This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/AS211851.roa File: AS211851.roa (raw, json) Hash identifier: OTAAZmlQ5K0rF4l0tbr7RqoeyK4ncslkLzkjewmbINI= Subject key identifier: B0:8F:C4:51:32:7C:6F:AC:D0:BF:EF:61:27:75:9E:70:8F:AD:0C:20 Certificate issuer: /CN=9dfbff217105df8877d463f6e9bac28a4084d20c Certificate serial: 1DF43C283CC41F99DC1979F7E653DBB5B29A0A87 Authority key identifier: 9D:FB:FF:21:71:05:DF:88:77:D4:63:F6:E9:BA:C2:8A:40:84:D2:0C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nfv_IXEF34h31GP26brCikCE0gw.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/AS211851.roa Signing time: Wed 04 Feb 2026 12:57:37 +0000 ROA not before: Wed 04 Feb 2026 12:52:37 +0000 ROA not after: Wed 03 Feb 2027 12:57:37 +0000 asID: 211851 IP address blocks: 37.221.76.0/24 maxlen: 24 37.221.77.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/9DFBFF217105DF8877D463F6E9BAC28A4084D20C.crl rsync://rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/9DFBFF217105DF8877D463F6E9BAC28A4084D20C.mft rsync://rpki.ripe.net/repository/DEFAULT/nfv_IXEF34h31GP26brCikCE0gw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 06 Feb 2026 12:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:f4:3c:28:3c:c4:1f:99:dc:19:79:f7:e6:53:db:b5:b2:9a:0a:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9dfbff217105df8877d463f6e9bac28a4084d20c Validity Not Before: Feb 4 12:52:37 2026 GMT Not After : Feb 3 12:57:37 2027 GMT Subject: CN=B08FC451327C6FACD0BFEF6127759E708FAD0C20 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:33:c7:eb:4d:c4:ea:b4:00:fe:2c:c3:d4:a9: 98:96:cb:53:35:a6:59:f1:c8:1d:9c:01:45:a4:29: 34:57:50:e0:58:4e:ba:9c:25:07:85:00:d9:5d:92: bc:af:66:02:0f:72:a3:8c:a3:fd:b5:07:a0:77:41: 78:4d:75:c5:2c:ad:fb:db:d4:f8:fd:c0:d7:b1:e3: 88:2a:5a:53:96:e6:d5:b3:59:e2:cc:e8:fa:04:dd: 29:f9:ea:8e:12:2a:0b:3b:09:53:de:d1:b5:29:d8: 1b:85:9f:2e:8f:03:09:01:c1:14:f8:14:93:86:bd: 75:f8:36:c9:f9:9c:87:5e:4f:a2:2a:1b:a2:64:5f: 2a:83:b0:0a:a7:fb:8d:42:bb:49:5e:ac:ec:9c:ed: 53:c2:5e:2e:db:29:94:38:cc:8f:a6:56:c0:38:ba: e0:8e:dd:35:20:2f:6c:e0:13:f1:26:a5:f3:85:7a: 63:60:52:83:6a:c4:7d:2a:33:ed:50:cb:ea:54:a1: 8d:2b:f0:ce:89:5d:3e:a9:3f:70:ca:fb:22:b6:48: 9b:fe:8a:13:ca:e1:b3:9b:ed:cf:e3:4a:4e:2f:24: 60:cd:a3:11:3c:21:cb:98:3c:2a:33:f5:34:42:14: 93:82:b5:a3:e3:9b:70:4c:5a:80:1b:fc:f4:66:e1: 8f:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:8F:C4:51:32:7C:6F:AC:D0:BF:EF:61:27:75:9E:70:8F:AD:0C:20 X509v3 Authority Key Identifier: keyid:9D:FB:FF:21:71:05:DF:88:77:D4:63:F6:E9:BA:C2:8A:40:84:D2:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/9DFBFF217105DF8877D463F6E9BAC28A4084D20C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nfv_IXEF34h31GP26brCikCE0gw.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/AS211851.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.221.76.0/23 Signature Algorithm: sha256WithRSAEncryption 5f:aa:67:16:56:5a:88:c9:7a:7e:4b:f0:3b:0a:55:80:f5:94: e1:f6:a9:0c:03:df:a6:2e:48:25:35:5f:ce:a5:a9:7b:d9:76: 5d:76:5a:0a:88:f7:d9:69:f4:45:5e:da:95:ab:c6:0b:f2:b7: dd:d6:f9:ef:f0:7f:3d:f2:26:2e:5d:26:98:a8:5b:00:2d:2c: ac:f4:aa:1b:d6:6c:7b:a4:e6:fe:b2:6e:dc:74:bd:90:f3:01: 56:95:c4:40:6f:43:f5:11:74:f0:9b:74:74:1a:05:90:1e:38: a5:0b:39:08:51:8b:4d:57:0d:54:74:9b:13:4e:2e:23:5d:eb: d7:77:46:00:c5:83:c7:66:93:d2:2d:e3:31:63:77:23:ff:64: ec:21:33:12:c7:4c:15:05:3e:21:58:7b:c6:e4:5d:60:64:2b: ef:5c:a4:40:89:1b:38:6b:f3:25:b6:f7:53:ef:97:5e:0a:93: 30:9f:75:1c:e2:1d:8d:92:bb:3f:47:b6:70:c9:b3:3b:53:07: c3:7b:69:28:6b:ed:28:a3:5b:6a:b5:78:05:5b:9b:90:c4:7d: 91:cd:eb:9c:0f:86:cd:a9:8c:45:4e:7a:41:21:72:eb:0d:9a: 2d:c9:15:27:7e:6d:5e:46:c5:25:53:b4:f4:bf:6a:4d:3d:75: 40:66:54:24 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgIUHfQ8KDzEH5ncGXn35lPbtbKaCocwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOWRmYmZmMjE3MTA1ZGY4ODc3ZDQ2M2Y2ZTliYWMyOGE0 MDg0ZDIwYzAeFw0yNjAyMDQxMjUyMzdaFw0yNzAyMDMxMjU3MzdaMDMxMTAvBgNV BAMTKEIwOEZDNDUxMzI3QzZGQUNEMEJGRUY2MTI3NzU5RTcwOEZBRDBDMjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdM8frTcTqtAD+LMPUqZiWy1M1 plnxyB2cAUWkKTRXUOBYTrqcJQeFANldkryvZgIPcqOMo/21B6B3QXhNdcUsrfvb 1Pj9wNex44gqWlOW5tWzWeLM6PoE3Sn56o4SKgs7CVPe0bUp2BuFny6PAwkBwRT4 FJOGvXX4Nsn5nIdeT6IqG6JkXyqDsAqn+41Cu0lerOyc7VPCXi7bKZQ4zI+mVsA4 uuCO3TUgL2zgE/EmpfOFemNgUoNqxH0qM+1Qy+pUoY0r8M6JXT6pP3DK+yK2SJv+ ihPK4bOb7c/jSk4vJGDNoxE8IcuYPCoz9TRCFJOCtaPjm3BMWoAb/PRm4Y+nAgMB AAGjggIKMIICBjAdBgNVHQ4EFgQUsI/EUTJ8b6zQv+9hJ3WecI+tDCAwHwYDVR0j BBgwFoAUnfv/IXEF34h31GP26brCikCE0gwwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNTViNGQ5ZTgtNDExMS00Mzk0LWEzYTYtYmQ4MjUxZTdm YmJkLzAvOURGQkZGMjE3MTA1REY4ODc3RDQ2M0Y2RTlCQUMyOEE0MDg0RDIwQy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL25mdl9JWEVGMzRoMzFHUDI2YnJDaWtD RTBndy5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzU1YjRkOWU4LTQxMTEt NDM5NC1hM2E2LWJkODI1MWU3ZmJiZC8wL0FTMjExODUxLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBJd1M MA0GCSqGSIb3DQEBCwUAA4IBAQBfqmcWVlqIyXp+S/A7ClWA9ZTh9qkMA9+mLkgl NV/Opal72XZddloKiPfZafRFXtqVq8YL8rfd1vnv8H898iYuXSaYqFsALSys9Kob 1mx7pOb+sm7cdL2Q8wFWlcRAb0P1EXTwm3R0GgWQHjilCzkIUYtNVw1UdJsTTi4j XevXd0YAxYPHZpPSLeMxY3cj/2TsITMSx0wVBT4hWHvG5F1gZCvvXKRAiRs4a/Ml tvdT75deCpMwn3Uc4h2Nkrs/R7ZwybM7UwfDe2koa+0oo1tqtXgFW5uQxH2Rzeuc D4bNqYxFTnpBIXLrDZotyRUnfm1eRsUlU7T0v2pNPXVAZlQk -----END CERTIFICATE-----Generated at Thu Feb 5 13:54:27 2026 by rpki-client