This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS36530.roa File: AS36530.roa (raw, json) Hash identifier: PvsmU3Ib1A80YJWvHRu6avH898+6//x+oaBB0rPNmqk= Subject key identifier: 22:21:B9:3C:3D:E5:3E:D8:BE:15:C6:C9:92:73:F2:1B:0C:45:84:82 Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc Certificate serial: 6426C43BF51EB76C5596D155015410708CBCF02A Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS36530.roa Signing time: Thu 06 Nov 2025 00:02:51 +0000 ROA not before: Wed 05 Nov 2025 23:57:51 +0000 ROA not after: Thu 05 Nov 2026 00:02:51 +0000 asID: 36530 IP address blocks: 96.62.115.0/24 maxlen: 24 143.14.1.0/24 maxlen: 24 143.14.226.0/24 maxlen: 24 148.135.181.0/24 maxlen: 24 155.117.6.0/24 maxlen: 24 155.117.127.0/24 maxlen: 24 155.117.136.0/24 maxlen: 24 155.117.137.0/24 maxlen: 24 155.117.197.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.mft rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 05 Dec 2025 21:22:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:26:c4:3b:f5:1e:b7:6c:55:96:d1:55:01:54:10:70:8c:bc:f0:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc Validity Not Before: Nov 5 23:57:51 2025 GMT Not After : Nov 5 00:02:51 2026 GMT Subject: CN=2221B93C3DE53ED8BE15C6C99273F21B0C458482 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:13:d0:36:fb:62:fd:dd:12:49:4d:52:d4:e3: 6a:6e:ed:03:4c:2c:89:7f:b1:14:1c:df:ac:a7:da: a5:4b:34:83:5d:22:95:6a:da:9a:1b:4d:96:7d:c2: c2:33:22:80:9b:5f:73:06:f6:4c:3e:8c:de:97:f7: 7b:ac:d8:d4:02:c0:57:4b:d8:43:a9:9a:94:1e:f8: 55:bb:dd:7f:be:39:20:a2:40:6c:8d:97:83:d3:e6: 01:47:d7:0d:86:ec:3c:cd:1d:01:f5:f0:d3:3a:ee: 5c:72:dc:21:3b:16:ce:a2:61:3b:c1:6c:51:f7:e5: df:a9:76:b2:a7:cb:ed:89:b8:78:84:71:fc:53:5b: f5:75:a9:6f:d6:56:f1:78:67:20:bf:fb:4c:69:cb: af:1f:26:e7:ae:1c:dc:69:e4:5d:ae:88:73:b1:1c: ba:01:61:31:4e:b9:d9:45:17:28:64:f6:08:b9:a5: 56:0e:e7:76:d3:0f:32:4b:74:1b:df:e7:e6:ec:a6: 63:92:d5:75:37:00:fd:f7:25:27:28:6a:c5:f0:c7: a0:53:fc:d7:58:78:fa:6f:07:e4:75:a9:4d:b8:28: 57:a7:db:c9:3f:ba:59:02:4f:2c:ca:d7:d2:64:75: 50:a7:13:19:99:45:d2:a2:ea:d7:12:66:b4:99:e8: 19:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:21:B9:3C:3D:E5:3E:D8:BE:15:C6:C9:92:73:F2:1B:0C:45:84:82 X509v3 Authority Key Identifier: keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS36530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.62.115.0/24 143.14.1.0/24 143.14.226.0/24 148.135.181.0/24 155.117.6.0/24 155.117.127.0/24 155.117.136.0/23 155.117.197.0/24 Signature Algorithm: sha256WithRSAEncryption 12:e6:0c:db:de:11:1b:c0:d0:67:12:44:cb:2a:71:5f:78:83: 3c:f9:ea:2f:e8:0b:2c:81:0c:00:b7:21:b8:f5:3c:c2:e6:b5: 29:7b:97:a1:76:3c:c9:3a:ea:3e:eb:16:7c:2a:42:a0:85:f6: ce:43:c8:01:83:09:4e:d7:aa:7a:84:90:3e:e9:d3:54:b9:87: b8:96:89:24:a4:0a:d2:56:c0:26:b7:ef:53:28:a5:98:13:24: 60:b5:b3:99:08:6c:13:39:b7:39:f4:4f:52:eb:df:10:5a:73: 78:75:c9:fb:a2:2a:5b:5a:0e:a6:ad:ab:55:0f:33:f0:d6:4f: 23:70:1c:f2:1d:a2:86:6c:24:90:86:f6:1f:46:ca:46:84:67: c1:0b:6f:f5:82:c4:87:0c:f1:60:97:e9:d6:ef:11:71:ec:80: f6:33:e2:88:ad:dd:7b:d5:2c:47:12:41:e3:66:c2:c3:f2:fa: 17:66:71:9e:61:20:81:36:3a:59:e5:a3:48:58:a9:0b:e1:cd: ac:39:9d:b1:06:b7:98:b1:c5:fc:5b:01:c5:81:14:d4:f9:39: 67:aa:9f:2b:13:34:55:aa:8a:d3:e5:a0:93:5a:19:c7:36:95: 7b:67:45:a7:4d:fc:92:8c:3e:94:99:a2:ff:5f:dd:82:42:ee: de:ff:76:a3 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUZCbEO/Uet2xVltFVAVQQcIy88CowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNGZjMzM2YmY5ZjNkZTVjZTQxNDE0YmQxOTcxOTQ1ZjRi MjQ2YmZjYzAeFw0yNTExMDUyMzU3NTFaFw0yNjExMDUwMDAyNTFaMDMxMTAvBgNV BAMTKDIyMjFCOTNDM0RFNTNFRDhCRTE1QzZDOTkyNzNGMjFCMEM0NTg0ODIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2E9A2+2L93RJJTVLU42pu7QNM LIl/sRQc36yn2qVLNINdIpVq2pobTZZ9wsIzIoCbX3MG9kw+jN6X93us2NQCwFdL 2EOpmpQe+FW73X++OSCiQGyNl4PT5gFH1w2G7DzNHQH18NM67lxy3CE7Fs6iYTvB bFH35d+pdrKny+2JuHiEcfxTW/V1qW/WVvF4ZyC/+0xpy68fJueuHNxp5F2uiHOx HLoBYTFOudlFFyhk9gi5pVYO53bTDzJLdBvf5+bspmOS1XU3AP33JScoasXwx6BT /NdYePpvB+R1qU24KFen28k/ulkCTyzK19JkdVCnExmZRdKi6tcSZrSZ6BmZAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUIiG5PD3lPti+FcbJknPyGwxFhIIwHwYDVR0j BBgwFoAUT8M2v5895c5BQUvRlxlF9LJGv8wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMDliZTNhYWUtYWVhMS00MWRjLWIxYjktOTVhYzU5MTgy NDRkLzAvNEZDMzM2QkY5RjNERTVDRTQxNDE0QkQxOTcxOTQ1RjRCMjQ2QkZDQy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1Q4TTJ2NTg5NWM1QlFVdlJseGxGOUxK R3Y4dy5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzA5YmUzYWFlLWFlYTEt NDFkYy1iMWI5LTk1YWM1OTE4MjQ0ZC8wL0FTMzY1MzAucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwSQYIKwYBBQUHAQcBAf8EOjA4MDYEAgABMDADBABgPnMD BACPDgEDBACPDuIDBACUh7UDBACbdQYDBACbdX8DBAGbdYgDBACbdcUwDQYJKoZI hvcNAQELBQADggEBABLmDNveERvA0GcSRMsqcV94gzz56i/oCyyBDAC3Ibj1PMLm tSl7l6F2PMk66j7rFnwqQqCF9s5DyAGDCU7XqnqEkD7p01S5h7iWiSSkCtJWwCa3 71MopZgTJGC1s5kIbBM5tzn0T1Lr3xBac3h1yfuiKltaDqatq1UPM/DWTyNwHPId ooZsJJCG9h9GykaEZ8ELb/WCxIcM8WCX6dbvEXHsgPYz4oit3XvVLEcSQeNmwsPy +hdmcZ5hIIE2Olnlo0hYqQvhzaw5nbEGt5ixxfxbAcWBFNT5OWeqnysTNFWqitPl oJNaGcc2lXtnRadN/JKMPpSZov9f3YJC7t7/dqM= -----END CERTIFICATE-----Generated at Fri Dec 5 05:07:05 2025 by rpki-client