This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS204765.roa File: AS204765.roa (raw, json) Hash identifier: VFQwBT1EIhtyvw1QEjGmx50vrA5coAHBpBXi4vbaMqQ= Subject key identifier: 52:1F:0F:5E:35:80:9C:AB:2E:48:E9:3B:8A:44:D3:FE:81:35:9D:4F Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc Certificate serial: 39C67D42BD631AD0340F2CB20EE84AE6163EBE4E Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS204765.roa Signing time: Wed 17 Dec 2025 16:38:11 +0000 ROA not before: Wed 17 Dec 2025 16:33:11 +0000 ROA not after: Wed 16 Dec 2026 16:38:11 +0000 asID: 204765 IP address blocks: 143.14.192.0/24 maxlen: 24 155.117.141.0/24 maxlen: 24 167.148.8.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.mft rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 16:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:c6:7d:42:bd:63:1a:d0:34:0f:2c:b2:0e:e8:4a:e6:16:3e:be:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc Validity Not Before: Dec 17 16:33:11 2025 GMT Not After : Dec 16 16:38:11 2026 GMT Subject: CN=521F0F5E35809CAB2E48E93B8A44D3FE81359D4F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:ca:a4:a7:31:6b:0c:86:68:68:21:c4:c5:2b: 50:1d:fd:4b:46:ff:84:52:8d:5a:33:2e:ad:01:ea: b8:a3:63:6e:be:ea:27:75:85:99:d4:8e:1c:8f:56: 55:e9:0e:b4:72:5d:9c:02:3e:df:5e:bc:be:79:6b: d3:91:2b:29:1d:7b:2f:1b:b5:4e:a2:03:8b:8a:51: 5a:17:0c:94:48:82:7f:ea:34:86:37:66:b5:1a:38: 58:b0:2f:62:b4:1a:ab:74:4a:f8:25:ce:16:3a:4e: ce:12:bc:72:5e:f8:79:5b:0e:54:c1:78:ea:1f:ef: e0:c2:5f:62:52:e7:e3:2f:1d:b6:a8:3d:89:38:f1: de:1a:38:38:07:df:15:1b:9c:f8:0c:f4:3e:5b:62: 66:6b:5a:b2:c8:5a:e3:82:5d:f8:56:5e:82:65:7e: bc:35:38:36:08:0b:77:ae:0e:e5:28:ef:f8:34:e2: 33:90:bf:03:54:6e:24:68:ce:15:2a:42:23:4b:0e: 70:3a:98:a1:0c:be:8f:c3:6f:99:3c:b3:4e:72:a8: 75:f4:53:99:68:2e:60:9a:c5:31:ef:ea:eb:5b:14: fc:8f:7e:cd:44:85:dc:04:81:3e:ac:03:8e:37:e7: 8a:8f:20:09:50:e4:57:be:84:81:18:3f:18:2f:ac: 2e:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:1F:0F:5E:35:80:9C:AB:2E:48:E9:3B:8A:44:D3:FE:81:35:9D:4F X509v3 Authority Key Identifier: keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS204765.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 143.14.192.0/24 155.117.141.0/24 167.148.8.0/24 Signature Algorithm: sha256WithRSAEncryption 26:44:4c:bd:5d:a1:9b:da:cd:41:b3:a4:b4:b5:36:74:44:52: a1:3b:ed:7d:a8:c2:07:62:cf:35:08:b8:4b:8d:fc:7c:8a:c6: 85:2b:1f:95:75:ce:8a:86:dc:59:23:d2:ea:90:e1:cf:ab:31: b1:07:c0:49:39:60:cc:05:02:02:5e:98:c9:26:2b:15:f6:d3: b6:2e:fb:79:ee:f2:fa:d7:a8:bb:dd:44:3c:6e:2f:da:f0:5e: f0:4d:9b:c3:6b:49:0b:57:1b:18:b2:e1:02:e2:c7:f4:fe:c3: 70:7f:63:06:d2:f7:be:51:ba:13:bd:72:bb:5f:14:c2:8c:47: a9:74:f9:a7:91:56:19:5b:7d:f6:73:3b:a2:e4:33:b8:b9:56: ad:69:02:d8:33:aa:e8:bb:cb:65:c6:73:07:52:d5:17:90:13: 0f:42:6b:b9:c9:d2:45:0e:59:08:43:61:bf:fc:5a:29:f9:f7: b7:88:09:31:4a:b6:ac:6f:33:a0:c2:1a:6a:47:ff:c8:70:8f: ea:26:61:c1:09:cf:88:1b:fd:d2:0c:c5:ad:77:e2:7e:61:82: e8:d9:ba:e3:d0:6c:f7:35:36:84:4c:6c:5a:56:c2:ef:3b:a7: 88:c3:82:66:75:62:b5:b7:05:60:95:3b:14:57:05:76:e0:42: 0c:b7:78:02 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgIUOcZ9Qr1jGtA0DyyyDuhK5hY+vk4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNGZjMzM2YmY5ZjNkZTVjZTQxNDE0YmQxOTcxOTQ1ZjRi MjQ2YmZjYzAeFw0yNTEyMTcxNjMzMTFaFw0yNjEyMTYxNjM4MTFaMDMxMTAvBgNV BAMTKDUyMUYwRjVFMzU4MDlDQUIyRTQ4RTkzQjhBNDREM0ZFODEzNTlENEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCoyqSnMWsMhmhoIcTFK1Ad/UtG /4RSjVozLq0B6rijY26+6id1hZnUjhyPVlXpDrRyXZwCPt9evL55a9ORKykdey8b tU6iA4uKUVoXDJRIgn/qNIY3ZrUaOFiwL2K0Gqt0SvglzhY6Ts4SvHJe+HlbDlTB eOof7+DCX2JS5+MvHbaoPYk48d4aODgH3xUbnPgM9D5bYmZrWrLIWuOCXfhWXoJl frw1ODYIC3euDuUo7/g04jOQvwNUbiRozhUqQiNLDnA6mKEMvo/Db5k8s05yqHX0 U5loLmCaxTHv6utbFPyPfs1EhdwEgT6sA44354qPIAlQ5Fe+hIEYPxgvrC7RAgMB AAGjggIWMIICEjAdBgNVHQ4EFgQUUh8PXjWAnKsuSOk7ikTT/oE1nU8wHwYDVR0j BBgwFoAUT8M2v5895c5BQUvRlxlF9LJGv8wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMDliZTNhYWUtYWVhMS00MWRjLWIxYjktOTVhYzU5MTgy NDRkLzAvNEZDMzM2QkY5RjNERTVDRTQxNDE0QkQxOTcxOTQ1RjRCMjQ2QkZDQy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1Q4TTJ2NTg5NWM1QlFVdlJseGxGOUxK R3Y4dy5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzA5YmUzYWFlLWFlYTEt NDFkYy1iMWI5LTk1YWM1OTE4MjQ0ZC8wL0FTMjA0NzY1LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQAjw7A AwQAm3WNAwQAp5QIMA0GCSqGSIb3DQEBCwUAA4IBAQAmREy9XaGb2s1Bs6S0tTZ0 RFKhO+19qMIHYs81CLhLjfx8isaFKx+Vdc6KhtxZI9LqkOHPqzGxB8BJOWDMBQIC XpjJJisV9tO2Lvt57vL616i73UQ8bi/a8F7wTZvDa0kLVxsYsuEC4sf0/sNwf2MG 0ve+UboTvXK7XxTCjEepdPmnkVYZW332czui5DO4uVataQLYM6rou8tlxnMHUtUX kBMPQmu5ydJFDlkIQ2G//Fop+fe3iAkxSrasbzOgwhpqR//IcI/qJmHBCc+IG/3S DMWtd+J+YYLo2brj0Gz3NTaETGxaVsLvO6eIw4JmdWK1twVglTsUVwV24EIMt3gC -----END CERTIFICATE-----Generated at Fri Dec 19 21:20:42 2025 by rpki-client