This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS215304.roa File: AS215304.roa (raw, json) Hash identifier: B1fIq9nOOdzQ3/jrCXYvifePmzvsN35Ymq9AjzNTlKU= Subject key identifier: 73:65:83:24:BC:1F:34:02:6D:63:17:8D:DB:09:73:FA:86:B2:FF:EB Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc Certificate serial: 02D23EB13C5B5E2F1746EDBC6DC0FCA5131FD5B6 Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS215304.roa Signing time: Thu 06 Nov 2025 00:02:51 +0000 ROA not before: Wed 05 Nov 2025 23:57:51 +0000 ROA not after: Thu 05 Nov 2026 00:02:51 +0000 asID: 215304 IP address blocks: 96.62.115.0/24 maxlen: 24 143.14.1.0/24 maxlen: 24 143.14.226.0/24 maxlen: 24 148.135.181.0/24 maxlen: 24 155.117.6.0/24 maxlen: 24 155.117.127.0/24 maxlen: 24 155.117.136.0/24 maxlen: 24 155.117.137.0/24 maxlen: 24 155.117.197.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.mft rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 05 Dec 2025 21:22:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:d2:3e:b1:3c:5b:5e:2f:17:46:ed:bc:6d:c0:fc:a5:13:1f:d5:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc Validity Not Before: Nov 5 23:57:51 2025 GMT Not After : Nov 5 00:02:51 2026 GMT Subject: CN=73658324BC1F34026D63178DDB0973FA86B2FFEB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:7f:5f:82:87:61:22:06:0d:d7:5e:67:a2:e2: 38:2b:cc:ec:91:b1:4e:32:6e:e3:80:a1:ec:9c:7c: ee:53:6a:d2:b0:5f:54:e5:94:fc:2f:4a:c6:3f:fc: 02:13:d6:56:96:b4:6b:9b:77:ea:4a:24:e9:0d:1c: 0f:12:8c:e8:16:19:3d:49:1d:38:7d:d1:18:fb:b6: 99:eb:11:ff:2a:ab:e6:fe:f9:83:b0:31:f5:66:7b: 5a:02:f5:ec:c0:6d:01:15:44:dc:74:32:58:73:16: 1f:f8:f5:10:0a:cf:a8:29:67:e5:a9:2b:10:d5:ad: aa:10:2d:e1:b4:a9:4b:1b:75:00:c2:b1:5f:8a:9c: 01:56:6c:88:83:4f:ef:f2:7e:32:e9:d4:f5:e0:ba: 78:b2:8a:89:32:60:6f:7f:a3:bf:e1:80:cc:86:29: e4:4a:0f:b0:18:10:7b:c7:a5:e5:21:4f:01:07:6a: 2f:96:aa:54:3f:27:de:8f:b3:2c:0c:c2:f8:bf:89: 14:b8:d5:f7:98:37:2f:ba:25:1a:97:17:f2:d3:d8: 02:9f:f1:9e:da:d2:36:e9:42:7a:20:db:64:b2:0c: f9:91:2a:8f:84:37:08:b6:33:de:31:a8:3d:11:84: 15:02:b7:9b:a9:d6:0f:c2:14:67:e2:6a:e4:c6:8b: ed:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:65:83:24:BC:1F:34:02:6D:63:17:8D:DB:09:73:FA:86:B2:FF:EB X509v3 Authority Key Identifier: keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS215304.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.62.115.0/24 143.14.1.0/24 143.14.226.0/24 148.135.181.0/24 155.117.6.0/24 155.117.127.0/24 155.117.136.0/23 155.117.197.0/24 Signature Algorithm: sha256WithRSAEncryption 03:73:21:2d:13:d5:77:c5:c8:d8:1c:c3:8c:09:0e:78:d9:7f: b2:fc:9c:86:f1:29:74:f3:2a:7e:43:e9:5d:b6:16:76:19:c3: 6f:b9:cd:31:13:cd:5b:c3:34:ac:bc:11:49:3d:4e:9c:f5:a6: 8e:cc:4a:d4:ec:d3:b2:17:2c:ac:2a:7b:2e:50:a3:ab:b0:fa: 5e:e5:44:de:b2:4c:d9:d4:25:87:35:c6:40:ed:be:59:50:96: d7:71:0e:9a:a0:ba:b6:38:bc:dc:fd:80:10:e8:25:60:d5:c4: 88:e5:0e:d7:9d:a5:3d:0d:3f:9a:be:4d:8c:94:de:93:04:86: 00:f5:9b:96:ba:b7:2e:76:20:ce:f3:38:8f:2b:85:57:b9:bd: 8d:1c:8a:6e:a2:f1:a4:aa:9a:c1:53:39:40:81:6e:57:00:3e: c6:ed:62:dc:a7:96:39:0c:f8:df:e8:fb:e8:ad:8b:94:ac:7c: bb:1a:4d:d7:bb:8c:67:1c:f2:aa:f8:df:be:82:cc:61:19:ea: 51:bb:ed:62:6c:dc:36:62:01:54:6f:7b:13:48:75:ea:4e:e7: 11:8a:44:c6:84:8f:a3:d8:96:5b:42:a1:69:fb:0b:c4:59:ba: 65:aa:85:4a:75:22:4a:c2:19:b6:da:4a:3c:f9:0d:00:32:2c: 5b:74:33:af -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUAtI+sTxbXi8XRu28bcD8pRMf1bYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNGZjMzM2YmY5ZjNkZTVjZTQxNDE0YmQxOTcxOTQ1ZjRi MjQ2YmZjYzAeFw0yNTExMDUyMzU3NTFaFw0yNjExMDUwMDAyNTFaMDMxMTAvBgNV BAMTKDczNjU4MzI0QkMxRjM0MDI2RDYzMTc4RERCMDk3M0ZBODZCMkZGRUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCof1+Ch2EiBg3XXmei4jgrzOyR sU4ybuOAoeycfO5TatKwX1TllPwvSsY//AIT1laWtGubd+pKJOkNHA8SjOgWGT1J HTh90Rj7tpnrEf8qq+b++YOwMfVme1oC9ezAbQEVRNx0MlhzFh/49RAKz6gpZ+Wp KxDVraoQLeG0qUsbdQDCsV+KnAFWbIiDT+/yfjLp1PXguniyiokyYG9/o7/hgMyG KeRKD7AYEHvHpeUhTwEHai+WqlQ/J96PsywMwvi/iRS41feYNy+6JRqXF/LT2AKf 8Z7a0jbpQnog22SyDPmRKo+ENwi2M94xqD0RhBUCt5up1g/CFGfiauTGi+3PAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUc2WDJLwfNAJtYxeN2wlz+oay/+swHwYDVR0j BBgwFoAUT8M2v5895c5BQUvRlxlF9LJGv8wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMDliZTNhYWUtYWVhMS00MWRjLWIxYjktOTVhYzU5MTgy NDRkLzAvNEZDMzM2QkY5RjNERTVDRTQxNDE0QkQxOTcxOTQ1RjRCMjQ2QkZDQy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1Q4TTJ2NTg5NWM1QlFVdlJseGxGOUxK R3Y4dy5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzA5YmUzYWFlLWFlYTEt NDFkYy1iMWI5LTk1YWM1OTE4MjQ0ZC8wL0FTMjE1MzA0LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMEkGCCsGAQUFBwEHAQH/BDowODA2BAIAATAwAwQAYD5z AwQAjw4BAwQAjw7iAwQAlIe1AwQAm3UGAwQAm3V/AwQBm3WIAwQAm3XFMA0GCSqG SIb3DQEBCwUAA4IBAQADcyEtE9V3xcjYHMOMCQ542X+y/JyG8Sl08yp+Q+ldthZ2 GcNvuc0xE81bwzSsvBFJPU6c9aaOzErU7NOyFyysKnsuUKOrsPpe5UTeskzZ1CWH NcZA7b5ZUJbXcQ6aoLq2OLzc/YAQ6CVg1cSI5Q7XnaU9DT+avk2MlN6TBIYA9ZuW urcudiDO8ziPK4VXub2NHIpuovGkqprBUzlAgW5XAD7G7WLcp5Y5DPjf6PvorYuU rHy7Gk3Xu4xnHPKq+N++gsxhGepRu+1ibNw2YgFUb3sTSHXqTucRikTGhI+j2JZb QqFp+wvEWbplqoVKdSJKwhm22ko8+Q0AMixbdDOv -----END CERTIFICATE-----Generated at Fri Dec 5 05:07:05 2025 by rpki-client