This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS203057.roa File: AS203057.roa (raw, json) Hash identifier: EMw/GGlLN33MTaU+MFSKI+KZNZpGzHTpx897OXEpdN8= Subject key identifier: BC:87:48:92:86:61:35:72:B4:76:57:48:A2:E3:8E:7A:13:08:FA:17 Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc Certificate serial: 43E52A086BF8E7BE7232D76E7B5DC6983871236D Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS203057.roa Signing time: Mon 26 Jan 2026 01:14:50 +0000 ROA not before: Mon 26 Jan 2026 01:09:50 +0000 ROA not after: Mon 25 Jan 2027 01:14:50 +0000 asID: 203057 IP address blocks: 96.62.73.0/24 maxlen: 24 143.14.111.0/24 maxlen: 24 143.14.131.0/24 maxlen: 24 143.14.166.0/24 maxlen: 24 155.117.156.0/24 maxlen: 24 162.141.113.0/24 maxlen: 24 167.148.188.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.mft rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 16 Feb 2026 01:53:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:e5:2a:08:6b:f8:e7:be:72:32:d7:6e:7b:5d:c6:98:38:71:23:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc Validity Not Before: Jan 26 01:09:50 2026 GMT Not After : Jan 25 01:14:50 2027 GMT Subject: CN=BC87489286613572B4765748A2E38E7A1308FA17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:05:f2:db:80:9a:2d:08:a2:00:85:9b:df:33: 86:72:e3:0d:26:e0:0c:72:d8:7a:2f:fe:7f:d4:d6: fd:e8:4e:8c:c5:b9:97:b3:21:8f:7c:38:93:e1:b0: 9c:f4:46:93:31:03:57:fb:4d:d0:aa:7b:80:6d:29: 65:fc:46:9b:3e:c5:28:21:9b:2c:dd:3c:ca:e4:ab: 63:28:b8:7d:b5:d7:de:02:60:7f:40:0d:d7:9d:59: 10:ef:a0:9a:44:b6:d3:f0:9d:cc:ac:ae:4f:9f:20: 41:fa:6a:b0:9e:83:93:13:76:0f:6e:10:cc:f8:06: b3:b0:8f:cb:38:01:64:d9:80:98:0a:ab:d1:9d:b4: 50:9c:1f:42:11:a8:f4:08:54:24:4f:75:be:01:08: 3d:2c:8a:5e:01:6e:20:b8:ea:d1:8a:81:9b:1a:5e: 6d:74:1b:ea:b7:ed:6c:e1:89:2f:b8:51:83:17:e8: fa:27:8f:f2:bb:12:02:df:43:25:19:05:fd:ab:89: 03:32:a7:b1:66:81:d4:94:9f:c3:66:a4:83:b0:55: 9b:69:0c:33:86:d2:f3:0c:d5:cb:6d:06:b8:5e:6b: 98:6d:2a:54:5a:f5:92:41:bc:fb:a0:ce:27:cd:ee: 17:78:ff:5c:71:16:a8:00:c7:55:f3:91:1f:69:eb: 8b:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:87:48:92:86:61:35:72:B4:76:57:48:A2:E3:8E:7A:13:08:FA:17 X509v3 Authority Key Identifier: keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS203057.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.62.73.0/24 143.14.111.0/24 143.14.131.0/24 143.14.166.0/24 155.117.156.0/24 162.141.113.0/24 167.148.188.0/24 Signature Algorithm: sha256WithRSAEncryption b7:32:0b:73:4a:f6:cc:f4:87:1a:85:ad:c1:a4:de:59:c9:c7: a1:08:e6:d4:24:a3:f9:76:da:3c:89:56:cf:a8:92:41:1c:3f: f7:f7:c7:81:d0:c4:a2:4e:7b:9b:a6:22:f4:5b:a8:ce:b4:99: 6e:57:e5:3a:86:f2:5f:b2:ea:4e:3f:4d:1c:b4:6c:c1:30:95: 76:ec:0b:5b:a0:e7:e3:b6:ff:09:97:a1:a5:0b:1a:10:5e:57: 2b:1c:5b:a0:a7:3d:68:63:04:49:c5:3e:0f:7e:d6:9b:06:38: b0:bb:35:c1:ef:62:9a:21:23:fc:a8:5d:54:56:92:b1:13:bb: 1d:71:e5:78:26:97:7c:5c:aa:2f:69:2b:b9:45:d4:f6:18:83: 9c:2f:68:33:36:a0:5a:b2:19:17:51:2f:3d:c8:46:a1:d1:d8: 72:7a:f9:ff:90:e1:16:da:cc:8a:f9:96:47:d1:24:7e:4a:0a: eb:6b:5d:86:3b:c5:55:3d:9e:55:4e:af:e3:f1:42:83:ac:30: 41:61:7d:ce:67:7e:a4:4f:fd:07:74:36:76:8d:e4:61:ee:18: bf:2d:74:43:e8:20:3c:c2:68:01:ce:10:3f:96:71:40:c6:75: e3:6c:ed:52:e1:32:2b:cd:57:d6:2b:f3:27:96:f6:65:58:9b: b8:81:81:05 -----BEGIN CERTIFICATE----- MIIFJDCCBAygAwIBAgIUQ+UqCGv4575yMtdue13GmDhxI20wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNGZjMzM2YmY5ZjNkZTVjZTQxNDE0YmQxOTcxOTQ1ZjRi MjQ2YmZjYzAeFw0yNjAxMjYwMTA5NTBaFw0yNzAxMjUwMTE0NTBaMDMxMTAvBgNV BAMTKEJDODc0ODkyODY2MTM1NzJCNDc2NTc0OEEyRTM4RTdBMTMwOEZBMTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKBfLbgJotCKIAhZvfM4Zy4w0m 4Axy2Hov/n/U1v3oTozFuZezIY98OJPhsJz0RpMxA1f7TdCqe4BtKWX8Rps+xSgh myzdPMrkq2MouH21194CYH9ADdedWRDvoJpEttPwncysrk+fIEH6arCeg5MTdg9u EMz4BrOwj8s4AWTZgJgKq9GdtFCcH0IRqPQIVCRPdb4BCD0sil4BbiC46tGKgZsa Xm10G+q37WzhiS+4UYMX6Ponj/K7EgLfQyUZBf2riQMyp7FmgdSUn8NmpIOwVZtp DDOG0vMM1cttBrhea5htKlRa9ZJBvPugzifN7hd4/1xxFqgAx1XzkR9p64tHAgMB AAGjggIuMIICKjAdBgNVHQ4EFgQUvIdIkoZhNXK0dldIouOOehMI+hcwHwYDVR0j BBgwFoAUT8M2v5895c5BQUvRlxlF9LJGv8wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMDliZTNhYWUtYWVhMS00MWRjLWIxYjktOTVhYzU5MTgy NDRkLzAvNEZDMzM2QkY5RjNERTVDRTQxNDE0QkQxOTcxOTQ1RjRCMjQ2QkZDQy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1Q4TTJ2NTg5NWM1QlFVdlJseGxGOUxK R3Y4dy5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzA5YmUzYWFlLWFlYTEt NDFkYy1iMWI5LTk1YWM1OTE4MjQ0ZC8wL0FTMjAzMDU3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMEMGCCsGAQUFBwEHAQH/BDQwMjAwBAIAATAqAwQAYD5J AwQAjw5vAwQAjw6DAwQAjw6mAwQAm3WcAwQAoo1xAwQAp5S8MA0GCSqGSIb3DQEB CwUAA4IBAQC3MgtzSvbM9Icaha3BpN5ZycehCObUJKP5dto8iVbPqJJBHD/398eB 0MSiTnubpiL0W6jOtJluV+U6hvJfsupOP00ctGzBMJV27AtboOfjtv8Jl6GlCxoQ XlcrHFugpz1oYwRJxT4PftabBjiwuzXB72KaISP8qF1UVpKxE7sdceV4Jpd8XKov aSu5RdT2GIOcL2gzNqBashkXUS89yEah0dhyevn/kOEW2syK+ZZH0SR+Sgrra12G O8VVPZ5VTq/j8UKDrDBBYX3OZ36kT/0HdDZ2jeRh7hi/LXRD6CA8wmgBzhA/lnFA xnXjbO1S4TIrzVfWK/MnlvZlWJu4gYEF -----END CERTIFICATE-----Generated at Sun Feb 15 07:03:25 2026 by rpki-client