRfwvECFPJqRYwegdSA8weRvFSd7FfAgMB AAGjggJGMIICQjAdBgNVHQ4EFgQUeAzzLS10H3mlEsXT4/oit2/qCb4wHwYDVR0j BBgwFoAU6W2FmW6TVNEAXkTHgdOK3PEIKHMwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvODExMTViYzYtMTBmNi00YWYzLWJhMDktOGI2ODdhNTZm YmY1LzAvRTk2RDg1OTk2RTkzNTREMTAwNUU0NEM3ODFEMzhBRENGMTA4Mjg3My5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzZXMkZtVzZUVk5FQVhrVEhnZE9LM1BF SUtITS5jZXIwgbMGCCsGAQUFBwELBIGmMIGjMIGgBggrBgEFBQcwC4aBk3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvODExMTViYzYt MTBmNi00YWYzLWJhMDktOGI2ODdhNTZmYmY1LzAvMzI2MTMxMzEzYTMyMzk2MzMw M2EzMzYyM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIzMTM1MzUzODM5LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIA AjAJAwcAKhEpwAA7MA0GCSqGSIb3DQEBCwUAA4IBAQCU5oldmwOOxMPMLQz6t6ju v1L6SSfHaRWg6XIi7timpgsM/yrJcD++ILAheORBGyntDDY6DxbiTP3l2h39B/kd 3nQ02ua6Pd77jpmylTNwULh5Lb19FCHJl/sS/P4drhIyk1IJzrn7N2p0XtOZ34fb pWT6+ntG5wbDuE0nXkjYRBvPRf5m08Zj/lWxTZYk58fIyUerbMoxrHwR2Rb1kjKx TGbw79TuLNCN5wh5K2cLM1H1eLtSyG18Wt/AHWbVi9uC/hEtx8lRbxP0JG+4Vtc8 2sOgLkDqpVtjvPuvyaAF4m+Jeaq2ETPImDGXGoQEwgFoAFwSmwHlqG/4x+bLxgcv -----END CERTIFICATE-----Generated at Wed Dec 10 10:51:18 2025 by rpki-client