This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS174.roa File: AS174.roa (raw, json) Hash identifier: /rqCfTXx2CE+y8tQzHp5JvMoVjYgd19YZIG8yP8bFTI= Subject key identifier: 91:D6:63:64:01:08:27:91:1D:E2:37:FD:83:DF:99:96:03:45:3E:09 Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc Certificate serial: 7676E212240A91B47399945E22E939DE2592D137 Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS174.roa Signing time: Tue 09 Dec 2025 15:35:59 +0000 ROA not before: Tue 09 Dec 2025 15:30:59 +0000 ROA not after: Tue 08 Dec 2026 15:35:59 +0000 asID: 174 IP address blocks: 96.62.32.0/24 maxlen: 24 96.62.33.0/24 maxlen: 24 96.62.34.0/24 maxlen: 24 96.62.35.0/24 maxlen: 24 96.62.36.0/24 maxlen: 24 96.62.38.0/24 maxlen: 24 96.62.39.0/24 maxlen: 24 96.62.40.0/24 maxlen: 24 96.62.41.0/24 maxlen: 24 96.62.42.0/24 maxlen: 24 96.62.43.0/24 maxlen: 24 96.62.44.0/24 maxlen: 24 96.62.46.0/24 maxlen: 24 96.62.64.0/24 maxlen: 24 96.62.65.0/24 maxlen: 24 96.62.66.0/24 maxlen: 24 96.62.67.0/24 maxlen: 24 96.62.68.0/24 maxlen: 24 96.62.70.0/24 maxlen: 24 96.62.102.0/24 maxlen: 24 96.62.104.0/24 maxlen: 24 96.62.106.0/24 maxlen: 24 96.62.107.0/24 maxlen: 24 96.62.108.0/24 maxlen: 24 96.62.109.0/24 maxlen: 24 96.62.110.0/24 maxlen: 24 96.62.112.0/24 maxlen: 24 96.62.113.0/24 maxlen: 24 96.62.116.0/24 maxlen: 24 96.62.117.0/24 maxlen: 24 96.62.118.0/24 maxlen: 24 96.62.119.0/24 maxlen: 24 96.62.120.0/24 maxlen: 24 96.62.121.0/24 maxlen: 24 96.62.122.0/24 maxlen: 24 96.62.123.0/24 maxlen: 24 96.62.124.0/24 maxlen: 24 96.62.125.0/24 maxlen: 24 96.62.126.0/24 maxlen: 24 96.62.132.0/24 maxlen: 24 96.62.133.0/24 maxlen: 24 96.62.134.0/24 maxlen: 24 96.62.136.0/24 maxlen: 24 96.62.137.0/24 maxlen: 24 96.62.138.0/24 maxlen: 24 96.62.139.0/24 maxlen: 24 96.62.141.0/24 maxlen: 24 96.62.142.0/24 maxlen: 24 96.62.143.0/24 maxlen: 24 96.62.146.0/24 maxlen: 24 96.62.147.0/24 maxlen: 24 96.62.160.0/24 maxlen: 24 96.62.161.0/24 maxlen: 24 96.62.162.0/24 maxlen: 24 96.62.163.0/24 maxlen: 24 96.62.164.0/24 maxlen: 24 96.62.165.0/24 maxlen: 24 96.62.166.0/24 maxlen: 24 96.62.167.0/24 maxlen: 24 96.62.168.0/24 maxlen: 24 96.62.169.0/24 maxlen: 24 96.62.170.0/24 maxlen: 24 96.62.171.0/24 maxlen: 24 96.62.172.0/24 maxlen: 24 96.62.173.0/24 maxlen: 24 96.62.174.0/24 maxlen: 24 96.62.175.0/24 maxlen: 24 96.62.177.0/24 maxlen: 24 96.62.178.0/24 maxlen: 24 96.62.179.0/24 maxlen: 24 96.62.188.0/24 maxlen: 24 96.62.189.0/24 maxlen: 24 96.62.196.0/24 maxlen: 24 96.62.198.0/24 maxlen: 24 96.62.199.0/24 maxlen: 24 96.62.212.0/24 maxlen: 24 96.62.213.0/24 maxlen: 24 96.62.215.0/24 maxlen: 24 96.62.225.0/24 maxlen: 24 96.62.226.0/24 maxlen: 24 96.62.230.0/24 maxlen: 24 96.62.236.0/24 maxlen: 24 96.62.237.0/24 maxlen: 24 96.62.238.0/24 maxlen: 24 96.62.239.0/24 maxlen: 24 96.62.240.0/24 maxlen: 24 96.62.241.0/24 maxlen: 24 96.62.245.0/24 maxlen: 24 96.62.246.0/24 maxlen: 24 96.62.252.0/24 maxlen: 24 140.233.160.0/22 maxlen: 22 140.233.180.0/22 maxlen: 22 143.14.33.0/24 maxlen: 24 143.14.50.0/24 maxlen: 24 143.14.51.0/24 maxlen: 24 143.14.66.0/24 maxlen: 24 143.14.129.0/24 maxlen: 24 143.14.132.0/24 maxlen: 24 143.14.146.0/24 maxlen: 24 143.14.148.0/24 maxlen: 24 143.14.153.0/24 maxlen: 24 143.14.155.0/24 maxlen: 24 143.14.195.0/24 maxlen: 24 143.14.197.0/24 maxlen: 24 143.14.245.0/24 maxlen: 24 155.117.4.0/24 maxlen: 24 155.117.5.0/24 maxlen: 24 155.117.23.0/24 maxlen: 24 155.117.86.0/24 maxlen: 24 155.117.97.0/24 maxlen: 24 155.117.102.0/24 maxlen: 24 155.117.105.0/24 maxlen: 24 155.117.106.0/24 maxlen: 24 155.117.116.0/24 maxlen: 24 155.117.118.0/24 maxlen: 24 155.117.140.0/24 maxlen: 24 155.117.156.0/24 maxlen: 24 155.117.218.0/24 maxlen: 24 155.117.241.0/24 maxlen: 24 155.117.244.0/24 maxlen: 24 162.141.21.0/24 maxlen: 24 162.141.37.0/24 maxlen: 24 162.141.38.0/24 maxlen: 24 162.141.51.0/24 maxlen: 24 162.141.54.0/24 maxlen: 24 162.141.55.0/24 maxlen: 24 162.141.68.0/24 maxlen: 24 162.141.103.0/24 maxlen: 24 162.141.108.0/24 maxlen: 24 162.141.118.0/24 maxlen: 24 162.141.121.0/24 maxlen: 24 162.141.128.0/24 maxlen: 24 162.141.129.0/24 maxlen: 24 162.141.153.0/24 maxlen: 24 162.141.155.0/24 maxlen: 24 162.141.164.0/24 maxlen: 24 167.148.69.0/24 maxlen: 24 167.148.126.0/24 maxlen: 24 167.148.135.0/24 maxlen: 24 167.148.138.0/24 maxlen: 24 167.148.139.0/24 maxlen: 24 167.148.144.0/24 maxlen: 24 167.148.147.0/24 maxlen: 24 167.148.148.0/24 maxlen: 24 167.148.150.0/24 maxlen: 24 167.148.153.0/24 maxlen: 24 167.148.170.0/24 maxlen: 24 167.148.171.0/24 maxlen: 24 167.148.186.0/24 maxlen: 24 167.148.201.0/24 maxlen: 24 167.148.212.0/24 maxlen: 24 167.148.214.0/24 maxlen: 24 167.148.215.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.mft rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 09:56:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:76:e2:12:24:0a:91:b4:73:99:94:5e:22:e9:39:de:25:92:d1:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc Validity Not Before: Dec 9 15:30:59 2025 GMT Not After : Dec 8 15:35:59 2026 GMT Subject: CN=91D66364010827911DE237FD83DF999603453E09 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:68:55:9d:3b:70:71:69:51:09:c4:98:8d:6b: 3c:5a:12:b6:16:29:d3:f2:ac:f3:fe:09:96:ac:32: a1:1f:75:d5:7c:5f:da:44:50:c9:fa:f5:b4:7a:e6: cb:88:e2:5f:58:05:a1:37:f0:9a:dc:e4:2b:04:70: f1:a9:af:5a:0a:c2:31:14:cc:42:df:56:72:e7:01: 22:04:06:95:c1:c4:76:83:ae:0a:4a:c7:32:98:fa: 71:d9:b7:b8:dd:77:d8:1b:2f:6b:aa:6e:96:20:f4: 42:23:b2:88:7f:de:1a:e8:62:8c:cc:b4:16:db:59: 5c:97:c3:08:c7:b3:60:8b:57:5d:d4:62:d6:64:9c: 20:2b:5e:1f:40:65:58:9e:96:bd:4e:47:06:75:30: b3:b4:b4:cb:c8:86:df:4d:84:b8:f1:fa:8a:17:cf: df:21:66:04:b6:18:be:6b:78:5c:f9:b9:4c:9d:94: 69:de:3c:ac:64:28:02:75:66:4d:a1:fa:3e:d7:06: 5d:95:69:6c:b3:ba:16:4d:cc:6d:44:8f:9a:d3:07: da:f1:dd:84:9d:e9:8c:f7:dc:7f:eb:88:4f:b5:cd: d1:47:cd:d4:42:62:6d:65:5c:6e:35:10:3f:f5:03: 6b:15:c1:8b:bb:3c:e4:59:96:3a:f8:ef:08:98:fe: 4a:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:D6:63:64:01:08:27:91:1D:E2:37:FD:83:DF:99:96:03:45:3E:09 X509v3 Authority Key Identifier: keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS174.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.62.32.0-96.62.36.255 96.62.38.0-96.62.44.255 96.62.46.0/24 96.62.64.0-96.62.68.255 96.62.70.0/24 96.62.102.0/24 96.62.104.0/24 96.62.106.0-96.62.110.255 96.62.112.0/23 96.62.116.0-96.62.126.255 96.62.132.0-96.62.134.255 96.62.136.0/22 96.62.141.0-96.62.143.255 96.62.146.0/23 96.62.160.0/20 96.62.177.0-96.62.179.255 96.62.188.0/23 96.62.196.0/24 96.62.198.0/23 96.62.212.0/23 96.62.215.0/24 96.62.225.0-96.62.226.255 96.62.230.0/24 96.62.236.0-96.62.241.255 96.62.245.0-96.62.246.255 96.62.252.0/24 140.233.160.0/22 140.233.180.0/22 143.14.33.0/24 143.14.50.0/23 143.14.66.0/24 143.14.129.0/24 143.14.132.0/24 143.14.146.0/24 143.14.148.0/24 143.14.153.0/24 143.14.155.0/24 143.14.195.0/24 143.14.197.0/24 143.14.245.0/24 155.117.4.0/23 155.117.23.0/24 155.117.86.0/24 155.117.97.0/24 155.117.102.0/24 155.117.105.0-155.117.106.255 155.117.116.0/24 155.117.118.0/24 155.117.140.0/24 155.117.156.0/24 155.117.218.0/24 155.117.241.0/24 155.117.244.0/24 162.141.21.0/24 162.141.37.0-162.141.38.255 162.141.51.0/24 162.141.54.0/23 162.141.68.0/24 162.141.103.0/24 162.141.108.0/24 162.141.118.0/24 162.141.121.0/24 162.141.128.0/23 162.141.153.0/24 162.141.155.0/24 162.141.164.0/24 167.148.69.0/24 167.148.126.0/24 167.148.135.0/24 167.148.138.0/23 167.148.144.0/24 167.148.147.0-167.148.148.255 167.148.150.0/24 167.148.153.0/24 167.148.170.0/23 167.148.186.0/24 167.148.201.0/24 167.148.212.0/24 167.148.214.0/23 Signature Algorithm: sha256WithRSAEncryption 27:47:4c:16:88:3e:78:77:ef:ec:6b:0b:da:1a:aa:3f:5e:29: f5:af:13:de:a7:ee:2d:43:92:3b:2d:9b:4d:ed:cc:50:36:e3: 69:d3:a5:d0:36:f6:6c:5a:76:2a:c5:23:87:a7:f9:00:f4:49: 4f:36:f9:aa:4d:03:a7:27:fe:28:3c:26:4e:ca:3a:95:a5:b2: d0:f1:8d:d2:a4:5b:6d:53:89:63:42:d9:04:4b:e0:c8:3d:20: bf:cd:e8:05:4f:39:95:35:67:fc:24:88:d8:3d:9e:f6:4b:58: 20:15:a7:dd:60:10:8f:0e:95:a5:7b:07:9d:c3:47:92:30:dd: a8:4d:91:5a:dc:24:9d:69:e4:9e:e2:d2:f1:b9:75:7a:da:26: b7:f4:4e:ef:d4:cf:76:08:7b:d0:08:61:56:d4:ac:66:24:25: 05:cd:c9:e8:b2:85:dc:43:8c:27:bc:8f:2e:71:c1:58:17:82: e3:68:4c:e4:73:2b:e8:30:9c:c2:5c:5c:07:5d:ac:06:96:dc: 1e:34:c6:35:4c:78:b4:84:a4:4a:ab:a2:7b:8d:71:96:d3:68: 5c:e9:9a:ea:18:8d:30:65:a2:2b:03:47:3d:9b:48:78:ce:53: bf:0b:45:38:2c:e2:98:b3:39:41:46:dc:af:70:ee:b3:79:63: e9:b8:a2:a1 -----BEGIN CERTIFICATE----- MIIHSzCCBjOgAwIBAgIUdnbiEiQKkbRzmZReIuk53iWS0TcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNGZjMzM2YmY5ZjNkZTVjZTQxNDE0YmQxOTcxOTQ1ZjRi MjQ2YmZjYzAeFw0yNTEyMDkxNTMwNTlaFw0yNjEyMDgxNTM1NTlaMDMxMTAvBgNV BAMTKDkxRDY2MzY0MDEwODI3OTExREUyMzdGRDgzREY5OTk2MDM0NTNFMDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvaFWdO3BxaVEJxJiNazxaErYW KdPyrPP+CZasMqEfddV8X9pEUMn69bR65suI4l9YBaE38Jrc5CsEcPGpr1oKwjEU zELfVnLnASIEBpXBxHaDrgpKxzKY+nHZt7jdd9gbL2uqbpYg9EIjsoh/3hroYozM tBbbWVyXwwjHs2CLV13UYtZknCArXh9AZVielr1ORwZ1MLO0tMvIht9NhLjx+ooX z98hZgS2GL5reFz5uUydlGnePKxkKAJ1Zk2h+j7XBl2VaWyzuhZNzG1Ej5rTB9rx 3YSd6Yz33H/riE+1zdFHzdRCYm1lXG41ED/1A2sVwYu7PORZljr47wiY/krfAgMB AAGjggRVMIIEUTAdBgNVHQ4EFgQUkdZjZAEIJ5Ed4jf9g9+ZlgNFPgkwHwYDVR0j BBgwFoAUT8M2v5895c5BQUvRlxlF9LJGv8wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMDliZTNhYWUtYWVhMS00MWRjLWIxYjktOTVhYzU5MTgy NDRkLzAvNEZDMzM2QkY5RjNERTVDRTQxNDE0QkQxOTcxOTQ1RjRCMjQ2QkZDQy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1Q4TTJ2NTg5NWM1QlFVdlJseGxGOUxK R3Y4dy5jZXIweAYIKwYBBQUHAQsEbDBqMGgGCCsGAQUFBzALhlxyc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzA5YmUzYWFlLWFlYTEt NDFkYy1iMWI5LTk1YWM1OTE4MjQ0ZC8wL0FTMTc0LnJvYTAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMIICawYIKwYBBQUHAQcBAf8EggJaMIICVjCCAlIEAgABMIIC SjAMAwQFYD4gAwQAYD4kMAwDBAFgPiYDBABgPiwDBABgPi4wDAMEBmA+QAMEAGA+ RAMEAGA+RgMEAGA+ZgMEAGA+aDAMAwQBYD5qAwQAYD5uAwQBYD5wMAwDBAJgPnQD BABgPn4wDAMEAmA+hAMEAGA+hgMEAmA+iDAMAwQAYD6NAwQEYD6AAwQBYD6SAwQE YD6gMAwDBABgPrEDBAJgPrADBAFgPrwDBABgPsQDBAFgPsYDBAFgPtQDBABgPtcw DAMEAGA+4QMEAGA+4gMEAGA+5jAMAwQCYD7sAwQBYD7wMAwDBABgPvUDBABgPvYD BABgPvwDBAKM6aADBAKM6bQDBACPDiEDBAGPDjIDBACPDkIDBACPDoEDBACPDoQD BACPDpIDBACPDpQDBACPDpkDBACPDpsDBACPDsMDBACPDsUDBACPDvUDBAGbdQQD BACbdRcDBACbdVYDBACbdWEDBACbdWYwDAMEAJt1aQMEAJt1agMEAJt1dAMEAJt1 dgMEAJt1jAMEAJt1nAMEAJt12gMEAJt18QMEAJt19AMEAKKNFTAMAwQAoo0lAwQA oo0mAwQAoo0zAwQBoo02AwQAoo1EAwQAoo1nAwQAoo1sAwQAoo12AwQAoo15AwQB oo2AAwQAoo2ZAwQAoo2bAwQAoo2kAwQAp5RFAwQAp5R+AwQAp5SHAwQBp5SKAwQA p5SQMAwDBACnlJMDBACnlJQDBACnlJYDBACnlJkDBAGnlKoDBACnlLoDBACnlMkD BACnlNQDBAGnlNYwDQYJKoZIhvcNAQELBQADggEBACdHTBaIPnh37+xrC9oaqj9e KfWvE96n7i1Dkjstm03tzFA242nTpdA29mxadirFI4en+QD0SU82+apNA6cn/ig8 Jk7KOpWlstDxjdKkW21TiWNC2QRL4Mg9IL/N6AVPOZU1Z/wkiNg9nvZLWCAVp91g EI8OlaV7B53DR5Iw3ahNkVrcJJ1p5J7i0vG5dXraJrf0Tu/Uz3YIe9AIYVbUrGYk JQXNyeiyhdxDjCe8jy5xwVgXguNoTORzK+gwnMJcXAddrAaW3B40xjVMeLSEpEqr onuNcZbTaFzpmuoYjTBloisDRz2bSHjOU78LRTgs4pizOUFG3K9w7rN5Y+m4oqE= -----END CERTIFICATE-----Generated at Sat Dec 20 12:49:37 2025 by rpki-client