This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS64267.roa File: AS64267.roa (raw, json) Hash identifier: hI+tD9WWT7rpafPr6UHNB1ro1jlhrghaJ/5WnRMUDNg= Subject key identifier: 06:40:9C:59:3D:A7:19:FC:DF:F1:E5:A1:3A:58:FE:4C:B0:03:EF:EA Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc Certificate serial: 57E6DC92B4C8E55F98E83D9534465030596F3549 Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS64267.roa Signing time: Sun 23 Nov 2025 23:59:23 +0000 ROA not before: Sun 23 Nov 2025 23:54:23 +0000 ROA not after: Sun 22 Nov 2026 23:59:23 +0000 asID: 64267 IP address blocks: 96.62.217.0/24 maxlen: 24 143.14.188.0/24 maxlen: 24 147.79.2.0/24 maxlen: 24 150.241.136.0/24 maxlen: 24 155.117.81.0/24 maxlen: 24 162.141.116.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.mft rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 05 Dec 2025 21:22:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:e6:dc:92:b4:c8:e5:5f:98:e8:3d:95:34:46:50:30:59:6f:35:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc Validity Not Before: Nov 23 23:54:23 2025 GMT Not After : Nov 22 23:59:23 2026 GMT Subject: CN=06409C593DA719FCDFF1E5A13A58FE4CB003EFEA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:15:c3:46:2e:bd:01:89:2a:66:31:ab:44:d5: 14:09:63:d6:8b:5d:a6:4f:e0:64:3a:ce:f4:04:5f: a0:e1:51:63:b2:21:64:06:ea:b3:19:12:38:ba:d4: e8:22:92:00:e8:e8:ac:c9:e6:56:74:20:fe:21:fc: ee:6c:06:53:8c:bd:11:02:7f:3e:d0:38:0c:78:85: af:ac:30:5c:d5:cf:9e:1f:8c:5d:c2:7d:6a:cc:b9: 81:0d:a2:07:df:a6:8b:8f:c0:75:34:e1:cb:2e:dc: d4:9f:74:bb:a8:c0:c2:3f:52:57:bf:20:f0:2d:fc: 29:06:08:8c:ca:84:f2:89:c8:e2:ca:54:03:9b:45: 64:7c:ab:04:ab:4f:23:1b:d6:8a:41:48:c3:bc:59: 36:d5:72:7d:11:d0:bb:ab:9f:c1:2f:62:9b:17:1d: fc:76:73:e7:8c:b3:70:fb:95:5e:fe:c3:dd:34:d3: 77:d6:1f:f7:4e:42:20:a5:02:fe:f1:8f:f8:38:74: 0d:94:6c:83:03:46:aa:a9:d2:55:a1:5c:e6:65:c0: b4:4d:d4:62:86:f7:04:71:a7:05:a1:1a:f6:59:d7: e1:e7:c8:3a:09:93:b7:3d:6a:32:0f:2e:f5:4f:f1: db:e4:95:a2:63:70:62:11:bb:37:d0:c4:a6:c1:ab: 36:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:40:9C:59:3D:A7:19:FC:DF:F1:E5:A1:3A:58:FE:4C:B0:03:EF:EA X509v3 Authority Key Identifier: keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS64267.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.62.217.0/24 143.14.188.0/24 147.79.2.0/24 150.241.136.0/24 155.117.81.0/24 162.141.116.0/24 Signature Algorithm: sha256WithRSAEncryption 37:34:5e:e5:64:a1:89:7f:5d:de:76:5c:12:cc:9d:85:0f:b7: 6a:e1:1c:c7:86:93:2e:08:fe:f5:2d:8a:a2:ec:72:50:38:24: 18:ef:bf:d5:6e:bd:95:15:cd:b3:a4:c9:bc:fe:46:b9:81:fa: 4e:42:e4:30:2e:89:28:72:8a:dc:74:15:b2:95:1d:53:6f:3e: 72:dc:d4:f8:90:c7:fb:d9:2a:9c:7b:98:66:11:a5:0e:5d:9d: f8:f7:94:4e:78:f6:c2:54:54:f7:85:79:ab:84:9f:7c:50:48: aa:88:c9:ed:c1:d7:2e:87:84:c6:31:a7:9a:d1:bc:98:d0:62: d2:0d:da:b5:69:46:a4:70:11:b3:e5:45:36:c6:91:08:38:74: 30:1f:c3:7c:9d:21:56:d4:fc:1f:61:44:11:f6:6b:84:8d:ac: 45:22:3b:97:c2:fa:61:87:ea:71:cc:fa:fb:a2:50:3a:cd:46: e6:fd:24:5e:0c:47:a6:4b:29:20:5b:ba:5b:ae:96:bb:6c:98: 97:67:f5:86:c0:ad:f5:11:bc:f0:10:b1:e2:ef:04:fc:2d:2e: 7d:4f:c2:50:15:04:19:90:41:c0:84:87:d5:bc:15:16:51:8c: de:84:48:92:7e:50:22:ba:46:a0:ab:be:dd:76:89:9f:b3:a9: 7f:22:b2:65 -----BEGIN CERTIFICATE----- MIIFHTCCBAWgAwIBAgIUV+bckrTI5V+Y6D2VNEZQMFlvNUkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNGZjMzM2YmY5ZjNkZTVjZTQxNDE0YmQxOTcxOTQ1ZjRi MjQ2YmZjYzAeFw0yNTExMjMyMzU0MjNaFw0yNjExMjIyMzU5MjNaMDMxMTAvBgNV BAMTKDA2NDA5QzU5M0RBNzE5RkNERkYxRTVBMTNBNThGRTRDQjAwM0VGRUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpFcNGLr0BiSpmMatE1RQJY9aL XaZP4GQ6zvQEX6DhUWOyIWQG6rMZEji61OgikgDo6KzJ5lZ0IP4h/O5sBlOMvREC fz7QOAx4ha+sMFzVz54fjF3CfWrMuYENogffpouPwHU04csu3NSfdLuowMI/Ule/ IPAt/CkGCIzKhPKJyOLKVAObRWR8qwSrTyMb1opBSMO8WTbVcn0R0Lurn8EvYpsX Hfx2c+eMs3D7lV7+w90003fWH/dOQiClAv7xj/g4dA2UbIMDRqqp0lWhXOZlwLRN 1GKG9wRxpwWhGvZZ1+HnyDoJk7c9ajIPLvVP8dvklaJjcGIRuzfQxKbBqzbnAgMB AAGjggInMIICIzAdBgNVHQ4EFgQUBkCcWT2nGfzf8eWhOlj+TLAD7+owHwYDVR0j BBgwFoAUT8M2v5895c5BQUvRlxlF9LJGv8wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMDliZTNhYWUtYWVhMS00MWRjLWIxYjktOTVhYzU5MTgy NDRkLzAvNEZDMzM2QkY5RjNERTVDRTQxNDE0QkQxOTcxOTQ1RjRCMjQ2QkZDQy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1Q4TTJ2NTg5NWM1QlFVdlJseGxGOUxK R3Y4dy5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzA5YmUzYWFlLWFlYTEt NDFkYy1iMWI5LTk1YWM1OTE4MjQ0ZC8wL0FTNjQyNjcucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwPQYIKwYBBQUHAQcBAf8ELjAsMCoEAgABMCQDBABgPtkD BACPDrwDBACTTwIDBACW8YgDBACbdVEDBACijXQwDQYJKoZIhvcNAQELBQADggEB ADc0XuVkoYl/Xd52XBLMnYUPt2rhHMeGky4I/vUtiqLsclA4JBjvv9VuvZUVzbOk ybz+RrmB+k5C5DAuiShyitx0FbKVHVNvPnLc1PiQx/vZKpx7mGYRpQ5dnfj3lE54 9sJUVPeFeauEn3xQSKqIye3B1y6HhMYxp5rRvJjQYtIN2rVpRqRwEbPlRTbGkQg4 dDAfw3ydIVbU/B9hRBH2a4SNrEUiO5fC+mGH6nHM+vuiUDrNRub9JF4MR6ZLKSBb uluulrtsmJdn9YbArfURvPAQseLvBPwtLn1PwlAVBBmQQcCEh9W8FRZRjN6ESJJ+ UCK6RqCrvt12iZ+zqX8ismU= -----END CERTIFICATE-----Generated at Fri Dec 5 03:46:36 2025 by rpki-client