This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS215304.roa File: AS215304.roa (raw, json) Hash identifier: nb+N4x54gOyV/PVyeleR4sEa+i8XZqHMUnVG509R2ps= Subject key identifier: FE:CF:E4:8E:B7:82:B4:27:BC:CC:F6:BF:C1:74:0C:7C:15:E1:7C:5A Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f Certificate serial: 75FF23A6E67AB9860BD2D5308F308A200B798D3B Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS215304.roa Signing time: Fri 02 Jan 2026 00:18:19 +0000 ROA not before: Fri 02 Jan 2026 00:13:19 +0000 ROA not after: Fri 01 Jan 2027 00:18:19 +0000 asID: 215304 IP address blocks: 46.203.98.0/24 maxlen: 24 46.203.203.0/24 maxlen: 24 92.113.112.0/23 maxlen: 24 92.113.124.0/23 maxlen: 24 92.113.142.0/23 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 11 Feb 2026 08:46:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:ff:23:a6:e6:7a:b9:86:0b:d2:d5:30:8f:30:8a:20:0b:79:8d:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f Validity Not Before: Jan 2 00:13:19 2026 GMT Not After : Jan 1 00:18:19 2027 GMT Subject: CN=FECFE48EB782B427BCCCF6BFC1740C7C15E17C5A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:ff:a2:8b:cf:6e:6c:63:9a:79:3c:1b:dc:89: 4b:fa:25:5c:6d:40:74:8e:11:8b:14:ae:3d:87:bf: 86:c8:c6:d3:40:27:e3:2b:48:27:1f:cb:50:21:20: c4:c4:26:3d:07:c7:fd:fe:26:82:e5:ba:ae:f9:3f: 99:57:8e:88:25:0e:e8:a7:5b:64:ae:c8:5b:fc:d0: 17:0a:d4:40:c4:56:39:59:98:df:73:ed:2f:a6:19: cd:79:7e:d3:ea:e6:f7:12:3e:61:08:57:f5:e0:62: 59:30:76:db:a6:b4:d3:3d:b9:98:37:10:33:5b:eb: 96:54:0e:d0:98:49:ef:52:59:d6:7f:ca:5f:d2:7e: 46:04:16:17:b3:80:e3:03:9f:24:86:c2:3f:6d:80: 92:53:03:cf:18:95:0c:cf:13:bb:2c:e3:2c:8a:9b: a2:03:8e:29:ae:ee:9a:40:07:32:6c:8d:47:eb:5f: ce:c9:d2:85:86:2c:cb:9f:df:13:87:56:10:55:71: 4f:0b:0b:4c:1f:3c:d8:07:86:8c:be:15:05:54:01: e7:aa:ce:ba:98:1e:71:7e:95:9d:84:a8:c7:05:a1: 4e:34:be:c6:f5:01:c7:e3:ea:67:cc:51:96:94:66: 58:93:a1:bc:bd:42:64:ad:9f:c4:70:fe:79:29:16: b9:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:CF:E4:8E:B7:82:B4:27:BC:CC:F6:BF:C1:74:0C:7C:15:E1:7C:5A X509v3 Authority Key Identifier: keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS215304.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 46.203.98.0/24 46.203.203.0/24 92.113.112.0/23 92.113.124.0/23 92.113.142.0/23 Signature Algorithm: sha256WithRSAEncryption 36:28:3d:02:98:c9:50:62:48:2f:c2:df:78:44:4b:90:fb:e0: 02:29:f9:1b:b4:95:a2:64:ed:6d:5e:21:ec:3b:bc:2c:03:66: 93:44:6d:82:c4:71:16:cd:1d:a9:bc:22:31:84:e5:1f:a5:a8: 84:32:ca:29:91:5b:18:bb:80:d9:50:ad:87:1f:52:7f:bf:1d: 89:c2:c0:73:55:48:1e:12:e3:25:a7:4e:23:0f:0f:ab:91:58: 6f:8f:19:7f:4b:34:4d:83:af:28:cf:26:4f:75:6d:ca:9d:59: a3:f4:be:a9:5f:1d:ea:a4:b0:cb:e4:dd:63:77:56:4e:2b:fd: d9:29:92:15:dc:56:52:87:69:18:f1:8c:4c:27:47:ff:d4:ca: 6d:e3:4a:e6:7a:3f:ee:59:a3:69:d9:e0:ce:38:0b:de:99:fc: 12:0d:1a:55:a2:9a:48:93:99:06:8a:ec:1b:cc:b6:83:df:d4: c0:7d:c4:1e:85:1c:97:14:63:bf:6e:62:10:a0:b4:50:61:55: ef:ed:7f:9c:ae:53:44:ba:74:5e:53:7c:af:ae:de:ff:3f:3e: be:e4:14:df:4a:70:ea:58:d8:9a:f8:de:3e:51:46:ca:61:57: 26:bb:cb:70:88:35:a7:84:b3:c3:e2:1f:06:eb:0a:e5:0f:36: 42:17:29:56 -----BEGIN CERTIFICATE----- MIIFGDCCBACgAwIBAgIUdf8jpuZ6uYYL0tUwjzCKIAt5jTswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOWJkODEzMzkxZTRhZjJhZTMxMDNjMTg5MWIyMjcyZDRk NWMxM2I1ZjAeFw0yNjAxMDIwMDEzMTlaFw0yNzAxMDEwMDE4MTlaMDMxMTAvBgNV BAMTKEZFQ0ZFNDhFQjc4MkI0MjdCQ0NDRjZCRkMxNzQwQzdDMTVFMTdDNUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDE/6KLz25sY5p5PBvciUv6JVxt QHSOEYsUrj2Hv4bIxtNAJ+MrSCcfy1AhIMTEJj0Hx/3+JoLluq75P5lXjoglDuin W2SuyFv80BcK1EDEVjlZmN9z7S+mGc15ftPq5vcSPmEIV/XgYlkwdtumtNM9uZg3 EDNb65ZUDtCYSe9SWdZ/yl/SfkYEFhezgOMDnySGwj9tgJJTA88YlQzPE7ss4yyK m6IDjimu7ppABzJsjUfrX87J0oWGLMuf3xOHVhBVcU8LC0wfPNgHhoy+FQVUAeeq zrqYHnF+lZ2EqMcFoU40vsb1Acfj6mfMUZaUZliToby9QmStn8Rw/nkpFrk9AgMB AAGjggIiMIICHjAdBgNVHQ4EFgQU/s/kjreCtCe8zPa/wXQMfBXhfFowHwYDVR0j BBgwFoAUm9gTOR5K8q4xA8GJGyJy1NXBO18wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYzQ3OGY2ZjUtNDQ5YS00ODI3LTk5ZDUtYmY2YjkzYThm NmI0LzAvOUJEODEzMzkxRTRBRjJBRTMxMDNDMTg5MUIyMjcyRDRENUMxM0I1Ri5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL205Z1RPUjVLOHE0eEE4R0pHeUp5MU5Y Qk8xOC5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2M0NzhmNmY1LTQ0OWEt NDgyNy05OWQ1LWJmNmI5M2E4ZjZiNC8wL0FTMjE1MzA0LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMDcGCCsGAQUFBwEHAQH/BCgwJjAkBAIAATAeAwQALsti AwQALsvLAwQBXHFwAwQBXHF8AwQBXHGOMA0GCSqGSIb3DQEBCwUAA4IBAQA2KD0C mMlQYkgvwt94REuQ++ACKfkbtJWiZO1tXiHsO7wsA2aTRG2CxHEWzR2pvCIxhOUf paiEMsopkVsYu4DZUK2HH1J/vx2JwsBzVUgeEuMlp04jDw+rkVhvjxl/SzRNg68o zyZPdW3KnVmj9L6pXx3qpLDL5N1jd1ZOK/3ZKZIV3FZSh2kY8YxMJ0f/1Mpt40rm ej/uWaNp2eDOOAvemfwSDRpVoppIk5kGiuwbzLaD39TAfcQehRyXFGO/bmIQoLRQ YVXv7X+crlNEunReU3yvrt7/Pz6+5BTfSnDqWNia+N4+UUbKYVcmu8twiDWnhLPD 4h8G6wrlDzZCFylW -----END CERTIFICATE-----Generated at Tue Feb 10 10:56:35 2026 by rpki-client