This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fadebb9d-33cc-429b-aa35-10634a8b1dd4/0/326131343a373538313a323330303a3a2f34302d3430203d3e20343031333836.roa File: 326131343a373538313a323330303a3a2f34302d3430203d3e20343031333836.roa (raw, json) Hash identifier: GU9+rKAYRqNo9YIwP+TkUZlOwC3QOJ/ceUAdYXuG73A= Subject key identifier: C3:47:FF:09:17:01:B5:5F:0C:1C:B9:A6:00:C1:3B:07:4E:90:D6:00 Certificate issuer: /CN=35B52EF20A5730A6261D6D1916C6B747FF3C2852 Certificate serial: 59C0D3092BF1FE3DF2B71874193F315B8669FA94 Authority key identifier: 35:B5:2E:F2:0A:57:30:A6:26:1D:6D:19:16:C6:B7:47:FF:3C:28:52 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/35B52EF20A5730A6261D6D1916C6B747FF3C2852.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fadebb9d-33cc-429b-aa35-10634a8b1dd4/0/326131343a373538313a323330303a3a2f34302d3430203d3e20343031333836.roa Signing time: Wed 24 Dec 2025 15:18:27 +0000 ROA not before: Wed 24 Dec 2025 15:13:27 +0000 ROA not after: Wed 23 Dec 2026 15:18:27 +0000 asID: 401386 IP address blocks: 2a14:7581:2300::/40 maxlen: 40 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fadebb9d-33cc-429b-aa35-10634a8b1dd4/0/35B52EF20A5730A6261D6D1916C6B747FF3C2852.crl rsync://rsync.paas.rpki.ripe.net/repository/fadebb9d-33cc-429b-aa35-10634a8b1dd4/0/35B52EF20A5730A6261D6D1916C6B747FF3C2852.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/35B52EF20A5730A6261D6D1916C6B747FF3C2852.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 19:06:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:c0:d3:09:2b:f1:fe:3d:f2:b7:18:74:19:3f:31:5b:86:69:fa:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=35B52EF20A5730A6261D6D1916C6B747FF3C2852 Validity Not Before: Dec 24 15:13:27 2025 GMT Not After : Dec 23 15:18:27 2026 GMT Subject: CN=C347FF091701B55F0C1CB9A600C13B074E90D600 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:30:57:89:cf:d1:28:b8:ac:ce:81:eb:d5:03: 5c:c9:a0:6f:61:65:e1:31:dd:8c:6c:ab:50:11:7e: 37:12:3b:85:af:c0:f9:55:2e:a4:85:92:63:f5:7c: c6:bb:e3:27:2a:b2:47:77:be:f1:37:ce:83:d2:24: 75:86:66:5f:aa:80:7b:c7:2a:c0:34:dc:ca:b8:31: 8e:43:f6:4e:42:ad:ce:96:b4:6c:53:d4:ee:bc:97: e6:1a:e8:c0:ef:0c:78:64:0a:7e:a4:a5:d2:f0:97: b5:24:3f:fd:6e:6b:6a:a7:41:16:74:fb:2d:a4:f3: f3:be:21:0d:65:4a:6f:0e:37:2a:88:2f:6c:5e:01: 32:73:7f:0d:28:b5:eb:9c:fa:4c:3c:c1:59:35:4b: 1a:7d:45:04:6c:98:b9:e7:c7:d6:97:bb:30:7d:ae: b4:51:8f:9e:e1:06:5f:e4:50:e4:62:ab:b4:a2:9f: ea:76:6c:2e:67:ed:1a:86:1c:ff:68:c5:50:b4:71: ab:53:ea:96:e3:af:a8:ea:b2:71:c5:a4:54:14:2f: 8d:10:9e:79:78:34:01:32:00:66:d8:e3:12:87:37: a2:23:67:83:d8:35:93:38:2f:af:5c:98:93:9d:75: c1:6e:23:36:3d:c6:e6:e0:e0:63:68:3a:99:e0:13: 22:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:47:FF:09:17:01:B5:5F:0C:1C:B9:A6:00:C1:3B:07:4E:90:D6:00 X509v3 Authority Key Identifier: keyid:35:B5:2E:F2:0A:57:30:A6:26:1D:6D:19:16:C6:B7:47:FF:3C:28:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fadebb9d-33cc-429b-aa35-10634a8b1dd4/0/35B52EF20A5730A6261D6D1916C6B747FF3C2852.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/35B52EF20A5730A6261D6D1916C6B747FF3C2852.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fadebb9d-33cc-429b-aa35-10634a8b1dd4/0/326131343a373538313a323330303a3a2f34302d3430203d3e20343031333836.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:2300::/40 Signature Algorithm: sha256WithRSAEncryption 16:20:14:9e:ca:ff:6f:27:df:ce:b5:e5:fe:9d:d3:68:e8:cc: 6a:7c:0a:7c:5b:73:5d:bf:98:46:80:3e:03:dc:91:34:f9:d4: be:c3:ea:d9:e8:c6:3f:28:6e:b8:be:1a:d9:ab:0e:39:50:15: 0e:46:1b:27:cf:2f:a4:75:b7:02:f4:37:66:42:ec:25:83:16: d4:ff:bd:28:c8:ca:45:84:bf:f8:64:0a:f9:c8:5b:45:88:a1: 98:b7:5a:a8:ad:52:29:39:85:20:91:90:0e:62:f5:d2:05:78: b0:d6:9e:f1:cb:d7:d9:cb:8a:07:13:88:7b:33:d2:d4:c7:91: 03:a8:58:8d:f3:00:12:bf:ae:5b:ae:c7:41:de:a8:68:6e:c2: 51:ee:75:bf:ae:ce:b2:0a:79:56:01:cf:68:96:89:d6:0a:bf: 20:75:cd:2a:38:1a:83:02:92:91:e7:b9:fc:e9:c2:66:78:66: 9a:7f:3b:ca:79:be:52:12:29:01:29:10:97:2d:8e:e6:d5:85: 2e:44:e2:b1:cc:ff:61:5d:5f:2c:cc:fd:71:e2:49:53:7b:06: 53:c1:ce:9a:54:70:ae:8f:34:3c:69:28:f0:93:e9:ef:79:15: a8:48:c6:fe:36:a0:4d:09:8c:aa:2d:e5:0b:d9:8d:42:08:b9: d8:9f:7e:4f -----BEGIN CERTIFICATE----- MIIFejCCBGKgAwIBAgIUWcDTCSvx/j3ytxh0GT8xW4Zp+pQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzVCNTJFRjIwQTU3MzBBNjI2MUQ2RDE5MTZDNkI3NDdG RjNDMjg1MjAeFw0yNTEyMjQxNTEzMjdaFw0yNjEyMjMxNTE4MjdaMDMxMTAvBgNV BAMTKEMzNDdGRjA5MTcwMUI1NUYwQzFDQjlBNjAwQzEzQjA3NEU5MEQ2MDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQClMFeJz9EouKzOgevVA1zJoG9h ZeEx3Yxsq1ARfjcSO4WvwPlVLqSFkmP1fMa74ycqskd3vvE3zoPSJHWGZl+qgHvH KsA03Mq4MY5D9k5Crc6WtGxT1O68l+Ya6MDvDHhkCn6kpdLwl7UkP/1ua2qnQRZ0 +y2k8/O+IQ1lSm8ONyqIL2xeATJzfw0oteuc+kw8wVk1Sxp9RQRsmLnnx9aXuzB9 rrRRj57hBl/kUORiq7Sin+p2bC5n7RqGHP9oxVC0catT6pbjr6jqsnHFpFQUL40Q nnl4NAEyAGbY4xKHN6IjZ4PYNZM4L69cmJOddcFuIzY9xubg4GNoOpngEyIHAgMB AAGjggKEMIICgDAdBgNVHQ4EFgQUw0f/CRcBtV8MHLmmAME7B06Q1gAwHwYDVR0j BBgwFoAUNbUu8gpXMKYmHW0ZFsa3R/88KFIwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmFkZWJiOWQtMzNjYy00MjliLWFhMzUtMTA2MzRhOGIx ZGQ0LzAvMzVCNTJFRjIwQTU3MzBBNjI2MUQ2RDE5MTZDNkI3NDdGRjNDMjg1Mi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8zNUI1MkVGMjBBNTczMEE2MjYxRDZEMTkx NkM2Qjc0N0ZGM0MyODUyLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9mYWRlYmI5ZC0zM2NjLTQyOWItYWEzNS0xMDYzNGE4YjFkZDQvMC8zMjYxMzEz NDNhMzczNTM4MzEzYTMyMzMzMDMwM2EzYTJmMzQzMDJkMzQzMDIwM2QzZTIwMzQz MDMxMzMzODM2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKhR1gSMwDQYJKoZIhvcNAQELBQADggEBABYg FJ7K/28n38615f6d02jozGp8Cnxbc12/mEaAPgPckTT51L7D6tnoxj8obri+Gtmr DjlQFQ5GGyfPL6R1twL0N2ZC7CWDFtT/vSjIykWEv/hkCvnIW0WIoZi3WqitUik5 hSCRkA5i9dIFeLDWnvHL19nLigcTiHsz0tTHkQOoWI3zABK/rluux0HeqGhuwlHu db+uzrIKeVYBz2iWidYKvyB1zSo4GoMCkpHnufzpwmZ4Zpp/O8p5vlISKQEpEJct jubVhS5E4rHM/2FdXyzM/XHiSVN7BlPBzppUcK6PNDxpKPCT6e95FahIxv42oE0J jKot5QvZjUIIudiffk8= -----END CERTIFICATE-----Generated at Mon Jan 26 11:10:44 2026 by rpki-client