This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/326130313a3666303a3130303a3a2f34302d3438203d3e203432333636.roa File: 326130313a3666303a3130303a3a2f34302d3438203d3e203432333636.roa (raw, json) Hash identifier: bi7fyHV+cGTm/Vs+9bIi6ytYM/hNsUPrssmieUmfRcI= Subject key identifier: 71:44:81:98:74:99:5C:A6:8B:F8:CE:9D:EC:E7:61:21:28:A4:DE:70 Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Certificate serial: 36B080B0BF9E66C3EEF7B9C14BD36EF110376F52 Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/326130313a3666303a3130303a3a2f34302d3438203d3e203432333636.roa Signing time: Mon 29 Dec 2025 09:50:44 +0000 ROA not before: Mon 29 Dec 2025 09:45:44 +0000 ROA not after: Mon 28 Dec 2026 09:50:44 +0000 asID: 42366 IP address blocks: 2a01:6f0:100::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 01:05:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:b0:80:b0:bf:9e:66:c3:ee:f7:b9:c1:4b:d3:6e:f1:10:37:6f:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Validity Not Before: Dec 29 09:45:44 2025 GMT Not After : Dec 28 09:50:44 2026 GMT Subject: CN=7144819874995CA68BF8CE9DECE7612128A4DE70 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:ab:c4:48:d5:f1:83:38:4c:16:80:24:bc:3c: ce:a4:03:51:a1:c2:1f:ad:f3:1c:be:8c:9c:29:df: 06:94:8d:dd:21:b5:4a:43:d0:d9:d9:9a:93:05:ac: 69:55:21:3d:48:55:3a:a5:20:8d:b5:62:ba:85:29: a6:08:20:0b:ae:ba:48:7c:87:ab:2b:0d:cc:b5:ba: 42:e1:bf:16:db:42:77:71:df:3f:fc:72:4e:6a:f2: 67:8b:1e:e4:4a:7c:09:ba:a3:ae:28:fb:23:fc:03: 59:0a:bc:6e:59:af:95:ae:61:4f:34:b7:a2:0e:39: e1:d1:9e:3b:75:bd:d4:f8:45:8f:fc:7a:49:90:a0: f2:fd:d1:8a:fb:27:77:77:7b:9f:4a:79:23:65:7d: 97:1c:f6:fc:e1:a1:ca:32:c3:e6:eb:ec:8b:81:69: e2:2a:bd:ba:cb:b5:8f:a6:c5:54:65:df:b8:28:11: 75:f1:05:6f:17:56:47:70:81:7d:5e:71:7d:98:24: c7:f3:3f:7d:20:73:f0:91:ff:c1:ab:eb:75:4f:5d: 76:aa:e0:10:d5:31:fe:06:4e:ed:20:be:2a:15:d7: 64:d9:30:01:45:fe:35:ed:99:8c:a2:23:e3:40:19: fc:98:ae:10:24:25:8f:77:ef:0e:c0:87:98:b8:79: 71:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:44:81:98:74:99:5C:A6:8B:F8:CE:9D:EC:E7:61:21:28:A4:DE:70 X509v3 Authority Key Identifier: keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/326130313a3666303a3130303a3a2f34302d3438203d3e203432333636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a01:6f0:100::/40 Signature Algorithm: sha256WithRSAEncryption 86:0c:2f:ec:ed:e4:01:15:59:9a:46:ee:db:2f:f7:eb:12:af: 39:d4:3d:8e:ae:73:c0:b8:c9:8b:83:c7:c0:bc:84:7c:31:9e: 77:34:e4:46:08:f5:03:9e:57:49:00:80:c1:96:97:1f:ae:f2: 4d:a4:f0:63:c0:43:97:9f:c9:c8:a2:a3:9f:2c:80:7f:52:86: bc:4a:59:8d:4e:91:50:3c:5f:fb:8e:d4:bd:ca:4e:58:a8:1c: 48:4b:3c:2d:a6:15:89:45:b3:36:c6:63:20:cb:38:2a:71:2f: d3:da:80:4e:67:82:26:1b:f6:bc:a5:8a:4a:5c:dc:35:29:70: 83:a2:15:10:75:8c:41:25:9e:37:8d:95:30:2f:82:45:1f:81: 4f:49:39:1b:78:3a:8f:7a:a3:c5:4c:4c:f7:8b:94:e4:61:26: 85:51:d0:5c:c0:0b:cb:20:b6:a8:65:32:65:a0:32:58:84:cc: d7:f3:b1:df:bc:c2:21:39:49:0a:46:09:6c:2b:0b:b4:d1:80: 2f:b6:92:e3:26:49:07:f2:ba:54:1c:94:99:bc:2f:b7:38:fc: df:53:5f:52:de:ca:b2:0a:07:63:e9:56:cc:46:01:07:78:01: d0:70:4b:94:e6:1e:a4:ca:9b:dd:cc:80:76:7b:bf:cc:21:c8: 70:14:50:39 -----BEGIN CERTIFICATE----- MIIFOTCCBCGgAwIBAgIUNrCAsL+eZsPu97nBS9Nu8RA3b1IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0 ZWE3Nzc5YzAeFw0yNTEyMjkwOTQ1NDRaFw0yNjEyMjgwOTUwNDRaMDMxMTAvBgNV BAMTKDcxNDQ4MTk4NzQ5OTVDQTY4QkY4Q0U5REVDRTc2MTIxMjhBNERFNzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDrq8RI1fGDOEwWgCS8PM6kA1Gh wh+t8xy+jJwp3waUjd0htUpD0NnZmpMFrGlVIT1IVTqlII21YrqFKaYIIAuuukh8 h6srDcy1ukLhvxbbQndx3z/8ck5q8meLHuRKfAm6o64o+yP8A1kKvG5Zr5WuYU80 t6IOOeHRnjt1vdT4RY/8ekmQoPL90Yr7J3d3e59KeSNlfZcc9vzhocoyw+br7IuB aeIqvbrLtY+mxVRl37goEXXxBW8XVkdwgX1ecX2YJMfzP30gc/CR/8Gr63VPXXaq 4BDVMf4GTu0gvioV12TZMAFF/jXtmYyiI+NAGfyYrhAkJY937w7Ah5i4eXELAgMB AAGjggJDMIICPzAdBgNVHQ4EFgQUcUSBmHSZXKaL+M6d7OdhISik3nAwHwYDVR0j BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2 bmQ1dy5jZXIwgbEGCCsGAQUFBwELBIGkMIGhMIGeBggrBgEFBQcwC4aBkXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzI2MTMwMzEzYTM2NjYzMDNh MzEzMDMwM2EzYTJmMzQzMDJkMzQzODIwM2QzZTIwMzQzMjMzMzYzNi5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIw CAMGACoBBvABMA0GCSqGSIb3DQEBCwUAA4IBAQCGDC/s7eQBFVmaRu7bL/frEq85 1D2OrnPAuMmLg8fAvIR8MZ53NORGCPUDnldJAIDBlpcfrvJNpPBjwEOXn8nIoqOf LIB/Uoa8SlmNTpFQPF/7jtS9yk5YqBxISzwtphWJRbM2xmMgyzgqcS/T2oBOZ4Im G/a8pYpKXNw1KXCDohUQdYxBJZ43jZUwL4JFH4FPSTkbeDqPeqPFTEz3i5TkYSaF UdBcwAvLILaoZTJloDJYhMzX87HfvMIhOUkKRglsKwu00YAvtpLjJkkH8rpUHJSZ vC+3OPzfU19S3sqyCgdj6VbMRgEHeAHQcEuU5h6kypvdzIB2e7/MIchwFFA5 -----END CERTIFICATE-----Generated at Mon Jan 19 14:28:13 2026 by rpki-client