This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS53356.roa File: AS53356.roa (raw, json) Hash identifier: dGmP3HRgYNv+QMsw38IyG0IMfoQ0AcKhzpW3qIs6SlE= Subject key identifier: AB:2E:45:F3:CB:68:42:60:33:35:69:46:EB:69:0F:63:DF:A5:93:E1 Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc Certificate serial: 6F356DA3D31DA9C7A946078D30CC52F86C45147B Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS53356.roa Signing time: Fri 09 Jan 2026 00:06:09 +0000 ROA not before: Fri 09 Jan 2026 00:01:09 +0000 ROA not after: Fri 08 Jan 2027 00:06:09 +0000 asID: 53356 IP address blocks: 143.14.17.0/24 maxlen: 24 143.14.19.0/24 maxlen: 24 143.14.21.0/24 maxlen: 24 143.14.38.0/24 maxlen: 24 143.14.39.0/24 maxlen: 24 143.14.150.0/24 maxlen: 24 148.135.163.0/24 maxlen: 24 155.117.207.0/24 maxlen: 24 162.141.14.0/24 maxlen: 24 167.148.182.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.mft rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 00:00:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:35:6d:a3:d3:1d:a9:c7:a9:46:07:8d:30:cc:52:f8:6c:45:14:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc Validity Not Before: Jan 9 00:01:09 2026 GMT Not After : Jan 8 00:06:09 2027 GMT Subject: CN=AB2E45F3CB68426033356946EB690F63DFA593E1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:8e:62:7a:10:b4:66:0b:78:2b:fa:59:e3:8c: 83:bb:49:db:47:7a:9b:f0:58:08:31:92:17:ed:a8: d4:52:57:95:01:bc:57:f6:3f:fa:32:83:17:e7:40: 3a:86:6b:75:11:94:17:ca:76:6a:80:bd:e7:eb:11: a9:a1:9c:38:70:4f:4c:ce:a6:81:e5:28:57:ac:cc: 9b:bc:80:1f:86:85:51:b3:e0:78:15:5a:af:9f:56: d6:33:8d:60:92:8d:22:74:d4:71:6c:e3:81:6c:d8: b9:02:8e:9a:e7:48:f0:1f:0e:1b:87:dc:fe:9d:9c: 8a:22:e3:a3:f1:70:f9:70:17:95:c9:a4:fc:9d:47: d9:81:d9:ab:97:af:4f:b4:03:81:ad:36:66:c8:44: 9a:a4:64:4b:a8:87:c8:8e:a4:80:a4:20:79:6d:93: f4:8f:e0:a4:35:6a:ee:f7:4e:55:76:7d:23:9e:57: 02:22:bd:06:33:20:1e:57:67:16:ba:9a:8f:a9:49: 58:2b:c1:ea:28:e4:03:dd:0d:d7:29:36:d1:a2:76: 4f:9c:d9:5c:ff:30:94:b9:58:30:73:6a:65:9b:bc: 63:0c:2c:2d:19:88:05:a0:e9:cf:25:06:04:d7:99: 13:38:40:3b:ec:e8:19:33:0c:2d:b5:25:b9:d8:c4: a6:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:2E:45:F3:CB:68:42:60:33:35:69:46:EB:69:0F:63:DF:A5:93:E1 X509v3 Authority Key Identifier: keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS53356.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 143.14.17.0/24 143.14.19.0/24 143.14.21.0/24 143.14.38.0/23 143.14.150.0/24 148.135.163.0/24 155.117.207.0/24 162.141.14.0/24 167.148.182.0/24 Signature Algorithm: sha256WithRSAEncryption 2a:e8:1e:40:e9:c3:eb:6c:81:cf:8f:2e:d7:67:e2:88:a2:13: d3:f2:26:94:54:fc:bd:ab:5f:0b:f4:9a:6f:00:05:0a:48:af: 63:11:bc:ae:6b:c7:33:a7:fa:4f:77:b8:8b:20:f3:4b:6b:22: d6:ae:83:4f:fd:e7:0d:48:b6:3e:06:43:d5:be:e4:49:5d:c0: fe:bf:a6:8c:0c:49:9f:89:b0:88:04:48:88:d2:1a:ad:f0:de: 9a:15:89:50:c4:e6:7f:46:a1:5e:d8:f1:57:25:75:10:54:5c: 98:18:dd:71:44:a3:89:72:2a:be:85:44:98:c0:b1:da:79:c6: 87:73:17:aa:91:67:c2:8e:98:a0:fa:25:fc:39:9c:32:6d:05: 6d:d5:bd:e2:7e:27:5f:a0:91:10:ba:bb:77:52:ce:47:0d:0a: d7:2f:ab:74:51:4f:c7:0e:30:b2:f5:09:a2:9e:b3:78:1e:7c: f3:03:8e:4b:2d:ff:4c:40:cf:5a:d4:3c:e4:29:d6:2b:18:63: 23:e5:1f:3f:3c:c8:e1:2f:a9:f7:e0:a5:2d:88:15:c0:ec:69: 41:57:7c:d7:89:8c:58:fe:c9:ee:61:84:da:c4:25:a7:77:f5: e3:39:b8:d6:80:8c:4a:61:be:9f:43:80:42:32:eb:53:cc:d0: 92:2d:c9:bc -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUbzVto9MdqcepRgeNMMxS+GxFFHswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNGZjMzM2YmY5ZjNkZTVjZTQxNDE0YmQxOTcxOTQ1ZjRi MjQ2YmZjYzAeFw0yNjAxMDkwMDAxMDlaFw0yNzAxMDgwMDA2MDlaMDMxMTAvBgNV BAMTKEFCMkU0NUYzQ0I2ODQyNjAzMzM1Njk0NkVCNjkwRjYzREZBNTkzRTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5jmJ6ELRmC3gr+lnjjIO7SdtH epvwWAgxkhftqNRSV5UBvFf2P/oygxfnQDqGa3URlBfKdmqAvefrEamhnDhwT0zO poHlKFeszJu8gB+GhVGz4HgVWq+fVtYzjWCSjSJ01HFs44Fs2LkCjprnSPAfDhuH 3P6dnIoi46PxcPlwF5XJpPydR9mB2auXr0+0A4GtNmbIRJqkZEuoh8iOpICkIHlt k/SP4KQ1au73TlV2fSOeVwIivQYzIB5XZxa6mo+pSVgrweoo5APdDdcpNtGidk+c 2Vz/MJS5WDBzamWbvGMMLC0ZiAWg6c8lBgTXmRM4QDvs6BkzDC21JbnYxKY9AgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUqy5F88toQmAzNWlG62kPY9+lk+EwHwYDVR0j BBgwFoAUT8M2v5895c5BQUvRlxlF9LJGv8wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMDliZTNhYWUtYWVhMS00MWRjLWIxYjktOTVhYzU5MTgy NDRkLzAvNEZDMzM2QkY5RjNERTVDRTQxNDE0QkQxOTcxOTQ1RjRCMjQ2QkZDQy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1Q4TTJ2NTg5NWM1QlFVdlJseGxGOUxK R3Y4dy5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzA5YmUzYWFlLWFlYTEt NDFkYy1iMWI5LTk1YWM1OTE4MjQ0ZC8wL0FTNTMzNTYucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwTwYIKwYBBQUHAQcBAf8EQDA+MDwEAgABMDYDBACPDhED BACPDhMDBACPDhUDBAGPDiYDBACPDpYDBACUh6MDBACbdc8DBACijQ4DBACnlLYw DQYJKoZIhvcNAQELBQADggEBACroHkDpw+tsgc+PLtdn4oiiE9PyJpRU/L2rXwv0 mm8ABQpIr2MRvK5rxzOn+k93uIsg80trItaug0/95w1Itj4GQ9W+5EldwP6/powM SZ+JsIgESIjSGq3w3poViVDE5n9GoV7Y8VcldRBUXJgY3XFEo4lyKr6FRJjAsdp5 xodzF6qRZ8KOmKD6Jfw5nDJtBW3VveJ+J1+gkRC6u3dSzkcNCtcvq3RRT8cOMLL1 CaKes3gefPMDjkst/0xAz1rUPOQp1isYYyPlHz88yOEvqffgpS2IFcDsaUFXfNeJ jFj+ye5hhNrEJad39eM5uNaAjEphvp9DgEIy61PM0JItybw= -----END CERTIFICATE-----Generated at Mon Jan 19 08:19:37 2026 by rpki-client