This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/AS48678.roa File: AS48678.roa (raw, json) Hash identifier: Ki9DsX4beHGzm5B3qRXAsck/a/SUVMhn5UCWAMEZ+18= Subject key identifier: 4E:A6:E5:9B:D6:A4:58:AF:9F:5F:DA:7B:B3:E4:F2:B4:86:D6:FA:3B Certificate issuer: /CN=7051b4c2f7ae9ef80b53000b32ab8f5d2f2f415b Certificate serial: 2540A8E14D98BF9A1F0968ECAAF7B2287A20B63F Authority key identifier: 70:51:B4:C2:F7:AE:9E:F8:0B:53:00:0B:32:AB:8F:5D:2F:2F:41:5B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cFG0wveunvgLUwALMquPXS8vQVs.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/AS48678.roa Signing time: Wed 17 Dec 2025 07:46:31 +0000 ROA not before: Wed 17 Dec 2025 07:41:31 +0000 ROA not after: Wed 16 Dec 2026 07:46:31 +0000 asID: 48678 IP address blocks: 5.133.101.0/24 maxlen: 24 31.40.197.0/24 maxlen: 24 31.40.199.0/24 maxlen: 24 31.40.205.0/24 maxlen: 24 31.40.207.0/24 maxlen: 24 85.235.72.0/24 maxlen: 24 85.235.74.0/24 maxlen: 24 141.98.51.0/24 maxlen: 24 141.98.112.0/24 maxlen: 24 141.98.115.0/24 maxlen: 24 176.96.128.0/24 maxlen: 24 176.96.130.0/24 maxlen: 24 193.111.79.0/24 maxlen: 24 217.18.208.0/24 maxlen: 24 217.18.209.0/24 maxlen: 24 217.18.211.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/7051B4C2F7AE9EF80B53000B32AB8F5D2F2F415B.crl rsync://rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/7051B4C2F7AE9EF80B53000B32AB8F5D2F2F415B.mft rsync://rpki.ripe.net/repository/DEFAULT/cFG0wveunvgLUwALMquPXS8vQVs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 18 Dec 2025 10:00:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:40:a8:e1:4d:98:bf:9a:1f:09:68:ec:aa:f7:b2:28:7a:20:b6:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7051b4c2f7ae9ef80b53000b32ab8f5d2f2f415b Validity Not Before: Dec 17 07:41:31 2025 GMT Not After : Dec 16 07:46:31 2026 GMT Subject: CN=4EA6E59BD6A458AF9F5FDA7BB3E4F2B486D6FA3B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:de:78:79:a6:0b:4e:34:c1:e2:6d:4a:ea:e9: f1:f8:04:02:57:4d:b1:fb:fc:65:fa:ad:c6:c1:1f: cf:e5:ff:7f:e8:be:77:1e:37:33:b1:1a:61:f1:64: 52:14:de:95:db:fa:57:ff:e8:07:b2:b4:c1:f0:f8: 0c:ae:9a:b4:94:32:ed:a0:73:ea:a1:e1:c4:0e:19: db:f4:fa:d0:df:66:b9:20:6f:a4:21:f0:d9:f7:63: 1a:2b:dd:26:28:b7:32:4c:a0:a0:fa:03:83:b5:88: 7a:39:a8:c7:18:c6:78:ec:27:ad:22:e4:d5:d9:2b: 21:47:c7:63:27:65:36:a4:4c:85:dc:d5:00:58:47: 35:6c:09:f9:28:2e:c9:6f:9e:20:54:f7:cc:fd:a0: 70:f2:e6:04:b9:66:6c:41:1f:2a:7e:cf:7c:fa:e5: 80:11:c8:b9:f1:91:ef:a3:00:4f:15:8b:1e:cc:e7: 84:27:78:25:2c:b9:d9:86:77:8b:93:4d:54:ae:09: 56:a5:90:10:63:51:28:fa:73:6a:6d:56:6a:7a:a3: 31:74:02:13:5f:ad:43:5d:c8:d8:19:c7:6d:eb:4f: 90:94:22:47:d4:87:82:ab:63:9c:bb:7a:d2:13:2d: 60:7e:62:34:da:fb:79:7e:cf:be:32:df:dd:60:a3: 6d:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:A6:E5:9B:D6:A4:58:AF:9F:5F:DA:7B:B3:E4:F2:B4:86:D6:FA:3B X509v3 Authority Key Identifier: keyid:70:51:B4:C2:F7:AE:9E:F8:0B:53:00:0B:32:AB:8F:5D:2F:2F:41:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/7051B4C2F7AE9EF80B53000B32AB8F5D2F2F415B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cFG0wveunvgLUwALMquPXS8vQVs.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/AS48678.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.133.101.0/24 31.40.197.0/24 31.40.199.0/24 31.40.205.0/24 31.40.207.0/24 85.235.72.0/24 85.235.74.0/24 141.98.51.0/24 141.98.112.0/24 141.98.115.0/24 176.96.128.0/24 176.96.130.0/24 193.111.79.0/24 217.18.208.0/23 217.18.211.0/24 Signature Algorithm: sha256WithRSAEncryption 8e:a5:cc:45:1b:e4:af:b3:2c:4c:11:48:10:dd:76:9f:84:f1: 48:55:06:23:da:a1:5a:c2:4c:52:28:d8:44:0b:a9:37:11:cf: 80:06:b6:76:33:c1:eb:b2:90:51:1e:42:bc:22:3e:5d:a2:4f: e5:b4:39:ca:c2:7a:cd:a3:5d:11:25:9b:de:7c:65:82:5e:8b: ae:8c:1f:63:b9:9c:e2:2b:65:cb:c7:ad:f5:8d:b0:ea:fd:3a: cf:12:04:88:77:bf:13:6f:04:ee:43:a6:04:f9:f1:b0:71:c8: 2b:70:99:8a:cb:da:0d:61:38:03:8f:32:3b:41:db:8f:01:5c: a2:4c:ff:b5:db:64:99:3e:bc:5c:81:a3:2e:95:1b:3d:50:59: 74:7f:3d:52:7f:6f:7f:78:ac:e5:b4:0b:82:27:88:7c:7b:54: 05:45:3d:f8:6f:b0:0d:05:30:be:b0:a8:22:d8:d8:70:a2:a4: e3:25:9e:e4:fe:50:cc:ef:96:c8:7b:07:f4:29:5f:8e:01:0a: 42:b2:60:66:be:71:10:8d:46:13:07:12:c8:fa:fc:2a:8d:7e: 9f:37:43:ac:46:ec:7c:fa:97:54:99:9c:41:b3:a5:ec:a8:62: a1:d2:06:6b:3e:b1:5f:6b:87:43:93:8b:66:69:bd:48:40:e1: 59:d4:d3:07 -----BEGIN CERTIFICATE----- MIIFUzCCBDugAwIBAgIUJUCo4U2Yv5ofCWjsqveyKHogtj8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzA1MWI0YzJmN2FlOWVmODBiNTMwMDBiMzJhYjhmNWQy ZjJmNDE1YjAeFw0yNTEyMTcwNzQxMzFaFw0yNjEyMTYwNzQ2MzFaMDMxMTAvBgNV BAMTKDRFQTZFNTlCRDZBNDU4QUY5RjVGREE3QkIzRTRGMkI0ODZENkZBM0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDj3nh5pgtONMHibUrq6fH4BAJX TbH7/GX6rcbBH8/l/3/ovnceNzOxGmHxZFIU3pXb+lf/6AeytMHw+AyumrSUMu2g c+qh4cQOGdv0+tDfZrkgb6Qh8Nn3Yxor3SYotzJMoKD6A4O1iHo5qMcYxnjsJ60i 5NXZKyFHx2MnZTakTIXc1QBYRzVsCfkoLslvniBU98z9oHDy5gS5ZmxBHyp+z3z6 5YARyLnxke+jAE8Vix7M54QneCUsudmGd4uTTVSuCValkBBjUSj6c2ptVmp6ozF0 AhNfrUNdyNgZx23rT5CUIkfUh4KrY5y7etITLWB+YjTa+3l+z74y391go223AgMB AAGjggJdMIICWTAdBgNVHQ4EFgQUTqblm9akWK+fX9p7s+TytIbW+jswHwYDVR0j BBgwFoAUcFG0wveunvgLUwALMquPXS8vQVswDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvOWM1Y2U5ZmEtOWE2Zi00ZTBjLTk4MDktN2E0Nzg4NzQ0 ODkzLzAvNzA1MUI0QzJGN0FFOUVGODBCNTMwMDBCMzJBQjhGNUQyRjJGNDE1Qi5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2NGRzB3dmV1bnZnTFV3QUxNcXVQWFM4 dlFWcy5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzljNWNlOWZhLTlhNmYt NGUwYy05ODA5LTdhNDc4ODc0NDg5My8wL0FTNDg2Nzgucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwcwYIKwYBBQUHAQcBAf8EZDBiMGAEAgABMFoDBAAFhWUD BAAfKMUDBAAfKMcDBAAfKM0DBAAfKM8DBABV60gDBABV60oDBACNYjMDBACNYnAD BACNYnMDBACwYIADBACwYIIDBADBb08DBAHZEtADBADZEtMwDQYJKoZIhvcNAQEL BQADggEBAI6lzEUb5K+zLEwRSBDddp+E8UhVBiPaoVrCTFIo2EQLqTcRz4AGtnYz weuykFEeQrwiPl2iT+W0OcrCes2jXRElm958ZYJei66MH2O5nOIrZcvHrfWNsOr9 Os8SBIh3vxNvBO5DpgT58bBxyCtwmYrL2g1hOAOPMjtB248BXKJM/7XbZJk+vFyB oy6VGz1QWXR/PVJ/b394rOW0C4IniHx7VAVFPfhvsA0FML6wqCLY2HCipOMlnuT+ UMzvlsh7B/QpX44BCkKyYGa+cRCNRhMHEsj6/CqNfp83Q6xG7Hz6l1SZnEGzpeyo YqHSBms+sV9rh0OTi2ZpvUhA4VnU0wc= -----END CERTIFICATE-----Generated at Wed Dec 17 20:50:08 2025 by rpki-client