This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS137517.roa File: AS137517.roa (raw, json) Hash identifier: vGcjhZr9VdpOZFwQ8RUM/R+3xJv/kLXK691OXYjYMgg= Subject key identifier: 09:40:72:CA:FC:67:03:16:8F:27:BC:8B:28:88:0C:BB:3C:D3:0C:A0 Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f Certificate serial: 0FE0320BBAF16269DE3F4369B24550142D29771A Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS137517.roa Signing time: Tue 13 Jan 2026 03:37:38 +0000 ROA not before: Tue 13 Jan 2026 03:32:38 +0000 ROA not after: Tue 12 Jan 2027 03:37:38 +0000 asID: 137517 IP address blocks: 91.124.176.0/24 maxlen: 24 92.113.252.0/24 maxlen: 24 95.135.82.0/24 maxlen: 24 178.92.157.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 16 Jan 2026 15:31:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:e0:32:0b:ba:f1:62:69:de:3f:43:69:b2:45:50:14:2d:29:77:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f Validity Not Before: Jan 13 03:32:38 2026 GMT Not After : Jan 12 03:37:38 2027 GMT Subject: CN=094072CAFC6703168F27BC8B28880CBB3CD30CA0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:85:cc:1f:5a:8e:1e:05:1b:f5:83:a4:81:31:15: 77:29:3c:89:c3:b3:04:7f:9b:18:83:c6:fc:9a:d6: 62:c6:3c:67:3d:c8:4e:25:7a:94:be:0c:12:fe:bb: 45:3f:2b:52:1e:a6:52:72:34:40:b5:c9:79:18:24: 39:83:cd:89:6b:cb:eb:b6:f1:fb:44:7d:c5:3a:70: f4:d8:db:6f:e8:c8:c3:f1:89:1b:ca:a7:9e:ab:95: 6e:72:40:33:57:27:d0:3f:8a:cf:2c:48:b5:07:8e: d4:56:e0:6d:0b:ab:09:f1:bc:59:92:12:31:ae:c5: f6:45:79:c5:dd:ae:55:07:96:9c:04:da:70:04:c1: 81:66:a0:4e:56:0b:b8:e8:5a:f7:b8:45:0f:c9:b6: d1:1e:8b:b6:81:ca:a1:de:c6:47:62:96:b0:70:b1: f3:b9:8b:50:85:97:13:f4:af:62:14:05:f8:c0:59: 90:6f:73:7c:3c:21:49:4c:38:07:50:b6:c4:49:dd: 0c:07:dd:0c:a3:ea:d1:55:76:55:8f:70:e9:01:9f: 4f:5c:4a:a4:47:77:ff:5a:b9:20:a8:79:5e:3f:ab: df:cc:a8:71:5a:ad:94:97:4e:9f:cf:69:7b:5f:32: 2a:c9:f1:ca:e6:a8:af:64:b8:45:ff:36:0d:d1:de: e1:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:40:72:CA:FC:67:03:16:8F:27:BC:8B:28:88:0C:BB:3C:D3:0C:A0 X509v3 Authority Key Identifier: keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS137517.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.124.176.0/24 92.113.252.0/24 95.135.82.0/24 178.92.157.0/24 Signature Algorithm: sha256WithRSAEncryption 60:90:30:1d:2c:3c:a7:21:1f:5a:57:3b:9a:c3:34:61:0d:65: 7f:31:4f:1a:87:47:de:45:2d:bb:21:d2:86:5e:05:30:22:13: 53:e9:cf:b1:f7:a6:69:9f:59:cb:b7:87:c5:a0:8d:b7:b8:1b: 9b:00:92:bd:92:10:51:72:0a:3e:e1:87:a5:67:db:bf:8b:13: 71:fa:10:cf:49:cb:bd:89:e7:fc:e2:9c:ec:6d:8c:e0:0a:9c: 67:db:8c:24:3f:8c:ba:e5:cf:6f:a7:4c:22:99:d2:71:69:19: 7d:3f:cc:64:a4:f5:81:59:31:0a:da:38:19:49:bc:39:4d:9e: 66:3a:ab:4a:81:fe:5e:0d:08:98:58:d3:d6:32:aa:0c:94:09: 13:9d:c5:60:f5:f9:30:3b:69:c5:31:71:f4:e5:3c:78:2a:57: c4:3e:40:d8:28:c1:da:d7:eb:45:83:f6:e9:57:f8:84:5d:ac: 77:15:bb:a2:cd:48:6e:25:4f:f4:87:c2:4f:64:1b:3a:a1:b4: aa:35:0e:5b:ae:96:55:a5:46:32:44:69:9c:9f:73:f1:35:cd: 11:37:9d:b9:6e:fa:5e:a7:12:7b:61:cb:65:10:ba:05:de:71: a3:12:df:45:ac:68:e2:9f:89:86:02:c3:3c:e6:b1:44:e9:2b: 0c:44:22:e1 -----BEGIN CERTIFICATE----- MIIFEjCCA/qgAwIBAgIUD+AyC7rxYmneP0NpskVQFC0pdxowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOWJkODEzMzkxZTRhZjJhZTMxMDNjMTg5MWIyMjcyZDRk NWMxM2I1ZjAeFw0yNjAxMTMwMzMyMzhaFw0yNzAxMTIwMzM3MzhaMDMxMTAvBgNV BAMTKDA5NDA3MkNBRkM2NzAzMTY4RjI3QkM4QjI4ODgwQ0JCM0NEMzBDQTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCFzB9ajh4FG/WDpIExFXcpPInD swR/mxiDxvya1mLGPGc9yE4lepS+DBL+u0U/K1IeplJyNEC1yXkYJDmDzYlry+u2 8ftEfcU6cPTY22/oyMPxiRvKp56rlW5yQDNXJ9A/is8sSLUHjtRW4G0LqwnxvFmS EjGuxfZFecXdrlUHlpwE2nAEwYFmoE5WC7joWve4RQ/JttEei7aByqHexkdilrBw sfO5i1CFlxP0r2IUBfjAWZBvc3w8IUlMOAdQtsRJ3QwH3Qyj6tFVdlWPcOkBn09c SqRHd/9auSCoeV4/q9/MqHFarZSXTp/PaXtfMirJ8crmqK9kuEX/Ng3R3uHdAgMB AAGjggIcMIICGDAdBgNVHQ4EFgQUCUByyvxnAxaPJ7yLKIgMuzzTDKAwHwYDVR0j BBgwFoAUm9gTOR5K8q4xA8GJGyJy1NXBO18wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYzQ3OGY2ZjUtNDQ5YS00ODI3LTk5ZDUtYmY2YjkzYThm NmI0LzAvOUJEODEzMzkxRTRBRjJBRTMxMDNDMTg5MUIyMjcyRDRENUMxM0I1Ri5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL205Z1RPUjVLOHE0eEE4R0pHeUp5MU5Y Qk8xOC5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2M0NzhmNmY1LTQ0OWEt NDgyNy05OWQ1LWJmNmI5M2E4ZjZiNC8wL0FTMTM3NTE3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMDEGCCsGAQUFBwEHAQH/BCIwIDAeBAIAATAYAwQAW3yw AwQAXHH8AwQAX4dSAwQAslydMA0GCSqGSIb3DQEBCwUAA4IBAQBgkDAdLDynIR9a VzuawzRhDWV/MU8ah0feRS27IdKGXgUwIhNT6c+x96Zpn1nLt4fFoI23uBubAJK9 khBRcgo+4YelZ9u/ixNx+hDPScu9ief84pzsbYzgCpxn24wkP4y65c9vp0wimdJx aRl9P8xkpPWBWTEK2jgZSbw5TZ5mOqtKgf5eDQiYWNPWMqoMlAkTncVg9fkwO2nF MXH05Tx4KlfEPkDYKMHa1+tFg/bpV/iEXax3FbuizUhuJU/0h8JPZBs6obSqNQ5b rpZVpUYyRGmcn3PxNc0RN525bvpepxJ7YctlELoF3nGjEt9FrGjin4mGAsM85rFE 6SsMRCLh -----END CERTIFICATE-----Generated at Thu Jan 15 23:27:29 2026 by rpki-client