This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/AS209737.roa File: AS209737.roa (raw, json) Hash identifier: mUgKWOVDu1zUlne+iyoUHR4njqaLUY7BrlRuOBQqnhI= Subject key identifier: 5A:45:63:F7:AA:84:C1:16:8E:9E:E9:F4:3C:9A:EF:D7:E9:6A:E1:D5 Certificate issuer: /CN=9dfbff217105df8877d463f6e9bac28a4084d20c Certificate serial: 79F048CC1178650F046EB978728B4D4EC9859B61 Authority key identifier: 9D:FB:FF:21:71:05:DF:88:77:D4:63:F6:E9:BA:C2:8A:40:84:D2:0C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nfv_IXEF34h31GP26brCikCE0gw.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/AS209737.roa Signing time: Wed 04 Feb 2026 12:57:46 +0000 ROA not before: Wed 04 Feb 2026 12:52:46 +0000 ROA not after: Wed 03 Feb 2027 12:57:46 +0000 asID: 209737 IP address blocks: 5.133.101.0/24 maxlen: 24 31.40.197.0/24 maxlen: 24 31.40.205.0/24 maxlen: 24 85.235.73.0/24 maxlen: 24 85.235.74.0/24 maxlen: 24 176.96.128.0/24 maxlen: 24 193.111.76.0/24 maxlen: 24 193.111.79.0/24 maxlen: 24 217.18.208.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/9DFBFF217105DF8877D463F6E9BAC28A4084D20C.crl rsync://rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/9DFBFF217105DF8877D463F6E9BAC28A4084D20C.mft rsync://rpki.ripe.net/repository/DEFAULT/nfv_IXEF34h31GP26brCikCE0gw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 06 Feb 2026 12:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:f0:48:cc:11:78:65:0f:04:6e:b9:78:72:8b:4d:4e:c9:85:9b:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9dfbff217105df8877d463f6e9bac28a4084d20c Validity Not Before: Feb 4 12:52:46 2026 GMT Not After : Feb 3 12:57:46 2027 GMT Subject: CN=5A4563F7AA84C1168E9EE9F43C9AEFD7E96AE1D5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:f1:f8:9c:f5:a2:52:e6:f2:41:93:8a:b3:2a: 69:bf:65:62:ce:5a:33:90:75:05:5a:b5:d9:cb:56: 37:79:3e:65:5e:0d:d4:8e:3d:24:4e:a7:3c:ab:71: 97:c3:6a:2a:d5:1e:b3:d2:68:4c:e9:1c:db:dd:50: bc:f4:5e:44:48:af:d3:35:cf:95:d4:fc:07:47:15: 6e:4b:5e:e1:6e:07:37:06:41:ab:2b:ea:5f:8e:2c: 80:5b:fe:a1:ea:4d:5c:68:d7:80:1f:5d:b8:4a:20: 86:58:d7:54:6b:e9:83:42:6d:88:9f:56:ba:21:e5: 5e:be:79:14:ca:3d:b7:b7:7d:72:e3:de:73:71:d5: 91:e5:cd:31:10:3e:10:eb:cf:22:41:7b:2d:45:ed: 1c:0f:0e:44:e5:7a:50:f9:f0:27:03:80:97:2d:00: a9:cc:01:30:be:99:11:e9:39:e9:fe:b5:74:d0:99: 39:ea:62:07:bd:8f:78:ea:49:42:f2:01:e2:4a:e8: 90:48:35:44:cb:67:45:61:ed:55:fc:bf:27:00:59: d9:3c:a9:23:9c:df:bf:74:55:b7:99:79:53:81:a5: 5c:9f:99:26:a1:93:af:4b:79:27:91:1f:93:32:b2: d2:3e:b2:b7:80:a3:3c:44:4d:ff:94:cb:a3:4a:58: aa:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:45:63:F7:AA:84:C1:16:8E:9E:E9:F4:3C:9A:EF:D7:E9:6A:E1:D5 X509v3 Authority Key Identifier: keyid:9D:FB:FF:21:71:05:DF:88:77:D4:63:F6:E9:BA:C2:8A:40:84:D2:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/9DFBFF217105DF8877D463F6E9BAC28A4084D20C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nfv_IXEF34h31GP26brCikCE0gw.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/AS209737.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.133.101.0/24 31.40.197.0/24 31.40.205.0/24 85.235.73.0-85.235.74.255 176.96.128.0/24 193.111.76.0/24 193.111.79.0/24 217.18.208.0/24 Signature Algorithm: sha256WithRSAEncryption ab:1d:fd:9f:85:90:33:74:f5:67:fa:d5:d3:68:91:01:35:52: 2e:a7:c6:50:b5:07:a1:0c:f0:67:d8:d9:7f:9e:60:5e:8c:a8: 48:8c:0b:6f:ef:f3:72:a4:62:44:f2:7b:2a:07:a5:9c:f5:65: c7:2c:18:c9:52:26:ff:a4:4c:47:7a:24:76:e7:e1:bd:22:27: 5e:6a:80:2d:73:e5:d4:89:b8:6c:d7:d7:fb:01:5b:51:7d:09: 52:aa:89:11:4f:46:02:a0:57:96:79:88:b6:09:58:6f:d0:f7: d5:82:8b:b9:f4:11:76:1e:7c:e1:17:8f:68:66:40:c6:93:75: d0:0f:68:04:bf:95:10:40:ef:be:e4:e6:64:d9:c3:29:38:c0: d8:85:f6:57:67:6d:da:b9:7b:79:a9:08:51:20:16:7a:af:3f: 17:6a:ae:6b:f1:ae:f3:c1:b6:aa:c0:b5:b4:82:78:f6:2c:5e: 0b:5d:eb:b6:b5:68:53:7e:fd:08:ff:1e:54:b4:52:ac:3e:ff: 81:df:e3:83:86:08:5d:b3:89:76:42:a0:8f:3b:61:b3:b4:70: 74:a5:18:9a:a5:54:0e:05:f8:22:e2:0c:cd:ef:3e:9a:0a:40: 33:8a:cd:94:04:1c:ac:26:99:99:d2:21:7d:f2:3c:fe:20:89: 0e:31:f2:29 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUefBIzBF4ZQ8Ebrl4cotNTsmFm2EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOWRmYmZmMjE3MTA1ZGY4ODc3ZDQ2M2Y2ZTliYWMyOGE0 MDg0ZDIwYzAeFw0yNjAyMDQxMjUyNDZaFw0yNzAyMDMxMjU3NDZaMDMxMTAvBgNV BAMTKDVBNDU2M0Y3QUE4NEMxMTY4RTlFRTlGNDNDOUFFRkQ3RTk2QUUxRDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC08fic9aJS5vJBk4qzKmm/ZWLO WjOQdQVatdnLVjd5PmVeDdSOPSROpzyrcZfDairVHrPSaEzpHNvdULz0XkRIr9M1 z5XU/AdHFW5LXuFuBzcGQasr6l+OLIBb/qHqTVxo14AfXbhKIIZY11Rr6YNCbYif Vroh5V6+eRTKPbe3fXLj3nNx1ZHlzTEQPhDrzyJBey1F7RwPDkTlelD58CcDgJct AKnMATC+mRHpOen+tXTQmTnqYge9j3jqSULyAeJK6JBINUTLZ0Vh7VX8vycAWdk8 qSOc3790VbeZeVOBpVyfmSahk69LeSeRH5MystI+sreAozxETf+Uy6NKWKrnAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUWkVj96qEwRaOnun0PJrv1+lq4dUwHwYDVR0j BBgwFoAUnfv/IXEF34h31GP26brCikCE0gwwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNTViNGQ5ZTgtNDExMS00Mzk0LWEzYTYtYmQ4MjUxZTdm YmJkLzAvOURGQkZGMjE3MTA1REY4ODc3RDQ2M0Y2RTlCQUMyOEE0MDg0RDIwQy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL25mdl9JWEVGMzRoMzFHUDI2YnJDaWtD RTBndy5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzU1YjRkOWU4LTQxMTEt NDM5NC1hM2E2LWJkODI1MWU3ZmJiZC8wL0FTMjA5NzM3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMFEGCCsGAQUFBwEHAQH/BEIwQDA+BAIAATA4AwQABYVl AwQAHyjFAwQAHyjNMAwDBABV60kDBABV60oDBACwYIADBADBb0wDBADBb08DBADZ EtAwDQYJKoZIhvcNAQELBQADggEBAKsd/Z+FkDN09Wf61dNokQE1Ui6nxlC1B6EM 8GfY2X+eYF6MqEiMC2/v83KkYkTyeyoHpZz1ZccsGMlSJv+kTEd6JHbn4b0iJ15q gC1z5dSJuGzX1/sBW1F9CVKqiRFPRgKgV5Z5iLYJWG/Q99WCi7n0EXYefOEXj2hm QMaTddAPaAS/lRBA777k5mTZwyk4wNiF9ldnbdq5e3mpCFEgFnqvPxdqrmvxrvPB tqrAtbSCePYsXgtd67a1aFN+/Qj/HlS0Uqw+/4Hf44OGCF2ziXZCoI87YbO0cHSl GJqlVA4F+CLiDM3vPpoKQDOKzZQEHKwmmZnSIX3yPP4giQ4x8ik= -----END CERTIFICATE-----Generated at Thu Feb 5 13:52:59 2026 by rpki-client