This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/326130313a3666303a666666663a3a2f34382d3438203d3e203633343733.roa File: 326130313a3666303a666666663a3a2f34382d3438203d3e203633343733.roa (raw, json) Hash identifier: AVI2yrU65h/8mU+eMzKcZao5CgFl6kU1L2qGjhJWYU0= Subject key identifier: 19:72:A8:E5:64:6A:D0:16:16:8D:2F:B8:CA:B0:FA:0F:71:5E:83:78 Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Certificate serial: 2F8F0CFD2EAA6C1633FEDCA31D9B81F87B57B87F Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/326130313a3666303a666666663a3a2f34382d3438203d3e203633343733.roa Signing time: Mon 29 Dec 2025 09:50:52 +0000 ROA not before: Mon 29 Dec 2025 09:45:52 +0000 ROA not after: Mon 28 Dec 2026 09:50:52 +0000 asID: 63473 IP address blocks: 2a01:6f0:ffff::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 01:05:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:8f:0c:fd:2e:aa:6c:16:33:fe:dc:a3:1d:9b:81:f8:7b:57:b8:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Validity Not Before: Dec 29 09:45:52 2025 GMT Not After : Dec 28 09:50:52 2026 GMT Subject: CN=1972A8E5646AD016168D2FB8CAB0FA0F715E8378 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:fa:5d:ac:b7:4c:df:bd:12:6d:5e:04:8e:b0: 04:ed:8d:01:30:41:d2:12:ae:7f:8f:b2:d0:2a:5b: 1f:de:bf:34:47:df:ba:f9:f7:30:47:2c:79:6a:e9: 08:69:85:45:41:94:1b:db:ce:1e:10:6a:38:a3:5b: 2f:80:c1:b6:ad:c2:fc:fc:4b:dc:d6:65:b7:97:6d: f4:53:b9:9e:b2:02:46:36:86:7c:5a:bb:04:7a:ec: 9f:1f:24:50:0f:78:0f:82:1c:cc:a0:1f:e5:9b:b5: a3:fa:fc:97:51:7a:9c:67:96:4e:4f:a8:d6:9a:25: d9:fd:0c:14:58:57:6e:f0:51:63:f2:6c:4f:cb:11: b9:eb:19:ea:49:4b:49:e8:66:9c:07:65:22:0c:8a: c0:7d:8a:c8:97:78:f7:81:86:5d:82:fd:6a:e3:90: e3:21:5e:26:28:d0:2a:74:5c:64:be:0e:a2:88:44: 69:30:30:7d:a3:16:82:f0:08:eb:c7:46:c4:6a:35: 13:6e:61:bc:31:aa:98:32:17:f0:36:7e:f2:7a:43: 46:f0:18:ff:89:04:6d:e2:46:fd:76:95:71:dc:d5: b4:1f:5b:87:a1:20:80:8c:3d:dc:b6:ed:da:de:64: 7f:90:bc:01:e2:83:fd:b8:19:2f:bd:2f:52:65:35: c1:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:72:A8:E5:64:6A:D0:16:16:8D:2F:B8:CA:B0:FA:0F:71:5E:83:78 X509v3 Authority Key Identifier: keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/326130313a3666303a666666663a3a2f34382d3438203d3e203633343733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a01:6f0:ffff::/48 Signature Algorithm: sha256WithRSAEncryption 67:39:db:0e:ab:93:b1:22:75:ce:29:33:e5:64:92:47:8c:67: ea:e8:ec:9a:bd:29:f7:05:64:5b:ec:38:a3:63:41:90:b3:0c: 1e:f9:d7:2e:54:85:71:88:9b:2d:68:6b:14:5c:f9:32:05:c4: e7:31:d5:43:b3:fe:71:0c:0f:30:c7:16:07:76:1d:39:db:ae: b4:f9:82:fa:95:8a:fe:1f:af:77:83:5d:c1:3a:7d:d6:d2:5f: d6:4c:34:4c:17:ca:e6:0c:ea:42:6c:88:3b:ba:63:ac:62:1b: 27:55:04:55:69:c3:47:20:99:4a:03:7f:9c:02:90:fe:36:20: 47:f5:11:c0:50:e3:28:b8:9b:81:d2:d9:db:d7:9c:ca:4c:c7: 65:ea:12:ba:a8:7b:a7:72:b5:a0:9f:30:62:b9:b8:9c:50:2b: 45:28:6b:16:aa:e9:5e:86:8c:ca:e2:e9:cd:ff:48:9e:b2:97: 83:9a:a8:3b:ea:e3:44:64:e0:d0:0d:ea:60:42:e4:3a:4c:ae: de:0d:d5:d5:fb:bf:df:c8:dc:0f:bb:83:49:11:0b:40:ea:20: 73:53:9f:bf:ed:ec:72:d2:b4:25:7a:fc:c4:fe:d5:b0:30:44: 25:06:c8:b9:18:5d:d9:28:46:64:2a:72:c5:b3:a9:30:61:0f: 86:64:6f:26 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgIUL48M/S6qbBYz/tyjHZuB+HtXuH8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0 ZWE3Nzc5YzAeFw0yNTEyMjkwOTQ1NTJaFw0yNjEyMjgwOTUwNTJaMDMxMTAvBgNV BAMTKDE5NzJBOEU1NjQ2QUQwMTYxNjhEMkZCOENBQjBGQTBGNzE1RTgzNzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDB+l2st0zfvRJtXgSOsATtjQEw QdISrn+PstAqWx/evzRH37r59zBHLHlq6QhphUVBlBvbzh4QajijWy+Awbatwvz8 S9zWZbeXbfRTuZ6yAkY2hnxauwR67J8fJFAPeA+CHMygH+WbtaP6/JdRepxnlk5P qNaaJdn9DBRYV27wUWPybE/LEbnrGepJS0noZpwHZSIMisB9isiXePeBhl2C/Wrj kOMhXiYo0Cp0XGS+DqKIRGkwMH2jFoLwCOvHRsRqNRNuYbwxqpgyF/A2fvJ6Q0bw GP+JBG3iRv12lXHc1bQfW4ehIICMPdy27dreZH+QvAHig/24GS+9L1JlNcHlAgMB AAGjggJGMIICQjAdBgNVHQ4EFgQUGXKo5WRq0BYWjS+4yrD6D3Feg3gwHwYDVR0j BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2 bmQ1dy5jZXIwgbMGCCsGAQUFBwELBIGmMIGjMIGgBggrBgEFBQcwC4aBk3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzI2MTMwMzEzYTM2NjYzMDNh NjY2NjY2NjYzYTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzNjMzMzQzNzMzLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIA AjAJAwcAKgEG8P//MA0GCSqGSIb3DQEBCwUAA4IBAQBnOdsOq5OxInXOKTPlZJJH jGfq6OyavSn3BWRb7DijY0GQswwe+dcuVIVxiJstaGsUXPkyBcTnMdVDs/5xDA8w xxYHdh052660+YL6lYr+H693g13BOn3W0l/WTDRMF8rmDOpCbIg7umOsYhsnVQRV acNHIJlKA3+cApD+NiBH9RHAUOMouJuB0tnb15zKTMdl6hK6qHuncrWgnzBiubic UCtFKGsWqulehozK4unN/0iespeDmqg76uNEZODQDepgQuQ6TK7eDdXV+7/fyNwP u4NJEQtA6iBzU5+/7exy0rQlevzE/tWwMEQlBsi5GF3ZKEZkKnLFs6kwYQ+GZG8m -----END CERTIFICATE-----Generated at Mon Jan 19 14:24:09 2026 by rpki-client