This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS211484.roa File: AS211484.roa (raw, json) Hash identifier: l/N4AR8zjxts4Yj/H9QQPsQXeEIL65jOtCHQI9vJbRo= Subject key identifier: 72:CB:95:B7:2C:EA:4B:B9:EB:DD:4D:FB:23:6F:68:3C:4F:18:51:01 Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc Certificate serial: 23B726F8FB3C88A98C5D7457FFF594CB3787C0A3 Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS211484.roa Signing time: Thu 27 Nov 2025 18:50:41 +0000 ROA not before: Thu 27 Nov 2025 18:45:41 +0000 ROA not after: Thu 26 Nov 2026 18:50:41 +0000 asID: 211484 IP address blocks: 155.117.252.0/23 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.mft rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 11:00:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:b7:26:f8:fb:3c:88:a9:8c:5d:74:57:ff:f5:94:cb:37:87:c0:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc Validity Not Before: Nov 27 18:45:41 2025 GMT Not After : Nov 26 18:50:41 2026 GMT Subject: CN=72CB95B72CEA4BB9EBDD4DFB236F683C4F185101 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:c8:f4:a6:7a:a3:34:34:a9:f9:79:2f:b1:15: 32:9b:0a:4e:47:3c:c6:95:a1:a0:e0:20:d0:43:61: 6c:49:f9:04:cc:34:eb:e4:a7:d3:e6:cc:fb:1a:4e: 3c:d4:3c:0e:74:84:1c:7f:21:7c:c2:5d:43:57:b7: 5f:6d:f2:16:b2:2c:04:c5:e0:13:83:5e:a8:bd:aa: 25:1d:a1:14:30:01:33:98:86:91:b2:cc:ba:dd:35: 89:61:d5:3f:99:5c:f6:61:e4:3a:8b:94:7e:6f:70: 45:e2:45:ee:84:e3:b9:12:5a:a9:2c:58:00:a9:c5: 3e:af:67:73:94:10:7b:4e:ef:39:6e:fd:bc:a6:e1: 07:ed:b6:0e:28:cd:28:83:4c:9c:fe:79:67:4d:3b: cd:d3:78:b7:93:6e:0d:7c:7a:cc:8a:29:81:cf:f9: f8:e7:0b:e4:fe:15:f0:df:2c:4e:2b:55:e5:97:cb: 11:b7:55:f3:6b:52:99:30:a5:30:89:4a:e6:be:3a: 36:fa:bc:da:58:c8:88:8b:b9:e3:af:5c:cf:c2:5f: 7a:84:fe:c3:b8:a2:a1:e4:7f:77:df:52:2c:08:0b: 89:17:a5:c8:71:79:05:ec:6e:99:fc:d0:c7:d5:0b: 56:9b:90:35:70:4c:7b:91:f9:30:9d:15:d5:43:d9: 14:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:CB:95:B7:2C:EA:4B:B9:EB:DD:4D:FB:23:6F:68:3C:4F:18:51:01 X509v3 Authority Key Identifier: keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS211484.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 155.117.252.0/23 Signature Algorithm: sha256WithRSAEncryption 8d:d1:db:95:e8:90:f6:9b:a4:fb:46:0f:7f:51:00:e1:73:48: 6b:d8:82:e5:0a:a5:22:f4:a4:b1:2c:94:b8:27:28:34:bd:99: 69:6f:6b:7d:60:0e:24:b7:95:7e:06:af:06:c0:b5:e2:6e:e4: 54:3a:4a:fd:9a:83:ab:79:bd:26:15:ab:e9:49:01:35:87:79: fc:ad:be:fa:04:47:3d:6d:db:0c:60:24:b8:18:1a:31:c7:97: 61:a3:00:eb:64:42:bd:48:22:17:6d:c0:81:fe:79:41:ae:f4: 8b:82:a9:71:65:88:f6:1f:e7:e5:b1:df:8c:c9:4c:b1:ff:6e: 7c:b7:36:90:56:8a:ed:9e:ab:39:e1:ca:d1:01:72:03:b7:a4: dc:d0:50:a1:0e:ad:11:d6:69:ad:4e:ee:af:f9:05:c0:94:72: 0f:0f:f7:2f:3c:dd:38:05:b3:0d:b8:12:dd:2b:7a:80:ec:5d: 8d:c7:67:e4:25:fd:dd:ad:9e:62:f0:8c:68:e2:71:ca:5a:95: 38:4f:7c:bc:56:ca:d0:5d:7f:13:d1:fd:81:9e:79:5c:9c:f7: ff:25:66:bf:4f:12:2d:c8:ec:0e:1a:6d:e1:92:6c:a6:20:e3: 8c:77:30:82:2a:fb:95:7f:bd:a8:fb:b8:b2:28:25:04:9f:11: 68:74:6c:dc -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgIUI7cm+Ps8iKmMXXRX//WUyzeHwKMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNGZjMzM2YmY5ZjNkZTVjZTQxNDE0YmQxOTcxOTQ1ZjRi MjQ2YmZjYzAeFw0yNTExMjcxODQ1NDFaFw0yNjExMjYxODUwNDFaMDMxMTAvBgNV BAMTKDcyQ0I5NUI3MkNFQTRCQjlFQkRENERGQjIzNkY2ODNDNEYxODUxMDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2yPSmeqM0NKn5eS+xFTKbCk5H PMaVoaDgINBDYWxJ+QTMNOvkp9PmzPsaTjzUPA50hBx/IXzCXUNXt19t8hayLATF 4BODXqi9qiUdoRQwATOYhpGyzLrdNYlh1T+ZXPZh5DqLlH5vcEXiRe6E47kSWqks WACpxT6vZ3OUEHtO7zlu/bym4Qfttg4ozSiDTJz+eWdNO83TeLeTbg18esyKKYHP +fjnC+T+FfDfLE4rVeWXyxG3VfNrUpkwpTCJSua+Ojb6vNpYyIiLueOvXM/CX3qE /sO4oqHkf3ffUiwIC4kXpchxeQXsbpn80MfVC1abkDVwTHuR+TCdFdVD2RTDAgMB AAGjggIKMIICBjAdBgNVHQ4EFgQUcsuVtyzqS7nr3U37I29oPE8YUQEwHwYDVR0j BBgwFoAUT8M2v5895c5BQUvRlxlF9LJGv8wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMDliZTNhYWUtYWVhMS00MWRjLWIxYjktOTVhYzU5MTgy NDRkLzAvNEZDMzM2QkY5RjNERTVDRTQxNDE0QkQxOTcxOTQ1RjRCMjQ2QkZDQy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1Q4TTJ2NTg5NWM1QlFVdlJseGxGOUxK R3Y4dy5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzA5YmUzYWFlLWFlYTEt NDFkYy1iMWI5LTk1YWM1OTE4MjQ0ZC8wL0FTMjExNDg0LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBm3X8 MA0GCSqGSIb3DQEBCwUAA4IBAQCN0duV6JD2m6T7Rg9/UQDhc0hr2ILlCqUi9KSx LJS4Jyg0vZlpb2t9YA4kt5V+Bq8GwLXibuRUOkr9moOreb0mFavpSQE1h3n8rb76 BEc9bdsMYCS4GBoxx5dhowDrZEK9SCIXbcCB/nlBrvSLgqlxZYj2H+flsd+MyUyx /258tzaQVortnqs54crRAXIDt6Tc0FChDq0R1mmtTu6v+QXAlHIPD/cvPN04BbMN uBLdK3qA7F2Nx2fkJf3drZ5i8Ixo4nHKWpU4T3y8VsrQXX8T0f2BnnlcnPf/JWa/ TxItyOwOGm3hkmymIOOMdzCCKvuVf72o+7iyKCUEnxFodGzc -----END CERTIFICATE-----Generated at Fri Dec 5 18:23:20 2025 by rpki-client