This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c409d7b2-ee64-49f1-ad81-8e4a107d62e0/0/AS47690.roa File: AS47690.roa (raw, json) Hash identifier: fzdBkK/Ac2/upFb0954GkcpezKtfmloJZfZcRYzo1xU= Subject key identifier: 17:95:4A:35:FA:6A:38:E9:1D:33:72:46:7B:67:A9:0E:38:FF:99:A3 Certificate issuer: /CN=88c14ec02adbf083138eddd47871176ddeb93d9d Certificate serial: 4A74A79B3F18799CF02DC2C20FBBA04A447C6DC0 Authority key identifier: 88:C1:4E:C0:2A:DB:F0:83:13:8E:DD:D4:78:71:17:6D:DE:B9:3D:9D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iMFOwCrb8IMTjt3UeHEXbd65PZ0.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c409d7b2-ee64-49f1-ad81-8e4a107d62e0/0/AS47690.roa Signing time: Fri 02 Jan 2026 00:00:13 +0000 ROA not before: Thu 01 Jan 2026 23:55:13 +0000 ROA not after: Fri 01 Jan 2027 00:00:13 +0000 asID: 47690 IP address blocks: 143.20.220.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c409d7b2-ee64-49f1-ad81-8e4a107d62e0/0/88C14EC02ADBF083138EDDD47871176DDEB93D9D.crl rsync://rsync.paas.rpki.ripe.net/repository/c409d7b2-ee64-49f1-ad81-8e4a107d62e0/0/88C14EC02ADBF083138EDDD47871176DDEB93D9D.mft rsync://rpki.ripe.net/repository/DEFAULT/iMFOwCrb8IMTjt3UeHEXbd65PZ0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 16:55:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:74:a7:9b:3f:18:79:9c:f0:2d:c2:c2:0f:bb:a0:4a:44:7c:6d:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=88c14ec02adbf083138eddd47871176ddeb93d9d Validity Not Before: Jan 1 23:55:13 2026 GMT Not After : Jan 1 00:00:13 2027 GMT Subject: CN=17954A35FA6A38E91D3372467B67A90E38FF99A3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:00:80:f5:c3:e7:11:91:b9:48:39:22:48:59: 9a:b7:1c:99:59:c9:18:51:81:e0:2c:74:10:ba:07: 23:b9:1b:6a:78:ca:2e:e9:75:8e:45:b9:8b:c5:eb: a0:79:ed:4d:27:83:40:19:60:78:7d:68:6a:e0:76: 44:30:e2:03:48:2e:eb:f8:02:d4:ca:a4:1b:55:d2: 7b:62:45:5d:70:e2:e4:ab:e7:db:48:2e:95:1d:d6: 07:d0:4b:fd:09:96:aa:aa:6c:fa:06:b6:4f:bc:bb: b2:18:c8:df:46:bf:92:c7:a8:1e:51:b6:2c:b3:97: 12:dc:1e:e1:76:97:c7:09:4e:da:bd:ee:6e:7a:ca: d6:96:51:0c:c3:15:1b:1d:85:e8:47:a8:89:5a:f8: 2a:56:df:cd:5d:ca:19:15:dc:3e:dc:35:e6:28:92: 4a:da:41:2e:2c:a9:0e:6c:dd:83:4c:f9:96:cf:40: 1c:dc:2a:78:8f:bc:91:85:36:07:54:1f:d9:aa:86: 16:51:0a:23:95:e4:52:91:5f:3e:74:08:d5:5b:af: ce:2f:62:25:e2:22:40:90:a8:ac:c7:13:8e:76:46: 85:17:16:ee:ae:df:fd:50:6f:53:51:17:0f:5f:22: 96:1d:f3:a3:06:83:53:02:f8:22:18:d5:66:30:96: c3:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:95:4A:35:FA:6A:38:E9:1D:33:72:46:7B:67:A9:0E:38:FF:99:A3 X509v3 Authority Key Identifier: keyid:88:C1:4E:C0:2A:DB:F0:83:13:8E:DD:D4:78:71:17:6D:DE:B9:3D:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/c409d7b2-ee64-49f1-ad81-8e4a107d62e0/0/88C14EC02ADBF083138EDDD47871176DDEB93D9D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iMFOwCrb8IMTjt3UeHEXbd65PZ0.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c409d7b2-ee64-49f1-ad81-8e4a107d62e0/0/AS47690.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 143.20.220.0/24 Signature Algorithm: sha256WithRSAEncryption 48:01:05:9e:19:a0:e1:b7:bc:70:c5:2e:bf:bf:af:97:c1:9c: df:10:f0:27:bc:71:e0:26:d0:ac:25:df:7e:8e:b9:e1:81:02: b0:05:2d:50:05:63:ef:04:54:09:f6:1c:cd:fb:f0:bb:33:f5: 86:32:88:ce:72:07:0e:c4:a2:d5:78:c0:94:71:07:f9:ba:d8: 6e:11:95:d0:b2:f5:ea:9c:64:34:48:d2:f8:fb:87:e2:db:d1: ce:1d:56:65:68:5c:40:e8:69:9b:6e:13:a5:87:1f:6b:a1:0b: f6:02:22:55:ef:a9:f7:63:60:7a:c8:1a:70:92:b9:01:37:d7: 17:ee:e1:39:2a:2f:65:8c:5b:4f:b3:5a:c6:27:93:13:69:e1: 5a:97:af:24:02:5c:72:cb:ee:eb:44:14:71:9f:18:75:fe:79: 3b:16:da:0f:cb:93:59:8b:4a:46:3c:ef:32:29:f6:47:74:97: 20:de:3d:28:3b:85:be:88:3a:a4:84:bf:60:8b:e5:50:04:7d: 44:96:23:ae:04:94:bc:f6:8f:f6:c1:e5:90:4d:f5:8d:1a:10: 24:7c:14:25:b8:ad:c0:f4:c4:14:71:1b:fd:12:58:04:48:8d: 06:d4:46:0b:65:fb:4d:e1:dc:08:89:ff:d2:d3:b0:73:50:ce: 0a:74:cc:3d -----BEGIN CERTIFICATE----- MIIE/zCCA+egAwIBAgIUSnSnmz8YeZzwLcLCD7ugSkR8bcAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODhjMTRlYzAyYWRiZjA4MzEzOGVkZGQ0Nzg3MTE3NmRk ZWI5M2Q5ZDAeFw0yNjAxMDEyMzU1MTNaFw0yNzAxMDEwMDAwMTNaMDMxMTAvBgNV BAMTKDE3OTU0QTM1RkE2QTM4RTkxRDMzNzI0NjdCNjdBOTBFMzhGRjk5QTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVAID1w+cRkblIOSJIWZq3HJlZ yRhRgeAsdBC6ByO5G2p4yi7pdY5FuYvF66B57U0ng0AZYHh9aGrgdkQw4gNILuv4 AtTKpBtV0ntiRV1w4uSr59tILpUd1gfQS/0JlqqqbPoGtk+8u7IYyN9Gv5LHqB5R tiyzlxLcHuF2l8cJTtq97m56ytaWUQzDFRsdhehHqIla+CpW381dyhkV3D7cNeYo kkraQS4sqQ5s3YNM+ZbPQBzcKniPvJGFNgdUH9mqhhZRCiOV5FKRXz50CNVbr84v YiXiIkCQqKzHE452RoUXFu6u3/1Qb1NRFw9fIpYd86MGg1MC+CIY1WYwlsNJAgMB AAGjggIJMIICBTAdBgNVHQ4EFgQUF5VKNfpqOOkdM3JGe2epDjj/maMwHwYDVR0j BBgwFoAUiMFOwCrb8IMTjt3UeHEXbd65PZ0wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYzQwOWQ3YjItZWU2NC00OWYxLWFkODEtOGU0YTEwN2Q2 MmUwLzAvODhDMTRFQzAyQURCRjA4MzEzOEVEREQ0Nzg3MTE3NkRERUI5M0Q5RC5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2lNRk93Q3JiOElNVGp0M1VlSEVYYmQ2 NVBaMC5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2M0MDlkN2IyLWVlNjQt NDlmMS1hZDgxLThlNGExMDdkNjJlMC8wL0FTNDc2OTAucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACPFNww DQYJKoZIhvcNAQELBQADggEBAEgBBZ4ZoOG3vHDFLr+/r5fBnN8Q8Ce8ceAm0Kwl 336OueGBArAFLVAFY+8EVAn2HM378Lsz9YYyiM5yBw7EotV4wJRxB/m62G4RldCy 9eqcZDRI0vj7h+Lb0c4dVmVoXEDoaZtuE6WHH2uhC/YCIlXvqfdjYHrIGnCSuQE3 1xfu4TkqL2WMW0+zWsYnkxNp4VqXryQCXHLL7utEFHGfGHX+eTsW2g/Lk1mLSkY8 7zIp9kd0lyDePSg7hb6IOqSEv2CL5VAEfUSWI64ElLz2j/bB5ZBN9Y0aECR8FCW4 rcD0xBRxG/0SWARIjQbURgtl+03h3AiJ/9LTsHNQzgp0zD0= -----END CERTIFICATE-----Generated at Mon Jan 19 20:01:44 2026 by rpki-client