This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS212238.roa File: AS212238.roa (raw, json) Hash identifier: AmeVOfwEiUHvxsLf+eHPt5FKtXGzO7c6Rzjf1KWSDtc= Subject key identifier: 4A:06:CA:8E:E3:B3:D4:74:69:E5:43:1E:89:0D:9F:FC:3F:60:7D:9E Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc Certificate serial: 3B4190647D172B67CEEB373575D3888F6996C210 Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS212238.roa Signing time: Tue 09 Dec 2025 12:37:43 +0000 ROA not before: Tue 09 Dec 2025 12:32:43 +0000 ROA not after: Tue 08 Dec 2026 12:37:43 +0000 asID: 212238 IP address blocks: 96.62.96.0/23 maxlen: 23 96.62.111.0/24 maxlen: 24 96.62.127.0/24 maxlen: 24 96.62.214.0/24 maxlen: 24 136.143.247.0/24 maxlen: 24 140.233.178.0/23 maxlen: 24 140.233.188.0/23 maxlen: 24 143.14.219.0/24 maxlen: 24 146.103.45.0/24 maxlen: 24 146.103.51.0/24 maxlen: 24 146.103.53.0/24 maxlen: 24 148.135.183.0/24 maxlen: 24 148.135.195.0/24 maxlen: 24 150.241.200.0/23 maxlen: 23 150.241.243.0/24 maxlen: 24 150.241.251.0/24 maxlen: 24 155.117.144.0/24 maxlen: 24 158.140.193.0/24 maxlen: 24 158.140.208.0/22 maxlen: 22 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.mft rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 16 Dec 2025 08:00:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:41:90:64:7d:17:2b:67:ce:eb:37:35:75:d3:88:8f:69:96:c2:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc Validity Not Before: Dec 9 12:32:43 2025 GMT Not After : Dec 8 12:37:43 2026 GMT Subject: CN=4A06CA8EE3B3D47469E5431E890D9FFC3F607D9E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:81:40:51:e5:2f:15:ad:1f:e6:f7:05:ea:28: 80:6a:55:91:0e:00:91:5b:4d:89:0c:40:42:8a:28: 45:38:89:c6:08:22:52:9e:a3:ac:c8:c6:4d:f7:98: f7:54:3f:ed:4d:63:43:b0:f4:a9:5a:b4:35:23:f6: a6:2e:92:1b:e3:2b:62:64:2e:c4:a6:df:0a:fd:59: 93:e7:48:b1:a0:68:19:a7:65:00:3a:3a:45:c1:b4: dc:bb:80:96:ca:e0:96:47:51:2c:b8:67:77:be:94: 58:8f:b3:4b:1a:f9:68:b4:f5:42:b7:40:93:4e:27: af:d2:df:1e:43:48:8a:db:7e:af:0e:39:b5:64:20: 70:51:12:f9:03:2d:c0:d5:b0:5e:bc:08:cf:5e:c7: 11:dc:59:b5:bb:37:06:77:38:05:a2:72:04:3b:1f: 43:ae:e1:cb:21:4c:14:5e:39:0a:8a:96:2e:1c:d2: 14:06:36:97:f3:cd:b6:9b:76:6c:47:d8:dd:f2:d6: 43:cc:46:75:e1:07:c3:23:29:46:e9:f6:45:44:13: 4e:ee:69:54:82:14:c9:f6:f6:4c:72:09:a9:80:a8: 77:18:cb:69:fb:fa:65:37:6a:59:93:7f:01:23:a2: 6f:4d:54:99:d9:28:e4:49:b0:d3:6c:c5:a3:fe:5c: 5a:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:06:CA:8E:E3:B3:D4:74:69:E5:43:1E:89:0D:9F:FC:3F:60:7D:9E X509v3 Authority Key Identifier: keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS212238.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.62.96.0/23 96.62.111.0/24 96.62.127.0/24 96.62.214.0/24 136.143.247.0/24 140.233.178.0/23 140.233.188.0/23 143.14.219.0/24 146.103.45.0/24 146.103.51.0/24 146.103.53.0/24 148.135.183.0/24 148.135.195.0/24 150.241.200.0/23 150.241.243.0/24 150.241.251.0/24 155.117.144.0/24 158.140.193.0/24 158.140.208.0/22 Signature Algorithm: sha256WithRSAEncryption 87:de:92:11:ef:e8:11:33:c0:d0:6e:41:be:41:72:59:45:41: 77:90:6e:1b:ab:03:bf:24:bd:64:d1:f8:1e:bb:5d:2d:e9:b1: 0e:16:b8:64:a6:88:9d:5c:ef:ac:de:6b:ed:cd:4c:74:cc:06: 78:82:90:71:c9:85:34:0f:55:cb:9c:ff:4c:54:78:9d:fc:01: f4:a8:42:7e:70:e1:5c:1c:16:46:9f:85:c9:f2:64:45:dc:3c: 76:9e:cb:40:eb:08:a1:62:fd:50:87:8d:72:78:75:cc:f1:f4: 37:18:03:58:b0:d4:ec:fa:8e:e9:d1:62:d2:47:06:fa:bf:36: cc:7f:f2:a3:11:b9:00:fd:ab:c2:32:b0:31:b8:a6:5b:85:3d: db:28:57:bd:63:c7:bb:76:7e:3e:90:26:01:59:1f:6e:c8:da: 02:22:52:ef:41:da:4a:3c:e2:e6:57:ee:7c:ec:15:be:df:4d: cb:5a:29:ae:e6:22:fe:5a:ea:13:10:39:56:81:24:8c:c3:8f: b7:f8:1b:de:94:72:2a:0f:b7:a1:ba:5a:60:e6:3a:04:45:57: ee:55:cf:e6:7c:34:4b:d2:5d:83:4e:f9:4f:40:d4:a8:85:00: 40:af:50:0e:68:29:a9:8d:e4:ed:84:0c:4c:21:f7:c0:89:61: 34:c9:3d:da -----BEGIN CERTIFICATE----- MIIFbTCCBFWgAwIBAgIUO0GQZH0XK2fO6zc1ddOIj2mWwhAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNGZjMzM2YmY5ZjNkZTVjZTQxNDE0YmQxOTcxOTQ1ZjRi MjQ2YmZjYzAeFw0yNTEyMDkxMjMyNDNaFw0yNjEyMDgxMjM3NDNaMDMxMTAvBgNV BAMTKDRBMDZDQThFRTNCM0Q0NzQ2OUU1NDMxRTg5MEQ5RkZDM0Y2MDdEOUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1gUBR5S8VrR/m9wXqKIBqVZEO AJFbTYkMQEKKKEU4icYIIlKeo6zIxk33mPdUP+1NY0Ow9KlatDUj9qYukhvjK2Jk LsSm3wr9WZPnSLGgaBmnZQA6OkXBtNy7gJbK4JZHUSy4Z3e+lFiPs0sa+Wi09UK3 QJNOJ6/S3x5DSIrbfq8OObVkIHBREvkDLcDVsF68CM9exxHcWbW7NwZ3OAWicgQ7 H0Ou4cshTBReOQqKli4c0hQGNpfzzbabdmxH2N3y1kPMRnXhB8MjKUbp9kVEE07u aVSCFMn29kxyCamAqHcYy2n7+mU3almTfwEjom9NVJnZKORJsNNsxaP+XFp/AgMB AAGjggJ3MIICczAdBgNVHQ4EFgQUSgbKjuOz1HRp5UMeiQ2f/D9gfZ4wHwYDVR0j BBgwFoAUT8M2v5895c5BQUvRlxlF9LJGv8wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMDliZTNhYWUtYWVhMS00MWRjLWIxYjktOTVhYzU5MTgy NDRkLzAvNEZDMzM2QkY5RjNERTVDRTQxNDE0QkQxOTcxOTQ1RjRCMjQ2QkZDQy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1Q4TTJ2NTg5NWM1QlFVdlJseGxGOUxK R3Y4dy5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzA5YmUzYWFlLWFlYTEt NDFkYy1iMWI5LTk1YWM1OTE4MjQ0ZC8wL0FTMjEyMjM4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMIGLBggrBgEFBQcBBwEB/wR8MHoweAQCAAEwcgMEAWA+ YAMEAGA+bwMEAGA+fwMEAGA+1gMEAIiP9wMEAYzpsgMEAYzpvAMEAI8O2wMEAJJn LQMEAJJnMwMEAJJnNQMEAJSHtwMEAJSHwwMEAZbxyAMEAJbx8wMEAJbx+wMEAJt1 kAMEAJ6MwQMEAp6M0DANBgkqhkiG9w0BAQsFAAOCAQEAh96SEe/oETPA0G5BvkFy WUVBd5BuG6sDvyS9ZNH4HrtdLemxDha4ZKaInVzvrN5r7c1MdMwGeIKQccmFNA9V y5z/TFR4nfwB9KhCfnDhXBwWRp+FyfJkRdw8dp7LQOsIoWL9UIeNcnh1zPH0NxgD WLDU7PqO6dFi0kcG+r82zH/yoxG5AP2rwjKwMbimW4U92yhXvWPHu3Z+PpAmAVkf bsjaAiJS70HaSjzi5lfufOwVvt9Ny1opruYi/lrqExA5VoEkjMOPt/gb3pRyKg+3 obpaYOY6BEVX7lXP5nw0S9Jdg075T0DUqIUAQK9QDmgpqY3k7YQMTCH3wIlhNMk9 2g== -----END CERTIFICATE-----Generated at Mon Dec 15 12:13:09 2025 by rpki-client