This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/0/326130663a316363353a313130303a3a2f34302d3438203d3e20323135363139.roa File: 326130663a316363353a313130303a3a2f34302d3438203d3e20323135363139.roa (raw, json) Hash identifier: 3ieELc5m08pyqFMvyZGwvLU4zxh5CWdP2r+xgmPYVZ0= Subject key identifier: 10:F4:51:E9:EC:DF:8F:30:4A:42:4E:9B:1A:B5:94:5D:27:23:33:C5 Certificate issuer: /CN=411e2d411d687bcb4449c3df45beedc041007d94 Certificate serial: 46D2577B7676409AD01FE6B05B92C0E217F0F15D Authority key identifier: 41:1E:2D:41:1D:68:7B:CB:44:49:C3:DF:45:BE:ED:C0:41:00:7D:94 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QR4tQR1oe8tEScPfRb7twEEAfZQ.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/0/326130663a316363353a313130303a3a2f34302d3438203d3e20323135363139.roa Signing time: Sat 17 Jan 2026 21:28:50 +0000 ROA not before: Sat 17 Jan 2026 21:23:50 +0000 ROA not after: Sat 16 Jan 2027 21:28:50 +0000 asID: 215619 IP address blocks: 2a0f:1cc5:1100::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/0/411E2D411D687BCB4449C3DF45BEEDC041007D94.crl rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/0/411E2D411D687BCB4449C3DF45BEEDC041007D94.mft rsync://rpki.ripe.net/repository/DEFAULT/QR4tQR1oe8tEScPfRb7twEEAfZQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 19 Jan 2026 06:00:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:d2:57:7b:76:76:40:9a:d0:1f:e6:b0:5b:92:c0:e2:17:f0:f1:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=411e2d411d687bcb4449c3df45beedc041007d94 Validity Not Before: Jan 17 21:23:50 2026 GMT Not After : Jan 16 21:28:50 2027 GMT Subject: CN=10F451E9ECDF8F304A424E9B1AB5945D272333C5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:ce:77:5e:3f:d8:df:86:e7:2b:cd:23:8b:dc: 4a:c1:96:03:36:21:e2:18:89:7e:9d:66:9e:bf:74: 88:7f:e3:f8:65:51:f3:56:de:de:af:cb:36:a5:96: 8e:c4:a0:a0:13:73:43:81:f1:d5:47:51:a3:51:d3: e5:56:5d:19:b0:e5:8f:54:b4:96:85:01:9e:f5:fc: 69:35:ee:64:10:87:a6:10:03:56:71:88:f7:e2:9b: b5:d2:05:d0:e3:d6:6e:c4:df:2e:67:74:87:85:c6: a4:6a:e3:78:86:bb:33:49:99:ae:4f:27:04:2b:2a: 74:21:30:e9:8d:1a:62:a9:90:a7:df:81:c6:3c:22: f0:fd:41:0b:dd:25:3d:c7:35:27:f4:6e:b3:37:f6: 52:9d:06:3a:4e:f4:85:f2:f3:8a:2b:5b:d1:0b:b8: f0:f9:a9:df:92:1c:0d:3d:c7:73:9a:7c:11:ce:96: 05:85:b0:69:2d:1b:d6:b9:01:12:b2:8e:92:5d:0b: 19:69:c9:1f:16:93:37:5c:e9:77:80:86:be:3a:40: b1:03:ba:f4:7c:19:34:b0:9c:ac:05:8a:76:8a:18: 92:ea:97:72:82:9d:66:e1:ec:75:e0:3a:13:16:3b: d6:9c:38:3e:81:56:42:b5:d3:08:ef:c0:47:71:ac: df:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:F4:51:E9:EC:DF:8F:30:4A:42:4E:9B:1A:B5:94:5D:27:23:33:C5 X509v3 Authority Key Identifier: keyid:41:1E:2D:41:1D:68:7B:CB:44:49:C3:DF:45:BE:ED:C0:41:00:7D:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/0/411E2D411D687BCB4449C3DF45BEEDC041007D94.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QR4tQR1oe8tEScPfRb7twEEAfZQ.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/0/326130663a316363353a313130303a3a2f34302d3438203d3e20323135363139.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0f:1cc5:1100::/40 Signature Algorithm: sha256WithRSAEncryption 34:c1:00:f9:4d:93:4e:94:a4:26:b1:eb:26:73:96:16:03:42: d8:f0:01:0f:6b:0f:bb:f5:82:4a:82:42:ad:42:e4:b4:8e:41: ed:cf:b1:b1:64:d0:06:31:1f:08:8c:0a:5c:79:49:4b:06:5b: 2c:6a:2b:ba:8b:5c:fb:d2:7a:80:96:c9:50:e5:6f:81:d8:87: 13:0e:8f:0d:23:09:1f:3a:1d:4d:16:fc:6f:f4:b1:be:68:24: a7:e6:f4:92:43:ad:ed:b8:05:54:87:ef:24:c7:2f:ec:97:e5: ff:69:c1:f3:87:6e:38:46:71:ad:4e:a1:4d:82:96:44:23:f9: 30:25:ec:4f:c0:8d:53:08:2d:70:95:b8:51:5f:f5:4a:b6:f1: 30:16:10:fe:bc:b3:9f:25:11:61:b0:5f:13:30:ff:99:be:8e: 1a:7d:c4:a9:66:a6:1e:15:de:96:3a:59:1d:59:08:22:1e:dd: d4:a1:6e:09:ce:ad:ed:68:9b:0c:12:32:1d:35:fb:2b:ed:b7: 89:c1:6d:52:d9:14:75:9d:e8:d5:cc:d6:eb:66:cf:18:9e:43: 53:24:b6:44:0f:aa:44:8f:e8:75:07:bd:7d:16:64:c9:b7:71: 5c:fc:da:1f:38:c3:63:69:72:55:17:9f:b2:c8:72:5c:a2:fb: db:90:1f:99 -----BEGIN CERTIFICATE----- MIIFPzCCBCegAwIBAgIURtJXe3Z2QJrQH+awW5LA4hfw8V0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDExZTJkNDExZDY4N2JjYjQ0NDljM2RmNDViZWVkYzA0 MTAwN2Q5NDAeFw0yNjAxMTcyMTIzNTBaFw0yNzAxMTYyMTI4NTBaMDMxMTAvBgNV BAMTKDEwRjQ1MUU5RUNERjhGMzA0QTQyNEU5QjFBQjU5NDVEMjcyMzMzQzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYzndeP9jfhucrzSOL3ErBlgM2 IeIYiX6dZp6/dIh/4/hlUfNW3t6vyzallo7EoKATc0OB8dVHUaNR0+VWXRmw5Y9U tJaFAZ71/Gk17mQQh6YQA1ZxiPfim7XSBdDj1m7E3y5ndIeFxqRq43iGuzNJma5P JwQrKnQhMOmNGmKpkKffgcY8IvD9QQvdJT3HNSf0brM39lKdBjpO9IXy84orW9EL uPD5qd+SHA09x3OafBHOlgWFsGktG9a5ARKyjpJdCxlpyR8Wkzdc6XeAhr46QLED uvR8GTSwnKwFinaKGJLql3KCnWbh7HXgOhMWO9acOD6BVkK10wjvwEdxrN8rAgMB AAGjggJJMIICRTAdBgNVHQ4EFgQUEPRR6ezfjzBKQk6bGrWUXScjM8UwHwYDVR0j BBgwFoAUQR4tQR1oe8tEScPfRb7twEEAfZQwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvOGFmYjVmZTItM2MyYS00OTM5LTk1ZTktMDA3N2I4MGI0 ZjBlLzAvNDExRTJENDExRDY4N0JDQjQ0NDlDM0RGNDVCRUVEQzA0MTAwN0Q5NC5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1FSNHRRUjFvZTh0RVNjUGZSYjd0d0VF QWZaUS5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvOGFmYjVmZTIt M2MyYS00OTM5LTk1ZTktMDA3N2I4MGI0ZjBlLzAvMzI2MTMwNjYzYTMxNjM2MzM1 M2EzMTMxMzAzMDNhM2EyZjM0MzAyZDM0MzgyMDNkM2UyMDMyMzEzNTM2MzEzOS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAw DgQCAAIwCAMGACoPHMURMA0GCSqGSIb3DQEBCwUAA4IBAQA0wQD5TZNOlKQmsesm c5YWA0LY8AEPaw+79YJKgkKtQuS0jkHtz7GxZNAGMR8IjApceUlLBlssaiu6i1z7 0nqAlslQ5W+B2IcTDo8NIwkfOh1NFvxv9LG+aCSn5vSSQ63tuAVUh+8kxy/sl+X/ acHzh244RnGtTqFNgpZEI/kwJexPwI1TCC1wlbhRX/VKtvEwFhD+vLOfJRFhsF8T MP+Zvo4afcSpZqYeFd6WOlkdWQgiHt3UoW4Jzq3taJsMEjIdNfsr7beJwW1S2RR1 nejVzNbrZs8YnkNTJLZED6pEj+h1B719FmTJt3Fc/NofOMNjaXJVF5+yyHJcovvb kB+Z -----END CERTIFICATE-----Generated at Sun Jan 18 13:13:35 2026 by rpki-client