This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS137235.roa File: AS137235.roa (raw, json) Hash identifier: waEbW5k+3A3fI41t/93MKd0QlobcbXQTd2Geks9noEs= Subject key identifier: 48:24:2F:8A:10:94:30:D4:2F:AA:00:D8:31:77:54:EC:76:79:96:5D Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f Certificate serial: 0FD7AA1AB32C17B0E7C98021275D2CD71B8DEF7F Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS137235.roa Signing time: Sat 13 Dec 2025 03:37:12 +0000 ROA not before: Sat 13 Dec 2025 03:32:12 +0000 ROA not after: Sat 12 Dec 2026 03:37:12 +0000 asID: 137235 IP address blocks: 91.124.204.0/24 maxlen: 24 178.92.135.0/24 maxlen: 24 178.95.4.0/24 maxlen: 24 178.95.239.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 25 Dec 2025 09:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:d7:aa:1a:b3:2c:17:b0:e7:c9:80:21:27:5d:2c:d7:1b:8d:ef:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f Validity Not Before: Dec 13 03:32:12 2025 GMT Not After : Dec 12 03:37:12 2026 GMT Subject: CN=48242F8A109430D42FAA00D8317754EC7679965D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:82:b9:e8:93:86:1c:ab:d2:7a:ab:91:df:82: e9:92:67:eb:ee:ee:cc:6a:58:57:98:ff:7a:17:00: b8:0b:b0:d2:fa:f1:7c:d7:3d:e0:91:70:16:18:6a: 47:d0:50:d8:2c:80:8f:2e:32:3f:c7:e1:86:78:2f: 62:37:f7:ff:66:0a:2e:38:f1:74:6f:11:9e:43:de: 70:4c:da:49:4b:46:c4:3a:92:87:e9:e3:53:cb:dd: 2b:71:97:6b:ac:d6:f7:36:d1:5d:a8:c1:98:ff:ff: a0:d0:84:91:94:fa:76:f4:1f:89:c8:26:1f:7c:5a: 20:68:78:12:d3:f5:59:3e:8a:71:c9:68:68:55:4d: e5:f2:4c:8d:2f:c9:73:86:97:d3:60:ff:09:65:1d: f0:03:49:4c:09:41:6d:25:74:ea:f5:c4:db:81:df: e8:da:f5:85:35:94:50:10:5a:39:9c:d3:e0:72:dd: 3c:51:1e:3c:82:0e:5e:2b:b1:54:17:5c:c4:c3:a6: 57:35:13:bb:1b:92:0a:46:df:1f:18:e9:de:86:4a: 31:f1:92:a7:36:4d:af:0f:7c:d9:55:03:c6:32:e5: 1f:52:f2:73:34:79:80:eb:1b:0d:c6:e8:33:1f:b3: 14:7c:ea:0a:ce:8c:5e:d2:6f:8f:79:2e:19:b6:3e: 94:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:24:2F:8A:10:94:30:D4:2F:AA:00:D8:31:77:54:EC:76:79:96:5D X509v3 Authority Key Identifier: keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS137235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.124.204.0/24 178.92.135.0/24 178.95.4.0/24 178.95.239.0/24 Signature Algorithm: sha256WithRSAEncryption 11:d1:30:9d:bf:1a:fe:52:a7:5d:93:d8:b5:7d:97:5a:de:72: 04:d9:2a:00:74:72:26:d6:e2:38:2d:12:be:c6:1a:f1:79:2f: ad:a5:f9:17:c0:93:5b:7d:b5:d9:06:de:05:44:8d:09:fb:10: b7:d0:70:34:0c:3b:b6:35:0d:37:c5:ff:ec:05:bb:70:62:e3: 76:73:ad:33:dd:1a:95:42:f2:fb:0c:39:a6:33:3f:cf:11:82: f8:29:1e:75:df:48:50:ab:63:2c:7e:6d:cb:ce:16:9e:97:0d: ae:a6:1b:1d:ed:73:9d:c2:31:a5:c3:09:d5:11:a4:49:19:a3: c3:db:31:38:f8:ef:fe:bb:70:5a:57:7e:64:70:72:fc:3a:94: c1:d2:2a:d3:76:d2:2a:a8:a7:21:63:a1:ac:32:6b:72:2e:14: 03:fd:7c:c9:81:f2:3b:d0:f6:27:79:4f:8f:8f:8c:93:b0:ed: 2e:bc:60:e1:af:a7:12:1c:a5:aa:67:33:75:8e:56:c4:f8:f5: 9d:a6:10:a3:75:be:f9:27:b9:1e:74:45:b3:f0:3b:e5:72:38: 08:d6:a5:0e:28:26:eb:51:dd:a9:f8:55:a9:66:91:b8:3d:8e: 1e:84:9e:58:6e:31:62:db:24:fa:71:1a:a4:2d:69:4d:89:23: 80:ea:2b:f7 -----BEGIN CERTIFICATE----- MIIFEjCCA/qgAwIBAgIUD9eqGrMsF7DnyYAhJ10s1xuN738wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOWJkODEzMzkxZTRhZjJhZTMxMDNjMTg5MWIyMjcyZDRk NWMxM2I1ZjAeFw0yNTEyMTMwMzMyMTJaFw0yNjEyMTIwMzM3MTJaMDMxMTAvBgNV BAMTKDQ4MjQyRjhBMTA5NDMwRDQyRkFBMDBEODMxNzc1NEVDNzY3OTk2NUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCVgrnok4Ycq9J6q5HfgumSZ+vu 7sxqWFeY/3oXALgLsNL68XzXPeCRcBYYakfQUNgsgI8uMj/H4YZ4L2I39/9mCi44 8XRvEZ5D3nBM2klLRsQ6kofp41PL3Stxl2us1vc20V2owZj//6DQhJGU+nb0H4nI Jh98WiBoeBLT9Vk+inHJaGhVTeXyTI0vyXOGl9Ng/wllHfADSUwJQW0ldOr1xNuB 3+ja9YU1lFAQWjmc0+By3TxRHjyCDl4rsVQXXMTDplc1E7sbkgpG3x8Y6d6GSjHx kqc2Ta8PfNlVA8Yy5R9S8nM0eYDrGw3G6DMfsxR86grOjF7Sb495Lhm2PpR1AgMB AAGjggIcMIICGDAdBgNVHQ4EFgQUSCQvihCUMNQvqgDYMXdU7HZ5ll0wHwYDVR0j BBgwFoAUm9gTOR5K8q4xA8GJGyJy1NXBO18wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYzQ3OGY2ZjUtNDQ5YS00ODI3LTk5ZDUtYmY2YjkzYThm NmI0LzAvOUJEODEzMzkxRTRBRjJBRTMxMDNDMTg5MUIyMjcyRDRENUMxM0I1Ri5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL205Z1RPUjVLOHE0eEE4R0pHeUp5MU5Y Qk8xOC5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2M0NzhmNmY1LTQ0OWEt NDgyNy05OWQ1LWJmNmI5M2E4ZjZiNC8wL0FTMTM3MjM1LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMDEGCCsGAQUFBwEHAQH/BCIwIDAeBAIAATAYAwQAW3zM AwQAslyHAwQAsl8EAwQAsl/vMA0GCSqGSIb3DQEBCwUAA4IBAQAR0TCdvxr+Uqdd k9i1fZda3nIE2SoAdHIm1uI4LRK+xhrxeS+tpfkXwJNbfbXZBt4FRI0J+xC30HA0 DDu2NQ03xf/sBbtwYuN2c60z3RqVQvL7DDmmMz/PEYL4KR5130hQq2Msfm3Lzhae lw2uphsd7XOdwjGlwwnVEaRJGaPD2zE4+O/+u3BaV35kcHL8OpTB0irTdtIqqKch Y6GsMmtyLhQD/XzJgfI70PYneU+Pj4yTsO0uvGDhr6cSHKWqZzN1jlbE+PWdphCj db75J7kedEWz8DvlcjgI1qUOKCbrUd2p+FWpZpG4PY4ehJ5YbjFi2yT6cRqkLWlN iSOA6iv3 -----END CERTIFICATE-----Generated at Wed Dec 24 10:51:59 2025 by rpki-client