This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/092d16f2-9b46-4a11-ac59-42b3ddee1106/0/323030313a3637383a3533633a3a2f34382d3438203d3e20313534313835.roa File: 323030313a3637383a3533633a3a2f34382d3438203d3e20313534313835.roa (raw, json) Hash identifier: ToBUFvUom+h4rbM7uZ7L3aEUItGSsZaFzls2rQ5hJzY= Subject key identifier: F2:41:4A:AF:B1:75:F0:A7:D3:42:35:24:1D:A8:F4:B3:B0:CF:31:D5 Certificate issuer: /CN=883931aab8b1363015bc8fddf0b582321767440a Certificate serial: 3A41733EC9D726F7CDC36A3F0AE4D554DA7881AD Authority key identifier: 88:39:31:AA:B8:B1:36:30:15:BC:8F:DD:F0:B5:82:32:17:67:44:0A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iDkxqrixNjAVvI_d8LWCMhdnRAo.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/092d16f2-9b46-4a11-ac59-42b3ddee1106/0/323030313a3637383a3533633a3a2f34382d3438203d3e20313534313835.roa Signing time: Tue 06 Jan 2026 16:04:38 +0000 ROA not before: Tue 06 Jan 2026 15:59:38 +0000 ROA not after: Tue 05 Jan 2027 16:04:38 +0000 asID: 154185 IP address blocks: 2001:678:53c::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/092d16f2-9b46-4a11-ac59-42b3ddee1106/0/883931AAB8B1363015BC8FDDF0B582321767440A.crl rsync://rsync.paas.rpki.ripe.net/repository/092d16f2-9b46-4a11-ac59-42b3ddee1106/0/883931AAB8B1363015BC8FDDF0B582321767440A.mft rsync://rpki.ripe.net/repository/DEFAULT/iDkxqrixNjAVvI_d8LWCMhdnRAo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 09:51:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:41:73:3e:c9:d7:26:f7:cd:c3:6a:3f:0a:e4:d5:54:da:78:81:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=883931aab8b1363015bc8fddf0b582321767440a Validity Not Before: Jan 6 15:59:38 2026 GMT Not After : Jan 5 16:04:38 2027 GMT Subject: CN=F2414AAFB175F0A7D34235241DA8F4B3B0CF31D5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:d4:00:6b:15:93:36:65:1d:64:9b:1e:e0:47: 7c:b8:6b:8c:16:61:39:db:41:42:4e:1a:32:48:d5: 92:bf:2b:70:b8:09:a5:2c:dd:b0:88:66:31:6e:72: b7:cc:1d:58:a6:4a:3f:5e:e0:5b:d1:7f:b2:d2:fc: 7d:7c:e9:1e:fe:18:bf:e4:60:75:d2:fb:77:ee:70: 98:e0:9a:9c:64:c1:c9:c9:7a:2b:4d:58:c0:d2:cd: 8a:e0:36:23:c9:5d:ac:da:5a:ed:c4:cc:b4:2d:fd: 0c:54:1d:5a:03:b3:66:ba:e7:bc:eb:c0:93:a3:e3: 6b:fd:ea:0c:9c:fb:4c:1b:72:0e:4d:10:72:e8:b7: 54:73:a7:45:4c:b2:c6:18:1b:d6:e1:dd:6a:54:64: 43:b5:bd:3a:7d:8f:a5:83:79:5c:c0:bc:26:6b:26: 35:45:ef:3a:78:df:9c:ef:11:cc:8d:a3:56:be:12: 1d:eb:9e:02:10:7f:99:40:85:d7:57:2b:9d:41:89: 27:37:f3:72:0e:e7:9b:ff:7a:ee:18:c3:68:40:82: 5a:20:63:48:c9:b5:79:a2:1a:e3:86:40:59:12:b1: 48:ba:ba:a8:06:64:04:85:94:a0:20:4e:41:d4:62: c4:67:44:5e:a3:06:52:42:52:eb:b2:36:4f:e9:d7: 02:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:41:4A:AF:B1:75:F0:A7:D3:42:35:24:1D:A8:F4:B3:B0:CF:31:D5 X509v3 Authority Key Identifier: keyid:88:39:31:AA:B8:B1:36:30:15:BC:8F:DD:F0:B5:82:32:17:67:44:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/092d16f2-9b46-4a11-ac59-42b3ddee1106/0/883931AAB8B1363015BC8FDDF0B582321767440A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iDkxqrixNjAVvI_d8LWCMhdnRAo.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/092d16f2-9b46-4a11-ac59-42b3ddee1106/0/323030313a3637383a3533633a3a2f34382d3438203d3e20313534313835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:678:53c::/48 Signature Algorithm: sha256WithRSAEncryption 69:0b:62:a1:df:1d:2b:42:c8:49:f4:57:3e:a1:c0:51:bf:d7: 8d:ed:8c:2f:ad:89:03:fd:dd:f9:66:ae:6b:71:ae:5f:43:92: 9e:69:fd:7f:b3:8b:0c:7e:b1:d7:0c:ac:32:50:0d:b3:24:78: 14:41:a2:7c:a1:ba:a4:38:4a:97:67:b7:6d:3d:b3:b6:89:2e: ea:47:ba:9b:a5:7d:f0:53:60:a9:cf:c1:98:02:09:1e:8d:ee: 2b:eb:0a:35:c6:a1:98:c0:02:6f:69:8f:9a:6b:56:53:b0:ff: 87:8f:2e:fb:b1:aa:f1:2c:62:d4:01:d7:95:c5:7c:60:a5:17: 37:a0:9f:2f:11:e8:25:cb:c3:5e:3c:07:a1:5b:1b:fd:1d:77: f1:f5:ee:a9:ae:48:bd:91:0e:88:1d:06:17:fd:ef:a9:bc:33: 98:77:e3:e5:88:8d:4e:a1:65:4d:32:9c:60:73:d0:23:38:c4: d6:ce:51:f7:2e:7a:48:20:de:7a:4a:9e:76:33:65:37:25:93: b0:45:a0:e5:09:63:b8:41:5a:c5:ee:40:d9:d0:0b:73:de:13: 90:26:d2:b3:a1:41:49:8c:4a:14:81:0d:97:b6:82:93:7e:03: b6:ae:a7:61:bc:ad:15:aa:f4:6b:72:0e:cc:7d:c3:ab:3e:09: fe:0b:09:eb -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgIUOkFzPsnXJvfNw2o/CuTVVNp4ga0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODgzOTMxYWFiOGIxMzYzMDE1YmM4ZmRkZjBiNTgyMzIx NzY3NDQwYTAeFw0yNjAxMDYxNTU5MzhaFw0yNzAxMDUxNjA0MzhaMDMxMTAvBgNV BAMTKEYyNDE0QUFGQjE3NUYwQTdEMzQyMzUyNDFEQThGNEIzQjBDRjMxRDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/1ABrFZM2ZR1kmx7gR3y4a4wW YTnbQUJOGjJI1ZK/K3C4CaUs3bCIZjFucrfMHVimSj9e4FvRf7LS/H186R7+GL/k YHXS+3fucJjgmpxkwcnJeitNWMDSzYrgNiPJXazaWu3EzLQt/QxUHVoDs2a657zr wJOj42v96gyc+0wbcg5NEHLot1Rzp0VMssYYG9bh3WpUZEO1vTp9j6WDeVzAvCZr JjVF7zp435zvEcyNo1a+Eh3rngIQf5lAhddXK51BiSc383IO55v/eu4Yw2hAglog Y0jJtXmiGuOGQFkSsUi6uqgGZASFlKAgTkHUYsRnRF6jBlJCUuuyNk/p1wKFAgMB AAGjggJGMIICQjAdBgNVHQ4EFgQU8kFKr7F18KfTQjUkHaj0s7DPMdUwHwYDVR0j BBgwFoAUiDkxqrixNjAVvI/d8LWCMhdnRAowDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMDkyZDE2ZjItOWI0Ni00YTExLWFjNTktNDJiM2RkZWUx MTA2LzAvODgzOTMxQUFCOEIxMzYzMDE1QkM4RkRERjBCNTgyMzIxNzY3NDQwQS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2lEa3hxcml4TmpBVnZJX2Q4TFdDTWhk blJBby5jZXIwgbMGCCsGAQUFBwELBIGmMIGjMIGgBggrBgEFBQcwC4aBk3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMDkyZDE2ZjIt OWI0Ni00YTExLWFjNTktNDJiM2RkZWUxMTA2LzAvMzIzMDMwMzEzYTM2MzczODNh MzUzMzYzM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTM0MzEzODM1LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIA AjAJAwcAIAEGeAU8MA0GCSqGSIb3DQEBCwUAA4IBAQBpC2Kh3x0rQshJ9Fc+ocBR v9eN7YwvrYkD/d35Zq5rca5fQ5Keaf1/s4sMfrHXDKwyUA2zJHgUQaJ8obqkOEqX Z7dtPbO2iS7qR7qbpX3wU2Cpz8GYAgkeje4r6wo1xqGYwAJvaY+aa1ZTsP+Hjy77 sarxLGLUAdeVxXxgpRc3oJ8vEegly8NePAehWxv9HXfx9e6prki9kQ6IHQYX/e+p vDOYd+PliI1OoWVNMpxgc9AjOMTWzlH3LnpIIN56Sp52M2U3JZOwRaDlCWO4QVrF 7kDZ0Atz3hOQJtKzoUFJjEoUgQ2XtoKTfgO2rqdhvK0VqvRrcg7MfcOrPgn+Cwnr -----END CERTIFICATE-----Generated at Sun Jan 25 19:01:39 2026 by rpki-client