This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS204765.roa File: AS204765.roa (raw, json) Hash identifier: LCnslUNxCii715T4/h4/deWXYK1ON0EUM3UiPAeQjFA= Subject key identifier: 13:3B:AC:6D:F3:67:F0:F7:82:C4:A4:8A:6E:E9:90:69:B4:1D:F2:F1 Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc Certificate serial: 07B354C1A6A484B53D743D2504DA93AC0E29151F Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS204765.roa Signing time: Sat 17 Jan 2026 16:27:33 +0000 ROA not before: Sat 17 Jan 2026 16:22:33 +0000 ROA not after: Sat 16 Jan 2027 16:27:33 +0000 asID: 204765 IP address blocks: 155.117.141.0/24 maxlen: 24 167.148.8.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.mft rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 00:00:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:b3:54:c1:a6:a4:84:b5:3d:74:3d:25:04:da:93:ac:0e:29:15:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc Validity Not Before: Jan 17 16:22:33 2026 GMT Not After : Jan 16 16:27:33 2027 GMT Subject: CN=133BAC6DF367F0F782C4A48A6EE99069B41DF2F1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:5a:75:2d:b5:bf:46:65:f7:69:5f:b9:14:57: bc:52:c9:e4:59:74:67:71:f6:a3:b0:d7:fc:c2:ad: 2e:91:23:b9:d7:af:56:b5:3c:c3:2a:5c:21:32:52: a5:f8:3e:9a:f0:14:55:b3:65:6a:5c:61:8a:4f:2e: 5d:de:23:56:45:63:5a:20:33:4b:b2:30:f7:39:dd: 8e:a8:f1:57:f3:88:44:94:9d:bd:20:32:c5:d7:2c: ef:32:f0:71:e5:e0:24:a3:3f:3a:52:3d:8a:6d:d9: 99:46:c0:32:ce:3b:84:e9:fd:65:01:f7:c1:24:ee: cd:b2:83:d2:33:56:09:cb:e5:3c:bf:06:ae:d4:09: c8:eb:00:0d:1a:3d:7b:9c:e6:f5:8c:4d:88:ed:f7: f8:d9:c2:a2:46:4c:6c:5f:88:a3:f1:91:d6:88:6f: 94:e4:6e:11:27:4b:c1:cb:24:c0:6c:3b:01:26:43: 27:b8:d3:4e:db:44:10:14:18:6f:79:18:b6:f0:a1: aa:fe:6b:b6:a8:97:de:75:20:d2:15:a6:76:91:64: ce:20:f4:6c:c6:a8:2f:6c:92:ba:37:f9:fe:f5:19: 49:c8:fc:8e:12:d1:a2:f0:f6:8a:27:61:70:76:d0: 7b:02:a5:40:38:9b:b8:96:58:1e:0b:98:39:9a:75: a0:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:3B:AC:6D:F3:67:F0:F7:82:C4:A4:8A:6E:E9:90:69:B4:1D:F2:F1 X509v3 Authority Key Identifier: keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS204765.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 155.117.141.0/24 167.148.8.0/24 Signature Algorithm: sha256WithRSAEncryption 67:e1:cd:cb:ee:0f:a3:ed:07:1e:63:f0:48:c7:9e:5a:57:ca: 5b:57:dc:37:a4:63:16:3d:ac:3a:23:a1:a6:c2:8d:56:b0:9b: 94:5c:8e:cb:45:2f:bc:a4:c1:3d:ae:f3:d3:b8:3f:16:38:2d: 4b:a1:85:1c:64:6a:d5:9c:76:8f:3c:34:c4:f1:52:c0:24:0e: 1c:5a:40:cb:cf:00:1c:1a:64:cc:9a:ef:aa:3f:6f:c5:b4:36: e2:7d:e2:30:ae:6e:6f:9f:35:1b:7c:00:78:d5:7b:7b:f2:d8: 3e:31:3d:79:75:f3:59:3b:fc:3b:c6:8b:9d:48:25:b0:8e:09: 05:6b:ff:50:5a:27:27:0c:54:a3:4d:b7:81:77:f2:30:9a:e2: e7:1f:77:20:29:70:53:05:a3:19:1d:43:2e:dd:27:2f:80:47: f8:72:24:8f:55:8a:b0:63:c5:37:0a:27:d6:b1:1f:6c:3b:79: 4e:7d:f6:c1:f7:5b:f0:48:4f:f0:e1:b0:63:6c:ab:5c:64:c4: 07:de:a4:a7:f0:a9:bc:00:bc:d7:62:d6:62:fa:b2:75:03:b5: 8c:4f:1c:db:64:57:d7:45:66:6b:01:bb:db:a4:9c:ba:ea:a1: 11:4e:16:e2:2c:7e:e1:b9:0e:fe:93:1c:d6:d8:61:a2:57:64: 27:1e:f0:3b -----BEGIN CERTIFICATE----- MIIFBjCCA+6gAwIBAgIUB7NUwaakhLU9dD0lBNqTrA4pFR8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNGZjMzM2YmY5ZjNkZTVjZTQxNDE0YmQxOTcxOTQ1ZjRi MjQ2YmZjYzAeFw0yNjAxMTcxNjIyMzNaFw0yNzAxMTYxNjI3MzNaMDMxMTAvBgNV BAMTKDEzM0JBQzZERjM2N0YwRjc4MkM0QTQ4QTZFRTk5MDY5QjQxREYyRjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZWnUttb9GZfdpX7kUV7xSyeRZ dGdx9qOw1/zCrS6RI7nXr1a1PMMqXCEyUqX4PprwFFWzZWpcYYpPLl3eI1ZFY1og M0uyMPc53Y6o8VfziESUnb0gMsXXLO8y8HHl4CSjPzpSPYpt2ZlGwDLOO4Tp/WUB 98Ek7s2yg9IzVgnL5Ty/Bq7UCcjrAA0aPXuc5vWMTYjt9/jZwqJGTGxfiKPxkdaI b5TkbhEnS8HLJMBsOwEmQye4007bRBAUGG95GLbwoar+a7aol951INIVpnaRZM4g 9GzGqC9skro3+f71GUnI/I4S0aLw9oonYXB20HsCpUA4m7iWWB4LmDmadaBzAgMB AAGjggIQMIICDDAdBgNVHQ4EFgQUEzusbfNn8PeCxKSKbumQabQd8vEwHwYDVR0j BBgwFoAUT8M2v5895c5BQUvRlxlF9LJGv8wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMDliZTNhYWUtYWVhMS00MWRjLWIxYjktOTVhYzU5MTgy NDRkLzAvNEZDMzM2QkY5RjNERTVDRTQxNDE0QkQxOTcxOTQ1RjRCMjQ2QkZDQy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1Q4TTJ2NTg5NWM1QlFVdlJseGxGOUxK R3Y4dy5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzA5YmUzYWFlLWFlYTEt NDFkYy1iMWI5LTk1YWM1OTE4MjQ0ZC8wL0FTMjA0NzY1LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAm3WN AwQAp5QIMA0GCSqGSIb3DQEBCwUAA4IBAQBn4c3L7g+j7QceY/BIx55aV8pbV9w3 pGMWPaw6I6Gmwo1WsJuUXI7LRS+8pME9rvPTuD8WOC1LoYUcZGrVnHaPPDTE8VLA JA4cWkDLzwAcGmTMmu+qP2/FtDbifeIwrm5vnzUbfAB41Xt78tg+MT15dfNZO/w7 xoudSCWwjgkFa/9QWicnDFSjTbeBd/IwmuLnH3cgKXBTBaMZHUMu3ScvgEf4ciSP VYqwY8U3CifWsR9sO3lOffbB91vwSE/w4bBjbKtcZMQH3qSn8Km8ALzXYtZi+rJ1 A7WMTxzbZFfXRWZrAbvbpJy66qERThbiLH7huQ7+kxzW2GGiV2QnHvA7 -----END CERTIFICATE-----Generated at Mon Jan 19 08:13:42 2026 by rpki-client