This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS20326.roa File: AS20326.roa (raw, json) Hash identifier: F+M8ZVI8GitpoSjSN5cpzR5jlWgl2sXwrcS3VjgiA/I= Subject key identifier: 55:69:C5:6D:DA:FC:E3:F5:21:5D:29:15:1F:51:2C:DC:D8:CB:B6:BB Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc Certificate serial: 235A59DD6F6C14C1C542AD68938730355C5A9FDD Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS20326.roa Signing time: Wed 05 Nov 2025 11:47:23 +0000 ROA not before: Wed 05 Nov 2025 11:42:23 +0000 ROA not after: Wed 04 Nov 2026 11:47:23 +0000 asID: 20326 IP address blocks: 96.62.200.0/21 maxlen: 24 155.117.158.0/23 maxlen: 24 155.117.178.0/23 maxlen: 24 167.148.80.0/21 maxlen: 24 167.148.198.0/24 maxlen: 24 167.148.204.0/24 maxlen: 24 167.148.207.0/24 maxlen: 24 167.148.210.0/24 maxlen: 24 168.222.32.0/20 maxlen: 20 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.mft rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 05 Dec 2025 00:00:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:5a:59:dd:6f:6c:14:c1:c5:42:ad:68:93:87:30:35:5c:5a:9f:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc Validity Not Before: Nov 5 11:42:23 2025 GMT Not After : Nov 4 11:47:23 2026 GMT Subject: CN=5569C56DDAFCE3F5215D29151F512CDCD8CBB6BB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:ad:02:b6:0f:72:f8:61:1d:bd:1e:16:38:b3: a0:44:65:17:63:87:47:6f:cf:c6:42:2d:74:80:8e: d2:fd:2e:80:df:e1:67:a8:5f:ee:e4:6f:5e:25:ac: c7:b5:78:36:c3:78:9b:6c:c9:c6:55:8b:43:a7:2e: 36:fe:77:50:28:e5:44:7c:e8:99:b7:15:c5:9e:77: a3:b3:dc:13:5c:76:84:84:17:b9:0f:ed:0b:32:a0: 09:3f:94:8f:24:3f:78:e0:a6:0f:83:ab:43:c2:f1: a3:58:ec:cf:94:8a:6f:74:77:29:9e:54:21:98:89: 0f:20:ea:c3:af:4c:9f:6f:13:7a:ca:60:a6:8a:97: dc:39:e6:67:16:43:1f:9b:37:13:7d:f8:21:7a:bd: 18:b7:42:9e:9a:ba:cb:7f:ab:4d:03:cc:87:d6:9f: 3d:0e:7c:ab:07:80:a5:a6:5d:7e:5f:5f:3a:b2:09: f3:bb:c2:43:1d:5c:9d:38:ba:72:b3:35:df:c8:6b: 54:06:7e:91:e1:87:28:db:ec:58:6f:29:be:bd:7c: 09:1c:57:38:01:95:5d:94:b9:35:94:3b:67:a0:48: fb:b2:0d:0f:1d:7c:43:44:4e:ca:25:30:2c:9b:99: 4c:78:97:c9:c4:71:ec:50:e3:92:b3:74:4e:5f:16: ac:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:69:C5:6D:DA:FC:E3:F5:21:5D:29:15:1F:51:2C:DC:D8:CB:B6:BB X509v3 Authority Key Identifier: keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS20326.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.62.200.0/21 155.117.158.0/23 155.117.178.0/23 167.148.80.0/21 167.148.198.0/24 167.148.204.0/24 167.148.207.0/24 167.148.210.0/24 168.222.32.0/20 Signature Algorithm: sha256WithRSAEncryption 97:33:ca:e5:24:77:cd:4d:3b:ce:93:5a:10:08:0f:e2:53:de: 24:c0:f0:44:a2:6c:24:e0:d3:64:d7:1c:c5:16:a4:ea:18:e4: be:5b:fa:77:e7:ac:03:91:bb:34:21:fe:c2:0d:d3:2b:f8:cd: c4:15:2e:1c:c2:fe:17:5d:af:7d:aa:f7:58:eb:da:a4:7d:b7: 8e:07:8f:81:c7:db:de:76:48:0b:96:ee:f0:79:0b:86:76:5f: 7b:87:a5:c8:c7:b5:17:48:d9:e3:f7:40:ce:5a:9c:35:22:ef: 68:3b:ab:c2:6f:61:f8:e7:68:f0:e2:27:51:12:d9:24:83:6f: b5:17:84:1b:02:85:7e:9d:8b:f0:49:9b:8b:63:73:f3:3c:f7: ca:0c:96:ad:f4:a0:ac:e0:f5:87:55:ff:fa:37:10:bb:1a:1f: 18:0c:23:8c:1e:71:f0:46:31:2e:ea:a4:bf:9e:c6:e3:da:86: 89:e2:8a:04:9e:95:0d:16:f4:a9:ed:34:94:29:7d:8f:83:4d: 33:e6:4d:b0:cb:0a:9b:6d:81:9b:19:a4:96:25:53:22:61:bb: 34:2d:3a:be:91:a0:77:8e:82:f1:9b:73:74:c5:6e:51:5f:62: 5c:9f:bd:10:97:91:bc:9a:39:51:55:4f:6a:c9:4d:96:9d:f9: 84:28:30:d2 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUI1pZ3W9sFMHFQq1ok4cwNVxan90wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNGZjMzM2YmY5ZjNkZTVjZTQxNDE0YmQxOTcxOTQ1ZjRi MjQ2YmZjYzAeFw0yNTExMDUxMTQyMjNaFw0yNjExMDQxMTQ3MjNaMDMxMTAvBgNV BAMTKDU1NjlDNTZEREFGQ0UzRjUyMTVEMjkxNTFGNTEyQ0RDRDhDQkI2QkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDrQK2D3L4YR29HhY4s6BEZRdj h0dvz8ZCLXSAjtL9LoDf4WeoX+7kb14lrMe1eDbDeJtsycZVi0OnLjb+d1Ao5UR8 6Jm3FcWed6Oz3BNcdoSEF7kP7QsyoAk/lI8kP3jgpg+Dq0PC8aNY7M+Uim90dyme VCGYiQ8g6sOvTJ9vE3rKYKaKl9w55mcWQx+bNxN9+CF6vRi3Qp6aust/q00DzIfW nz0OfKsHgKWmXX5fXzqyCfO7wkMdXJ04unKzNd/Ia1QGfpHhhyjb7FhvKb69fAkc VzgBlV2UuTWUO2egSPuyDQ8dfENETsolMCybmUx4l8nEcexQ45KzdE5fFqx1AgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUVWnFbdr84/UhXSkVH1Es3NjLtrswHwYDVR0j BBgwFoAUT8M2v5895c5BQUvRlxlF9LJGv8wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMDliZTNhYWUtYWVhMS00MWRjLWIxYjktOTVhYzU5MTgy NDRkLzAvNEZDMzM2QkY5RjNERTVDRTQxNDE0QkQxOTcxOTQ1RjRCMjQ2QkZDQy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1Q4TTJ2NTg5NWM1QlFVdlJseGxGOUxK R3Y4dy5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzA5YmUzYWFlLWFlYTEt NDFkYy1iMWI5LTk1YWM1OTE4MjQ0ZC8wL0FTMjAzMjYucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwTwYIKwYBBQUHAQcBAf8EQDA+MDwEAgABMDYDBANgPsgD BAGbdZ4DBAGbdbIDBAOnlFADBACnlMYDBACnlMwDBACnlM8DBACnlNIDBASo3iAw DQYJKoZIhvcNAQELBQADggEBAJczyuUkd81NO86TWhAID+JT3iTA8ESibCTg02TX HMUWpOoY5L5b+nfnrAORuzQh/sIN0yv4zcQVLhzC/hddr32q91jr2qR9t44Hj4HH 2952SAuW7vB5C4Z2X3uHpcjHtRdI2eP3QM5anDUi72g7q8JvYfjnaPDiJ1ES2SSD b7UXhBsChX6di/BJm4tjc/M898oMlq30oKzg9YdV//o3ELsaHxgMI4wecfBGMS7q pL+exuPahoniigSelQ0W9KntNJQpfY+DTTPmTbDLCpttgZsZpJYlUyJhuzQtOr6R oHeOgvGbc3TFblFfYlyfvRCXkbyaOVFVT2rJTZad+YQoMNI= -----END CERTIFICATE-----Generated at Thu Dec 4 07:39:23 2025 by rpki-client