This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/d06333c6-946d-4b0b-95ef-daba262a42e1/1/326130663a383563313a3766303a3a2f34382d3438203d3e20323033353131.roa File: 326130663a383563313a3766303a3a2f34382d3438203d3e20323033353131.roa (raw, json) Hash identifier: vr5fx5Kig3QfzcDYWCbyXsNAdyvUkYtnxSYtv0y5hiM= Subject key identifier: FC:E6:87:47:EB:CD:E6:40:5B:27:D5:B6:E4:3A:46:C1:F9:1D:15:65 Certificate issuer: /CN=1A90A6AE1542A353CCA74977EB2BFE2A49C18377 Certificate serial: 17E94B78DA144F5D87A82CA59A3D8EFA7DD92B5B Authority key identifier: 1A:90:A6:AE:15:42:A3:53:CC:A7:49:77:EB:2B:FE:2A:49:C1:83:77 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/84d51810-1987-4701-8f1f-8425111964f4/0/1A90A6AE1542A353CCA74977EB2BFE2A49C18377.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/d06333c6-946d-4b0b-95ef-daba262a42e1/1/326130663a383563313a3766303a3a2f34382d3438203d3e20323033353131.roa Signing time: Mon 26 Jan 2026 12:50:59 +0000 ROA not before: Mon 26 Jan 2026 12:45:59 +0000 ROA not after: Mon 25 Jan 2027 12:50:59 +0000 asID: 203511 IP address blocks: 2a0f:85c1:7f0::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/d06333c6-946d-4b0b-95ef-daba262a42e1/1/1A90A6AE1542A353CCA74977EB2BFE2A49C18377.crl rsync://rsync.paas.rpki.ripe.net/repository/d06333c6-946d-4b0b-95ef-daba262a42e1/1/1A90A6AE1542A353CCA74977EB2BFE2A49C18377.mft rsync://rsync.paas.rpki.ripe.net/repository/84d51810-1987-4701-8f1f-8425111964f4/0/1A90A6AE1542A353CCA74977EB2BFE2A49C18377.cer rsync://rsync.paas.rpki.ripe.net/repository/84d51810-1987-4701-8f1f-8425111964f4/0/C4CE7D8902405BA4598F84B6A41C27D722834B1C.crl rsync://rsync.paas.rpki.ripe.net/repository/84d51810-1987-4701-8f1f-8425111964f4/0/C4CE7D8902405BA4598F84B6A41C27D722834B1C.mft rsync://rpki.ripe.net/repository/DEFAULT/xM59iQJAW6RZj4S2pBwn1yKDSxw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 05 Feb 2026 22:31:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:e9:4b:78:da:14:4f:5d:87:a8:2c:a5:9a:3d:8e:fa:7d:d9:2b:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1A90A6AE1542A353CCA74977EB2BFE2A49C18377 Validity Not Before: Jan 26 12:45:59 2026 GMT Not After : Jan 25 12:50:59 2027 GMT Subject: CN=FCE68747EBCDE6405B27D5B6E43A46C1F91D1565 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:ee:80:25:f9:67:a4:10:b2:3b:3a:00:8d:a4: 4e:f2:24:c9:d9:ae:90:c0:3d:be:64:e5:38:cd:0a: 99:28:2d:87:ba:e8:cf:4c:6c:13:f4:8a:48:93:f5: c2:62:f9:d5:52:bb:1d:07:0f:68:bc:eb:9a:e6:50: 67:c9:09:dc:74:32:45:82:64:b9:ab:49:55:0b:6c: 70:f6:c8:7f:97:db:80:29:2a:17:83:c1:b9:1e:aa: bc:d0:71:b9:cd:90:6c:00:66:17:65:2c:ca:63:ff: 61:92:e9:c7:21:9d:dc:5a:62:14:b9:6c:fe:da:c8: 66:ff:01:4a:6d:38:f0:f9:15:32:55:a0:f7:3c:af: 2e:35:ae:a6:2c:fb:cd:04:7a:fa:1c:d5:cb:70:93: 86:10:85:b4:ae:22:28:02:32:29:94:d4:84:df:47: b4:13:f8:c3:95:ab:7c:ea:2d:d3:36:cc:1c:f5:2c: a6:aa:71:70:b1:eb:3e:1a:ae:5d:7b:0b:d1:cd:ae: a5:16:2f:41:5f:68:f2:57:26:5c:06:39:66:e1:1d: 35:17:e7:2c:69:d0:15:e7:02:12:15:13:47:a8:a7: 5b:8a:d2:f4:c9:5e:6c:01:5e:1e:67:d8:4d:a4:af: 32:29:52:95:68:ce:e6:23:45:92:5f:49:3d:0f:3b: 81:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:E6:87:47:EB:CD:E6:40:5B:27:D5:B6:E4:3A:46:C1:F9:1D:15:65 X509v3 Authority Key Identifier: keyid:1A:90:A6:AE:15:42:A3:53:CC:A7:49:77:EB:2B:FE:2A:49:C1:83:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/d06333c6-946d-4b0b-95ef-daba262a42e1/1/1A90A6AE1542A353CCA74977EB2BFE2A49C18377.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/84d51810-1987-4701-8f1f-8425111964f4/0/1A90A6AE1542A353CCA74977EB2BFE2A49C18377.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/d06333c6-946d-4b0b-95ef-daba262a42e1/1/326130663a383563313a3766303a3a2f34382d3438203d3e20323033353131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0f:85c1:7f0::/48 Signature Algorithm: sha256WithRSAEncryption 0d:5a:31:20:b1:37:78:a6:0c:8e:cf:c9:8b:10:5c:12:f3:e5: 6b:b4:f7:43:cc:b2:f6:f0:6d:9d:c8:95:94:32:83:69:64:33: 97:68:d8:9b:e7:d2:c4:58:0e:f6:5b:84:09:3f:aa:cd:36:d5: 4e:54:0f:ca:62:a8:e0:2e:61:1d:a8:98:25:5c:7f:62:67:e0: ea:28:3d:b8:9a:02:25:56:44:fc:80:7f:3c:3e:af:e7:2c:7b: e1:d0:64:ab:15:db:2f:50:f7:b1:4a:a9:3d:8e:96:be:2e:95: da:95:bb:b4:32:1e:1e:69:e0:9d:22:e0:f4:7d:0d:d8:51:9d: 80:b2:9f:5d:7a:43:ee:e5:d7:1e:00:e0:eb:49:3b:ae:02:ca: 49:e6:43:fc:af:ed:3d:8d:ac:4b:6c:a1:16:a2:f1:82:bc:87: 02:f1:06:c0:f6:0f:bb:80:ab:c8:cc:71:a6:97:65:77:b5:df: 49:a3:f2:77:4a:52:b5:77:fc:b3:51:14:54:9f:05:a3:a1:2b: fb:14:a3:34:49:44:30:90:98:31:75:fd:76:1b:23:53:11:ba: 70:5f:78:0a:40:b0:53:54:bf:41:7f:3d:b2:10:e6:03:f3:fd: 3c:67:5c:8e:71:97:95:20:2c:b7:67:43:70:6c:e3:36:c6:f2: 19:54:90:94 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgIUF+lLeNoUT12HqCylmj2O+n3ZK1swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUE5MEE2QUUxNTQyQTM1M0NDQTc0OTc3RUIyQkZFMkE0 OUMxODM3NzAeFw0yNjAxMjYxMjQ1NTlaFw0yNzAxMjUxMjUwNTlaMDMxMTAvBgNV BAMTKEZDRTY4NzQ3RUJDREU2NDA1QjI3RDVCNkU0M0E0NkMxRjkxRDE1NjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC57oAl+WekELI7OgCNpE7yJMnZ rpDAPb5k5TjNCpkoLYe66M9MbBP0ikiT9cJi+dVSux0HD2i865rmUGfJCdx0MkWC ZLmrSVULbHD2yH+X24ApKheDwbkeqrzQcbnNkGwAZhdlLMpj/2GS6cchndxaYhS5 bP7ayGb/AUptOPD5FTJVoPc8ry41rqYs+80Eevoc1ctwk4YQhbSuIigCMimU1ITf R7QT+MOVq3zqLdM2zBz1LKaqcXCx6z4arl17C9HNrqUWL0FfaPJXJlwGOWbhHTUX 5yxp0BXnAhIVE0eop1uK0vTJXmwBXh5n2E2krzIpUpVozuYjRZJfST0PO4GfAgMB AAGjggKDMIICfzAdBgNVHQ4EFgQU/OaHR+vN5kBbJ9W25DpGwfkdFWUwHwYDVR0j BBgwFoAUGpCmrhVCo1PMp0l36yv+KknBg3cwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZDA2MzMzYzYtOTQ2ZC00YjBiLTk1ZWYtZGFiYTI2MmE0 MmUxLzEvMUE5MEE2QUUxNTQyQTM1M0NDQTc0OTc3RUIyQkZFMkE0OUMxODM3Ny5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84NGQ1MTgxMC0xOTg3LTQ3 MDEtOGYxZi04NDI1MTExOTY0ZjQvMC8xQTkwQTZBRTE1NDJBMzUzQ0NBNzQ5NzdF QjJCRkUyQTQ5QzE4Mzc3LmNlcjCBtQYIKwYBBQUHAQsEgagwgaUwgaIGCCsGAQUF BzALhoGVcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9kMDYzMzNjNi05NDZkLTRiMGItOTVlZi1kYWJhMjYyYTQyZTEvMS8zMjYxMzA2 NjNhMzgzNTYzMzEzYTM3NjYzMDNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzAz MzM1MzEzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcB BwEB/wQTMBEwDwQCAAIwCQMHACoPhcEH8DANBgkqhkiG9w0BAQsFAAOCAQEADVox ILE3eKYMjs/JixBcEvPla7T3Q8yy9vBtnciVlDKDaWQzl2jYm+fSxFgO9luECT+q zTbVTlQPymKo4C5hHaiYJVx/Ymfg6ig9uJoCJVZE/IB/PD6v5yx74dBkqxXbL1D3 sUqpPY6Wvi6V2pW7tDIeHmngnSLg9H0N2FGdgLKfXXpD7uXXHgDg60k7rgLKSeZD /K/tPY2sS2yhFqLxgryHAvEGwPYPu4CryMxxppdld7XfSaPyd0pStXf8s1EUVJ8F o6Er+xSjNElEMJCYMXX9dhsjUxG6cF94CkCwU1S/QX89shDmA/P9PGdcjnGXlSAs t2dDcGzjNsbyGVSQlA== -----END CERTIFICATE-----Generated at Thu Feb 5 07:56:12 2026 by rpki-client