This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/0/326130663a316363353a313530303a3a2f34302d3438203d3e20313938303235.roa File: 326130663a316363353a313530303a3a2f34302d3438203d3e20313938303235.roa (raw, json) Hash identifier: 41VnGMIsMh3o9pctowqTD26wfCcnjcgLC79guvJR91I= Subject key identifier: 45:D1:5B:DA:93:F9:DF:70:5E:8D:35:68:E0:2B:8E:93:F2:ED:73:6D Certificate issuer: /CN=411e2d411d687bcb4449c3df45beedc041007d94 Certificate serial: 9BD456116E228602B43782212B9C2FFE719956 Authority key identifier: 41:1E:2D:41:1D:68:7B:CB:44:49:C3:DF:45:BE:ED:C0:41:00:7D:94 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QR4tQR1oe8tEScPfRb7twEEAfZQ.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/0/326130663a316363353a313530303a3a2f34302d3438203d3e20313938303235.roa Signing time: Sat 17 Jan 2026 21:07:19 +0000 ROA not before: Sat 17 Jan 2026 21:02:19 +0000 ROA not after: Sat 16 Jan 2027 21:07:19 +0000 asID: 198025 IP address blocks: 2a0f:1cc5:1500::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/0/411E2D411D687BCB4449C3DF45BEEDC041007D94.crl rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/0/411E2D411D687BCB4449C3DF45BEEDC041007D94.mft rsync://rpki.ripe.net/repository/DEFAULT/QR4tQR1oe8tEScPfRb7twEEAfZQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 19 Jan 2026 06:00:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9b:d4:56:11:6e:22:86:02:b4:37:82:21:2b:9c:2f:fe:71:99:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=411e2d411d687bcb4449c3df45beedc041007d94 Validity Not Before: Jan 17 21:02:19 2026 GMT Not After : Jan 16 21:07:19 2027 GMT Subject: CN=45D15BDA93F9DF705E8D3568E02B8E93F2ED736D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:f6:52:ed:a7:aa:f1:75:72:b2:ca:ed:92:b6: f0:30:e9:79:22:6d:e4:ff:80:f2:2a:39:11:80:6f: 09:d1:6a:da:87:6c:3b:8c:d6:d6:e5:a4:d3:80:fb: e8:14:1a:f4:00:39:ac:c7:8f:59:77:e7:a3:89:c6: e6:c2:5d:7d:b0:2f:71:ea:13:cb:de:cf:25:12:2c: 71:b0:8a:7d:ec:0f:de:a8:ad:d8:3b:24:ef:16:b6: 8c:54:a1:15:28:70:72:e0:6c:94:34:78:d2:78:81: 0e:1f:99:08:42:c6:22:d0:29:8d:72:ab:11:e4:d1: 13:ee:8a:b4:c2:06:4e:0d:9d:57:a8:ac:dd:24:65: 4a:50:ea:ef:23:13:11:11:aa:76:b2:46:e6:0e:97: f7:88:39:49:11:c4:f8:ea:7a:23:cd:12:24:6e:de: 69:29:aa:48:50:d3:a7:82:44:50:1d:aa:63:5e:0c: 94:b3:0d:63:35:1d:47:c4:34:60:5d:0a:d2:59:22: 35:62:b1:04:f7:8c:dc:1c:ac:fc:83:d8:51:d9:ed: 38:9f:38:d8:4c:66:e1:0e:29:70:c8:ea:a3:29:ce: 74:6f:4b:70:e4:83:a5:8c:b5:e3:cf:bb:36:24:16: 10:f6:26:4f:fb:cb:2f:cb:23:ee:25:03:37:c4:e4: 31:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:D1:5B:DA:93:F9:DF:70:5E:8D:35:68:E0:2B:8E:93:F2:ED:73:6D X509v3 Authority Key Identifier: keyid:41:1E:2D:41:1D:68:7B:CB:44:49:C3:DF:45:BE:ED:C0:41:00:7D:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/0/411E2D411D687BCB4449C3DF45BEEDC041007D94.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QR4tQR1oe8tEScPfRb7twEEAfZQ.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/0/326130663a316363353a313530303a3a2f34302d3438203d3e20313938303235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0f:1cc5:1500::/40 Signature Algorithm: sha256WithRSAEncryption 04:01:7b:83:24:23:9b:e5:92:8f:23:f9:c4:9b:d7:54:f7:dc: 6d:f9:76:e3:91:0c:1a:7e:e9:ce:24:06:67:be:69:dc:c2:f7: 5b:69:83:31:e3:9d:da:aa:f2:51:c9:4b:17:71:6d:f0:64:54: 2b:7a:dd:04:d9:19:6a:f0:ca:c1:83:e5:54:95:d1:f3:b5:30: c3:02:f9:1c:39:54:73:29:ab:cc:5c:20:33:25:41:46:fc:d1: b6:1f:70:6c:b1:a4:34:76:73:c6:cf:f4:a7:b5:fe:7b:a3:97: 1a:6e:fd:6b:c7:c3:8e:3a:88:b5:c2:a0:9e:b2:28:f2:2c:4a: cc:87:62:65:56:43:e9:0d:b1:d6:95:63:fb:6c:97:1a:8f:ef: ee:30:c7:79:46:6a:38:dc:a5:74:aa:f9:3a:c6:19:1e:56:53: a4:34:04:dc:76:6d:06:ba:01:9a:c3:26:83:72:b7:fc:52:d0: 8e:3c:58:b4:de:e2:a9:2c:f8:94:14:7d:d3:1d:ce:ba:da:9b: a2:a8:15:f6:f8:13:73:ff:eb:72:c9:c0:f0:35:ea:7e:bb:2f: f5:c1:51:51:92:57:00:ff:e2:4a:07:78:03:b3:2e:e7:04:7e: 5e:4d:bc:65:81:43:f0:e0:28:08:ec:0d:e0:ee:1a:92:95:bc: 64:c7:ad:fc -----BEGIN CERTIFICATE----- MIIFPzCCBCegAwIBAgIUAJvUVhFuIoYCtDeCISucL/5xmVYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDExZTJkNDExZDY4N2JjYjQ0NDljM2RmNDViZWVkYzA0 MTAwN2Q5NDAeFw0yNjAxMTcyMTAyMTlaFw0yNzAxMTYyMTA3MTlaMDMxMTAvBgNV BAMTKDQ1RDE1QkRBOTNGOURGNzA1RThEMzU2OEUwMkI4RTkzRjJFRDczNkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJ9lLtp6rxdXKyyu2StvAw6Xki beT/gPIqORGAbwnRatqHbDuM1tblpNOA++gUGvQAOazHj1l356OJxubCXX2wL3Hq E8vezyUSLHGwin3sD96ordg7JO8WtoxUoRUocHLgbJQ0eNJ4gQ4fmQhCxiLQKY1y qxHk0RPuirTCBk4NnVeorN0kZUpQ6u8jExERqnayRuYOl/eIOUkRxPjqeiPNEiRu 3mkpqkhQ06eCRFAdqmNeDJSzDWM1HUfENGBdCtJZIjVisQT3jNwcrPyD2FHZ7Tif ONhMZuEOKXDI6qMpznRvS3Dkg6WMtePPuzYkFhD2Jk/7yy/LI+4lAzfE5DGZAgMB AAGjggJJMIICRTAdBgNVHQ4EFgQURdFb2pP533BejTVo4CuOk/Ltc20wHwYDVR0j BBgwFoAUQR4tQR1oe8tEScPfRb7twEEAfZQwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvOGFmYjVmZTItM2MyYS00OTM5LTk1ZTktMDA3N2I4MGI0 ZjBlLzAvNDExRTJENDExRDY4N0JDQjQ0NDlDM0RGNDVCRUVEQzA0MTAwN0Q5NC5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1FSNHRRUjFvZTh0RVNjUGZSYjd0d0VF QWZaUS5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvOGFmYjVmZTIt M2MyYS00OTM5LTk1ZTktMDA3N2I4MGI0ZjBlLzAvMzI2MTMwNjYzYTMxNjM2MzM1 M2EzMTM1MzAzMDNhM2EyZjM0MzAyZDM0MzgyMDNkM2UyMDMxMzkzODMwMzIzNS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAw DgQCAAIwCAMGACoPHMUVMA0GCSqGSIb3DQEBCwUAA4IBAQAEAXuDJCOb5ZKPI/nE m9dU99xt+XbjkQwafunOJAZnvmncwvdbaYMx453aqvJRyUsXcW3wZFQret0E2Rlq 8MrBg+VUldHztTDDAvkcOVRzKavMXCAzJUFG/NG2H3BssaQ0dnPGz/Sntf57o5ca bv1rx8OOOoi1wqCesijyLErMh2JlVkPpDbHWlWP7bJcaj+/uMMd5Rmo43KV0qvk6 xhkeVlOkNATcdm0GugGawyaDcrf8UtCOPFi03uKpLPiUFH3THc662puiqBX2+BNz /+tyycDwNep+uy/1wVFRklcA/+JKB3gDsy7nBH5eTbxlgUPw4CgI7A3g7hqSlbxk x638 -----END CERTIFICATE-----Generated at Sun Jan 18 13:13:38 2026 by rpki-client