This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/0/326130663a316363353a31303a3a2f34342d3438203d3e20313533333736.roa File: 326130663a316363353a31303a3a2f34342d3438203d3e20313533333736.roa (raw, json) Hash identifier: HGaLio0Jo6U3+NxUmzAYGoR9w/tlCge/EFE0NkxzeVQ= Subject key identifier: F6:91:71:D5:E0:81:2D:04:3C:0E:95:61:66:5A:19:42:C0:B7:A2:C1 Certificate issuer: /CN=411e2d411d687bcb4449c3df45beedc041007d94 Certificate serial: 6F02AB2217467B9681B9CB593F516CF56A929008 Authority key identifier: 41:1E:2D:41:1D:68:7B:CB:44:49:C3:DF:45:BE:ED:C0:41:00:7D:94 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QR4tQR1oe8tEScPfRb7twEEAfZQ.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/0/326130663a316363353a31303a3a2f34342d3438203d3e20313533333736.roa Signing time: Sat 17 Jan 2026 21:06:44 +0000 ROA not before: Sat 17 Jan 2026 21:01:44 +0000 ROA not after: Sat 16 Jan 2027 21:06:44 +0000 asID: 153376 IP address blocks: 2a0f:1cc5:10::/44 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/0/411E2D411D687BCB4449C3DF45BEEDC041007D94.crl rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/0/411E2D411D687BCB4449C3DF45BEEDC041007D94.mft rsync://rpki.ripe.net/repository/DEFAULT/QR4tQR1oe8tEScPfRb7twEEAfZQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 19 Jan 2026 06:00:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:02:ab:22:17:46:7b:96:81:b9:cb:59:3f:51:6c:f5:6a:92:90:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=411e2d411d687bcb4449c3df45beedc041007d94 Validity Not Before: Jan 17 21:01:44 2026 GMT Not After : Jan 16 21:06:44 2027 GMT Subject: CN=F69171D5E0812D043C0E9561665A1942C0B7A2C1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:9b:8c:09:97:94:9f:e1:8a:c4:fa:09:be:ae: df:75:28:dc:16:89:7c:e5:45:52:eb:f9:31:2e:50: 7c:35:c3:65:44:18:de:7f:68:7e:bd:5f:50:d7:6c: dd:ed:16:d9:15:e0:72:2b:a8:d4:8f:fd:5e:ec:b5: 06:04:bd:26:d6:3e:ec:aa:d7:71:37:cd:bb:e9:5a: d5:e3:0e:4a:9b:17:a3:f4:2a:58:d5:9e:32:3f:cd: 8e:34:bb:91:33:1a:ed:e6:12:b7:2d:85:69:5e:b6: fb:a8:c6:dc:a3:6d:c1:41:33:73:e0:a3:ae:cd:70: 1d:90:68:4f:2f:db:34:53:a0:62:62:ae:79:94:f8: 7c:fe:2a:54:35:6c:99:e8:27:e8:04:03:42:b8:21: 68:ed:9d:7c:b3:84:af:94:a7:ea:e4:52:7f:ef:b7: fe:e4:3f:4a:54:25:01:c2:07:c2:75:86:31:7e:e8: 58:ed:fb:b8:c2:72:35:51:ea:68:20:d3:82:9f:d2: b5:68:df:fb:19:ff:77:15:75:54:1f:5b:f8:4d:a7: d0:07:9c:b4:75:b5:32:e6:9f:d3:21:38:c4:52:9e: 15:cb:3d:de:96:3f:44:6c:01:3b:f3:46:0a:a9:68: e5:13:65:ab:c8:ac:92:ec:f9:f3:41:20:55:90:58: d1:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:91:71:D5:E0:81:2D:04:3C:0E:95:61:66:5A:19:42:C0:B7:A2:C1 X509v3 Authority Key Identifier: keyid:41:1E:2D:41:1D:68:7B:CB:44:49:C3:DF:45:BE:ED:C0:41:00:7D:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/0/411E2D411D687BCB4449C3DF45BEEDC041007D94.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QR4tQR1oe8tEScPfRb7twEEAfZQ.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/0/326130663a316363353a31303a3a2f34342d3438203d3e20313533333736.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0f:1cc5:10::/44 Signature Algorithm: sha256WithRSAEncryption 85:ad:26:1e:08:4d:3a:0a:8e:89:75:53:a6:ec:54:ee:4d:30: 59:87:d3:79:53:a4:bb:ad:f5:99:fa:48:cf:7e:78:31:6e:e6: 41:50:f2:d0:6f:ab:cf:bf:df:29:f3:05:4a:1f:28:8b:fc:5e: 8d:42:83:20:d2:d3:0a:91:fd:59:d0:00:cb:21:2b:a0:46:b7: 8c:f0:75:85:a4:93:dd:05:9c:1d:8b:af:97:af:8a:8b:84:32: bd:25:6c:af:49:96:39:6c:74:05:db:42:06:5c:64:b0:03:b9: f1:18:da:60:fd:9d:39:a1:88:1a:96:e3:dd:28:5f:e5:94:f8: 4f:b4:93:67:19:86:59:23:f1:6b:c5:2e:df:0b:7a:8a:26:d9: a1:f4:d6:57:11:27:d4:30:c0:e2:e4:2d:7d:b3:0d:29:a2:16: 23:dc:27:59:98:9b:35:cc:5b:6f:ae:86:b9:53:cc:40:46:52: dc:49:62:7b:e7:14:36:a7:7a:aa:78:86:4b:70:33:41:3a:a9: 6f:1a:df:ed:94:1f:2c:fa:b6:7e:97:7d:bf:2d:1c:74:5f:7d: 11:be:29:d0:47:b5:e4:39:1a:4c:49:c9:30:82:6f:d2:d4:b1: 5a:3f:2c:11:b5:12:9b:56:59:4d:40:98:ec:00:ed:e4:85:2e: 1f:e8:0e:d5 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgIUbwKrIhdGe5aBuctZP1Fs9WqSkAgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDExZTJkNDExZDY4N2JjYjQ0NDljM2RmNDViZWVkYzA0 MTAwN2Q5NDAeFw0yNjAxMTcyMTAxNDRaFw0yNzAxMTYyMTA2NDRaMDMxMTAvBgNV BAMTKEY2OTE3MUQ1RTA4MTJEMDQzQzBFOTU2MTY2NUExOTQyQzBCN0EyQzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCdm4wJl5Sf4YrE+gm+rt91KNwW iXzlRVLr+TEuUHw1w2VEGN5/aH69X1DXbN3tFtkV4HIrqNSP/V7stQYEvSbWPuyq 13E3zbvpWtXjDkqbF6P0KljVnjI/zY40u5EzGu3mErcthWletvuoxtyjbcFBM3Pg o67NcB2QaE8v2zRToGJirnmU+Hz+KlQ1bJnoJ+gEA0K4IWjtnXyzhK+Up+rkUn/v t/7kP0pUJQHCB8J1hjF+6Fjt+7jCcjVR6mgg04Kf0rVo3/sZ/3cVdVQfW/hNp9AH nLR1tTLmn9MhOMRSnhXLPd6WP0RsATvzRgqpaOUTZavIrJLs+fNBIFWQWNGrAgMB AAGjggJGMIICQjAdBgNVHQ4EFgQU9pFx1eCBLQQ8DpVhZloZQsC3osEwHwYDVR0j BBgwFoAUQR4tQR1oe8tEScPfRb7twEEAfZQwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvOGFmYjVmZTItM2MyYS00OTM5LTk1ZTktMDA3N2I4MGI0 ZjBlLzAvNDExRTJENDExRDY4N0JDQjQ0NDlDM0RGNDVCRUVEQzA0MTAwN0Q5NC5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1FSNHRRUjFvZTh0RVNjUGZSYjd0d0VF QWZaUS5jZXIwgbMGCCsGAQUFBwELBIGmMIGjMIGgBggrBgEFBQcwC4aBk3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvOGFmYjVmZTIt M2MyYS00OTM5LTk1ZTktMDA3N2I4MGI0ZjBlLzAvMzI2MTMwNjYzYTMxNjM2MzM1 M2EzMTMwM2EzYTJmMzQzNDJkMzQzODIwM2QzZTIwMzEzNTMzMzMzNzM2LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIA AjAJAwcEKg8cxQAQMA0GCSqGSIb3DQEBCwUAA4IBAQCFrSYeCE06Co6JdVOm7FTu TTBZh9N5U6S7rfWZ+kjPfngxbuZBUPLQb6vPv98p8wVKHyiL/F6NQoMg0tMKkf1Z 0ADLISugRreM8HWFpJPdBZwdi6+Xr4qLhDK9JWyvSZY5bHQF20IGXGSwA7nxGNpg /Z05oYgaluPdKF/llPhPtJNnGYZZI/FrxS7fC3qKJtmh9NZXESfUMMDi5C19sw0p ohYj3CdZmJs1zFtvroa5U8xARlLcSWJ75xQ2p3qqeIZLcDNBOqlvGt/tlB8s+rZ+ l32/LRx0X30RvinQR7XkORpMSckwgm/S1LFaPywRtRKbVllNQJjsAO3khS4f6A7V -----END CERTIFICATE-----Generated at Sun Jan 18 13:13:38 2026 by rpki-client