This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/22db7555-9aa4-4983-9316-73809dd354bc/0/AS205886.roa File: AS205886.roa (raw, json) Hash identifier: sTiEMkgGikZqMsIZQnshE+5D76nt7ESMGpjidVFtNRc= Subject key identifier: D7:96:29:E3:25:3C:B4:3D:B7:8B:77:17:B0:ED:ED:48:FD:27:C3:7C Certificate issuer: /CN=3feccb17be51ee59ec74d64eed917e221ee28a1b Certificate serial: 3479DFC62FD859FEA0C46FA1EBF7504C500FF3BF Authority key identifier: 3F:EC:CB:17:BE:51:EE:59:EC:74:D6:4E:ED:91:7E:22:1E:E2:8A:1B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P-zLF75R7lnsdNZO7ZF-Ih7iihs.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/22db7555-9aa4-4983-9316-73809dd354bc/0/AS205886.roa Signing time: Sun 30 Nov 2025 09:28:36 +0000 ROA not before: Sun 30 Nov 2025 09:23:36 +0000 ROA not after: Sun 29 Nov 2026 09:28:36 +0000 asID: 205886 IP address blocks: 46.236.216.0/24 maxlen: 24 46.236.254.0/24 maxlen: 24 46.236.255.0/24 maxlen: 24 82.139.220.0/24 maxlen: 24 82.139.231.0/24 maxlen: 24 82.139.248.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/22db7555-9aa4-4983-9316-73809dd354bc/0/3FECCB17BE51EE59EC74D64EED917E221EE28A1B.crl rsync://rsync.paas.rpki.ripe.net/repository/22db7555-9aa4-4983-9316-73809dd354bc/0/3FECCB17BE51EE59EC74D64EED917E221EE28A1B.mft rsync://rpki.ripe.net/repository/DEFAULT/P-zLF75R7lnsdNZO7ZF-Ih7iihs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 00:21:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:79:df:c6:2f:d8:59:fe:a0:c4:6f:a1:eb:f7:50:4c:50:0f:f3:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3feccb17be51ee59ec74d64eed917e221ee28a1b Validity Not Before: Nov 30 09:23:36 2025 GMT Not After : Nov 29 09:28:36 2026 GMT Subject: CN=D79629E3253CB43DB78B7717B0EDED48FD27C37C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:cc:4b:c2:62:9f:36:4c:fe:8d:dc:58:e4:48: 95:d2:f9:83:99:54:35:b2:91:f5:26:5f:fe:0e:51: 3d:a5:8c:46:01:3e:be:56:9d:ef:1f:a3:d6:a0:23: a9:5b:fb:3e:a1:ed:d2:f6:c6:a1:ae:57:24:25:ca: 82:a6:ce:16:56:f6:71:c6:85:ff:1c:23:f8:fe:27: 48:b1:11:56:b3:0c:8e:fc:b1:c5:ba:87:80:2d:55: 72:42:7f:88:2e:6a:e8:26:34:46:cc:8e:74:44:09: bb:85:ec:61:3f:aa:ba:1b:2a:ed:11:18:3a:ef:ce: 5f:33:a0:ed:65:76:94:b6:fe:66:01:a8:3e:f0:6a: d6:88:4a:85:be:56:c9:fe:f4:c3:2b:32:12:ef:1b: 50:1a:d7:d4:a6:c7:31:4c:1a:da:fb:bb:21:44:39: 3e:92:08:1d:d2:ec:b3:d1:92:69:77:ff:52:f2:fa: a1:ff:ee:03:47:84:08:68:b4:90:ec:17:eb:97:b5: 56:87:e0:16:2b:95:4d:30:16:14:1b:dd:92:2b:11: 05:7b:30:e6:45:44:f9:a6:7f:ce:b3:9c:36:c6:03: 6d:f8:2f:da:4e:29:15:d4:0a:fa:e7:50:91:05:36: 45:f9:14:c1:5b:f3:1e:e7:dd:c2:9f:22:b7:16:c2: d1:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:96:29:E3:25:3C:B4:3D:B7:8B:77:17:B0:ED:ED:48:FD:27:C3:7C X509v3 Authority Key Identifier: keyid:3F:EC:CB:17:BE:51:EE:59:EC:74:D6:4E:ED:91:7E:22:1E:E2:8A:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/22db7555-9aa4-4983-9316-73809dd354bc/0/3FECCB17BE51EE59EC74D64EED917E221EE28A1B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P-zLF75R7lnsdNZO7ZF-Ih7iihs.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/22db7555-9aa4-4983-9316-73809dd354bc/0/AS205886.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 46.236.216.0/24 46.236.254.0/23 82.139.220.0/24 82.139.231.0/24 82.139.248.0/24 Signature Algorithm: sha256WithRSAEncryption 5b:3b:6a:1f:16:da:75:43:b9:c6:16:db:ca:fb:6c:0d:ca:6b: fe:06:59:a4:36:1f:97:7b:28:57:8c:bf:c5:3e:ea:f8:de:cb: 6c:87:f1:e0:e5:96:2e:90:78:4c:35:76:8c:5c:43:dc:a9:58: 3b:5d:43:af:09:eb:b9:ad:a9:87:21:fa:72:74:43:0b:e3:09: 02:5c:33:71:66:52:93:9e:e5:30:9d:74:04:8c:41:36:21:e7: a8:35:70:b0:69:59:8d:6a:27:22:da:76:70:0d:97:36:14:68: f9:6c:ff:e1:d2:2f:06:83:f0:10:00:a6:9e:bb:29:e2:c1:44: 6e:d1:f8:68:83:0e:04:11:81:58:71:f2:7e:e1:45:fe:5f:d7: 7a:d5:42:98:2b:d9:19:17:2f:12:05:33:37:80:93:1c:fd:51: c2:c6:17:d5:30:cb:15:6c:a6:29:f1:3e:6d:a1:b0:53:2f:99: af:7e:38:96:fb:38:95:bc:18:f8:49:df:1f:c5:11:bd:28:ff: 5e:09:08:c1:68:1f:b9:25:48:83:9a:81:3c:3a:ee:8a:57:b7: 17:85:a8:68:fc:c9:5d:a8:41:4f:e5:14:d0:b7:19:ed:60:9f: 05:4c:db:bf:56:db:f8:2e:0c:37:fc:a9:f8:94:63:e1:f4:92: 54:23:78:f1 -----BEGIN CERTIFICATE----- MIIFGDCCBACgAwIBAgIUNHnfxi/YWf6gxG+h6/dQTFAP878wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM2ZlY2NiMTdiZTUxZWU1OWVjNzRkNjRlZWQ5MTdlMjIx ZWUyOGExYjAeFw0yNTExMzAwOTIzMzZaFw0yNjExMjkwOTI4MzZaMDMxMTAvBgNV BAMTKEQ3OTYyOUUzMjUzQ0I0M0RCNzhCNzcxN0IwRURFRDQ4RkQyN0MzN0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXzEvCYp82TP6N3FjkSJXS+YOZ VDWykfUmX/4OUT2ljEYBPr5Wne8fo9agI6lb+z6h7dL2xqGuVyQlyoKmzhZW9nHG hf8cI/j+J0ixEVazDI78scW6h4AtVXJCf4guaugmNEbMjnRECbuF7GE/qrobKu0R GDrvzl8zoO1ldpS2/mYBqD7wataISoW+Vsn+9MMrMhLvG1Aa19SmxzFMGtr7uyFE OT6SCB3S7LPRkml3/1Ly+qH/7gNHhAhotJDsF+uXtVaH4BYrlU0wFhQb3ZIrEQV7 MOZFRPmmf86znDbGA234L9pOKRXUCvrnUJEFNkX5FMFb8x7n3cKfIrcWwtG9AgMB AAGjggIiMIICHjAdBgNVHQ4EFgQU15Yp4yU8tD23i3cXsO3tSP0nw3wwHwYDVR0j BBgwFoAUP+zLF75R7lnsdNZO7ZF+Ih7iihswDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjJkYjc1NTUtOWFhNC00OTgzLTkzMTYtNzM4MDlkZDM1 NGJjLzAvM0ZFQ0NCMTdCRTUxRUU1OUVDNzRENjRFRUQ5MTdFMjIxRUUyOEExQi5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1AtekxGNzVSN2xuc2ROWk83WkYtSWg3 aWlocy5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzIyZGI3NTU1LTlhYTQt NDk4My05MzE2LTczODA5ZGQzNTRiYy8wL0FTMjA1ODg2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMDcGCCsGAQUFBwEHAQH/BCgwJjAkBAIAATAeAwQALuzY AwQBLuz+AwQAUovcAwQAUovnAwQAUov4MA0GCSqGSIb3DQEBCwUAA4IBAQBbO2of Ftp1Q7nGFtvK+2wNymv+BlmkNh+XeyhXjL/FPur43stsh/Hg5ZYukHhMNXaMXEPc qVg7XUOvCeu5ramHIfpydEML4wkCXDNxZlKTnuUwnXQEjEE2IeeoNXCwaVmNaici 2nZwDZc2FGj5bP/h0i8Gg/AQAKaeuyniwURu0fhogw4EEYFYcfJ+4UX+X9d61UKY K9kZFy8SBTM3gJMc/VHCxhfVMMsVbKYp8T5tobBTL5mvfjiW+ziVvBj4Sd8fxRG9 KP9eCQjBaB+5JUiDmoE8Ou6KV7cXhaho/MldqEFP5RTQtxntYJ8FTNu/Vtv4Lgw3 /Kn4lGPh9JJUI3jx -----END CERTIFICATE-----Generated at Sat Dec 6 07:50:14 2025 by rpki-client