This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/AS48678.roa File: AS48678.roa (raw, json) Hash identifier: z0TEP9ehdCImowCBYEiUB5dPAWTwh67Nfj1iktJ75FE= Subject key identifier: A7:21:81:5D:28:DD:6A:8E:95:AA:84:74:8A:16:59:51:C1:85:AF:B9 Certificate issuer: /CN=7051b4c2f7ae9ef80b53000b32ab8f5d2f2f415b Certificate serial: 3007167C2418BBC2FAF882CA6E9778DCDF1DE347 Authority key identifier: 70:51:B4:C2:F7:AE:9E:F8:0B:53:00:0B:32:AB:8F:5D:2F:2F:41:5B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cFG0wveunvgLUwALMquPXS8vQVs.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/AS48678.roa Signing time: Thu 18 Dec 2025 08:26:15 +0000 ROA not before: Thu 18 Dec 2025 08:21:15 +0000 ROA not after: Thu 17 Dec 2026 08:26:15 +0000 asID: 48678 IP address blocks: 5.133.101.0/24 maxlen: 24 31.40.197.0/24 maxlen: 24 31.40.199.0/24 maxlen: 24 31.40.205.0/24 maxlen: 24 31.40.207.0/24 maxlen: 24 85.235.72.0/24 maxlen: 24 85.235.74.0/24 maxlen: 24 141.98.48.0/24 maxlen: 24 141.98.49.0/24 maxlen: 24 141.98.51.0/24 maxlen: 24 141.98.112.0/24 maxlen: 24 141.98.115.0/24 maxlen: 24 176.96.128.0/24 maxlen: 24 176.96.130.0/24 maxlen: 24 193.111.79.0/24 maxlen: 24 217.18.208.0/24 maxlen: 24 217.18.209.0/24 maxlen: 24 217.18.211.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/7051B4C2F7AE9EF80B53000B32AB8F5D2F2F415B.crl rsync://rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/7051B4C2F7AE9EF80B53000B32AB8F5D2F2F415B.mft rsync://rpki.ripe.net/repository/DEFAULT/cFG0wveunvgLUwALMquPXS8vQVs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 01:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:07:16:7c:24:18:bb:c2:fa:f8:82:ca:6e:97:78:dc:df:1d:e3:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7051b4c2f7ae9ef80b53000b32ab8f5d2f2f415b Validity Not Before: Dec 18 08:21:15 2025 GMT Not After : Dec 17 08:26:15 2026 GMT Subject: CN=A721815D28DD6A8E95AA84748A165951C185AFB9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:f4:a8:8c:c1:9f:c1:a8:19:52:ef:a5:bb:02: c3:98:9d:b7:c3:5d:c5:a8:72:d8:37:94:fe:00:20: e4:1e:7a:8a:0b:78:ac:f1:2a:6a:69:0b:c3:36:1c: 84:fe:e4:d2:6e:72:80:68:d5:e4:45:5d:02:4b:74: 8e:2f:5d:44:bb:c3:b4:db:50:4d:a8:81:fb:38:57: 52:51:e2:0a:8c:55:ad:43:12:27:06:7b:d9:ca:64: b0:d3:fc:bc:90:95:86:18:72:2d:30:04:c2:a4:27: b7:15:ec:47:97:1b:60:51:74:79:c9:36:c1:20:dc: 14:58:8c:68:05:65:8a:cf:ae:8f:89:14:ff:cb:5c: 01:45:01:ba:09:94:b1:90:2e:5e:a0:a5:2a:44:dc: f2:43:2b:e9:7f:a2:46:6b:d0:0c:a5:6c:74:40:5c: a4:19:e8:45:45:91:4f:fb:25:28:b9:89:ee:38:37: bb:2d:73:ea:48:be:1d:a0:7b:18:61:96:79:e3:a5: cb:95:28:f0:28:d1:05:47:46:76:d2:75:37:7e:b2: 90:4f:70:4f:63:3e:b5:7b:88:04:73:8c:1a:8e:5b: b1:75:ce:f4:50:5d:b1:7d:53:2f:3e:88:b0:5f:f5: 22:b2:d1:dc:f0:9c:33:dd:f3:64:0a:de:d7:1a:1e: 9b:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:21:81:5D:28:DD:6A:8E:95:AA:84:74:8A:16:59:51:C1:85:AF:B9 X509v3 Authority Key Identifier: keyid:70:51:B4:C2:F7:AE:9E:F8:0B:53:00:0B:32:AB:8F:5D:2F:2F:41:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/7051B4C2F7AE9EF80B53000B32AB8F5D2F2F415B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cFG0wveunvgLUwALMquPXS8vQVs.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/AS48678.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.133.101.0/24 31.40.197.0/24 31.40.199.0/24 31.40.205.0/24 31.40.207.0/24 85.235.72.0/24 85.235.74.0/24 141.98.48.0/23 141.98.51.0/24 141.98.112.0/24 141.98.115.0/24 176.96.128.0/24 176.96.130.0/24 193.111.79.0/24 217.18.208.0/23 217.18.211.0/24 Signature Algorithm: sha256WithRSAEncryption 1f:4f:86:42:c4:6f:bd:32:0b:6c:1d:da:62:d9:37:75:61:47: 07:f3:9d:83:bd:ff:1f:2b:ba:86:44:75:8e:df:f7:75:9b:c7: 1b:f8:e4:aa:36:92:62:50:e3:2f:04:13:29:7f:2e:07:40:23: 75:2d:6d:05:34:8a:da:e3:24:28:2f:92:a8:f9:87:2e:27:f6: c6:f9:62:c2:af:cb:d4:b5:34:20:31:62:cf:ca:70:1f:09:cd: 7d:e4:4e:4d:9b:a2:f0:51:aa:83:d7:38:1f:ad:44:ae:41:fc: 66:1a:d2:cc:66:1c:ef:e1:37:96:89:31:7f:7d:07:26:90:6b: fc:f4:e6:f3:c7:0b:82:59:44:dc:45:2a:ee:3d:d5:45:68:cf: a6:7a:47:2c:c6:a1:e0:02:2b:74:aa:2b:2c:01:92:71:e9:cc: 12:8b:ce:04:4a:64:8b:95:95:0c:02:dd:a2:f7:eb:04:6a:90: ac:92:c6:51:ad:57:10:65:c0:db:5e:11:0b:e2:b2:cf:25:2c: be:6c:1c:4b:fa:22:3e:8a:bb:4f:6e:7f:d4:fa:36:d7:3c:d5: 17:3e:fa:0c:ef:d9:1f:5e:2e:f8:34:b5:80:9a:20:22:15:92: 44:fa:68:2c:8d:aa:c5:82:d2:2a:01:da:1b:fb:0c:81:4a:87: 46:64:eb:f5 -----BEGIN CERTIFICATE----- MIIFWTCCBEGgAwIBAgIUMAcWfCQYu8L6+ILKbpd43N8d40cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzA1MWI0YzJmN2FlOWVmODBiNTMwMDBiMzJhYjhmNWQy ZjJmNDE1YjAeFw0yNTEyMTgwODIxMTVaFw0yNjEyMTcwODI2MTVaMDMxMTAvBgNV BAMTKEE3MjE4MTVEMjhERDZBOEU5NUFBODQ3NDhBMTY1OTUxQzE4NUFGQjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCp9KiMwZ/BqBlS76W7AsOYnbfD XcWoctg3lP4AIOQeeooLeKzxKmppC8M2HIT+5NJucoBo1eRFXQJLdI4vXUS7w7Tb UE2ogfs4V1JR4gqMVa1DEicGe9nKZLDT/LyQlYYYci0wBMKkJ7cV7EeXG2BRdHnJ NsEg3BRYjGgFZYrPro+JFP/LXAFFAboJlLGQLl6gpSpE3PJDK+l/okZr0AylbHRA XKQZ6EVFkU/7JSi5ie44N7stc+pIvh2gexhhlnnjpcuVKPAo0QVHRnbSdTd+spBP cE9jPrV7iARzjBqOW7F1zvRQXbF9Uy8+iLBf9SKy0dzwnDPd82QK3tcaHpudAgMB AAGjggJjMIICXzAdBgNVHQ4EFgQUpyGBXSjdao6VqoR0ihZZUcGFr7kwHwYDVR0j BBgwFoAUcFG0wveunvgLUwALMquPXS8vQVswDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvOWM1Y2U5ZmEtOWE2Zi00ZTBjLTk4MDktN2E0Nzg4NzQ0 ODkzLzAvNzA1MUI0QzJGN0FFOUVGODBCNTMwMDBCMzJBQjhGNUQyRjJGNDE1Qi5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2NGRzB3dmV1bnZnTFV3QUxNcXVQWFM4 dlFWcy5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzljNWNlOWZhLTlhNmYt NGUwYy05ODA5LTdhNDc4ODc0NDg5My8wL0FTNDg2Nzgucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIweQYIKwYBBQUHAQcBAf8EajBoMGYEAgABMGADBAAFhWUD BAAfKMUDBAAfKMcDBAAfKM0DBAAfKM8DBABV60gDBABV60oDBAGNYjADBACNYjMD BACNYnADBACNYnMDBACwYIADBACwYIIDBADBb08DBAHZEtADBADZEtMwDQYJKoZI hvcNAQELBQADggEBAB9PhkLEb70yC2wd2mLZN3VhRwfznYO9/x8ruoZEdY7f93Wb xxv45Ko2kmJQ4y8EEyl/LgdAI3UtbQU0itrjJCgvkqj5hy4n9sb5YsKvy9S1NCAx Ys/KcB8JzX3kTk2bovBRqoPXOB+tRK5B/GYa0sxmHO/hN5aJMX99ByaQa/z05vPH C4JZRNxFKu491UVoz6Z6RyzGoeACK3SqKywBknHpzBKLzgRKZIuVlQwC3aL36wRq kKySxlGtVxBlwNteEQviss8lLL5sHEv6Ij6Ku09uf9T6Ntc81Rc++gzv2R9eLvg0 tYCaICIVkkT6aCyNqsWC0ioB2hv7DIFKh0Zk6/U= -----END CERTIFICATE-----Generated at Sat Dec 20 08:05:57 2025 by rpki-client