This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/AS205733.roa File: AS205733.roa (raw, json) Hash identifier: Dc7Tpd1RhNxG/cMeyUV5KIYf9TISNxbEOxcuyIpmK1A= Subject key identifier: 0F:CF:2E:02:44:01:65:73:E1:51:96:06:6F:1B:1C:FB:20:EE:57:91 Certificate issuer: /CN=9dfbff217105df8877d463f6e9bac28a4084d20c Certificate serial: 1354088ED9F59F0922D2D241C0617C171084981A Authority key identifier: 9D:FB:FF:21:71:05:DF:88:77:D4:63:F6:E9:BA:C2:8A:40:84:D2:0C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nfv_IXEF34h31GP26brCikCE0gw.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/AS205733.roa Signing time: Wed 04 Feb 2026 12:57:50 +0000 ROA not before: Wed 04 Feb 2026 12:52:50 +0000 ROA not after: Wed 03 Feb 2027 12:57:50 +0000 asID: 205733 IP address blocks: 31.40.196.0/24 maxlen: 24 37.221.79.0/24 maxlen: 24 185.231.226.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/9DFBFF217105DF8877D463F6E9BAC28A4084D20C.crl rsync://rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/9DFBFF217105DF8877D463F6E9BAC28A4084D20C.mft rsync://rpki.ripe.net/repository/DEFAULT/nfv_IXEF34h31GP26brCikCE0gw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 06 Feb 2026 03:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:54:08:8e:d9:f5:9f:09:22:d2:d2:41:c0:61:7c:17:10:84:98:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9dfbff217105df8877d463f6e9bac28a4084d20c Validity Not Before: Feb 4 12:52:50 2026 GMT Not After : Feb 3 12:57:50 2027 GMT Subject: CN=0FCF2E0244016573E15196066F1B1CFB20EE5791 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:bc:16:50:1e:b0:32:1e:4a:2c:91:ae:37:46: e2:5c:5c:09:2a:ba:de:75:1f:9c:c9:93:52:14:2f: 2e:2a:78:48:10:3d:ff:25:07:2c:62:b3:8d:f1:64: e3:fc:c8:4b:4b:69:48:46:5b:e6:f8:25:c9:64:6f: 26:78:0d:29:db:0d:6c:5c:83:12:81:96:aa:e2:57: 33:3b:aa:6b:87:e8:5c:3e:3b:fd:1c:70:ad:92:d0: 1b:cc:1d:01:66:4a:03:e1:03:7e:34:d8:4e:eb:5a: 62:57:79:0d:05:1a:e4:bb:99:78:3c:8c:43:db:5b: 49:45:7c:a8:a3:1b:99:68:02:2e:34:b9:0e:41:cd: 41:52:b4:a9:10:12:c3:ae:8b:3d:b8:ec:8e:e2:3e: 4c:37:ee:6c:de:ff:2e:6c:cf:f3:58:c4:f4:25:05: 40:50:18:a2:4d:aa:42:76:ad:82:63:d8:21:13:12: d4:a5:14:1a:5f:42:a1:8d:56:50:d8:58:f5:f7:b5: fe:01:b6:a2:f4:ff:7c:26:ba:83:23:d6:2a:0a:16: c5:f2:38:ea:f5:91:46:72:d2:bc:c4:81:85:59:b5: cf:1d:b4:04:1a:c8:6f:ab:22:e7:2f:7d:6e:5b:11: d6:3e:62:80:03:2e:ca:8f:36:02:dc:89:7c:bc:fd: 26:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:CF:2E:02:44:01:65:73:E1:51:96:06:6F:1B:1C:FB:20:EE:57:91 X509v3 Authority Key Identifier: keyid:9D:FB:FF:21:71:05:DF:88:77:D4:63:F6:E9:BA:C2:8A:40:84:D2:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/9DFBFF217105DF8877D463F6E9BAC28A4084D20C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nfv_IXEF34h31GP26brCikCE0gw.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/AS205733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.40.196.0/24 37.221.79.0/24 185.231.226.0/24 Signature Algorithm: sha256WithRSAEncryption 1b:70:71:e9:51:46:58:c6:8c:75:b8:c7:f7:56:56:f4:ab:41: df:81:08:3f:e1:35:b9:dd:de:c9:49:cf:da:64:ca:b0:cf:a3: 87:ac:9d:82:75:11:5c:29:9d:98:4e:9a:6f:49:95:46:95:04: bc:84:2a:5c:b3:76:ac:eb:5b:7d:01:cc:0c:b1:9e:91:fe:a3: d2:66:9d:72:1a:7b:d7:7b:5e:24:5f:f3:bd:f8:cd:ad:24:6d: 2d:f9:85:19:37:a8:61:17:ea:9f:9b:d5:fb:7d:69:e2:1b:a1: 0b:40:ea:56:e9:3c:68:49:65:30:f0:d5:eb:0d:06:e5:d2:03: 1f:81:5d:1b:72:63:58:6d:68:80:63:8a:e4:25:e2:37:6e:42: 8b:71:34:b7:c8:37:22:7b:a4:95:c9:10:02:a3:12:46:3d:91: 35:ce:a8:60:fa:ee:3a:90:a1:29:8a:9a:25:77:b4:29:27:13: b6:ac:04:95:0d:05:93:86:a7:d9:2a:d6:e5:8f:6d:a8:fc:56: c8:b0:e0:17:71:77:c9:29:0a:38:af:ad:23:6d:c9:ee:b5:c8: 60:c5:b3:da:2a:28:e9:8c:17:7a:e7:44:00:ec:08:1a:b2:af: 80:96:9d:42:09:2e:01:90:c7:2b:a2:34:54:e2:ce:2c:d5:8c: fb:c2:42:c2 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgIUE1QIjtn1nwki0tJBwGF8FxCEmBowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOWRmYmZmMjE3MTA1ZGY4ODc3ZDQ2M2Y2ZTliYWMyOGE0 MDg0ZDIwYzAeFw0yNjAyMDQxMjUyNTBaFw0yNzAyMDMxMjU3NTBaMDMxMTAvBgNV BAMTKDBGQ0YyRTAyNDQwMTY1NzNFMTUxOTYwNjZGMUIxQ0ZCMjBFRTU3OTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUvBZQHrAyHkoska43RuJcXAkq ut51H5zJk1IULy4qeEgQPf8lByxis43xZOP8yEtLaUhGW+b4JclkbyZ4DSnbDWxc gxKBlqriVzM7qmuH6Fw+O/0ccK2S0BvMHQFmSgPhA3402E7rWmJXeQ0FGuS7mXg8 jEPbW0lFfKijG5loAi40uQ5BzUFStKkQEsOuiz247I7iPkw37mze/y5sz/NYxPQl BUBQGKJNqkJ2rYJj2CETEtSlFBpfQqGNVlDYWPX3tf4BtqL0/3wmuoMj1ioKFsXy OOr1kUZy0rzEgYVZtc8dtAQayG+rIucvfW5bEdY+YoADLsqPNgLciXy8/SbhAgMB AAGjggIWMIICEjAdBgNVHQ4EFgQUD88uAkQBZXPhUZYGbxsc+yDuV5EwHwYDVR0j BBgwFoAUnfv/IXEF34h31GP26brCikCE0gwwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNTViNGQ5ZTgtNDExMS00Mzk0LWEzYTYtYmQ4MjUxZTdm YmJkLzAvOURGQkZGMjE3MTA1REY4ODc3RDQ2M0Y2RTlCQUMyOEE0MDg0RDIwQy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL25mdl9JWEVGMzRoMzFHUDI2YnJDaWtD RTBndy5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzU1YjRkOWU4LTQxMTEt NDM5NC1hM2E2LWJkODI1MWU3ZmJiZC8wL0FTMjA1NzMzLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQAHyjE AwQAJd1PAwQAuefiMA0GCSqGSIb3DQEBCwUAA4IBAQAbcHHpUUZYxox1uMf3Vlb0 q0HfgQg/4TW53d7JSc/aZMqwz6OHrJ2CdRFcKZ2YTppvSZVGlQS8hCpcs3as61t9 AcwMsZ6R/qPSZp1yGnvXe14kX/O9+M2tJG0t+YUZN6hhF+qfm9X7fWniG6ELQOpW 6TxoSWUw8NXrDQbl0gMfgV0bcmNYbWiAY4rkJeI3bkKLcTS3yDcie6SVyRACoxJG PZE1zqhg+u46kKEpipold7QpJxO2rASVDQWThqfZKtblj22o/FbIsOAXcXfJKQo4 r60jbcnutchgxbPaKijpjBd650QA7Agasq+Alp1CCS4BkMcrojRU4s4s1Yz7wkLC -----END CERTIFICATE-----Generated at Thu Feb 5 13:53:51 2026 by rpki-client