This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS64267.roa File: AS64267.roa (raw, json) Hash identifier: ca64ygVt4kDjct6ghJGnOhLAvolcpBpCBWlDEKQhWFc= Subject key identifier: AC:E9:DD:4B:F0:C1:AB:FB:A8:4E:AC:CC:32:C2:35:86:34:FA:67:3B Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc Certificate serial: 0EED85F657DE089216A7437C8788947BED3BBBE4 Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS64267.roa Signing time: Thu 15 Jan 2026 00:06:38 +0000 ROA not before: Thu 15 Jan 2026 00:01:38 +0000 ROA not after: Thu 14 Jan 2027 00:06:38 +0000 asID: 64267 IP address blocks: 143.14.188.0/24 maxlen: 24 147.79.2.0/24 maxlen: 24 150.241.136.0/24 maxlen: 24 155.117.81.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.mft rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 00:00:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:ed:85:f6:57:de:08:92:16:a7:43:7c:87:88:94:7b:ed:3b:bb:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc Validity Not Before: Jan 15 00:01:38 2026 GMT Not After : Jan 14 00:06:38 2027 GMT Subject: CN=ACE9DD4BF0C1ABFBA84EACCC32C2358634FA673B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:6a:62:3d:08:26:5b:9c:3f:04:ce:36:62:b6: 81:7e:ea:94:b4:41:bf:f3:3f:e6:08:e9:b8:b5:e6: d1:e1:c5:98:4f:8e:d0:5c:8c:b1:5f:52:59:cd:e2: 5f:5f:11:80:f6:d6:1d:00:50:f6:ae:6f:d5:5d:62: 9b:a7:93:69:e8:43:94:73:3d:b1:2a:b7:af:65:15: 94:e5:4f:25:2e:15:f0:31:1e:bc:63:1b:35:06:be: c1:47:d9:e5:84:9f:14:40:f5:5e:9a:b6:21:4f:35: 6c:a1:b9:b7:be:50:5d:de:8d:53:5b:a1:3b:fb:0e: d5:fc:a9:ac:a3:38:4a:3a:d1:a8:a9:3e:fd:d5:c4: c4:62:b2:5a:79:c4:bd:88:3c:ba:65:bc:42:58:00: f5:95:4d:cb:6b:92:ad:59:58:3c:42:27:c1:c3:e4: aa:78:64:1a:cf:aa:6c:ff:0c:83:42:b6:7c:46:c6: ae:e6:d8:15:56:39:b1:cd:d6:3b:7d:c2:2d:8d:f0: 83:cc:a2:43:d9:d9:c0:68:65:2c:01:cf:7b:4b:4a: ac:db:ae:de:27:0e:3c:50:d3:5e:ff:f2:14:f4:13: dc:f2:5e:82:a4:a8:4a:8e:8b:c9:fe:b2:e1:84:72: 99:de:87:ab:f9:b1:52:e4:eb:e5:df:12:aa:58:46: 46:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:E9:DD:4B:F0:C1:AB:FB:A8:4E:AC:CC:32:C2:35:86:34:FA:67:3B X509v3 Authority Key Identifier: keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS64267.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 143.14.188.0/24 147.79.2.0/24 150.241.136.0/24 155.117.81.0/24 Signature Algorithm: sha256WithRSAEncryption 6b:ee:87:30:da:c5:e5:58:1f:54:8c:bd:03:80:5b:55:1d:d6: cc:c3:78:9f:c6:7a:5b:0f:38:41:d8:3c:31:13:af:13:79:6e: 64:a3:8d:b5:19:39:3f:5f:57:61:67:a9:83:8a:12:7a:02:c4: f8:30:0a:37:07:01:62:8f:5e:aa:97:be:12:94:c1:f6:03:f6: 14:2f:fb:36:c9:7f:34:8f:7e:b4:69:ba:10:75:1c:db:d3:98: af:a8:66:12:2f:f5:8d:c3:1e:1e:f2:fd:3f:ad:74:85:f9:d8: 38:1d:40:47:cd:cb:7f:cd:68:4e:ea:c3:1e:7c:e0:19:fb:1d: 54:f9:40:fc:a1:73:03:e4:23:4a:91:43:a7:47:05:9c:6a:96: c1:d0:10:9f:5f:5b:e3:83:89:79:50:7a:2c:26:18:e9:7a:af: 38:a5:6f:df:f7:08:f1:ca:de:d4:58:6f:be:3f:aa:b9:47:ad: 5c:b0:35:e7:c5:84:3a:35:ca:88:13:15:49:ca:b3:58:56:49: b8:3e:e2:1e:f0:54:cd:26:0b:e1:83:96:ab:8a:30:5d:1f:0b: 3f:a1:a6:0d:1b:40:fb:03:af:8e:12:07:e9:1e:83:d9:84:76: be:ce:35:e8:8a:d2:89:66:43:b8:b0:64:3d:4a:fc:ff:c6:d6: c5:1f:4e:b4 -----BEGIN CERTIFICATE----- MIIFETCCA/mgAwIBAgIUDu2F9lfeCJIWp0N8h4iUe+07u+QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNGZjMzM2YmY5ZjNkZTVjZTQxNDE0YmQxOTcxOTQ1ZjRi MjQ2YmZjYzAeFw0yNjAxMTUwMDAxMzhaFw0yNzAxMTQwMDA2MzhaMDMxMTAvBgNV BAMTKEFDRTlERDRCRjBDMUFCRkJBODRFQUNDQzMyQzIzNTg2MzRGQTY3M0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD4amI9CCZbnD8EzjZitoF+6pS0 Qb/zP+YI6bi15tHhxZhPjtBcjLFfUlnN4l9fEYD21h0AUPaub9VdYpunk2noQ5Rz PbEqt69lFZTlTyUuFfAxHrxjGzUGvsFH2eWEnxRA9V6atiFPNWyhube+UF3ejVNb oTv7DtX8qayjOEo60aipPv3VxMRislp5xL2IPLplvEJYAPWVTctrkq1ZWDxCJ8HD 5Kp4ZBrPqmz/DINCtnxGxq7m2BVWObHN1jt9wi2N8IPMokPZ2cBoZSwBz3tLSqzb rt4nDjxQ017/8hT0E9zyXoKkqEqOi8n+suGEcpneh6v5sVLk6+XfEqpYRkZZAgMB AAGjggIbMIICFzAdBgNVHQ4EFgQUrOndS/DBq/uoTqzMMsI1hjT6ZzswHwYDVR0j BBgwFoAUT8M2v5895c5BQUvRlxlF9LJGv8wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMDliZTNhYWUtYWVhMS00MWRjLWIxYjktOTVhYzU5MTgy NDRkLzAvNEZDMzM2QkY5RjNERTVDRTQxNDE0QkQxOTcxOTQ1RjRCMjQ2QkZDQy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1Q4TTJ2NTg5NWM1QlFVdlJseGxGOUxK R3Y4dy5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzA5YmUzYWFlLWFlYTEt NDFkYy1iMWI5LTk1YWM1OTE4MjQ0ZC8wL0FTNjQyNjcucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwMQYIKwYBBQUHAQcBAf8EIjAgMB4EAgABMBgDBACPDrwD BACTTwIDBACW8YgDBACbdVEwDQYJKoZIhvcNAQELBQADggEBAGvuhzDaxeVYH1SM vQOAW1Ud1szDeJ/GelsPOEHYPDETrxN5bmSjjbUZOT9fV2FnqYOKEnoCxPgwCjcH AWKPXqqXvhKUwfYD9hQv+zbJfzSPfrRpuhB1HNvTmK+oZhIv9Y3DHh7y/T+tdIX5 2DgdQEfNy3/NaE7qwx584Bn7HVT5QPyhcwPkI0qRQ6dHBZxqlsHQEJ9fW+ODiXlQ eiwmGOl6rzilb9/3CPHK3tRYb74/qrlHrVywNefFhDo1yogTFUnKs1hWSbg+4h7w VM0mC+GDlquKMF0fCz+hpg0bQPsDr44SB+keg9mEdr7ONeiK0olmQ7iwZD1K/P/G 1sUfTrQ= -----END CERTIFICATE-----Generated at Mon Jan 19 08:19:01 2026 by rpki-client