This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS136744.roa File: AS136744.roa (raw, json) Hash identifier: C4l7e6roysZZ8SlQxQq5PU3jPS0phxMXWdvWYWsy2bc= Subject key identifier: CB:FC:13:4F:D1:4A:86:D6:82:BA:9C:26:7B:46:AE:EE:7E:DA:C9:B7 Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a Certificate serial: 0CA774469972CD3BC07F4AE9ED45F748A37B95CB Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS136744.roa Signing time: Fri 19 Dec 2025 04:29:59 +0000 ROA not before: Fri 19 Dec 2025 04:24:59 +0000 ROA not after: Fri 18 Dec 2026 04:29:59 +0000 asID: 136744 IP address blocks: 85.208.72.0/24 maxlen: 24 181.214.237.0/24 maxlen: 24 181.215.210.0/24 maxlen: 24 193.58.106.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.mft rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 09:01:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:a7:74:46:99:72:cd:3b:c0:7f:4a:e9:ed:45:f7:48:a3:7b:95:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a Validity Not Before: Dec 19 04:24:59 2025 GMT Not After : Dec 18 04:29:59 2026 GMT Subject: CN=CBFC134FD14A86D682BA9C267B46AEEE7EDAC9B7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:dc:9f:44:6b:e5:96:61:2d:04:bc:84:65:fc: 49:7b:ad:fc:b2:92:71:a9:2c:0a:8a:05:37:f0:49: 61:25:6c:13:77:81:4b:53:91:03:a8:58:69:0b:b2: b7:cf:86:07:73:e0:00:93:3f:f6:d4:47:8c:10:f7: b8:4b:5c:14:9d:3c:ab:4a:31:dd:d9:b1:3e:f3:8a: 55:cc:0d:0c:7b:5f:d6:5b:c7:2c:33:27:04:90:87: d1:ae:72:ae:6f:04:da:fd:d5:ac:21:a5:a0:21:0b: 57:40:c8:c2:d2:59:b2:5e:96:df:7c:34:0e:77:4b: ad:be:9b:13:99:db:4d:40:b1:04:0b:68:67:d4:03: be:a4:61:3d:04:a4:8e:d5:21:1c:01:e6:46:16:7c: 16:e3:cc:d9:0e:86:e9:13:90:b9:3f:ac:18:22:9f: eb:4f:6c:47:11:5d:f3:3e:99:ee:74:55:28:8c:8a: f5:dd:23:4c:ad:4b:55:7e:4b:65:0b:49:e7:07:98: be:14:f1:6b:8d:f8:06:ca:4d:1b:89:9a:37:d4:dd: 0e:10:48:35:3d:ca:fe:2a:56:7d:40:fe:86:92:c5: 0b:40:1c:f7:aa:a1:37:9d:06:fe:0e:71:91:c2:71: 79:5f:c1:d2:27:32:56:c2:0f:a9:cc:f5:30:9b:dc: 4c:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:FC:13:4F:D1:4A:86:D6:82:BA:9C:26:7B:46:AE:EE:7E:DA:C9:B7 X509v3 Authority Key Identifier: keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS136744.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 85.208.72.0/24 181.214.237.0/24 181.215.210.0/24 193.58.106.0/24 Signature Algorithm: sha256WithRSAEncryption 62:77:c4:ef:4f:be:46:19:33:0e:d7:61:d3:da:d6:f7:fb:dd: c4:98:e6:bb:16:15:bf:bf:bd:c1:65:e9:9c:d8:9c:f5:70:92: 98:21:c8:67:33:bf:fa:b7:ca:5a:7f:5d:09:04:76:62:85:e6: 77:fc:e6:20:7d:f3:57:b5:5a:35:ab:c7:f3:d6:aa:d4:8e:31: cd:c5:7c:2a:aa:95:44:0b:8d:10:dd:f0:20:79:a4:28:e1:66: e2:6a:ef:19:c3:ac:70:c1:a6:62:76:d1:42:6f:46:f9:0c:a8: 7f:d3:1b:9b:d4:40:37:7b:c3:35:f5:b4:76:49:90:e3:e2:bd: f8:ed:d6:1c:3f:fe:e8:d7:d4:e8:6e:03:1d:25:25:db:6e:e5: 3d:c1:aa:ef:94:bf:15:13:e1:bb:5e:b8:66:b5:84:f2:98:32: 27:27:3c:60:0c:ff:8b:cd:a8:6f:ac:6c:90:c8:15:e4:ed:25: 3f:92:8c:32:13:94:53:58:8b:7a:76:05:b9:28:4a:ae:2c:99: b5:20:06:08:fe:21:87:04:d0:2d:03:e6:e1:96:9c:a6:3f:cc: a0:30:ef:fc:7d:fa:e6:bb:b9:b7:ab:a0:19:de:be:af:c0:4f: 54:23:9b:fe:4d:ed:42:56:c1:26:fb:f5:90:5e:76:5d:19:3a: d7:f0:66:26 -----BEGIN CERTIFICATE----- MIIFEjCCA/qgAwIBAgIUDKd0RplyzTvAf0rp7UX3SKN7lcswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjFiMWJiNDQ0NzcxOGYxNmIzZDM2Njc1ZDIwNWM0ZGVh NDFiYmEwYTAeFw0yNTEyMTkwNDI0NTlaFw0yNjEyMTgwNDI5NTlaMDMxMTAvBgNV BAMTKENCRkMxMzRGRDE0QTg2RDY4MkJBOUMyNjdCNDZBRUVFN0VEQUM5QjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC53J9Ea+WWYS0EvIRl/El7rfyy knGpLAqKBTfwSWElbBN3gUtTkQOoWGkLsrfPhgdz4ACTP/bUR4wQ97hLXBSdPKtK Md3ZsT7zilXMDQx7X9ZbxywzJwSQh9Gucq5vBNr91awhpaAhC1dAyMLSWbJelt98 NA53S62+mxOZ201AsQQLaGfUA76kYT0EpI7VIRwB5kYWfBbjzNkOhukTkLk/rBgi n+tPbEcRXfM+me50VSiMivXdI0ytS1V+S2ULSecHmL4U8WuN+AbKTRuJmjfU3Q4Q SDU9yv4qVn1A/oaSxQtAHPeqoTedBv4OcZHCcXlfwdInMlbCD6nM9TCb3EyzAgMB AAGjggIcMIICGDAdBgNVHQ4EFgQUy/wTT9FKhtaCupwme0au7n7aybcwHwYDVR0j BBgwFoAUYbG7REdxjxaz02Z10gXE3qQbugowDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNTM3NDU5ZTctMmE4My00M2QxLTlhYTEtNTg0MTdhYmFj NGI2LzEvNjFCMUJCNDQ0NzcxOEYxNkIzRDM2Njc1RDIwNUM0REVBNDFCQkEwQS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1liRzdSRWR4anhhejAyWjEwZ1hFM3FR YnVnby5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzUzNzQ1OWU3LTJhODMt NDNkMS05YWExLTU4NDE3YWJhYzRiNi8xL0FTMTM2NzQ0LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMDEGCCsGAQUFBwEHAQH/BCIwIDAeBAIAATAYAwQAVdBI AwQAtdbtAwQAtdfSAwQAwTpqMA0GCSqGSIb3DQEBCwUAA4IBAQBid8TvT75GGTMO 12HT2tb3+93EmOa7FhW/v73BZemc2Jz1cJKYIchnM7/6t8paf10JBHZiheZ3/OYg ffNXtVo1q8fz1qrUjjHNxXwqqpVEC40Q3fAgeaQo4Wbiau8Zw6xwwaZidtFCb0b5 DKh/0xub1EA3e8M19bR2SZDj4r347dYcP/7o19TobgMdJSXbbuU9warvlL8VE+G7 XrhmtYTymDInJzxgDP+LzahvrGyQyBXk7SU/kowyE5RTWIt6dgW5KEquLJm1IAYI /iGHBNAtA+bhlpymP8ygMO/8ffrmu7m3q6AZ3r6vwE9UI5v+Te1CVsEm+/WQXnZd GTrX8GYm -----END CERTIFICATE-----Generated at Mon Jan 19 15:31:06 2026 by rpki-client