This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/d06333c6-946d-4b0b-95ef-daba262a42e1/1/326130663a383563313a3730313a3a2f34382d3438203d3e20323033353131.roa File: 326130663a383563313a3730313a3a2f34382d3438203d3e20323033353131.roa (raw, json) Hash identifier: TDbI3KuFnMQ5wsBjn/X3RTmHb+sLgd0O0TV6P13Cktw= Subject key identifier: 85:D5:4E:BC:69:64:97:D9:53:4D:15:81:AE:8E:FA:12:40:29:49:97 Certificate issuer: /CN=1A90A6AE1542A353CCA74977EB2BFE2A49C18377 Certificate serial: 3736E77C3DB026AE8148107868FB613E91F5B4E2 Authority key identifier: 1A:90:A6:AE:15:42:A3:53:CC:A7:49:77:EB:2B:FE:2A:49:C1:83:77 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/84d51810-1987-4701-8f1f-8425111964f4/0/1A90A6AE1542A353CCA74977EB2BFE2A49C18377.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/d06333c6-946d-4b0b-95ef-daba262a42e1/1/326130663a383563313a3730313a3a2f34382d3438203d3e20323033353131.roa Signing time: Mon 26 Jan 2026 05:50:58 +0000 ROA not before: Mon 26 Jan 2026 05:45:58 +0000 ROA not after: Mon 25 Jan 2027 05:50:58 +0000 asID: 203511 IP address blocks: 2a0f:85c1:701::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/d06333c6-946d-4b0b-95ef-daba262a42e1/1/1A90A6AE1542A353CCA74977EB2BFE2A49C18377.crl rsync://rsync.paas.rpki.ripe.net/repository/d06333c6-946d-4b0b-95ef-daba262a42e1/1/1A90A6AE1542A353CCA74977EB2BFE2A49C18377.mft rsync://rsync.paas.rpki.ripe.net/repository/84d51810-1987-4701-8f1f-8425111964f4/0/1A90A6AE1542A353CCA74977EB2BFE2A49C18377.cer rsync://rsync.paas.rpki.ripe.net/repository/84d51810-1987-4701-8f1f-8425111964f4/0/C4CE7D8902405BA4598F84B6A41C27D722834B1C.crl rsync://rsync.paas.rpki.ripe.net/repository/84d51810-1987-4701-8f1f-8425111964f4/0/C4CE7D8902405BA4598F84B6A41C27D722834B1C.mft rsync://rpki.ripe.net/repository/DEFAULT/xM59iQJAW6RZj4S2pBwn1yKDSxw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 05 Feb 2026 22:31:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:36:e7:7c:3d:b0:26:ae:81:48:10:78:68:fb:61:3e:91:f5:b4:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1A90A6AE1542A353CCA74977EB2BFE2A49C18377 Validity Not Before: Jan 26 05:45:58 2026 GMT Not After : Jan 25 05:50:58 2027 GMT Subject: CN=85D54EBC696497D9534D1581AE8EFA1240294997 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:ec:b0:de:78:75:45:50:08:09:f5:fc:f7:c2: c7:74:28:7a:7b:84:f2:7e:ba:f9:20:83:02:4f:71: ac:a8:f4:36:87:14:ff:b7:da:90:e5:85:7b:a5:13: a7:8c:48:a6:c8:81:d8:96:b7:15:06:f4:14:78:8b: c0:2e:92:0c:99:46:a4:12:02:aa:e0:e9:76:9f:63: c3:a5:a2:91:29:a0:b0:d8:fc:d0:e5:fd:74:28:6c: 55:53:5d:c0:3d:a1:a2:93:b4:f8:3f:e8:00:4e:91: bf:ce:83:40:07:c0:6f:1f:5e:64:e2:cc:48:b9:35: 7d:b4:e7:be:50:d5:eb:c3:ed:cb:45:6b:c4:b5:94: 03:7a:55:d2:e5:c6:f8:9f:03:aa:c9:ee:ae:71:e4: 87:1c:27:bd:41:63:11:48:e8:b5:0b:a7:aa:e5:71: fc:6b:c8:82:bc:52:c6:e7:d2:d6:ef:c3:be:95:06: 21:73:d2:2c:9a:42:10:73:43:c3:c2:92:58:f1:7d: 1f:1b:6f:ed:9e:8c:13:f5:95:fd:04:0e:7b:c7:df: cf:98:51:c8:c7:ad:71:43:92:17:bb:ad:98:a4:4a: 57:36:ea:71:d8:f7:87:6e:35:fb:af:85:e9:1a:95: e7:29:22:f2:ec:23:8a:64:32:1a:7f:83:33:2c:60: e0:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:D5:4E:BC:69:64:97:D9:53:4D:15:81:AE:8E:FA:12:40:29:49:97 X509v3 Authority Key Identifier: keyid:1A:90:A6:AE:15:42:A3:53:CC:A7:49:77:EB:2B:FE:2A:49:C1:83:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/d06333c6-946d-4b0b-95ef-daba262a42e1/1/1A90A6AE1542A353CCA74977EB2BFE2A49C18377.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/84d51810-1987-4701-8f1f-8425111964f4/0/1A90A6AE1542A353CCA74977EB2BFE2A49C18377.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/d06333c6-946d-4b0b-95ef-daba262a42e1/1/326130663a383563313a3730313a3a2f34382d3438203d3e20323033353131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0f:85c1:701::/48 Signature Algorithm: sha256WithRSAEncryption 6d:cc:f4:4a:24:69:a8:cd:a0:8e:fa:a9:e0:fb:de:46:13:86: ec:d9:ce:a4:be:01:ef:d4:ad:12:50:97:bf:54:00:4b:29:68: 82:32:f7:56:be:8e:0d:46:2d:54:13:3d:e1:97:f7:9b:b7:ff: ae:fb:7e:b0:4f:22:30:07:62:c9:fd:8c:c4:50:62:e0:1f:13: c1:88:cc:7c:c8:76:53:5b:61:a2:05:6d:7c:b5:c7:47:b9:84: 83:f7:ab:96:dc:37:d1:86:69:92:4a:53:09:d1:67:ab:7f:c4: 53:21:08:88:4a:8d:e3:fe:9f:50:b0:16:a6:d0:13:cb:bf:22: ea:29:64:43:00:dc:30:7c:e5:ee:a0:a1:d4:fe:63:54:ba:5f: cc:b1:c7:f4:6e:a1:b3:c0:04:d8:80:24:ff:9a:3a:a5:06:db: aa:7c:aa:b3:b1:f5:02:ce:fa:7b:71:fd:cd:c0:d4:26:ca:38: 14:b1:52:a2:a8:a3:8f:5d:74:85:6c:dc:d7:c3:76:90:d7:64: 9d:44:2c:61:6d:11:16:eb:f6:48:21:ff:02:a4:58:72:6a:ae: f7:48:2f:db:0f:dd:f8:69:4a:2d:5e:af:1b:c0:c5:47:6f:60: 40:a5:36:dd:65:c5:97:e9:15:29:ca:cd:f4:d4:42:6d:94:9a: c1:47:64:08 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgIUNzbnfD2wJq6BSBB4aPthPpH1tOIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUE5MEE2QUUxNTQyQTM1M0NDQTc0OTc3RUIyQkZFMkE0 OUMxODM3NzAeFw0yNjAxMjYwNTQ1NThaFw0yNzAxMjUwNTUwNThaMDMxMTAvBgNV BAMTKDg1RDU0RUJDNjk2NDk3RDk1MzREMTU4MUFFOEVGQTEyNDAyOTQ5OTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDg7LDeeHVFUAgJ9fz3wsd0KHp7 hPJ+uvkggwJPcayo9DaHFP+32pDlhXulE6eMSKbIgdiWtxUG9BR4i8AukgyZRqQS Aqrg6XafY8OlopEpoLDY/NDl/XQobFVTXcA9oaKTtPg/6ABOkb/Og0AHwG8fXmTi zEi5NX20575Q1evD7ctFa8S1lAN6VdLlxvifA6rJ7q5x5IccJ71BYxFI6LULp6rl cfxryIK8Usbn0tbvw76VBiFz0iyaQhBzQ8PCkljxfR8bb+2ejBP1lf0EDnvH38+Y UcjHrXFDkhe7rZikSlc26nHY94duNfuvhekalecpIvLsI4pkMhp/gzMsYOClAgMB AAGjggKDMIICfzAdBgNVHQ4EFgQUhdVOvGlkl9lTTRWBro76EkApSZcwHwYDVR0j BBgwFoAUGpCmrhVCo1PMp0l36yv+KknBg3cwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZDA2MzMzYzYtOTQ2ZC00YjBiLTk1ZWYtZGFiYTI2MmE0 MmUxLzEvMUE5MEE2QUUxNTQyQTM1M0NDQTc0OTc3RUIyQkZFMkE0OUMxODM3Ny5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84NGQ1MTgxMC0xOTg3LTQ3 MDEtOGYxZi04NDI1MTExOTY0ZjQvMC8xQTkwQTZBRTE1NDJBMzUzQ0NBNzQ5NzdF QjJCRkUyQTQ5QzE4Mzc3LmNlcjCBtQYIKwYBBQUHAQsEgagwgaUwgaIGCCsGAQUF BzALhoGVcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9kMDYzMzNjNi05NDZkLTRiMGItOTVlZi1kYWJhMjYyYTQyZTEvMS8zMjYxMzA2 NjNhMzgzNTYzMzEzYTM3MzAzMTNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzAz MzM1MzEzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcB BwEB/wQTMBEwDwQCAAIwCQMHACoPhcEHATANBgkqhkiG9w0BAQsFAAOCAQEAbcz0 SiRpqM2gjvqp4PveRhOG7NnOpL4B79StElCXv1QASylogjL3Vr6ODUYtVBM94Zf3 m7f/rvt+sE8iMAdiyf2MxFBi4B8TwYjMfMh2U1thogVtfLXHR7mEg/erltw30YZp kkpTCdFnq3/EUyEIiEqN4/6fULAWptATy78i6ilkQwDcMHzl7qCh1P5jVLpfzLHH 9G6hs8AE2IAk/5o6pQbbqnyqs7H1As76e3H9zcDUJso4FLFSoqijj110hWzc18N2 kNdknUQsYW0RFuv2SCH/AqRYcmqu90gv2w/d+GlKLV6vG8DFR29gQKU23WXFl+kV KcrN9NRCbZSawUdkCA== -----END CERTIFICATE-----Generated at Thu Feb 5 07:55:28 2026 by rpki-client