This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS174.roa File: AS174.roa (raw, json) Hash identifier: /NajoYdrqAVV9+bz8dFWWySFWWRIPlTq7F45SHxNyBU= Subject key identifier: F9:B5:B1:E9:5D:5C:35:76:EF:76:20:6F:D7:3A:F2:84:06:F7:60:2F Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Certificate serial: 2AB96DFE5D0A8D7ED19433589ADF1A3649F5CBFD Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS174.roa Signing time: Thu 01 Jan 2026 04:40:18 +0000 ROA not before: Thu 01 Jan 2026 04:35:18 +0000 ROA not after: Thu 31 Dec 2026 04:40:18 +0000 asID: 174 IP address blocks: 82.27.133.0/24 maxlen: 24 82.27.134.0/24 maxlen: 24 82.27.135.0/24 maxlen: 24 82.39.160.0/24 maxlen: 24 82.39.166.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 02 Jan 2026 00:18:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:b9:6d:fe:5d:0a:8d:7e:d1:94:33:58:9a:df:1a:36:49:f5:cb:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Validity Not Before: Jan 1 04:35:18 2026 GMT Not After : Dec 31 04:40:18 2026 GMT Subject: CN=F9B5B1E95D5C3576EF76206FD73AF28406F7602F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:34:c2:b9:5b:23:5f:e4:81:7f:a0:5a:f4:d8: a1:53:ea:29:e4:a2:df:87:a9:eb:61:75:1e:bf:f9: ab:82:66:bf:c3:fd:ab:ae:79:17:12:bd:69:f7:7c: 5c:10:73:f1:a5:5f:1d:ea:40:26:2d:ff:23:ed:a6: dc:43:3b:6d:28:d0:29:6a:9c:29:96:d4:07:a6:31: 9f:e4:2c:86:33:aa:6e:33:c5:46:0c:4a:d6:2e:43: ba:16:94:20:ea:05:ee:27:29:50:bd:a8:aa:de:20: ab:16:40:c2:51:d1:33:11:ae:7e:ad:78:e6:b3:84: 3b:b2:33:86:51:dc:e9:64:c0:d3:dc:60:6d:18:24: 80:72:78:02:06:1f:78:2f:70:c3:f1:d3:2e:5c:7e: 69:5d:c0:15:14:60:05:cd:ea:9b:e2:68:44:8e:87: bf:32:b8:e3:b9:eb:8b:9c:7c:a8:40:9e:a6:74:5f: f8:72:c7:69:9a:20:82:b6:48:d2:56:43:9e:e6:ca: 92:ff:62:07:82:aa:aa:80:52:f1:75:3c:2e:ad:57: aa:99:26:b6:3c:c0:c9:d3:da:44:d7:02:cf:71:05: 61:7c:d4:2c:4e:a8:4f:ed:fb:cd:e5:71:18:07:e1: a7:e5:bb:59:e7:ba:6d:ca:cd:ab:5b:dc:b7:7a:69: b8:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:B5:B1:E9:5D:5C:35:76:EF:76:20:6F:D7:3A:F2:84:06:F7:60:2F X509v3 Authority Key Identifier: keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS174.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 82.27.133.0-82.27.135.255 82.39.160.0/24 82.39.166.0/24 Signature Algorithm: sha256WithRSAEncryption 06:41:f0:a0:c5:99:e1:47:8e:96:e9:55:a8:91:8c:47:7f:d5: 09:30:61:04:27:c1:fc:49:71:5a:1a:6b:94:f8:8f:82:46:75: 61:8a:8b:42:d0:7d:18:0c:83:8f:2a:bd:74:9b:13:0b:8f:e4: a6:46:a3:38:ce:89:ce:28:0b:7a:5a:96:d7:df:3c:10:7f:70: 2f:70:b5:34:ac:c3:d8:01:89:b6:01:b2:ac:8d:e6:19:cc:a2: 2a:20:b6:7f:79:6d:18:d1:5f:0e:7e:30:ef:d0:61:48:a6:d1: 97:a1:f3:96:7d:38:4f:3b:b6:4b:6d:78:e1:53:b0:8f:ba:c8: 11:92:79:9e:d3:7b:83:66:7e:eb:45:29:ad:78:11:20:ad:e6: 7b:63:0a:a3:bd:b7:67:7d:8b:8e:21:5a:4d:9e:3c:01:12:2f: d6:bd:aa:5c:5b:7f:83:77:a7:ff:6e:75:86:1c:b5:a4:38:a9: 6b:6f:bf:eb:c5:0c:c5:d9:3a:58:e4:5c:55:d0:8f:b0:ce:28: c9:ac:99:fb:d7:24:eb:60:c9:01:34:29:59:ae:b9:99:72:61: 80:72:8b:1a:11:14:91:b2:a6:eb:52:a6:d0:a2:83:62:8d:01: 78:93:00:4f:21:18:f9:a4:a6:07:2c:b0:15:b9:23:7d:57:ee: 63:f0:0e:10 -----BEGIN CERTIFICATE----- MIIFETCCA/mgAwIBAgIUKrlt/l0KjX7RlDNYmt8aNkn1y/0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjE4Y2M2ZTI0MTA1ZGU2YzVjOTAwM2Q2NTI0Mzg5M2Ni M2NmZGQwMTAeFw0yNjAxMDEwNDM1MThaFw0yNjEyMzEwNDQwMThaMDMxMTAvBgNV BAMTKEY5QjVCMUU5NUQ1QzM1NzZFRjc2MjA2RkQ3M0FGMjg0MDZGNzYwMkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCTNMK5WyNf5IF/oFr02KFT6ink ot+HqethdR6/+auCZr/D/auueRcSvWn3fFwQc/GlXx3qQCYt/yPtptxDO20o0Clq nCmW1AemMZ/kLIYzqm4zxUYMStYuQ7oWlCDqBe4nKVC9qKreIKsWQMJR0TMRrn6t eOazhDuyM4ZR3OlkwNPcYG0YJIByeAIGH3gvcMPx0y5cfmldwBUUYAXN6pviaESO h78yuOO564ucfKhAnqZ0X/hyx2maIIK2SNJWQ57mypL/YgeCqqqAUvF1PC6tV6qZ JrY8wMnT2kTXAs9xBWF81CxOqE/t+83lcRgH4aflu1nnum3Kzatb3Ld6abgVAgMB AAGjggIbMIICFzAdBgNVHQ4EFgQU+bWx6V1cNXbvdiBv1zryhAb3YC8wHwYDVR0j BBgwFoAUIYzG4kEF3mxckAPWUkOJPLPP3QEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYtYjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWEx YWY2LzAvMjE4Q0M2RTI0MTA1REU2QzVDOTAwM0Q2NTI0Mzg5M0NCM0NGREQwMS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0lZekc0a0VGM214Y2tBUFdVa09KUExQ UDNRRS5jZXIweAYIKwYBBQUHAQsEbDBqMGgGCCsGAQUFBzALhlxyc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzcxOGExYjRmLWI2NGMt NDAyYy1iZTE1LWRkODJhNDFhMWFmNi8wL0FTMTc0LnJvYTAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDMGCCsGAQUFBwEHAQH/BCQwIjAgBAIAATAaMAwDBABSG4UD BANSG4ADBABSJ6ADBABSJ6YwDQYJKoZIhvcNAQELBQADggEBAAZB8KDFmeFHjpbp VaiRjEd/1QkwYQQnwfxJcVoaa5T4j4JGdWGKi0LQfRgMg48qvXSbEwuP5KZGozjO ic4oC3paltffPBB/cC9wtTSsw9gBibYBsqyN5hnMoiogtn95bRjRXw5+MO/QYUim 0Zeh85Z9OE87tktteOFTsI+6yBGSeZ7Te4NmfutFKa14ESCt5ntjCqO9t2d9i44h Wk2ePAESL9a9qlxbf4N3p/9udYYctaQ4qWtvv+vFDMXZOljkXFXQj7DOKMmsmfvX JOtgyQE0KVmuuZlyYYByixoRFJGyputSptCig2KNAXiTAE8hGPmkpgcssBW5I31X 7mPwDhA= -----END CERTIFICATE-----Generated at Thu Jan 1 07:06:11 2026 by rpki-client