This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a34323a3a2f34382d3438203d3e20323135353231.roa File: 326131313a323963303a34323a3a2f34382d3438203d3e20323135353231.roa (raw, json) Hash identifier: pb7uPhfnfIeTsul4YtbStRbdY0hRBrhx8oWXut4gcYw= Subject key identifier: AA:16:E1:33:4C:23:58:1E:CA:F1:A1:60:22:BC:E1:B4:72:A6:12:54 Certificate issuer: /CN=e96d85996e9354d1005e44c781d38adcf1082873 Certificate serial: 0DBFFE48B482E10058F3F27636F1FF47AFC7C4EB Authority key identifier: E9:6D:85:99:6E:93:54:D1:00:5E:44:C7:81:D3:8A:DC:F1:08:28:73 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a34323a3a2f34382d3438203d3e20323135353231.roa Signing time: Wed 24 Dec 2025 10:22:43 +0000 ROA not before: Wed 24 Dec 2025 10:17:43 +0000 ROA not after: Wed 23 Dec 2026 10:22:43 +0000 asID: 215521 IP address blocks: 2a11:29c0:42::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.crl rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.mft rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 15:35:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:bf:fe:48:b4:82:e1:00:58:f3:f2:76:36:f1:ff:47:af:c7:c4:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e96d85996e9354d1005e44c781d38adcf1082873 Validity Not Before: Dec 24 10:17:43 2025 GMT Not After : Dec 23 10:22:43 2026 GMT Subject: CN=AA16E1334C23581ECAF1A16022BCE1B472A61254 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:04:c1:0a:f2:fe:19:ba:e9:31:75:ff:07:f3: 35:6e:15:2b:42:4d:ea:db:ec:6f:39:6d:21:06:a5: 5e:ad:0c:a2:23:21:44:2c:64:1d:e2:77:64:3c:0a: 53:ef:bf:bd:40:e3:3a:a7:a3:1e:c7:8b:d3:b9:6e: ad:06:2b:fc:66:b8:8b:56:f2:42:bd:a5:e5:1a:94: c4:f7:b5:13:fe:42:28:b5:bf:5f:cb:13:7f:f8:d0: f4:72:60:cc:23:92:1b:ec:de:58:4d:87:ac:9b:46: 36:6d:32:f0:9d:59:37:73:8d:0c:67:91:32:83:9d: 18:9a:22:c0:58:68:6a:77:7b:cb:ef:34:0e:f4:b5: 52:ca:43:d4:54:4b:ec:e6:e1:90:f9:c7:f6:8c:c1: 0b:8e:d9:1f:7e:a9:6e:52:83:ff:f1:86:c9:62:91: 65:e3:1d:93:95:7f:53:92:4b:22:8d:b3:5f:8f:64: ce:41:07:e9:3e:28:d4:dd:8b:5c:d4:1b:c1:3f:bb: fd:09:43:bb:ab:1a:ee:67:e4:61:ca:fc:a5:ae:3f: 0c:5d:b5:86:3f:15:22:93:19:33:df:c0:fe:41:f1: fe:f5:92:4d:ab:e6:3b:e1:bb:4a:02:f9:53:66:bd: b9:71:c5:80:e6:43:4e:eb:be:01:91:05:e3:ae:8e: 6d:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:16:E1:33:4C:23:58:1E:CA:F1:A1:60:22:BC:E1:B4:72:A6:12:54 X509v3 Authority Key Identifier: keyid:E9:6D:85:99:6E:93:54:D1:00:5E:44:C7:81:D3:8A:DC:F1:08:28:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a34323a3a2f34382d3438203d3e20323135353231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a11:29c0:42::/48 Signature Algorithm: sha256WithRSAEncryption 80:b5:eb:bb:a9:97:c4:4f:32:eb:9d:95:a8:c5:06:cc:f1:fe: ac:71:ab:c6:82:82:bb:4d:c6:e6:5f:98:6b:92:d8:49:4f:7b: da:83:c8:e7:8b:3c:3d:c5:52:a0:e5:b2:0a:2b:19:80:ed:a4: 79:eb:d5:81:3c:2c:ad:b3:d5:bc:18:86:cf:03:b9:a6:06:04: 20:ff:4b:3f:76:74:36:d7:24:67:f6:77:f8:ac:12:8f:fd:76: 1d:10:e0:fa:0e:6a:9e:b7:c0:1c:c1:93:df:bc:55:88:ca:42: 75:96:93:df:47:4e:ee:0a:c9:fb:e6:44:7b:66:9e:ff:cf:f6: bc:af:4a:95:8c:45:2c:0b:cf:b4:3a:78:d8:10:d9:e7:49:a1: a2:8f:34:91:61:9c:a7:b3:f8:e5:fd:47:20:1e:69:07:63:bc: 9c:7e:9a:60:1c:c9:ed:c4:bd:24:c7:b4:09:21:bc:c2:59:2d: 02:8e:cf:82:4b:db:56:9e:87:52:90:d5:4e:f3:a0:14:73:29: 49:6b:3d:5c:5f:3e:6e:d2:5d:f3:32:6b:4d:f2:ef:d0:eb:b6: 32:39:56:75:fa:e1:11:91:33:ae:aa:4b:9a:bf:1d:d7:46:48: 22:12:29:c0:35:d4:2d:07:0b:ea:c9:9f:82:97:bd:8b:04:d9: e2:64:e5:2d -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgIUDb/+SLSC4QBY8/J2NvH/R6/HxOswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoZTk2ZDg1OTk2ZTkzNTRkMTAwNWU0NGM3ODFkMzhhZGNm MTA4Mjg3MzAeFw0yNTEyMjQxMDE3NDNaFw0yNjEyMjMxMDIyNDNaMDMxMTAvBgNV BAMTKEFBMTZFMTMzNEMyMzU4MUVDQUYxQTE2MDIyQkNFMUI0NzJBNjEyNTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSBMEK8v4Zuukxdf8H8zVuFStC Terb7G85bSEGpV6tDKIjIUQsZB3id2Q8ClPvv71A4zqnox7Hi9O5bq0GK/xmuItW 8kK9peUalMT3tRP+Qii1v1/LE3/40PRyYMwjkhvs3lhNh6ybRjZtMvCdWTdzjQxn kTKDnRiaIsBYaGp3e8vvNA70tVLKQ9RUS+zm4ZD5x/aMwQuO2R9+qW5Sg//xhsli kWXjHZOVf1OSSyKNs1+PZM5BB+k+KNTdi1zUG8E/u/0JQ7urGu5n5GHK/KWuPwxd tYY/FSKTGTPfwP5B8f71kk2r5jvhu0oC+VNmvblxxYDmQ07rvgGRBeOujm1rAgMB AAGjggJGMIICQjAdBgNVHQ4EFgQUqhbhM0wjWB7K8aFgIrzhtHKmElQwHwYDVR0j BBgwFoAU6W2FmW6TVNEAXkTHgdOK3PEIKHMwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvODExMTViYzYtMTBmNi00YWYzLWJhMDktOGI2ODdhNTZm YmY1LzAvRTk2RDg1OTk2RTkzNTREMTAwNUU0NEM3ODFEMzhBRENGMTA4Mjg3My5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzZXMkZtVzZUVk5FQVhrVEhnZE9LM1BF SUtITS5jZXIwgbMGCCsGAQUFBwELBIGmMIGjMIGgBggrBgEFBQcwC4aBk3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvODExMTViYzYt MTBmNi00YWYzLWJhMDktOGI2ODdhNTZmYmY1LzAvMzI2MTMxMzEzYTMyMzk2MzMw M2EzNDMyM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIzMTM1MzUzMjMxLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIA AjAJAwcAKhEpwABCMA0GCSqGSIb3DQEBCwUAA4IBAQCAteu7qZfETzLrnZWoxQbM 8f6scavGgoK7TcbmX5hrkthJT3vag8jnizw9xVKg5bIKKxmA7aR569WBPCyts9W8 GIbPA7mmBgQg/0s/dnQ21yRn9nf4rBKP/XYdEOD6Dmqet8AcwZPfvFWIykJ1lpPf R07uCsn75kR7Zp7/z/a8r0qVjEUsC8+0OnjYENnnSaGijzSRYZyns/jl/UcgHmkH Y7ycfppgHMntxL0kx7QJIbzCWS0Cjs+CS9tWnodSkNVO86AUcylJaz1cXz5u0l3z MmtN8u/Q67YyOVZ1+uERkTOuqkuavx3XRkgiEinANdQtBwvqyZ+Cl72LBNniZOUt -----END CERTIFICATE-----Generated at Tue Jan 27 01:07:45 2026 by rpki-client