This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/AS0.roa File: AS0.roa (raw, json) Hash identifier: UZnobC99FIgYuxH9ZWNl+nPTsCcfNgE26VQjjAKKgC4= Subject key identifier: F9:BB:52:B3:DC:12:71:EC:1A:EA:DB:C4:74:92:D2:70:65:F1:51:79 Certificate issuer: /CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772 Certificate serial: 2402D8E6E24B811807F83B1DC1CBF777259A641E Authority key identifier: A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/AS0.roa Signing time: Sat 20 Dec 2025 08:00:09 +0000 ROA not before: Sat 20 Dec 2025 07:55:09 +0000 ROA not after: Sat 19 Dec 2026 08:00:09 +0000 asID: 0 IP address blocks: 193.150.40.0/24 maxlen: 24 2a14:7580:50::/44 maxlen: 44 2a14:7580:5000::/36 maxlen: 48 2a14:7580:9000::/36 maxlen: 48 2a14:7580:b000::/36 maxlen: 48 2a14:7580:c000::/36 maxlen: 48 2a14:7580:e100::/40 maxlen: 48 2a14:7580:f900::/40 maxlen: 48 2a14:7580:fa00::/40 maxlen: 48 2a14:7580:ff00::/44 maxlen: 48 2a14:7580:ff30::/44 maxlen: 48 2a14:7580:ff90::/44 maxlen: 48 2a14:7580:ffef::/48 maxlen: 48 2a14:7581:fe6::/48 maxlen: 48 2a14:7581:ff0::/48 maxlen: 48 2a14:7581:ff2::/48 maxlen: 48 2a14:7581:ff7::/48 maxlen: 48 2a14:7581:ffc::/48 maxlen: 48 2a14:7581:9f10::/44 maxlen: 48 2a14:7581:e000::/36 maxlen: 48 2a14:7582::/32 maxlen: 48 2a14:7583:4000::/36 maxlen: 48 2a14:7583:5000::/36 maxlen: 48 2a14:7584:1000::/36 maxlen: 48 2a14:7584:6000::/36 maxlen: 48 2a14:7584:8000::/36 maxlen: 48 2a14:7584:a000::/36 maxlen: 48 2a14:7584:b000::/36 maxlen: 48 2a14:7584:c000::/36 maxlen: 48 2a14:7585::/32 maxlen: 48 2a14:7586::/32 maxlen: 48 2a14:7587::/32 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 23 Dec 2025 01:37:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:02:d8:e6:e2:4b:81:18:07:f8:3b:1d:c1:cb:f7:77:25:9a:64:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772 Validity Not Before: Dec 20 07:55:09 2025 GMT Not After : Dec 19 08:00:09 2026 GMT Subject: CN=F9BB52B3DC1271EC1AEADBC47492D27065F15179 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:48:58:6d:13:f1:56:24:35:a5:11:13:6d:e8: b5:8b:60:33:64:d1:79:de:7d:bc:c4:8a:45:a8:c9: 2f:e2:08:91:21:53:14:3c:79:70:9d:c9:6d:63:36: 50:40:bd:17:cc:ad:b0:85:11:4f:2b:a7:84:fc:bd: ae:9f:4c:25:8d:89:e6:a5:67:df:fa:cc:f0:ac:bf: 90:5b:4e:3c:ee:6a:cd:92:ed:7b:f8:48:6c:59:4a: 0b:cd:2a:aa:0f:be:74:64:ca:59:e3:1d:e7:27:a9: c9:18:28:0e:ce:98:1a:03:a7:52:15:88:9d:d6:3e: d6:56:ff:59:c2:ac:52:3b:80:a3:67:c9:41:b2:bf: 8c:98:5b:d9:a0:94:3e:e0:24:e9:08:40:1f:c1:aa: fc:28:70:8f:32:85:14:0d:d7:a0:cf:aa:b6:37:ab: 86:f4:cc:b1:8e:c6:73:cc:22:01:69:48:cf:50:cb: 61:47:0d:13:5b:44:df:54:2a:75:18:cb:77:dd:59: c6:73:d9:54:66:be:ed:48:85:1a:b8:72:99:6a:cd: b4:9c:15:07:43:11:4c:52:bb:b3:b3:ad:52:b4:86: 8a:81:87:3d:c9:79:e4:0d:0c:bc:00:1c:ad:20:b7: 6b:e2:8d:d4:06:8f:c6:c4:d0:04:34:11:5c:6e:2c: d5:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:BB:52:B3:DC:12:71:EC:1A:EA:DB:C4:74:92:D2:70:65:F1:51:79 X509v3 Authority Key Identifier: keyid:A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/AS0.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.150.40.0/24 IPv6: 2a14:7580:50::/44 2a14:7580:5000::/36 2a14:7580:9000::/36 2a14:7580:b000::-2a14:7580:cfff:ffff:ffff:ffff:ffff:ffff 2a14:7580:e100::/40 2a14:7580:f900::-2a14:7580:faff:ffff:ffff:ffff:ffff:ffff 2a14:7580:ff00::/44 2a14:7580:ff30::/44 2a14:7580:ff90::/44 2a14:7580:ffef::/48 2a14:7581:fe6::/48 2a14:7581:ff0::/48 2a14:7581:ff2::/48 2a14:7581:ff7::/48 2a14:7581:ffc::/48 2a14:7581:9f10::/44 2a14:7581:e000::/36 2a14:7582::/32 2a14:7583:4000::/35 2a14:7584:1000::/36 2a14:7584:6000::/36 2a14:7584:8000::/36 2a14:7584:a000::-2a14:7584:cfff:ffff:ffff:ffff:ffff:ffff 2a14:7585::-2a14:7587:ffff:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 3a:55:28:6d:f0:2f:a1:bc:ca:6d:ed:00:80:2a:2d:7c:30:86: 8c:58:38:e6:3c:b4:60:60:41:2c:d3:a8:f0:82:5d:d8:a6:dd: e9:53:38:a4:ea:7a:f8:a9:3e:40:19:56:94:87:1d:f5:43:d1: f9:10:e6:85:0c:6a:7b:29:5d:ff:ac:78:12:bc:31:a6:f4:1e: 7b:3c:4a:84:e0:0a:5a:34:3a:19:33:d3:0f:48:ca:d0:ac:fc: 16:95:05:e6:3e:e3:b7:4d:23:38:3f:85:2f:1e:f5:4a:58:37: 2f:33:55:e4:e9:e2:f7:a1:22:b9:ab:f2:99:19:1f:aa:de:4f: 1d:54:4c:e8:0f:f8:77:9f:e9:d8:4a:1b:77:31:ce:15:b5:8b: 43:af:73:cc:db:65:2c:26:fd:ea:02:c5:1f:34:19:8d:f4:75: 6e:16:6d:f4:42:86:b4:96:e4:ce:7b:06:b8:40:cd:6d:1d:cc: 91:6c:2c:95:98:7f:d7:f3:ba:bd:23:09:43:2e:cd:c8:26:78: e6:bf:3f:3b:be:f6:63:cd:b2:ac:f9:b2:b3:42:71:c8:0c:51: 6a:8c:4e:7e:6c:7d:5c:34:18:8b:28:f0:97:56:e0:f4:7b:cc: 7a:81:fa:43:3e:c3:8f:24:2e:32:c2:59:2a:cb:a7:66:36:c8: 5e:04:23:a1 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUJALY5uJLgRgH+Dsdwcv3dyWaZB4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYTgzZDQ4NjUyZjNiMmRmNzRmNmJmOWJhYThhOWMxNzRj Y2ZkMzc3MjAeFw0yNTEyMjAwNzU1MDlaFw0yNjEyMTkwODAwMDlaMDMxMTAvBgNV BAMTKEY5QkI1MkIzREMxMjcxRUMxQUVBREJDNDc0OTJEMjcwNjVGMTUxNzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCZSFhtE/FWJDWlERNt6LWLYDNk 0XnefbzEikWoyS/iCJEhUxQ8eXCdyW1jNlBAvRfMrbCFEU8rp4T8va6fTCWNieal Z9/6zPCsv5BbTjzuas2S7Xv4SGxZSgvNKqoPvnRkylnjHecnqckYKA7OmBoDp1IV iJ3WPtZW/1nCrFI7gKNnyUGyv4yYW9mglD7gJOkIQB/BqvwocI8yhRQN16DPqrY3 q4b0zLGOxnPMIgFpSM9Qy2FHDRNbRN9UKnUYy3fdWcZz2VRmvu1IhRq4cplqzbSc FQdDEUxSu7OzrVK0hoqBhz3JeeQNDLwAHK0gt2vijdQGj8bE0AQ0EVxuLNXxAgMB AAGjggMFMIIDATAdBgNVHQ4EFgQU+btSs9wScewa6tvEdJLScGXxUXkwHwYDVR0j BBgwFoAUqD1IZS87LfdPa/m6qKnBdMz9N3IwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvODkyNzBmNmMtYTNmZS00Mjk5LWIwNzktMzA5ZWQ5N2Yz ODI0LzAvQTgzRDQ4NjUyRjNCMkRGNzRGNkJGOUJBQThBOUMxNzRDQ0ZEMzc3Mi5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3FEMUlaUzg3TGZkUGFfbTZxS25CZE16 OU4zSS5jZXIwdgYIKwYBBQUHAQsEajBoMGYGCCsGAQUFBzALhlpyc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5Lzg5MjcwZjZjLWEzZmUt NDI5OS1iMDc5LTMwOWVkOTdmMzgyNC8wL0FTMC5yb2EwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjCCAR0GCCsGAQUFBwEHAQH/BIIBDDCCAQgwDAQCAAEwBgMEAMGW KDCB9wQCAAIwgfADBwQqFHWAAFADBgQqFHWAUAMGBCoUdYCQMBADBgQqFHWAsAMG BCoUdYDAAwYAKhR1gOEwEAMGACoUdYD5AwYAKhR1gPoDBwQqFHWA/wADBwQqFHWA /zADBwQqFHWA/5ADBwAqFHWA/+8DBwAqFHWBD+YDBwAqFHWBD/ADBwAqFHWBD/ID BwAqFHWBD/cDBwAqFHWBD/wDBwQqFHWBnxADBgQqFHWB4AMFACoUdYIDBgUqFHWD QAMGBCoUdYQQAwYEKhR1hGADBgQqFHWEgDAQAwYFKhR1hKADBgQqFHWEwDAOAwUA KhR1hQMFAyoUdYAwDQYJKoZIhvcNAQELBQADggEBADpVKG3wL6G8ym3tAIAqLXww hoxYOOY8tGBgQSzTqPCCXdim3elTOKTqevipPkAZVpSHHfVD0fkQ5oUManspXf+s eBK8Mab0Hns8SoTgClo0Ohkz0w9IytCs/BaVBeY+47dNIzg/hS8e9UpYNy8zVeTp 4vehIrmr8pkZH6reTx1UTOgP+Hef6dhKG3cxzhW1i0Ovc8zbZSwm/eoCxR80GY30 dW4WbfRChrSW5M57BrhAzW0dzJFsLJWYf9fzur0jCUMuzcgmeOa/Pzu+9mPNsqz5 srNCccgMUWqMTn5sfVw0GIso8JdW4PR7zHqB+kM+w48kLjLCWSrLp2Y2yF4EI6E= -----END CERTIFICATE-----Generated at Mon Dec 22 12:48:01 2025 by rpki-client