This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a34313a3a2f34382d3438203d3e20323135343534.roa File: 326131313a323963303a34313a3a2f34382d3438203d3e20323135343534.roa (raw, json) Hash identifier: BDADhiES3zBsa0/+IgW5Gu1qz+7SMpUfN7mmg0cS4O8= Subject key identifier: FC:96:3F:F5:2D:D6:92:96:3E:06:F2:B2:42:45:D2:C6:B2:EE:E7:9D Certificate issuer: /CN=e96d85996e9354d1005e44c781d38adcf1082873 Certificate serial: 5BD69C40E26C3761656A80A90FB3939E860B3149 Authority key identifier: E9:6D:85:99:6E:93:54:D1:00:5E:44:C7:81:D3:8A:DC:F1:08:28:73 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a34313a3a2f34382d3438203d3e20323135343534.roa Signing time: Tue 23 Dec 2025 11:22:43 +0000 ROA not before: Tue 23 Dec 2025 11:17:43 +0000 ROA not after: Tue 22 Dec 2026 11:22:43 +0000 asID: 215454 IP address blocks: 2a11:29c0:41::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.crl rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.mft rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 15:35:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:d6:9c:40:e2:6c:37:61:65:6a:80:a9:0f:b3:93:9e:86:0b:31:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e96d85996e9354d1005e44c781d38adcf1082873 Validity Not Before: Dec 23 11:17:43 2025 GMT Not After : Dec 22 11:22:43 2026 GMT Subject: CN=FC963FF52DD692963E06F2B24245D2C6B2EEE79D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:b0:14:69:5c:fb:44:d1:90:8d:8c:c6:e4:1f: 62:92:e9:23:6e:ee:fd:e9:60:dd:6f:e7:b5:14:bc: 40:48:9b:c3:83:40:df:9e:b6:94:7a:8d:f8:21:aa: 67:0f:12:b5:25:0c:e7:d5:46:1b:99:3d:6b:f3:12: d4:a1:30:00:ce:7d:c6:32:a3:df:df:03:a7:ea:31: 9e:72:52:fd:a0:5c:f7:f6:1b:0e:55:bf:db:93:61: 91:fc:22:61:e2:be:c0:4e:92:fc:a9:84:ab:84:e3: 88:d0:07:71:b5:14:20:6d:7d:7e:ee:92:58:cd:46: 00:74:7e:7f:70:2c:98:6a:76:ed:ae:76:40:d4:64: 27:90:6f:1d:9b:0e:6e:72:14:df:17:cc:a1:3f:f9: 48:fa:fb:e4:f5:85:a7:c4:eb:7b:56:79:32:6c:6e: 7b:f5:98:6b:ce:8d:29:fe:5d:cb:50:e5:98:b1:ef: 02:5e:b9:0a:f5:96:8c:a3:47:36:db:6e:1a:f5:fd: bb:42:71:e2:ba:10:57:bd:79:f3:33:fd:91:cf:06: 02:b1:f3:7a:e8:5a:44:43:24:34:39:a7:60:dd:17: 08:25:38:fe:82:0c:99:2a:51:8f:2d:16:ba:47:01: d1:3f:cc:67:2d:04:fd:7c:aa:d5:3a:f4:16:14:9c: 4e:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:96:3F:F5:2D:D6:92:96:3E:06:F2:B2:42:45:D2:C6:B2:EE:E7:9D X509v3 Authority Key Identifier: keyid:E9:6D:85:99:6E:93:54:D1:00:5E:44:C7:81:D3:8A:DC:F1:08:28:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a34313a3a2f34382d3438203d3e20323135343534.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a11:29c0:41::/48 Signature Algorithm: sha256WithRSAEncryption 85:e2:9c:8f:aa:ba:77:7a:0e:6f:45:6b:df:e6:b7:60:e3:77: 8e:ee:81:69:33:d9:d6:e9:ea:9e:9c:56:9a:2b:46:de:bd:55: d6:cc:68:2d:10:82:e8:a9:18:5f:fd:20:9a:e8:bc:fd:07:16: 3d:71:c2:75:94:c8:79:59:0c:63:41:75:c6:d9:27:65:81:2c: d6:4b:14:51:c1:c7:dc:e0:34:71:2d:45:0d:72:4e:f6:a7:ee: 1f:26:6f:a3:7d:6c:cb:d9:9e:6b:d3:0d:a3:c0:17:d7:79:51: c2:a7:f6:b3:7e:cf:5f:75:ce:ba:29:eb:de:67:6d:63:a1:cc: aa:cd:8b:fd:57:cd:83:3e:d0:ce:7e:63:2e:4d:27:f0:49:d6: 0f:d0:d0:4b:98:93:f6:b0:5a:d1:b0:93:2a:77:d2:4e:18:bc: 3b:63:5f:96:9c:d9:a7:66:62:77:64:cf:bf:d6:25:d9:ac:a4: d3:77:65:42:b0:5b:d7:98:38:e4:2f:9e:65:20:84:93:a6:4b: 41:ee:14:4e:df:8c:dd:f2:61:d5:6a:64:db:13:1a:c9:94:d4: 92:c5:ce:ef:37:6d:5c:f6:f0:cc:0a:65:cf:49:c1:50:7f:da: 02:59:f6:a3:45:d6:17:4b:a8:7e:d6:9c:69:87:cf:87:50:9a: e7:99:ed:fa -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgIUW9acQOJsN2FlaoCpD7OTnoYLMUkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoZTk2ZDg1OTk2ZTkzNTRkMTAwNWU0NGM3ODFkMzhhZGNm MTA4Mjg3MzAeFw0yNTEyMjMxMTE3NDNaFw0yNjEyMjIxMTIyNDNaMDMxMTAvBgNV BAMTKEZDOTYzRkY1MkRENjkyOTYzRTA2RjJCMjQyNDVEMkM2QjJFRUU3OUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOsBRpXPtE0ZCNjMbkH2KS6SNu 7v3pYN1v57UUvEBIm8ODQN+etpR6jfghqmcPErUlDOfVRhuZPWvzEtShMADOfcYy o9/fA6fqMZ5yUv2gXPf2Gw5Vv9uTYZH8ImHivsBOkvyphKuE44jQB3G1FCBtfX7u kljNRgB0fn9wLJhqdu2udkDUZCeQbx2bDm5yFN8XzKE/+Uj6++T1hafE63tWeTJs bnv1mGvOjSn+XctQ5Zix7wJeuQr1loyjRzbbbhr1/btCceK6EFe9efMz/ZHPBgKx 83roWkRDJDQ5p2DdFwglOP6CDJkqUY8tFrpHAdE/zGctBP18qtU69BYUnE5XAgMB AAGjggJGMIICQjAdBgNVHQ4EFgQU/JY/9S3WkpY+BvKyQkXSxrLu550wHwYDVR0j BBgwFoAU6W2FmW6TVNEAXkTHgdOK3PEIKHMwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvODExMTViYzYtMTBmNi00YWYzLWJhMDktOGI2ODdhNTZm YmY1LzAvRTk2RDg1OTk2RTkzNTREMTAwNUU0NEM3ODFEMzhBRENGMTA4Mjg3My5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzZXMkZtVzZUVk5FQVhrVEhnZE9LM1BF SUtITS5jZXIwgbMGCCsGAQUFBwELBIGmMIGjMIGgBggrBgEFBQcwC4aBk3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvODExMTViYzYt MTBmNi00YWYzLWJhMDktOGI2ODdhNTZmYmY1LzAvMzI2MTMxMzEzYTMyMzk2MzMw M2EzNDMxM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIzMTM1MzQzNTM0LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIA AjAJAwcAKhEpwABBMA0GCSqGSIb3DQEBCwUAA4IBAQCF4pyPqrp3eg5vRWvf5rdg 43eO7oFpM9nW6eqenFaaK0bevVXWzGgtEILoqRhf/SCa6Lz9BxY9ccJ1lMh5WQxj QXXG2SdlgSzWSxRRwcfc4DRxLUUNck72p+4fJm+jfWzL2Z5r0w2jwBfXeVHCp/az fs9fdc66KeveZ21jocyqzYv9V82DPtDOfmMuTSfwSdYP0NBLmJP2sFrRsJMqd9JO GLw7Y1+WnNmnZmJ3ZM+/1iXZrKTTd2VCsFvXmDjkL55lIISTpktB7hRO34zd8mHV amTbExrJlNSSxc7vN21c9vDMCmXPScFQf9oCWfajRdYXS6h+1pxph8+HUJrnme36 -----END CERTIFICATE-----Generated at Tue Jan 27 01:07:43 2026 by rpki-client