This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/AS213945.roa File: AS213945.roa (raw, json) Hash identifier: LN2jvNlcyPjOPI9rPUh3wizgPWqJ2IUawVOGWBNoAcM= Subject key identifier: 3E:D1:F2:3C:09:16:F3:E2:7C:90:4B:4C:5D:06:E7:F1:7C:72:FE:8E Certificate issuer: /CN=9dfbff217105df8877d463f6e9bac28a4084d20c Certificate serial: 493C4D1560A014E54D656855C0D5B9E7081FF8F0 Authority key identifier: 9D:FB:FF:21:71:05:DF:88:77:D4:63:F6:E9:BA:C2:8A:40:84:D2:0C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nfv_IXEF34h31GP26brCikCE0gw.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/AS213945.roa Signing time: Wed 04 Feb 2026 12:57:48 +0000 ROA not before: Wed 04 Feb 2026 12:52:48 +0000 ROA not after: Wed 03 Feb 2027 12:57:48 +0000 asID: 213945 IP address blocks: 176.96.130.0/24 maxlen: 24 217.18.209.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/9DFBFF217105DF8877D463F6E9BAC28A4084D20C.crl rsync://rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/9DFBFF217105DF8877D463F6E9BAC28A4084D20C.mft rsync://rpki.ripe.net/repository/DEFAULT/nfv_IXEF34h31GP26brCikCE0gw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 06 Feb 2026 03:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:3c:4d:15:60:a0:14:e5:4d:65:68:55:c0:d5:b9:e7:08:1f:f8:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9dfbff217105df8877d463f6e9bac28a4084d20c Validity Not Before: Feb 4 12:52:48 2026 GMT Not After : Feb 3 12:57:48 2027 GMT Subject: CN=3ED1F23C0916F3E27C904B4C5D06E7F17C72FE8E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:1d:ca:58:f0:6c:91:57:5b:60:96:2f:14:5c: 00:22:eb:f3:ae:29:39:44:c0:e0:1e:3d:e0:5b:f1: 68:9a:b0:9f:9f:8a:5d:6c:ed:10:a7:9b:fc:7e:90: 48:14:a4:d5:b8:91:83:ef:5a:d1:53:67:af:65:1f: 99:60:d6:1c:c8:6a:46:96:57:25:4d:a9:33:9f:73: f3:09:ca:65:f0:6c:85:e1:e4:ed:11:6b:2c:35:12: 64:ef:6e:0b:79:75:93:a2:7c:e6:53:d5:7a:ef:ae: c7:52:51:c6:bd:01:6a:b6:ff:62:4a:5f:3e:fa:38: eb:60:5d:65:fd:91:4c:eb:72:cf:8a:bb:84:ef:b5: fd:ab:3f:c2:d3:b1:89:08:d0:04:d7:92:a8:8e:c5: 78:e5:a6:a6:af:f7:ce:9e:ed:6d:30:22:3c:e1:c7: b1:72:c8:6e:c0:c1:eb:14:dd:fc:b3:30:fb:3c:07: 37:de:b3:cd:a0:a5:e4:4d:54:48:00:53:5d:e4:9b: 86:28:0c:02:2a:8e:1f:4c:f5:e7:4f:15:d8:79:c3: 44:9d:cb:46:53:42:0b:43:58:7b:51:2e:85:7d:48: 35:6d:ed:e6:a5:58:5b:f2:f9:f2:27:f1:b4:95:4c: 47:42:65:fe:53:11:39:a9:c3:ae:0d:b1:69:0d:7f: b9:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:D1:F2:3C:09:16:F3:E2:7C:90:4B:4C:5D:06:E7:F1:7C:72:FE:8E X509v3 Authority Key Identifier: keyid:9D:FB:FF:21:71:05:DF:88:77:D4:63:F6:E9:BA:C2:8A:40:84:D2:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/9DFBFF217105DF8877D463F6E9BAC28A4084D20C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nfv_IXEF34h31GP26brCikCE0gw.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/AS213945.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 176.96.130.0/24 217.18.209.0/24 Signature Algorithm: sha256WithRSAEncryption 2e:d4:ba:10:d7:b2:bc:08:9f:6e:d9:4a:86:b4:76:9b:4c:1e: ed:2c:e2:35:e2:64:71:ba:26:07:97:98:8b:95:c7:9f:34:a4: 78:da:73:d5:52:8b:8e:16:ba:67:3e:ac:0f:2e:70:39:16:c2: 2c:e2:27:5b:bc:c0:ae:f0:23:17:09:41:b0:99:76:7a:17:3c: c1:db:8b:3a:de:ba:eb:1c:4a:fe:1e:56:40:73:96:50:5a:ef: 7f:8b:b1:b3:e2:9b:0e:c3:08:52:87:4e:87:7a:40:22:dd:e0: de:44:41:fd:c1:4b:a5:53:ee:1c:13:e7:cb:6d:22:df:15:ee: b9:fd:c0:38:ba:24:ee:97:bc:81:39:3f:38:f0:78:66:6a:83: 80:e3:a8:89:ee:0c:e3:f0:89:3e:6f:1f:2d:e8:15:4f:21:7b: a4:42:1c:e4:58:22:bb:9d:7a:35:3c:5a:5d:30:98:88:87:23: 4c:4f:48:7b:06:12:df:b8:61:d3:f3:82:c8:b1:c7:bf:5e:60: 0e:93:58:c1:ad:d0:b9:bd:52:81:85:bc:93:cb:79:3c:3a:4f: 8b:d5:a1:68:7d:d2:45:04:73:e0:0b:54:cc:59:f7:e5:26:e3: 72:91:06:f1:b0:9d:63:98:df:83:b6:c1:51:10:e9:16:47:00: 7c:4f:2f:ec -----BEGIN CERTIFICATE----- MIIFBjCCA+6gAwIBAgIUSTxNFWCgFOVNZWhVwNW55wgf+PAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOWRmYmZmMjE3MTA1ZGY4ODc3ZDQ2M2Y2ZTliYWMyOGE0 MDg0ZDIwYzAeFw0yNjAyMDQxMjUyNDhaFw0yNzAyMDMxMjU3NDhaMDMxMTAvBgNV BAMTKDNFRDFGMjNDMDkxNkYzRTI3QzkwNEI0QzVEMDZFN0YxN0M3MkZFOEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsHcpY8GyRV1tgli8UXAAi6/Ou KTlEwOAePeBb8WiasJ+fil1s7RCnm/x+kEgUpNW4kYPvWtFTZ69lH5lg1hzIakaW VyVNqTOfc/MJymXwbIXh5O0Rayw1EmTvbgt5dZOifOZT1XrvrsdSUca9AWq2/2JK Xz76OOtgXWX9kUzrcs+Ku4Tvtf2rP8LTsYkI0ATXkqiOxXjlpqav986e7W0wIjzh x7FyyG7AwesU3fyzMPs8Bzfes82gpeRNVEgAU13km4YoDAIqjh9M9edPFdh5w0Sd y0ZTQgtDWHtRLoV9SDVt7ealWFvy+fIn8bSVTEdCZf5TETmpw64NsWkNf7klAgMB AAGjggIQMIICDDAdBgNVHQ4EFgQUPtHyPAkW8+J8kEtMXQbn8Xxy/o4wHwYDVR0j BBgwFoAUnfv/IXEF34h31GP26brCikCE0gwwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNTViNGQ5ZTgtNDExMS00Mzk0LWEzYTYtYmQ4MjUxZTdm YmJkLzAvOURGQkZGMjE3MTA1REY4ODc3RDQ2M0Y2RTlCQUMyOEE0MDg0RDIwQy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL25mdl9JWEVGMzRoMzFHUDI2YnJDaWtD RTBndy5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzU1YjRkOWU4LTQxMTEt NDM5NC1hM2E2LWJkODI1MWU3ZmJiZC8wL0FTMjEzOTQ1LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAsGCC AwQA2RLRMA0GCSqGSIb3DQEBCwUAA4IBAQAu1LoQ17K8CJ9u2UqGtHabTB7tLOI1 4mRxuiYHl5iLlcefNKR42nPVUouOFrpnPqwPLnA5FsIs4idbvMCu8CMXCUGwmXZ6 FzzB24s63rrrHEr+HlZAc5ZQWu9/i7Gz4psOwwhSh06HekAi3eDeREH9wUulU+4c E+fLbSLfFe65/cA4uiTul7yBOT848HhmaoOA46iJ7gzj8Ik+bx8t6BVPIXukQhzk WCK7nXo1PFpdMJiIhyNMT0h7BhLfuGHT84LIsce/XmAOk1jBrdC5vVKBhbyTy3k8 Ok+L1aFofdJFBHPgC1TMWfflJuNykQbxsJ1jmN+DtsFREOkWRwB8Ty/s -----END CERTIFICATE-----Generated at Thu Feb 5 13:52:26 2026 by rpki-client