This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/22db7555-9aa4-4983-9316-73809dd354bc/0/AS834.roa File: AS834.roa (raw, json) Hash identifier: kRQ22obmZZ3koodIaSIt0y5UcJWlJTACeHr+qqYRhoI= Subject key identifier: 39:65:28:A6:C1:E0:DF:BA:E8:B6:0A:C0:98:0C:66:CD:03:D0:61:64 Certificate issuer: /CN=3feccb17be51ee59ec74d64eed917e221ee28a1b Certificate serial: 4923BBD7083E2FA743BDA9F63E9830BF9323CC56 Authority key identifier: 3F:EC:CB:17:BE:51:EE:59:EC:74:D6:4E:ED:91:7E:22:1E:E2:8A:1B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P-zLF75R7lnsdNZO7ZF-Ih7iihs.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/22db7555-9aa4-4983-9316-73809dd354bc/0/AS834.roa Signing time: Sun 18 Jan 2026 15:50:09 +0000 ROA not before: Sun 18 Jan 2026 15:45:09 +0000 ROA not after: Sun 17 Jan 2027 15:50:09 +0000 asID: 834 IP address blocks: 46.236.209.0/24 maxlen: 24 46.236.210.0/24 maxlen: 24 46.236.213.0/24 maxlen: 24 46.236.214.0/24 maxlen: 24 46.236.217.0/24 maxlen: 24 46.236.223.0/24 maxlen: 24 46.236.252.0/24 maxlen: 24 82.139.192.0/24 maxlen: 24 82.139.204.0/24 maxlen: 24 82.139.208.0/22 maxlen: 24 82.139.212.0/23 maxlen: 24 82.139.218.0/23 maxlen: 24 82.139.221.0/24 maxlen: 24 82.139.224.0/23 maxlen: 24 82.139.227.0/24 maxlen: 24 82.139.228.0/23 maxlen: 24 82.139.232.0/24 maxlen: 24 82.139.234.0/23 maxlen: 24 82.139.236.0/24 maxlen: 24 82.139.240.0/23 maxlen: 24 82.139.245.0/24 maxlen: 24 82.139.247.0/24 maxlen: 24 82.139.249.0/24 maxlen: 24 212.60.149.0/24 maxlen: 24 212.60.150.0/24 maxlen: 24 212.60.154.0/24 maxlen: 24 212.60.159.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/22db7555-9aa4-4983-9316-73809dd354bc/0/3FECCB17BE51EE59EC74D64EED917E221EE28A1B.crl rsync://rsync.paas.rpki.ripe.net/repository/22db7555-9aa4-4983-9316-73809dd354bc/0/3FECCB17BE51EE59EC74D64EED917E221EE28A1B.mft rsync://rpki.ripe.net/repository/DEFAULT/P-zLF75R7lnsdNZO7ZF-Ih7iihs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 21 Jan 2026 15:30:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:23:bb:d7:08:3e:2f:a7:43:bd:a9:f6:3e:98:30:bf:93:23:cc:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3feccb17be51ee59ec74d64eed917e221ee28a1b Validity Not Before: Jan 18 15:45:09 2026 GMT Not After : Jan 17 15:50:09 2027 GMT Subject: CN=396528A6C1E0DFBAE8B60AC0980C66CD03D06164 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:b7:a6:6a:d5:f4:e7:43:48:58:aa:b0:e7:c7: 72:62:63:79:c9:a8:d4:5b:d9:3a:11:f2:b3:51:b0: 2b:0f:5e:3a:99:91:92:5b:ff:de:d9:ea:14:a4:9a: a9:4f:5b:aa:fa:21:d9:39:55:14:0a:29:ae:df:e8: de:b9:e7:72:3b:ca:dc:ae:82:a2:82:9b:67:bc:64: 16:12:c6:fe:b9:4e:7f:05:40:3f:75:0e:6c:4d:55: c6:a6:6c:95:65:2f:9c:ea:63:0b:48:6e:2b:54:e6: d3:34:c1:90:b5:e3:c4:b4:cf:0c:3f:a5:a8:37:20: c7:73:f9:94:bd:1b:86:c3:1a:af:6b:bb:fb:cf:46: 2f:3f:d5:12:64:55:8e:c3:c4:15:0d:cc:26:ba:55: 8d:80:d4:c9:f8:98:8c:01:ec:7d:ee:53:e4:a7:3a: 06:8a:c4:59:c3:9b:3b:78:83:3e:7f:bc:9f:72:2c: ca:cb:a0:38:2d:af:eb:d2:79:a9:89:db:05:d1:55: ce:59:d5:93:7f:f1:e2:93:f0:bc:fa:70:63:74:c9: 40:b9:2e:d0:db:3e:50:74:85:c1:9c:7b:13:18:48: e2:ef:7b:05:e8:1a:e5:cb:16:ab:c5:b9:be:b7:32: 57:ce:25:52:13:d2:fa:b1:6f:12:7e:f3:00:f6:65: 1a:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:65:28:A6:C1:E0:DF:BA:E8:B6:0A:C0:98:0C:66:CD:03:D0:61:64 X509v3 Authority Key Identifier: keyid:3F:EC:CB:17:BE:51:EE:59:EC:74:D6:4E:ED:91:7E:22:1E:E2:8A:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/22db7555-9aa4-4983-9316-73809dd354bc/0/3FECCB17BE51EE59EC74D64EED917E221EE28A1B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P-zLF75R7lnsdNZO7ZF-Ih7iihs.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/22db7555-9aa4-4983-9316-73809dd354bc/0/AS834.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 46.236.209.0-46.236.210.255 46.236.213.0-46.236.214.255 46.236.217.0/24 46.236.223.0/24 46.236.252.0/24 82.139.192.0/24 82.139.204.0/24 82.139.208.0-82.139.213.255 82.139.218.0/23 82.139.221.0/24 82.139.224.0/23 82.139.227.0-82.139.229.255 82.139.232.0/24 82.139.234.0-82.139.236.255 82.139.240.0/23 82.139.245.0/24 82.139.247.0/24 82.139.249.0/24 212.60.149.0-212.60.150.255 212.60.154.0/24 212.60.159.0/24 Signature Algorithm: sha256WithRSAEncryption 16:58:b8:e5:16:90:09:d4:b1:1c:a7:84:c2:75:95:24:8b:ec: 56:61:d5:76:0f:b8:9c:64:85:ba:02:cd:76:aa:c2:84:8f:16: f7:20:77:ac:0a:49:c9:f7:04:67:37:bb:1a:cc:6d:3a:52:51: ef:80:2d:43:7c:cd:dd:e0:d6:8a:ec:f5:7c:27:89:dc:a6:e5: b8:af:e6:78:e7:c3:5d:c2:9b:e1:f6:6c:b1:02:31:fd:be:0c: dc:3c:89:00:13:5a:35:98:7d:b3:3e:4c:a9:48:20:a2:66:e7: fd:42:0f:84:d2:72:52:4a:6a:b1:77:55:b7:f4:25:93:ee:78: 61:b8:41:a2:48:58:e2:4c:85:23:d9:5a:7c:16:e4:7d:b8:e2: c0:6b:ed:10:50:2a:44:0b:b0:05:64:0d:b5:32:e8:2f:d7:d4: fb:42:2a:18:5b:33:43:d0:9a:b9:88:2b:fa:2e:aa:32:ee:f3: ef:86:77:07:96:54:97:af:24:17:cc:38:fb:24:d1:5f:f8:11: 97:83:39:c1:dc:02:36:f8:04:79:a9:43:fd:0c:a7:56:dd:9b: 2c:71:c5:69:57:6b:1a:da:8b:8f:4d:01:01:d3:39:bb:c7:ae: 34:6c:54:b5:9b:e0:3a:1b:7a:7b:f6:cf:d4:a6:4c:3a:39:81: 75:f9:59:52 -----BEGIN CERTIFICATE----- MIIFqjCCBJKgAwIBAgIUSSO71wg+L6dDvan2Ppgwv5MjzFYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM2ZlY2NiMTdiZTUxZWU1OWVjNzRkNjRlZWQ5MTdlMjIx ZWUyOGExYjAeFw0yNjAxMTgxNTQ1MDlaFw0yNzAxMTcxNTUwMDlaMDMxMTAvBgNV BAMTKDM5NjUyOEE2QzFFMERGQkFFOEI2MEFDMDk4MEM2NkNEMDNEMDYxNjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCbt6Zq1fTnQ0hYqrDnx3JiY3nJ qNRb2ToR8rNRsCsPXjqZkZJb/97Z6hSkmqlPW6r6Idk5VRQKKa7f6N6553I7ytyu gqKCm2e8ZBYSxv65Tn8FQD91DmxNVcambJVlL5zqYwtIbitU5tM0wZC148S0zww/ pag3IMdz+ZS9G4bDGq9ru/vPRi8/1RJkVY7DxBUNzCa6VY2A1Mn4mIwB7H3uU+Sn OgaKxFnDmzt4gz5/vJ9yLMrLoDgtr+vSeamJ2wXRVc5Z1ZN/8eKT8Lz6cGN0yUC5 LtDbPlB0hcGcexMYSOLvewXoGuXLFqvFub63MlfOJVIT0vqxbxJ+8wD2ZRoRAgMB AAGjggK0MIICsDAdBgNVHQ4EFgQUOWUopsHg37rotgrAmAxmzQPQYWQwHwYDVR0j BBgwFoAUP+zLF75R7lnsdNZO7ZF+Ih7iihswDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjJkYjc1NTUtOWFhNC00OTgzLTkzMTYtNzM4MDlkZDM1 NGJjLzAvM0ZFQ0NCMTdCRTUxRUU1OUVDNzRENjRFRUQ5MTdFMjIxRUUyOEExQi5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1AtekxGNzVSN2xuc2ROWk83WkYtSWg3 aWlocy5jZXIweAYIKwYBBQUHAQsEbDBqMGgGCCsGAQUFBzALhlxyc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzIyZGI3NTU1LTlhYTQt NDk4My05MzE2LTczODA5ZGQzNTRiYy8wL0FTODM0LnJvYTAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMIHLBggrBgEFBQcBBwEB/wSBuzCBuDCBtQQCAAEwga4wDAME AC7s0QMEAC7s0jAMAwQALuzVAwQALuzWAwQALuzZAwQALuzfAwQALuz8AwQAUovA AwQAUovMMAwDBARSi9ADBAFSi9QDBAFSi9oDBABSi90DBAFSi+AwDAMEAFKL4wME AVKL5AMEAFKL6DAMAwQBUovqAwQAUovsAwQBUovwAwQAUov1AwQAUov3AwQAUov5 MAwDBADUPJUDBADUPJYDBADUPJoDBADUPJ8wDQYJKoZIhvcNAQELBQADggEBABZY uOUWkAnUsRynhMJ1lSSL7FZh1XYPuJxkhboCzXaqwoSPFvcgd6wKScn3BGc3uxrM bTpSUe+ALUN8zd3g1ors9Xwnidym5biv5njnw13Cm+H2bLECMf2+DNw8iQATWjWY fbM+TKlIIKJm5/1CD4TSclJKarF3Vbf0JZPueGG4QaJIWOJMhSPZWnwW5H244sBr 7RBQKkQLsAVkDbUy6C/X1PtCKhhbM0PQmrmIK/ouqjLu8++GdweWVJevJBfMOPsk 0V/4EZeDOcHcAjb4BHmpQ/0Mp1bdmyxxxWlXaxrai49NAQHTObvHrjRsVLWb4Dob env2z9SmTDo5gXX5WVI= -----END CERTIFICATE-----Generated at Wed Jan 21 01:10:05 2026 by rpki-client