This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS54339.roa File: AS54339.roa (raw, json) Hash identifier: FvceK6vdoMzTPtoKiPycXTVtd9PqwHSiHmxR4UYpAoI= Subject key identifier: 0E:DF:18:D1:C3:00:1C:5F:73:8A:60:2E:2E:D4:7B:1B:9B:3B:36:06 Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f Certificate serial: 544F03B7277E3A40DAC78884399B40D4F8D5363B Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS54339.roa Signing time: Wed 17 Dec 2025 00:15:52 +0000 ROA not before: Wed 17 Dec 2025 00:10:52 +0000 ROA not after: Wed 16 Dec 2026 00:15:52 +0000 asID: 54339 IP address blocks: 46.203.107.0/24 maxlen: 24 46.203.114.0/24 maxlen: 24 46.203.145.0/24 maxlen: 24 46.203.146.0/24 maxlen: 24 46.203.168.0/24 maxlen: 24 46.203.169.0/24 maxlen: 24 46.203.171.0/24 maxlen: 24 46.203.174.0/24 maxlen: 24 46.203.177.0/24 maxlen: 24 46.203.179.0/24 maxlen: 24 46.203.199.0/24 maxlen: 24 46.203.235.0/24 maxlen: 24 92.112.6.0/24 maxlen: 24 92.112.7.0/24 maxlen: 24 92.112.8.0/24 maxlen: 24 92.112.36.0/24 maxlen: 24 92.112.38.0/24 maxlen: 24 92.112.55.0/24 maxlen: 24 92.112.89.0/24 maxlen: 24 92.112.142.0/24 maxlen: 24 92.113.4.0/24 maxlen: 24 92.113.6.0/24 maxlen: 24 92.113.9.0/24 maxlen: 24 92.113.15.0/24 maxlen: 24 92.113.40.0/24 maxlen: 24 92.113.169.0/24 maxlen: 24 92.113.247.0/24 maxlen: 24 95.134.184.0/24 maxlen: 24 95.134.206.0/24 maxlen: 24 95.134.221.0/24 maxlen: 24 95.134.223.0/24 maxlen: 24 95.135.72.0/24 maxlen: 24 178.92.44.0/24 maxlen: 24 178.93.117.0/24 maxlen: 24 178.93.121.0/24 maxlen: 24 178.94.168.0/24 maxlen: 24 178.94.175.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 09:56:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:4f:03:b7:27:7e:3a:40:da:c7:88:84:39:9b:40:d4:f8:d5:36:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f Validity Not Before: Dec 17 00:10:52 2025 GMT Not After : Dec 16 00:15:52 2026 GMT Subject: CN=0EDF18D1C3001C5F738A602E2ED47B1B9B3B3606 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:82:d4:ed:dc:00:ae:84:1f:79:a3:4f:57:11: e8:c1:c1:6a:af:fd:cb:60:88:2c:98:6a:1e:62:2a: ef:d2:39:d2:ca:79:5c:d6:81:b0:71:29:f8:ab:65: 6f:22:f7:ea:07:38:59:4c:60:49:b1:d1:c7:ef:7f: 19:dd:46:c3:c0:5e:66:a7:74:19:25:05:90:0d:c9: 30:6e:57:7c:92:8d:62:bd:f4:73:c1:52:22:bb:10: 0d:c9:dd:81:e8:65:58:95:e4:b8:67:f6:55:9a:c6: f7:ab:4c:92:9e:d9:0a:dd:f9:ac:f2:0e:88:bd:b9: 8a:f8:04:e0:99:0e:e4:ab:8c:7b:2e:49:d0:fc:3f: cb:9f:60:ec:27:2e:23:d2:12:a7:3b:7e:cb:fd:ae: 0e:e0:d4:4d:ea:e7:f9:e3:9a:c6:21:35:ec:c3:4e: 48:bc:8f:fd:f8:1c:79:1a:d2:01:dc:6a:bb:87:f7: 31:4b:59:c3:30:a1:a6:0a:c5:17:1c:ce:2c:9d:0e: 4a:27:aa:97:c5:21:c2:b2:5c:31:dc:39:a6:7b:fb: ec:9d:34:63:19:7d:ae:1f:19:25:5b:48:42:95:cd: c6:53:e1:dc:b1:ce:c0:70:91:dd:f9:7d:4a:98:d2: 11:1f:c0:52:59:6d:80:76:a5:22:a5:92:61:3f:e6: 8e:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:DF:18:D1:C3:00:1C:5F:73:8A:60:2E:2E:D4:7B:1B:9B:3B:36:06 X509v3 Authority Key Identifier: keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS54339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 46.203.107.0/24 46.203.114.0/24 46.203.145.0-46.203.146.255 46.203.168.0/23 46.203.171.0/24 46.203.174.0/24 46.203.177.0/24 46.203.179.0/24 46.203.199.0/24 46.203.235.0/24 92.112.6.0-92.112.8.255 92.112.36.0/24 92.112.38.0/24 92.112.55.0/24 92.112.89.0/24 92.112.142.0/24 92.113.4.0/24 92.113.6.0/24 92.113.9.0/24 92.113.15.0/24 92.113.40.0/24 92.113.169.0/24 92.113.247.0/24 95.134.184.0/24 95.134.206.0/24 95.134.221.0/24 95.134.223.0/24 95.135.72.0/24 178.92.44.0/24 178.93.117.0/24 178.93.121.0/24 178.94.168.0/24 178.94.175.0/24 Signature Algorithm: sha256WithRSAEncryption 3f:92:5c:9b:50:02:3b:8e:a3:5e:3a:4c:70:78:87:f2:4c:86: 41:34:8c:41:68:4b:d9:4f:5f:09:7d:2f:e9:af:fd:37:59:9b: 75:a3:d0:e3:a3:cf:eb:d3:c7:53:c1:d7:b9:10:0c:12:82:78: 91:17:1e:52:66:85:59:fc:9d:94:3b:d6:5f:ff:a1:17:f0:b6: df:88:44:dc:93:c8:c9:47:e0:b5:7a:70:4f:96:bc:98:9e:70: c5:63:63:aa:01:c4:65:1d:f0:57:7d:42:ee:c4:6a:e1:aa:a0: 9f:c5:aa:3f:d6:2a:9f:fe:c9:a0:1c:11:f9:69:23:28:47:83: e3:c3:4a:8f:06:34:f4:0c:72:b9:ca:42:7d:26:11:5b:98:f0: 5a:f0:af:ec:2b:0e:26:09:95:8a:81:c5:41:ce:ff:36:79:5b: 35:ed:3f:7a:ac:c2:9f:56:02:0d:d8:82:f3:75:c1:05:3c:45: 33:ca:39:0a:65:e3:90:e4:86:a0:f0:39:f9:35:5d:52:4d:52: 9b:b4:f8:34:b5:b4:fd:b5:1e:3c:3d:60:61:99:60:7f:a2:a7: 6a:b2:ba:f8:5e:a3:47:b8:ea:3e:19:02:9e:d5:d9:ee:9a:ab: ae:80:35:0e:71:2c:69:9d:55:38:da:7a:0e:8c:0c:5c:b1:71: 07:36:ab:57 -----BEGIN CERTIFICATE----- MIIF1DCCBLygAwIBAgIUVE8Dtyd+OkDax4iEOZtA1PjVNjswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOWJkODEzMzkxZTRhZjJhZTMxMDNjMTg5MWIyMjcyZDRk NWMxM2I1ZjAeFw0yNTEyMTcwMDEwNTJaFw0yNjEyMTYwMDE1NTJaMDMxMTAvBgNV BAMTKDBFREYxOEQxQzMwMDFDNUY3MzhBNjAyRTJFRDQ3QjFCOUIzQjM2MDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJgtTt3ACuhB95o09XEejBwWqv /ctgiCyYah5iKu/SOdLKeVzWgbBxKfirZW8i9+oHOFlMYEmx0cfvfxndRsPAXman dBklBZANyTBuV3ySjWK99HPBUiK7EA3J3YHoZViV5Lhn9lWaxverTJKe2Qrd+azy Doi9uYr4BOCZDuSrjHsuSdD8P8ufYOwnLiPSEqc7fsv9rg7g1E3q5/njmsYhNezD Tki8j/34HHka0gHcaruH9zFLWcMwoaYKxRccziydDkonqpfFIcKyXDHcOaZ7++yd NGMZfa4fGSVbSEKVzcZT4dyxzsBwkd35fUqY0hEfwFJZbYB2pSKlkmE/5o63AgMB AAGjggLeMIIC2jAdBgNVHQ4EFgQUDt8Y0cMAHF9zimAuLtR7G5s7NgYwHwYDVR0j BBgwFoAUm9gTOR5K8q4xA8GJGyJy1NXBO18wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYzQ3OGY2ZjUtNDQ5YS00ODI3LTk5ZDUtYmY2YjkzYThm NmI0LzAvOUJEODEzMzkxRTRBRjJBRTMxMDNDMTg5MUIyMjcyRDRENUMxM0I1Ri5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL205Z1RPUjVLOHE0eEE4R0pHeUp5MU5Y Qk8xOC5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2M0NzhmNmY1LTQ0OWEt NDgyNy05OWQ1LWJmNmI5M2E4ZjZiNC8wL0FTNTQzMzkucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwgfMGCCsGAQUFBwEHAQH/BIHjMIHgMIHdBAIAATCB1gME AC7LawMEAC7LcjAMAwQALsuRAwQALsuSAwQBLsuoAwQALsurAwQALsuuAwQALsux AwQALsuzAwQALsvHAwQALsvrMAwDBAFccAYDBABccAgDBABccCQDBABccCYDBABc cDcDBABccFkDBABccI4DBABccQQDBABccQYDBABccQkDBABccQ8DBABccSgDBABc cakDBABccfcDBABfhrgDBABfhs4DBABfht0DBABfht8DBABfh0gDBACyXCwDBACy XXUDBACyXXkDBACyXqgDBACyXq8wDQYJKoZIhvcNAQELBQADggEBAD+SXJtQAjuO o146THB4h/JMhkE0jEFoS9lPXwl9L+mv/TdZm3Wj0OOjz+vTx1PB17kQDBKCeJEX HlJmhVn8nZQ71l//oRfwtt+IRNyTyMlH4LV6cE+WvJiecMVjY6oBxGUd8Fd9Qu7E auGqoJ/Fqj/WKp/+yaAcEflpIyhHg+PDSo8GNPQMcrnKQn0mEVuY8Frwr+wrDiYJ lYqBxUHO/zZ5WzXtP3qswp9WAg3YgvN1wQU8RTPKOQpl45DkhqDwOfk1XVJNUpu0 +DS1tP21Hjw9YGGZYH+ip2qyuvheo0e46j4ZAp7V2e6aq66ANQ5xLGmdVTjaeg6M DFyxcQc2q1c= -----END CERTIFICATE-----Generated at Sat Dec 20 14:38:24 2025 by rpki-client