This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS12027.roa File: AS12027.roa (raw, json) Hash identifier: uTQJ3e9wwG1QqAwT4+TtqSemPgGGlh3Zc1FQu8vNbWg= Subject key identifier: B3:65:8C:14:F5:56:55:2E:C4:5C:C9:04:A1:39:4E:05:81:CD:58:05 Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc Certificate serial: 4C704251FB6BE6AE5781A5EB35660376A9944504 Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS12027.roa Signing time: Wed 07 Jan 2026 11:35:34 +0000 ROA not before: Wed 07 Jan 2026 11:30:34 +0000 ROA not after: Wed 06 Jan 2027 11:35:34 +0000 asID: 12027 IP address blocks: 146.103.27.0/24 maxlen: 24 155.117.201.0/24 maxlen: 24 167.148.33.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.mft rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 18 Jan 2026 19:35:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:70:42:51:fb:6b:e6:ae:57:81:a5:eb:35:66:03:76:a9:94:45:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc Validity Not Before: Jan 7 11:30:34 2026 GMT Not After : Jan 6 11:35:34 2027 GMT Subject: CN=B3658C14F556552EC45CC904A1394E0581CD5805 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:68:a8:e2:aa:8e:95:cc:32:85:d2:3a:d5:de: f6:53:76:40:d7:73:7d:e3:59:1c:21:6b:bd:9b:66: 3f:90:89:01:9c:1b:02:a5:be:56:db:e4:c3:bd:b2: 04:41:8e:4a:d3:19:04:1b:7f:df:09:38:9b:b7:9c: 54:a3:a5:91:fa:ef:5b:1f:51:1f:9f:e6:bf:20:98: c8:7a:89:1f:f3:ab:12:bd:01:05:ef:16:43:3b:3a: c7:ee:cf:13:b1:2e:0a:8e:be:66:22:0d:a1:44:a8: 9a:b3:1c:ff:5a:f0:72:a8:8a:fc:84:07:cc:90:b9: 6a:5b:17:95:7e:09:78:a9:2c:b5:75:e7:8b:0a:9b: 16:f9:f1:74:f5:e8:29:29:13:90:f4:2b:2d:72:26: bc:c3:53:f2:98:99:b1:a4:d0:79:55:c8:0c:53:fd: fb:8f:2a:5b:19:ad:9f:61:3f:e1:c3:9b:85:e2:b6: 35:41:97:e7:3b:79:f4:ee:1e:31:ca:c0:ac:48:3b: 67:25:5d:c2:b1:71:57:79:95:ac:e9:0f:2a:a3:bc: 33:61:96:24:37:79:92:53:30:50:1c:6b:c5:6b:7e: b1:7e:a3:00:ae:df:42:97:0a:f1:9f:13:cd:dd:65: e9:cf:5e:d1:56:13:0c:f6:ab:a8:2e:46:7e:50:3b: 99:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:65:8C:14:F5:56:55:2E:C4:5C:C9:04:A1:39:4E:05:81:CD:58:05 X509v3 Authority Key Identifier: keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS12027.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 146.103.27.0/24 155.117.201.0/24 167.148.33.0/24 Signature Algorithm: sha256WithRSAEncryption 65:59:e0:fa:57:99:72:5e:e5:84:05:c1:0e:e6:97:1e:17:e7: 1f:08:a2:e4:dc:ba:ab:b9:2d:e7:68:91:75:22:a9:9b:b4:52: f1:ff:67:04:d5:e0:bf:17:67:4a:e0:31:2c:a1:cd:3f:52:c9: 00:a2:fc:7f:a0:ee:49:90:fd:d1:0e:eb:22:f0:ac:6f:52:d9: bc:1e:28:fa:31:32:29:e6:a5:ac:16:96:92:bf:95:99:bd:64: 0d:b4:fa:3f:dd:2b:ae:b2:3b:a6:91:c0:2d:46:f7:de:81:dc: f8:dc:17:5c:a2:15:48:13:74:45:40:b5:a3:b4:d1:3a:d2:26: 9f:a1:3e:c0:4d:fb:08:34:00:00:02:b4:78:91:ac:dc:bc:1d: 29:ba:e5:b7:fc:82:62:fd:26:1f:81:c3:ac:02:fd:92:70:69: b8:2c:94:1a:a1:d4:9e:e7:ed:82:19:0f:ca:2e:ed:33:84:19: 64:5c:bd:a9:4b:50:de:e4:eb:37:9d:08:9d:cd:93:1e:94:0b: 0e:7f:21:eb:d5:d6:fd:38:63:09:33:58:00:78:f5:79:51:56: 73:00:82:81:92:93:1d:4b:25:84:3f:75:25:10:cf:77:74:b1: 38:63:86:44:72:fe:ba:2b:54:80:0d:86:99:a1:47:7f:5e:26: 46:87:d6:bd -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgIUTHBCUftr5q5XgaXrNWYDdqmURQQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNGZjMzM2YmY5ZjNkZTVjZTQxNDE0YmQxOTcxOTQ1ZjRi MjQ2YmZjYzAeFw0yNjAxMDcxMTMwMzRaFw0yNzAxMDYxMTM1MzRaMDMxMTAvBgNV BAMTKEIzNjU4QzE0RjU1NjU1MkVDNDVDQzkwNEExMzk0RTA1ODFDRDU4MDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCaKjiqo6VzDKF0jrV3vZTdkDX c33jWRwha72bZj+QiQGcGwKlvlbb5MO9sgRBjkrTGQQbf98JOJu3nFSjpZH671sf UR+f5r8gmMh6iR/zqxK9AQXvFkM7OsfuzxOxLgqOvmYiDaFEqJqzHP9a8HKoivyE B8yQuWpbF5V+CXipLLV154sKmxb58XT16CkpE5D0Ky1yJrzDU/KYmbGk0HlVyAxT /fuPKlsZrZ9hP+HDm4XitjVBl+c7efTuHjHKwKxIO2clXcKxcVd5lazpDyqjvDNh liQ3eZJTMFAca8VrfrF+owCu30KXCvGfE83dZenPXtFWEwz2q6guRn5QO5m/AgMB AAGjggIVMIICETAdBgNVHQ4EFgQUs2WMFPVWVS7EXMkEoTlOBYHNWAUwHwYDVR0j BBgwFoAUT8M2v5895c5BQUvRlxlF9LJGv8wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMDliZTNhYWUtYWVhMS00MWRjLWIxYjktOTVhYzU5MTgy NDRkLzAvNEZDMzM2QkY5RjNERTVDRTQxNDE0QkQxOTcxOTQ1RjRCMjQ2QkZDQy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1Q4TTJ2NTg5NWM1QlFVdlJseGxGOUxK R3Y4dy5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzA5YmUzYWFlLWFlYTEt NDFkYy1iMWI5LTk1YWM1OTE4MjQ0ZC8wL0FTMTIwMjcucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwKwYIKwYBBQUHAQcBAf8EHDAaMBgEAgABMBIDBACSZxsD BACbdckDBACnlCEwDQYJKoZIhvcNAQELBQADggEBAGVZ4PpXmXJe5YQFwQ7mlx4X 5x8IouTcuqu5LedokXUiqZu0UvH/ZwTV4L8XZ0rgMSyhzT9SyQCi/H+g7kmQ/dEO 6yLwrG9S2bweKPoxMinmpawWlpK/lZm9ZA20+j/dK66yO6aRwC1G996B3PjcF1yi FUgTdEVAtaO00TrSJp+hPsBN+wg0AAACtHiRrNy8HSm65bf8gmL9Jh+Bw6wC/ZJw abgslBqh1J7n7YIZD8ou7TOEGWRcvalLUN7k6zedCJ3Nkx6UCw5/IevV1v04Ywkz WAB49XlRVnMAgoGSkx1LJYQ/dSUQz3d0sThjhkRy/rorVIANhpmhR39eJkaH1r0= -----END CERTIFICATE-----Generated at Sun Jan 18 11:05:02 2026 by rpki-client