This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/33312e362e32382e302f32332d3233203d3e20343030393039.roa File: 33312e362e32382e302f32332d3233203d3e20343030393039.roa (raw, json) Hash identifier: ptvqFuL87r9ht6ydmforQK/ppsXiWIzM5Ozvxul4qWM= Subject key identifier: 46:99:65:A5:18:5D:AD:56:38:5C:27:49:2F:65:CE:AE:BA:09:AE:D4 Certificate issuer: /CN=048af665bf8b186b70220759d26c578f40b5f3e3 Certificate serial: 57F37B3F73E5770F74ACD51F696F5F9F7E0B799C Authority key identifier: 04:8A:F6:65:BF:8B:18:6B:70:22:07:59:D2:6C:57:8F:40:B5:F3:E3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BIr2Zb-LGGtwIgdZ0mxXj0C18-M.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/33312e362e32382e302f32332d3233203d3e20343030393039.roa Signing time: Fri 16 Jan 2026 11:55:33 +0000 ROA not before: Fri 16 Jan 2026 11:50:33 +0000 ROA not after: Fri 15 Jan 2027 11:55:33 +0000 asID: 400909 IP address blocks: 31.6.28.0/23 maxlen: 23 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/048AF665BF8B186B70220759D26C578F40B5F3E3.crl rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/048AF665BF8B186B70220759D26C578F40B5F3E3.mft rsync://rpki.ripe.net/repository/DEFAULT/BIr2Zb-LGGtwIgdZ0mxXj0C18-M.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 00:00:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:f3:7b:3f:73:e5:77:0f:74:ac:d5:1f:69:6f:5f:9f:7e:0b:79:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=048af665bf8b186b70220759d26c578f40b5f3e3 Validity Not Before: Jan 16 11:50:33 2026 GMT Not After : Jan 15 11:55:33 2027 GMT Subject: CN=469965A5185DAD56385C27492F65CEAEBA09AED4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:f3:c7:40:e4:a7:f1:87:00:33:69:8a:18:12: 41:6a:9b:34:44:64:88:af:ef:91:50:48:28:3c:37: 53:5b:07:c0:71:b5:78:18:73:23:1b:ca:cc:c3:8d: b4:73:00:5e:94:80:15:7f:b6:12:77:28:b8:38:a9: 9c:a6:c7:84:ba:e0:c8:1c:8e:7f:ce:0e:72:89:80: d8:59:19:d9:54:ee:9c:91:e0:22:fe:e7:72:05:9f: b9:e8:fd:9c:07:4f:05:43:9c:f5:e5:d8:bb:c1:e6: c2:e6:ce:12:8f:bb:8e:b6:8a:67:a0:26:0b:de:57: ce:c3:87:9b:89:82:ba:be:cd:7e:b1:13:d6:4a:1e: 73:05:87:dc:f1:19:f9:eb:a4:1f:55:16:df:00:6e: 7e:e9:96:75:a0:e5:61:99:1d:f7:54:96:d1:93:22: 81:38:86:f7:8e:c3:6f:32:5c:c2:fb:97:0b:88:bb: 31:4c:15:78:d1:03:56:cb:09:00:07:b0:85:87:9d: 5b:05:b4:e2:bd:fe:19:fe:e1:be:e4:11:e4:fd:6a: 9e:29:33:9a:db:73:c0:80:c3:fb:b0:f9:0d:68:5a: af:96:68:b2:17:13:46:1c:87:99:b9:08:9f:17:4b: b5:6a:03:46:32:7b:72:a5:88:73:ab:c8:e8:da:bf: 3b:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:99:65:A5:18:5D:AD:56:38:5C:27:49:2F:65:CE:AE:BA:09:AE:D4 X509v3 Authority Key Identifier: keyid:04:8A:F6:65:BF:8B:18:6B:70:22:07:59:D2:6C:57:8F:40:B5:F3:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/048AF665BF8B186B70220759D26C578F40B5F3E3.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BIr2Zb-LGGtwIgdZ0mxXj0C18-M.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/33312e362e32382e302f32332d3233203d3e20343030393039.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.6.28.0/23 Signature Algorithm: sha256WithRSAEncryption 77:93:75:c3:ec:3b:cd:67:d3:16:29:84:07:ed:bb:b8:b6:84: 6d:0a:87:71:8b:54:7d:e7:97:03:6c:d4:8e:f9:f1:0a:42:8d: 04:4f:92:7f:79:5b:44:a7:2c:e0:d7:82:5c:1a:b0:f0:5e:86: fc:0e:99:6a:e2:c2:55:f6:17:a7:7e:40:6d:c0:7d:bd:61:e0: be:61:d4:c7:87:20:67:15:09:57:45:07:31:51:aa:ed:f6:a4: 73:3b:bb:79:3d:5e:f0:18:4f:a0:cc:29:32:59:b7:78:6b:5d: 51:f1:30:9c:67:81:39:53:47:4f:46:fd:96:19:97:2c:d9:b4: b2:68:69:40:52:f4:18:98:33:29:c1:4d:37:e1:5d:25:dc:2a: de:3b:63:7d:ee:4a:37:28:77:ea:9b:84:ab:3d:77:8e:af:98: de:fc:e1:7e:ac:a8:cc:4c:ff:c7:d5:bc:22:65:ec:03:89:d0: d4:d2:f1:d0:f6:e0:a2:e8:ef:fd:ef:6f:36:43:4a:2f:8c:29: 38:87:89:c1:58:c0:49:ad:c3:cc:f9:91:60:8d:2c:ee:96:5f: 1c:9c:4d:fb:fb:56:b5:5d:99:04:81:d4:78:fe:32:2a:34:1c: 0c:4e:9a:2b:46:a8:be:96:8e:7e:e3:ae:6e:1a:ee:7b:55:4b: c6:33:69:be -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUV/N7P3Pldw90rNUfaW9fn34LeZwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDQ4YWY2NjViZjhiMTg2YjcwMjIwNzU5ZDI2YzU3OGY0 MGI1ZjNlMzAeFw0yNjAxMTYxMTUwMzNaFw0yNzAxMTUxMTU1MzNaMDMxMTAvBgNV BAMTKDQ2OTk2NUE1MTg1REFENTYzODVDMjc0OTJGNjVDRUFFQkEwOUFFRDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDD88dA5KfxhwAzaYoYEkFqmzRE ZIiv75FQSCg8N1NbB8BxtXgYcyMbyszDjbRzAF6UgBV/thJ3KLg4qZymx4S64Mgc jn/ODnKJgNhZGdlU7pyR4CL+53IFn7no/ZwHTwVDnPXl2LvB5sLmzhKPu462imeg JgveV87Dh5uJgrq+zX6xE9ZKHnMFh9zxGfnrpB9VFt8Abn7plnWg5WGZHfdUltGT IoE4hveOw28yXML7lwuIuzFMFXjRA1bLCQAHsIWHnVsFtOK9/hn+4b7kEeT9ap4p M5rbc8CAw/uw+Q1oWq+WaLIXE0Ych5m5CJ8XS7VqA0Yye3KliHOryOjavzuNAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQURpllpRhdrVY4XCdJL2XOrroJrtQwHwYDVR0j BBgwFoAUBIr2Zb+LGGtwIgdZ0mxXj0C18+MwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvODJhOWJmNWItMzljMS00MDUwLWIwNzMtNDgwNzViODYx ZDg3LzAvMDQ4QUY2NjVCRjhCMTg2QjcwMjIwNzU5RDI2QzU3OEY0MEI1RjNFMy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0JJcjJaYi1MR0d0d0lnZFowbXhYajBD MTgtTS5jZXIwgakGCCsGAQUFBwELBIGcMIGZMIGWBggrBgEFBQcwC4aBiXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvODJhOWJmNWIt MzljMS00MDUwLWIwNzMtNDgwNzViODYxZDg3LzAvMzMzMTJlMzYyZTMyMzgyZTMw MmYzMjMzMmQzMjMzMjAzZDNlMjAzNDMwMzAzOTMwMzkucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAEfBhww DQYJKoZIhvcNAQELBQADggEBAHeTdcPsO81n0xYphAftu7i2hG0Kh3GLVH3nlwNs 1I758QpCjQRPkn95W0SnLODXglwasPBehvwOmWriwlX2F6d+QG3Afb1h4L5h1MeH IGcVCVdFBzFRqu32pHM7u3k9XvAYT6DMKTJZt3hrXVHxMJxngTlTR09G/ZYZlyzZ tLJoaUBS9BiYMynBTTfhXSXcKt47Y33uSjcod+qbhKs9d46vmN784X6sqMxM/8fV vCJl7AOJ0NTS8dD24KLo7/3vbzZDSi+MKTiHicFYwEmtw8z5kWCNLO6WXxycTfv7 VrVdmQSB1Hj+Mio0HAxOmitGqL6Wjn7jrm4a7ntVS8Yzab4= -----END CERTIFICATE-----Generated at Mon Jan 19 07:47:07 2026 by rpki-client