This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS202736.roa File: AS202736.roa (raw, json) Hash identifier: YSNFnTCVWzajZE60q5kFgyIBC/ZaIWoKg3ad4WjruhI= Subject key identifier: 87:4C:FB:18:5E:1B:D5:27:95:5A:7D:D9:92:44:2D:0A:B5:94:B8:1B Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc Certificate serial: 7F2B2B7606340678A2C0D2201BD81CD32289F60D Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS202736.roa Signing time: Fri 12 Dec 2025 09:15:27 +0000 ROA not before: Fri 12 Dec 2025 09:10:27 +0000 ROA not after: Fri 11 Dec 2026 09:15:27 +0000 asID: 202736 IP address blocks: 96.62.0.0/19 maxlen: 24 96.62.85.0/24 maxlen: 24 143.14.78.0/24 maxlen: 24 148.135.234.0/23 maxlen: 24 148.135.240.0/23 maxlen: 24 150.241.162.0/23 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.mft rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 16:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:2b:2b:76:06:34:06:78:a2:c0:d2:20:1b:d8:1c:d3:22:89:f6:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc Validity Not Before: Dec 12 09:10:27 2025 GMT Not After : Dec 11 09:15:27 2026 GMT Subject: CN=874CFB185E1BD527955A7DD992442D0AB594B81B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:b1:63:fe:01:51:93:c8:b4:e0:1f:c7:f7:af: c5:2b:40:dd:a5:0d:c5:c7:cc:9a:6f:23:77:82:15: e9:9f:a3:f7:c2:96:f1:87:f6:63:d9:6a:0a:50:db: a8:62:31:02:8a:23:2d:cd:e7:e4:eb:46:89:79:48: 73:af:46:76:f3:89:1e:0b:df:c2:3b:ff:b4:ba:09: 00:65:1a:f3:24:76:9e:43:a1:9e:96:e9:f2:28:0a: 5c:70:b5:aa:14:ea:13:b4:b7:29:86:60:3c:0a:97: cc:08:6d:5d:52:7b:7b:c0:4f:f6:a7:76:32:6d:8e: ab:78:b7:58:8e:10:2c:f3:e9:f6:61:a7:3e:f2:e3: 78:d6:f7:29:b4:98:68:7a:8f:f8:bd:64:d1:92:24: 71:e5:a2:78:4e:c4:b3:b0:f4:2b:dc:fb:34:67:0b: 37:14:61:82:44:21:a2:ca:6c:a5:b9:3d:4e:84:89: 1c:0d:8c:5c:38:c2:b0:eb:cb:59:a1:f5:ae:4d:93: b5:e4:af:f9:46:d5:d7:45:2a:ce:26:0c:36:4d:51: 41:bf:79:55:99:69:1d:4e:e3:2f:f8:a4:ad:0a:38: 06:6b:4b:e0:ab:82:ad:f1:f3:ec:37:6b:95:07:a3: 16:5b:a9:04:e4:f2:ee:5e:93:c4:9b:ec:14:ed:a7: 6b:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:4C:FB:18:5E:1B:D5:27:95:5A:7D:D9:92:44:2D:0A:B5:94:B8:1B X509v3 Authority Key Identifier: keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS202736.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.62.0.0/19 96.62.85.0/24 143.14.78.0/24 148.135.234.0/23 148.135.240.0/23 150.241.162.0/23 Signature Algorithm: sha256WithRSAEncryption 60:3c:3c:0e:bf:5f:16:04:1c:4a:f9:fb:85:c1:6b:e6:66:7c: 67:0d:e4:57:09:a7:b2:6d:a6:fa:ce:67:aa:82:87:da:dc:76: 82:42:65:38:4a:c2:fc:a8:d2:53:e4:73:37:4a:af:a1:a7:8c: fe:57:77:73:e0:a9:7b:cd:8a:77:65:5f:5f:e3:d9:ba:4e:81: 92:72:8b:32:81:b9:27:f2:cc:75:9c:c8:e9:b6:6c:47:b3:6a: 0f:30:4d:e6:78:a8:f1:f2:80:e3:1c:d8:7b:8b:6e:f2:c6:ca: 29:d5:46:7b:bb:f1:a6:4d:ed:a1:a1:78:f1:a4:2d:11:c2:17: 67:b3:81:78:50:3d:46:01:c9:15:cc:56:30:32:b1:d4:0d:85: 3c:19:9f:be:63:4c:c0:d2:15:c1:b5:95:1b:d4:46:00:f2:6d: 87:14:67:5d:57:e0:44:e5:ac:46:ef:2a:33:d5:55:1d:cf:2b: 33:ef:92:ad:98:8a:95:8e:e7:72:aa:2b:46:f2:6c:3e:68:3a: 96:b7:31:4b:8e:3d:b2:cd:c0:2b:c3:25:4f:69:0f:b5:b8:a7: 4d:8e:b7:09:4d:d5:55:2b:52:f9:f3:c2:5d:45:a1:d3:50:bd: 6f:96:b8:fc:e5:d7:0a:42:c9:19:6a:4d:1b:a5:62:a0:84:4e: 6e:b3:d9:09 -----BEGIN CERTIFICATE----- MIIFHjCCBAagAwIBAgIUfysrdgY0BniiwNIgG9gc0yKJ9g0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNGZjMzM2YmY5ZjNkZTVjZTQxNDE0YmQxOTcxOTQ1ZjRi MjQ2YmZjYzAeFw0yNTEyMTIwOTEwMjdaFw0yNjEyMTEwOTE1MjdaMDMxMTAvBgNV BAMTKDg3NENGQjE4NUUxQkQ1Mjc5NTVBN0REOTkyNDQyRDBBQjU5NEI4MUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFsWP+AVGTyLTgH8f3r8UrQN2l DcXHzJpvI3eCFemfo/fClvGH9mPZagpQ26hiMQKKIy3N5+TrRol5SHOvRnbziR4L 38I7/7S6CQBlGvMkdp5DoZ6W6fIoClxwtaoU6hO0tymGYDwKl8wIbV1Se3vAT/an djJtjqt4t1iOECzz6fZhpz7y43jW9ym0mGh6j/i9ZNGSJHHlonhOxLOw9Cvc+zRn CzcUYYJEIaLKbKW5PU6EiRwNjFw4wrDry1mh9a5Nk7Xkr/lG1ddFKs4mDDZNUUG/ eVWZaR1O4y/4pK0KOAZrS+Crgq3x8+w3a5UHoxZbqQTk8u5ek8Sb7BTtp2sBAgMB AAGjggIoMIICJDAdBgNVHQ4EFgQUh0z7GF4b1SeVWn3ZkkQtCrWUuBswHwYDVR0j BBgwFoAUT8M2v5895c5BQUvRlxlF9LJGv8wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMDliZTNhYWUtYWVhMS00MWRjLWIxYjktOTVhYzU5MTgy NDRkLzAvNEZDMzM2QkY5RjNERTVDRTQxNDE0QkQxOTcxOTQ1RjRCMjQ2QkZDQy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1Q4TTJ2NTg5NWM1QlFVdlJseGxGOUxK R3Y4dy5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzA5YmUzYWFlLWFlYTEt NDFkYy1iMWI5LTk1YWM1OTE4MjQ0ZC8wL0FTMjAyNzM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMD0GCCsGAQUFBwEHAQH/BC4wLDAqBAIAATAkAwQFYD4A AwQAYD5VAwQAjw5OAwQBlIfqAwQBlIfwAwQBlvGiMA0GCSqGSIb3DQEBCwUAA4IB AQBgPDwOv18WBBxK+fuFwWvmZnxnDeRXCaeybab6zmeqgofa3HaCQmU4SsL8qNJT 5HM3Sq+hp4z+V3dz4Kl7zYp3ZV9f49m6ToGScosygbkn8sx1nMjptmxHs2oPME3m eKjx8oDjHNh7i27yxsop1UZ7u/GmTe2hoXjxpC0Rwhdns4F4UD1GAckVzFYwMrHU DYU8GZ++Y0zA0hXBtZUb1EYA8m2HFGddV+BE5axG7yoz1VUdzysz75KtmIqVjudy qitG8mw+aDqWtzFLjj2yzcArwyVPaQ+1uKdNjrcJTdVVK1L588JdRaHTUL1vlrj8 5dcKQskZak0bpWKghE5us9kJ -----END CERTIFICATE-----Generated at Fri Dec 19 21:23:08 2025 by rpki-client