This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/0/326130663a316363353a313630303a3a2f34302d3438203d3e20313939333130.roa File: 326130663a316363353a313630303a3a2f34302d3438203d3e20313939333130.roa (raw, json) Hash identifier: iz1tU+n1QM8JuIsf3A3u8SxRanJcAgiwVHnAaQQiyLs= Subject key identifier: ED:BD:2C:3E:51:72:C0:0F:5D:3E:1E:EA:80:95:86:8D:20:A9:45:6B Certificate issuer: /CN=411e2d411d687bcb4449c3df45beedc041007d94 Certificate serial: 6A548364DDA78D346B3CF801E2CC0B276677CF31 Authority key identifier: 41:1E:2D:41:1D:68:7B:CB:44:49:C3:DF:45:BE:ED:C0:41:00:7D:94 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QR4tQR1oe8tEScPfRb7twEEAfZQ.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/0/326130663a316363353a313630303a3a2f34302d3438203d3e20313939333130.roa Signing time: Sat 17 Jan 2026 21:08:52 +0000 ROA not before: Sat 17 Jan 2026 21:03:52 +0000 ROA not after: Sat 16 Jan 2027 21:08:52 +0000 asID: 199310 IP address blocks: 2a0f:1cc5:1600::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/0/411E2D411D687BCB4449C3DF45BEEDC041007D94.crl rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/0/411E2D411D687BCB4449C3DF45BEEDC041007D94.mft rsync://rpki.ripe.net/repository/DEFAULT/QR4tQR1oe8tEScPfRb7twEEAfZQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 19 Jan 2026 06:00:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:54:83:64:dd:a7:8d:34:6b:3c:f8:01:e2:cc:0b:27:66:77:cf:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=411e2d411d687bcb4449c3df45beedc041007d94 Validity Not Before: Jan 17 21:03:52 2026 GMT Not After : Jan 16 21:08:52 2027 GMT Subject: CN=EDBD2C3E5172C00F5D3E1EEA8095868D20A9456B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:5d:f0:ff:26:50:0c:be:90:ac:00:40:0f:f9: 15:2b:7a:1d:85:69:9f:f7:1c:76:70:81:b6:71:41: 5c:60:7a:46:bd:1e:b4:0d:24:0c:f2:4d:7e:2d:cb: c2:74:a6:79:12:29:3f:8d:24:4e:94:6f:6c:76:c6: 26:38:55:0a:92:37:c7:ee:83:f6:30:2b:a0:d6:c3: 33:b9:f4:89:fc:c4:1c:c4:c2:f7:85:f5:7e:21:fd: 15:1a:47:85:5b:4f:01:45:ed:a5:bf:cd:98:97:1e: 6c:c7:3c:a5:39:bf:ac:b0:db:3b:c1:f5:67:39:7a: 45:d9:65:3b:06:30:b7:ad:2d:eb:92:2c:56:aa:9b: 05:40:59:67:53:6a:9f:6b:cb:95:0f:50:d2:64:5d: 70:6c:7c:d2:f6:08:0e:af:cf:4b:ec:5e:39:a6:f0: 58:06:eb:a4:7f:64:7f:13:77:7f:ab:d4:97:bf:68: b8:7b:2e:0a:88:13:34:bf:35:51:37:00:5d:d8:26: fa:3e:38:01:d9:44:a7:8d:a5:ab:79:43:a7:c5:40: 8d:c5:0e:fd:58:46:91:a6:1a:5b:e0:53:4b:38:e6: dc:3c:13:f9:92:70:98:8b:2d:75:3f:62:e1:1b:e4: e9:55:a4:00:0d:52:3a:4c:de:67:cd:86:e2:bc:58: 39:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:BD:2C:3E:51:72:C0:0F:5D:3E:1E:EA:80:95:86:8D:20:A9:45:6B X509v3 Authority Key Identifier: keyid:41:1E:2D:41:1D:68:7B:CB:44:49:C3:DF:45:BE:ED:C0:41:00:7D:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/0/411E2D411D687BCB4449C3DF45BEEDC041007D94.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QR4tQR1oe8tEScPfRb7twEEAfZQ.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/0/326130663a316363353a313630303a3a2f34302d3438203d3e20313939333130.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0f:1cc5:1600::/40 Signature Algorithm: sha256WithRSAEncryption 26:c9:59:f3:aa:d9:6c:6e:5d:83:e5:68:0e:59:30:ee:8d:a7: bc:1f:77:23:24:98:48:b8:7b:f8:8e:6c:8d:bc:5e:79:cd:c5: e0:da:a0:55:df:3a:b6:cc:e3:ae:d2:42:f8:ab:ab:0d:5b:a8: 53:91:70:3e:13:69:3f:4a:92:e9:7b:61:51:2f:9e:70:68:fc: 7b:69:1b:1d:80:13:4d:f3:73:7f:9f:9b:ef:05:2f:fb:0b:3d: 87:e1:41:36:74:01:ad:b8:4d:ba:48:cc:d6:a4:5c:ba:8e:92: 6d:b2:e5:6d:f5:39:5b:5f:41:a2:14:52:b4:73:56:57:8e:7c: 93:3f:d8:f8:82:a8:9d:86:e1:51:2c:e6:fe:95:bc:e5:f0:a4: 19:db:e1:5e:6f:7a:66:58:39:85:8b:7c:c5:a1:8f:6c:65:c0: 62:7d:33:5a:7b:fe:69:ac:c2:42:61:ec:f4:e5:cf:a8:e8:48: 0e:ec:82:c3:48:73:28:1b:72:d7:fc:5a:74:5b:6f:a8:37:40: 23:cf:f8:2c:96:f7:fb:5c:81:4c:5b:fb:0b:5e:2d:f9:f9:86: a2:8f:62:55:97:a9:fe:e3:47:9e:9e:3d:e7:23:4a:7d:58:18: 22:57:cc:5f:51:9d:38:bc:c8:3e:06:7e:02:64:67:06:66:80: e0:50:3b:bc -----BEGIN CERTIFICATE----- MIIFPzCCBCegAwIBAgIUalSDZN2njTRrPPgB4swLJ2Z3zzEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDExZTJkNDExZDY4N2JjYjQ0NDljM2RmNDViZWVkYzA0 MTAwN2Q5NDAeFw0yNjAxMTcyMTAzNTJaFw0yNzAxMTYyMTA4NTJaMDMxMTAvBgNV BAMTKEVEQkQyQzNFNTE3MkMwMEY1RDNFMUVFQTgwOTU4NjhEMjBBOTQ1NkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvXfD/JlAMvpCsAEAP+RUreh2F aZ/3HHZwgbZxQVxgeka9HrQNJAzyTX4ty8J0pnkSKT+NJE6Ub2x2xiY4VQqSN8fu g/YwK6DWwzO59In8xBzEwveF9X4h/RUaR4VbTwFF7aW/zZiXHmzHPKU5v6yw2zvB 9Wc5ekXZZTsGMLetLeuSLFaqmwVAWWdTap9ry5UPUNJkXXBsfNL2CA6vz0vsXjmm 8FgG66R/ZH8Td3+r1Je/aLh7LgqIEzS/NVE3AF3YJvo+OAHZRKeNpat5Q6fFQI3F Dv1YRpGmGlvgU0s45tw8E/mScJiLLXU/YuEb5OlVpAANUjpM3mfNhuK8WDmxAgMB AAGjggJJMIICRTAdBgNVHQ4EFgQU7b0sPlFywA9dPh7qgJWGjSCpRWswHwYDVR0j BBgwFoAUQR4tQR1oe8tEScPfRb7twEEAfZQwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvOGFmYjVmZTItM2MyYS00OTM5LTk1ZTktMDA3N2I4MGI0 ZjBlLzAvNDExRTJENDExRDY4N0JDQjQ0NDlDM0RGNDVCRUVEQzA0MTAwN0Q5NC5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1FSNHRRUjFvZTh0RVNjUGZSYjd0d0VF QWZaUS5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvOGFmYjVmZTIt M2MyYS00OTM5LTk1ZTktMDA3N2I4MGI0ZjBlLzAvMzI2MTMwNjYzYTMxNjM2MzM1 M2EzMTM2MzAzMDNhM2EyZjM0MzAyZDM0MzgyMDNkM2UyMDMxMzkzOTMzMzEzMC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAw DgQCAAIwCAMGACoPHMUWMA0GCSqGSIb3DQEBCwUAA4IBAQAmyVnzqtlsbl2D5WgO WTDujae8H3cjJJhIuHv4jmyNvF55zcXg2qBV3zq2zOOu0kL4q6sNW6hTkXA+E2k/ SpLpe2FRL55waPx7aRsdgBNN83N/n5vvBS/7Cz2H4UE2dAGtuE26SMzWpFy6jpJt suVt9TlbX0GiFFK0c1ZXjnyTP9j4gqidhuFRLOb+lbzl8KQZ2+Feb3pmWDmFi3zF oY9sZcBifTNae/5prMJCYez05c+o6EgO7ILDSHMoG3LX/Fp0W2+oN0Ajz/gslvf7 XIFMW/sLXi35+Yaij2JVl6n+40eenj3nI0p9WBgiV8xfUZ04vMg+Bn4CZGcGZoDg UDu8 -----END CERTIFICATE-----Generated at Sun Jan 18 13:13:36 2026 by rpki-client