This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS401783.roa File: AS401783.roa (raw, json) Hash identifier: 7YOmSjFkvSRm1fnPrBpm996u+zS6jXJObUvbwo3eOAI= Subject key identifier: 2D:13:F3:AB:92:48:C5:11:91:C0:B6:44:5E:0E:9E:42:B7:D5:0D:FE Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc Certificate serial: 071A6808D233E8C2AF8641E686D36CA9F6EBDD5F Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS401783.roa Signing time: Wed 17 Dec 2025 07:35:27 +0000 ROA not before: Wed 17 Dec 2025 07:30:27 +0000 ROA not after: Wed 16 Dec 2026 07:35:27 +0000 asID: 401783 IP address blocks: 96.62.32.0/24 maxlen: 24 96.62.39.0/24 maxlen: 24 96.62.40.0/24 maxlen: 24 96.62.41.0/24 maxlen: 24 96.62.120.0/24 maxlen: 24 96.62.163.0/24 maxlen: 24 96.62.170.0/24 maxlen: 24 96.62.179.0/24 maxlen: 24 96.62.189.0/24 maxlen: 24 96.62.198.0/24 maxlen: 24 96.62.199.0/24 maxlen: 24 96.62.212.0/24 maxlen: 24 162.141.132.0/24 maxlen: 24 167.148.71.0/24 maxlen: 24 167.148.114.0/24 maxlen: 24 167.148.133.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.mft rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 00:00:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:1a:68:08:d2:33:e8:c2:af:86:41:e6:86:d3:6c:a9:f6:eb:dd:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc Validity Not Before: Dec 17 07:30:27 2025 GMT Not After : Dec 16 07:35:27 2026 GMT Subject: CN=2D13F3AB9248C51191C0B6445E0E9E42B7D50DFE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:a2:fb:85:0e:cc:d6:ad:b3:0a:ae:94:6d:2f: 03:2d:f0:6b:99:2d:35:1a:7c:cc:72:aa:db:3e:31: 6b:54:ef:f2:13:4e:b5:88:1a:30:1d:e3:42:c6:7c: 5e:8b:db:ed:18:5d:b6:b7:94:c0:ca:ee:2f:08:32: 05:83:c1:28:3c:c9:10:83:56:d6:dd:c5:7d:cc:2f: 9b:17:f7:0d:c7:d7:d9:a9:71:4d:4e:f2:55:4e:e7: 58:e2:8e:6d:fe:d1:0d:f8:e4:32:81:28:ad:12:0a: b2:45:83:4e:0b:7c:55:5b:37:4b:d1:1d:51:67:9c: 9f:53:5a:4e:0e:ef:c7:4b:20:c7:d9:bd:11:4e:ce: ee:5f:67:79:e6:70:ef:91:44:35:50:8f:dc:75:ca: 55:ac:b8:3f:62:91:e4:28:58:82:0c:ea:d1:f3:8f: d3:fc:53:c5:fd:e8:4c:1a:fd:67:42:82:b2:c8:36: 92:2a:ca:fd:05:7c:23:d2:96:fc:0c:bc:6b:0a:3d: 77:29:a2:45:eb:af:e7:b2:9f:d2:2b:28:9b:2d:9a: 46:89:a3:f2:fe:b3:ac:e2:39:96:5a:a3:84:7e:93: 66:c7:69:97:50:fd:60:6f:f1:23:2a:83:1d:2e:c1: 6d:7f:fd:92:f3:e8:6d:31:19:61:aa:0f:09:9f:42: 6f:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:13:F3:AB:92:48:C5:11:91:C0:B6:44:5E:0E:9E:42:B7:D5:0D:FE X509v3 Authority Key Identifier: keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS401783.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.62.32.0/24 96.62.39.0-96.62.41.255 96.62.120.0/24 96.62.163.0/24 96.62.170.0/24 96.62.179.0/24 96.62.189.0/24 96.62.198.0/23 96.62.212.0/24 162.141.132.0/24 167.148.71.0/24 167.148.114.0/24 167.148.133.0/24 Signature Algorithm: sha256WithRSAEncryption 4d:eb:65:5a:fd:ac:ab:a0:99:64:2f:47:da:32:2d:d6:6c:d7: fc:ee:33:63:26:18:2e:30:2d:4a:1a:63:94:71:23:dc:d3:c3: 0a:3c:42:d0:b0:84:ad:93:53:6f:e8:e0:91:f7:08:6f:06:ee: 50:00:1b:1e:cc:a0:cf:43:cc:58:f3:d7:f0:75:01:6a:af:fc: c9:05:03:78:ed:8d:a4:54:6c:be:e7:5f:9a:76:34:b9:bf:10: d7:f6:c2:14:d5:02:3d:5a:4f:66:14:47:7a:34:77:77:31:93: 8f:5a:95:38:d0:9f:4e:80:2c:ae:0d:ea:5b:3f:07:82:26:f7: d2:38:7d:b3:30:c6:63:85:ed:85:39:1f:54:87:b3:81:ec:67: 5d:63:fe:e3:52:c2:d2:0a:af:32:ed:aa:2a:75:73:2d:d1:5e: 14:66:a7:b8:ef:ff:65:69:7a:b0:a2:e2:16:31:7a:d3:3d:69: 61:52:49:19:9a:e6:3d:85:e9:5d:55:ee:ea:1a:6b:2e:58:68: 63:13:58:ce:1a:a0:64:03:80:5e:0d:4d:bb:c0:a1:c0:07:6e: bb:ef:00:b1:60:17:f3:a9:c7:eb:91:ca:99:81:1d:2e:be:c1: cb:57:44:13:44:a7:48:bb:04:2f:91:8e:8e:8d:de:a0:2a:b5: cb:d2:15:63 -----BEGIN CERTIFICATE----- MIIFUDCCBDigAwIBAgIUBxpoCNIz6MKvhkHmhtNsqfbr3V8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNGZjMzM2YmY5ZjNkZTVjZTQxNDE0YmQxOTcxOTQ1ZjRi MjQ2YmZjYzAeFw0yNTEyMTcwNzMwMjdaFw0yNjEyMTYwNzM1MjdaMDMxMTAvBgNV BAMTKDJEMTNGM0FCOTI0OEM1MTE5MUMwQjY0NDVFMEU5RTQyQjdENTBERkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCTovuFDszWrbMKrpRtLwMt8GuZ LTUafMxyqts+MWtU7/ITTrWIGjAd40LGfF6L2+0YXba3lMDK7i8IMgWDwSg8yRCD VtbdxX3ML5sX9w3H19mpcU1O8lVO51jijm3+0Q345DKBKK0SCrJFg04LfFVbN0vR HVFnnJ9TWk4O78dLIMfZvRFOzu5fZ3nmcO+RRDVQj9x1ylWsuD9ikeQoWIIM6tHz j9P8U8X96Ewa/WdCgrLINpIqyv0FfCPSlvwMvGsKPXcpokXrr+eyn9IrKJstmkaJ o/L+s6ziOZZao4R+k2bHaZdQ/WBv8SMqgx0uwW1//ZLz6G0xGWGqDwmfQm8BAgMB AAGjggJaMIICVjAdBgNVHQ4EFgQULRPzq5JIxRGRwLZEXg6eQrfVDf4wHwYDVR0j BBgwFoAUT8M2v5895c5BQUvRlxlF9LJGv8wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMDliZTNhYWUtYWVhMS00MWRjLWIxYjktOTVhYzU5MTgy NDRkLzAvNEZDMzM2QkY5RjNERTVDRTQxNDE0QkQxOTcxOTQ1RjRCMjQ2QkZDQy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1Q4TTJ2NTg5NWM1QlFVdlJseGxGOUxK R3Y4dy5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzA5YmUzYWFlLWFlYTEt NDFkYy1iMWI5LTk1YWM1OTE4MjQ0ZC8wL0FTNDAxNzgzLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMG8GCCsGAQUFBwEHAQH/BGAwXjBcBAIAATBWAwQAYD4g MAwDBABgPicDBAFgPigDBABgPngDBABgPqMDBABgPqoDBABgPrMDBABgPr0DBAFg PsYDBABgPtQDBACijYQDBACnlEcDBACnlHIDBACnlIUwDQYJKoZIhvcNAQELBQAD ggEBAE3rZVr9rKugmWQvR9oyLdZs1/zuM2MmGC4wLUoaY5RxI9zTwwo8QtCwhK2T U2/o4JH3CG8G7lAAGx7MoM9DzFjz1/B1AWqv/MkFA3jtjaRUbL7nX5p2NLm/ENf2 whTVAj1aT2YUR3o0d3cxk49alTjQn06ALK4N6ls/B4Im99I4fbMwxmOF7YU5H1SH s4HsZ11j/uNSwtIKrzLtqip1cy3RXhRmp7jv/2VperCi4hYxetM9aWFSSRma5j2F 6V1V7uoaay5YaGMTWM4aoGQDgF4NTbvAocAHbrvvALFgF/Opx+uRypmBHS6+wctX RBNEp0i7BC+Rjo6N3qAqtcvSFWM= -----END CERTIFICATE-----Generated at Mon Jan 19 08:21:40 2026 by rpki-client