This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/0/326130663a316363353a6230303a3a2f34302d3438203d3e20323134353735.roa File: 326130663a316363353a6230303a3a2f34302d3438203d3e20323134353735.roa (raw, json) Hash identifier: /wBjERMVRUk3eATx7xB8KQMRotjHS8Dx8tee6UNFQoc= Subject key identifier: 5F:97:96:C9:61:2E:44:9D:5B:37:73:DF:D2:74:77:00:A4:3A:D8:16 Certificate issuer: /CN=411e2d411d687bcb4449c3df45beedc041007d94 Certificate serial: 438A624AD9DB456DDD68AA8D11CB8EACF556B204 Authority key identifier: 41:1E:2D:41:1D:68:7B:CB:44:49:C3:DF:45:BE:ED:C0:41:00:7D:94 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QR4tQR1oe8tEScPfRb7twEEAfZQ.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/0/326130663a316363353a6230303a3a2f34302d3438203d3e20323134353735.roa Signing time: Sat 17 Jan 2026 21:25:10 +0000 ROA not before: Sat 17 Jan 2026 21:20:10 +0000 ROA not after: Sat 16 Jan 2027 21:25:10 +0000 asID: 214575 IP address blocks: 2a0f:1cc5:b00::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/0/411E2D411D687BCB4449C3DF45BEEDC041007D94.crl rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/0/411E2D411D687BCB4449C3DF45BEEDC041007D94.mft rsync://rpki.ripe.net/repository/DEFAULT/QR4tQR1oe8tEScPfRb7twEEAfZQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 19 Jan 2026 06:00:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:8a:62:4a:d9:db:45:6d:dd:68:aa:8d:11:cb:8e:ac:f5:56:b2:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=411e2d411d687bcb4449c3df45beedc041007d94 Validity Not Before: Jan 17 21:20:10 2026 GMT Not After : Jan 16 21:25:10 2027 GMT Subject: CN=5F9796C9612E449D5B3773DFD2747700A43AD816 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:3b:ff:17:95:fb:66:e4:83:a0:20:95:d2:b9: 71:2d:c2:18:68:02:01:2b:49:a7:d5:62:ef:5b:7f: bb:c8:d7:6c:e7:87:15:2c:67:a3:33:b9:dd:55:93: d0:43:82:fc:b2:0d:5b:05:7b:23:e1:d9:84:4d:e6: ac:bd:81:b1:94:2a:f8:df:0e:9c:7a:45:bf:33:34: 63:55:46:e1:1b:84:09:8f:ff:62:44:ec:3c:69:ba: db:52:e3:ff:d4:dc:08:95:8f:48:0f:c4:74:53:b1: 8b:18:48:66:85:59:b0:a8:69:49:40:32:74:08:44: f8:1e:c3:4c:21:4c:78:69:93:4b:6d:c4:5a:e4:77: 8e:b7:69:5b:a7:5f:8b:25:bf:8b:2b:23:32:e5:37: c8:93:be:9e:33:fe:49:50:9a:79:2b:c7:7c:84:8a: 8a:48:e2:e3:7f:f8:7e:da:fc:64:3f:03:68:c4:39: a2:cd:80:54:d8:31:64:e6:fa:f2:05:f2:4d:52:7e: 9a:ca:d4:10:c0:8f:21:f5:93:a8:75:76:35:53:4f: 7a:c2:7c:ab:9e:5a:15:8e:37:b4:a1:c7:97:1c:c0: fd:b1:98:8b:e8:c9:78:cb:64:0a:1a:1c:93:5a:ae: 21:c7:57:58:81:f8:97:c3:32:72:7a:1b:f5:2a:b2: 3b:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:97:96:C9:61:2E:44:9D:5B:37:73:DF:D2:74:77:00:A4:3A:D8:16 X509v3 Authority Key Identifier: keyid:41:1E:2D:41:1D:68:7B:CB:44:49:C3:DF:45:BE:ED:C0:41:00:7D:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/0/411E2D411D687BCB4449C3DF45BEEDC041007D94.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QR4tQR1oe8tEScPfRb7twEEAfZQ.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/0/326130663a316363353a6230303a3a2f34302d3438203d3e20323134353735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0f:1cc5:b00::/40 Signature Algorithm: sha256WithRSAEncryption 4b:24:87:70:48:8a:b1:8c:a1:5d:bf:3b:54:d6:9e:0b:7d:d7: 7a:a8:8e:63:3e:80:fd:6f:d7:fa:4f:2d:7c:a1:3f:28:f7:7d: 45:85:44:27:b8:90:e6:39:0f:91:11:28:5b:22:5f:7c:23:c3: 06:0d:eb:83:f8:68:eb:62:43:07:bd:86:f0:e2:86:99:96:73: c1:b1:d4:e3:05:e5:13:75:6e:a0:07:3e:dc:1c:09:13:90:7f: 0e:76:bc:ef:10:99:a1:bb:6d:c9:56:82:1f:35:0c:fa:39:e3: e8:d5:98:30:92:7d:58:d9:74:56:0d:76:5c:53:15:7c:a7:d2: cb:c4:d4:b0:d6:22:c2:fe:3b:57:2c:25:d3:48:53:2b:65:af: b8:3a:fd:f5:fd:b2:1d:38:fa:f7:66:cd:9b:fa:0f:73:0d:6e: 44:81:50:8c:be:dc:e2:16:9f:50:33:44:e2:16:01:c4:6a:f6: ba:ba:20:83:7b:fe:ad:37:d9:0c:78:cf:20:4e:dc:e2:2b:c6: 55:6e:f0:e9:8a:e1:04:30:ed:d7:c0:64:ee:12:25:d1:00:f8: 80:4c:ce:af:01:c7:44:b9:66:b7:fc:b9:d0:68:7a:42:68:ea: bd:07:8f:0b:27:c3:5d:d9:73:37:70:c4:2a:ff:9b:b1:08:3a: 80:a0:5d:e5 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUQ4piStnbRW3daKqNEcuOrPVWsgQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDExZTJkNDExZDY4N2JjYjQ0NDljM2RmNDViZWVkYzA0 MTAwN2Q5NDAeFw0yNjAxMTcyMTIwMTBaFw0yNzAxMTYyMTI1MTBaMDMxMTAvBgNV BAMTKDVGOTc5NkM5NjEyRTQ0OUQ1QjM3NzNERkQyNzQ3NzAwQTQzQUQ4MTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSO/8Xlftm5IOgIJXSuXEtwhho AgErSafVYu9bf7vI12znhxUsZ6Mzud1Vk9BDgvyyDVsFeyPh2YRN5qy9gbGUKvjf Dpx6Rb8zNGNVRuEbhAmP/2JE7DxputtS4//U3AiVj0gPxHRTsYsYSGaFWbCoaUlA MnQIRPgew0whTHhpk0ttxFrkd463aVunX4slv4srIzLlN8iTvp4z/klQmnkrx3yE iopI4uN/+H7a/GQ/A2jEOaLNgFTYMWTm+vIF8k1SfprK1BDAjyH1k6h1djVTT3rC fKueWhWON7Shx5ccwP2xmIvoyXjLZAoaHJNariHHV1iB+JfDMnJ6G/UqsjszAgMB AAGjggJHMIICQzAdBgNVHQ4EFgQUX5eWyWEuRJ1bN3Pf0nR3AKQ62BYwHwYDVR0j BBgwFoAUQR4tQR1oe8tEScPfRb7twEEAfZQwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvOGFmYjVmZTItM2MyYS00OTM5LTk1ZTktMDA3N2I4MGI0 ZjBlLzAvNDExRTJENDExRDY4N0JDQjQ0NDlDM0RGNDVCRUVEQzA0MTAwN0Q5NC5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1FSNHRRUjFvZTh0RVNjUGZSYjd0d0VF QWZaUS5jZXIwgbUGCCsGAQUFBwELBIGoMIGlMIGiBggrBgEFBQcwC4aBlXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvOGFmYjVmZTIt M2MyYS00OTM5LTk1ZTktMDA3N2I4MGI0ZjBlLzAvMzI2MTMwNjYzYTMxNjM2MzM1 M2E2MjMwMzAzYTNhMmYzNDMwMmQzNDM4MjAzZDNlMjAzMjMxMzQzNTM3MzUucm9h MBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4E AgACMAgDBgAqDxzFCzANBgkqhkiG9w0BAQsFAAOCAQEASySHcEiKsYyhXb87VNae C33XeqiOYz6A/W/X+k8tfKE/KPd9RYVEJ7iQ5jkPkREoWyJffCPDBg3rg/ho62JD B72G8OKGmZZzwbHU4wXlE3VuoAc+3BwJE5B/Dna87xCZobttyVaCHzUM+jnj6NWY MJJ9WNl0Vg12XFMVfKfSy8TUsNYiwv47Vywl00hTK2WvuDr99f2yHTj692bNm/oP cw1uRIFQjL7c4hafUDNE4hYBxGr2urogg3v+rTfZDHjPIE7c4ivGVW7w6YrhBDDt 18Bk7hIl0QD4gEzOrwHHRLlmt/y50Gh6QmjqvQePCyfDXdlzN3DEKv+bsQg6gKBd 5Q== -----END CERTIFICATE-----Generated at Sun Jan 18 13:13:27 2026 by rpki-client