This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/22db7555-9aa4-4983-9316-73809dd354bc/0/AS834.roa File: AS834.roa (raw, json) Hash identifier: UWkdU0vH8+PhxAHZJ+2GSIx/plPaHT4p3d2PoitVyug= Subject key identifier: EF:46:A1:70:57:76:2D:A8:48:AC:BA:0C:21:EC:28:45:F6:44:E2:7F Certificate issuer: /CN=3feccb17be51ee59ec74d64eed917e221ee28a1b Certificate serial: 0C086FEFF2AB6E35BC0F040FC198B80F275436AD Authority key identifier: 3F:EC:CB:17:BE:51:EE:59:EC:74:D6:4E:ED:91:7E:22:1E:E2:8A:1B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P-zLF75R7lnsdNZO7ZF-Ih7iihs.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/22db7555-9aa4-4983-9316-73809dd354bc/0/AS834.roa Signing time: Wed 03 Dec 2025 21:32:56 +0000 ROA not before: Wed 03 Dec 2025 21:27:56 +0000 ROA not after: Wed 02 Dec 2026 21:32:56 +0000 asID: 834 IP address blocks: 46.236.192.0/24 maxlen: 24 46.236.210.0/24 maxlen: 24 46.236.212.0/23 maxlen: 24 46.236.217.0/24 maxlen: 24 46.236.223.0/24 maxlen: 24 82.139.192.0/24 maxlen: 24 82.139.204.0/24 maxlen: 24 82.139.208.0/22 maxlen: 24 82.139.212.0/23 maxlen: 24 82.139.218.0/23 maxlen: 24 82.139.221.0/24 maxlen: 24 82.139.224.0/24 maxlen: 24 82.139.236.0/24 maxlen: 24 82.139.240.0/23 maxlen: 24 82.139.249.0/24 maxlen: 24 212.60.147.0/24 maxlen: 24 212.60.149.0/24 maxlen: 24 212.60.151.0/24 maxlen: 24 212.60.155.0/24 maxlen: 24 212.60.157.0/24 maxlen: 24 212.60.159.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/22db7555-9aa4-4983-9316-73809dd354bc/0/3FECCB17BE51EE59EC74D64EED917E221EE28A1B.crl rsync://rsync.paas.rpki.ripe.net/repository/22db7555-9aa4-4983-9316-73809dd354bc/0/3FECCB17BE51EE59EC74D64EED917E221EE28A1B.mft rsync://rpki.ripe.net/repository/DEFAULT/P-zLF75R7lnsdNZO7ZF-Ih7iihs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 20:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:08:6f:ef:f2:ab:6e:35:bc:0f:04:0f:c1:98:b8:0f:27:54:36:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3feccb17be51ee59ec74d64eed917e221ee28a1b Validity Not Before: Dec 3 21:27:56 2025 GMT Not After : Dec 2 21:32:56 2026 GMT Subject: CN=EF46A17057762DA848ACBA0C21EC2845F644E27F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:67:d9:e3:73:17:c7:4a:0d:0f:cb:2b:37:2d: 7a:e0:af:55:b0:30:6f:6a:3c:ba:d6:c5:62:57:68: 60:32:4d:12:4c:76:c2:4c:b6:47:38:55:b1:6e:2a: 33:fc:37:7f:65:d2:48:5e:cf:e7:ec:a9:d1:6c:6e: 45:67:19:37:58:72:75:f4:5d:a1:e3:3e:94:ce:a9: c6:39:88:53:b6:17:c8:2b:6a:e2:db:08:97:f5:1d: 80:0a:a7:8f:60:ff:af:51:47:40:cb:f6:c8:55:e1: af:9d:9e:2c:ca:a5:92:aa:93:1a:26:b4:be:e4:b8: 81:3a:f5:83:82:3e:8a:e0:31:8c:b6:18:c1:50:75: 24:1b:59:d0:a4:1c:c1:5b:a5:d2:ee:fd:1d:04:e0: f8:4d:eb:b1:3a:06:d1:e9:57:5b:04:e2:e0:bc:7d: 7d:46:c4:26:bc:d2:98:87:7b:d6:08:9e:30:96:8e: f5:35:24:ac:f5:0a:d5:ab:d3:bc:c2:59:38:1f:84: cc:50:d9:c4:2e:89:d5:ad:08:40:5e:bf:66:8d:43: ce:7b:f5:73:a9:dd:b9:a6:cf:d7:8d:94:11:77:d9: 48:49:82:9d:35:a7:72:00:cf:de:36:5e:60:d6:b6: 5f:a6:8d:52:d3:3a:0e:e9:8b:c4:04:2f:1f:84:f8: 08:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:46:A1:70:57:76:2D:A8:48:AC:BA:0C:21:EC:28:45:F6:44:E2:7F X509v3 Authority Key Identifier: keyid:3F:EC:CB:17:BE:51:EE:59:EC:74:D6:4E:ED:91:7E:22:1E:E2:8A:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/22db7555-9aa4-4983-9316-73809dd354bc/0/3FECCB17BE51EE59EC74D64EED917E221EE28A1B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P-zLF75R7lnsdNZO7ZF-Ih7iihs.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/22db7555-9aa4-4983-9316-73809dd354bc/0/AS834.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 46.236.192.0/24 46.236.210.0/24 46.236.212.0/23 46.236.217.0/24 46.236.223.0/24 82.139.192.0/24 82.139.204.0/24 82.139.208.0-82.139.213.255 82.139.218.0/23 82.139.221.0/24 82.139.224.0/24 82.139.236.0/24 82.139.240.0/23 82.139.249.0/24 212.60.147.0/24 212.60.149.0/24 212.60.151.0/24 212.60.155.0/24 212.60.157.0/24 212.60.159.0/24 Signature Algorithm: sha256WithRSAEncryption 72:ff:d1:a1:33:4c:6d:09:3f:eb:bf:8a:64:c9:fd:75:66:0b: 5d:b2:13:5e:24:a3:a2:28:89:77:95:a4:e6:d2:14:ac:a6:83: 17:83:24:8b:4c:44:83:96:18:fd:b7:8f:c7:50:de:b2:6d:eb: 32:4e:c9:71:2c:1f:39:11:b5:88:a4:c0:c9:9f:3f:6b:e6:64: 5e:b8:51:d4:1f:a9:98:58:7e:97:73:ab:65:a8:62:31:1a:85: e0:b5:d6:30:4e:76:2e:e9:ad:8c:6e:a0:da:6f:08:c8:9a:10: 08:69:14:9d:76:96:e2:3e:1c:1e:ab:a4:4e:d0:3a:39:a5:be: 6d:bf:01:db:85:bc:74:44:48:87:46:4c:99:83:78:66:2d:4b: a1:fd:50:b6:1d:c9:74:8b:ac:a3:84:86:cb:e8:14:72:c6:eb: 99:53:01:02:c5:f8:a4:6c:5f:5c:e7:f7:63:5f:48:eb:10:7b: 39:3f:e7:9d:1c:5d:fc:09:c0:ae:6a:64:f9:93:e0:3f:a9:a8: 6d:9e:89:c9:40:55:1d:96:5b:01:af:6a:87:b2:d9:99:e0:4c: 4e:41:5a:d5:6b:1e:d2:89:f7:b7:19:ca:67:73:0c:66:c2:48: 1a:69:39:30:22:11:a0:46:c9:52:a5:f5:d6:af:48:88:cc:1f: 34:eb:2c:26 -----BEGIN CERTIFICATE----- MIIFfDCCBGSgAwIBAgIUDAhv7/KrbjW8DwQPwZi4DydUNq0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM2ZlY2NiMTdiZTUxZWU1OWVjNzRkNjRlZWQ5MTdlMjIx ZWUyOGExYjAeFw0yNTEyMDMyMTI3NTZaFw0yNjEyMDIyMTMyNTZaMDMxMTAvBgNV BAMTKEVGNDZBMTcwNTc3NjJEQTg0OEFDQkEwQzIxRUMyODQ1RjY0NEUyN0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDuZ9njcxfHSg0Pyys3LXrgr1Ww MG9qPLrWxWJXaGAyTRJMdsJMtkc4VbFuKjP8N39l0khez+fsqdFsbkVnGTdYcnX0 XaHjPpTOqcY5iFO2F8grauLbCJf1HYAKp49g/69RR0DL9shV4a+dnizKpZKqkxom tL7kuIE69YOCPorgMYy2GMFQdSQbWdCkHMFbpdLu/R0E4PhN67E6BtHpV1sE4uC8 fX1GxCa80piHe9YInjCWjvU1JKz1CtWr07zCWTgfhMxQ2cQuidWtCEBev2aNQ857 9XOp3bmmz9eNlBF32UhJgp01p3IAz942XmDWtl+mjVLTOg7pi8QELx+E+AjbAgMB AAGjggKGMIICgjAdBgNVHQ4EFgQU70ahcFd2LahIrLoMIewoRfZE4n8wHwYDVR0j BBgwFoAUP+zLF75R7lnsdNZO7ZF+Ih7iihswDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjJkYjc1NTUtOWFhNC00OTgzLTkzMTYtNzM4MDlkZDM1 NGJjLzAvM0ZFQ0NCMTdCRTUxRUU1OUVDNzRENjRFRUQ5MTdFMjIxRUUyOEExQi5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1AtekxGNzVSN2xuc2ROWk83WkYtSWg3 aWlocy5jZXIweAYIKwYBBQUHAQsEbDBqMGgGCCsGAQUFBzALhlxyc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzIyZGI3NTU1LTlhYTQt NDk4My05MzE2LTczODA5ZGQzNTRiYy8wL0FTODM0LnJvYTAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMIGdBggrBgEFBQcBBwEB/wSBjTCBijCBhwQCAAEwgYADBAAu 7MADBAAu7NIDBAEu7NQDBAAu7NkDBAAu7N8DBABSi8ADBABSi8wwDAMEBFKL0AME AVKL1AMEAVKL2gMEAFKL3QMEAFKL4AMEAFKL7AMEAVKL8AMEAFKL+QMEANQ8kwME ANQ8lQMEANQ8lwMEANQ8mwMEANQ8nQMEANQ8nzANBgkqhkiG9w0BAQsFAAOCAQEA cv/RoTNMbQk/67+KZMn9dWYLXbITXiSjoiiJd5Wk5tIUrKaDF4Mki0xEg5YY/beP x1Desm3rMk7JcSwfORG1iKTAyZ8/a+ZkXrhR1B+pmFh+l3OrZahiMRqF4LXWME52 LumtjG6g2m8IyJoQCGkUnXaW4j4cHqukTtA6OaW+bb8B24W8dERIh0ZMmYN4Zi1L of1Qth3JdIuso4SGy+gUcsbrmVMBAsX4pGxfXOf3Y19I6xB7OT/nnRxd/AnArmpk +ZPgP6mobZ6JyUBVHZZbAa9qh7LZmeBMTkFa1Wse0on3txnKZ3MMZsJIGmk5MCIR oEbJUqX11q9IiMwfNOssJg== -----END CERTIFICATE-----Generated at Sat Dec 6 04:32:42 2025 by rpki-client