This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS216145.roa File: AS216145.roa (raw, json) Hash identifier: fGvvajXLA2XZQij1ZTM+KcKDobxVec9zvbBs0pfMWQ4= Subject key identifier: DE:40:7F:F9:E6:C4:93:AF:FB:7C:99:48:FF:A3:E9:64:B5:85:6D:A0 Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f Certificate serial: 09FBD3964E7CC7D8A0F4E5585FD86D339AEA0FAB Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS216145.roa Signing time: Wed 05 Nov 2025 16:47:26 +0000 ROA not before: Wed 05 Nov 2025 16:42:26 +0000 ROA not after: Wed 04 Nov 2026 16:47:26 +0000 asID: 216145 IP address blocks: 46.203.75.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 02 Dec 2025 00:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:fb:d3:96:4e:7c:c7:d8:a0:f4:e5:58:5f:d8:6d:33:9a:ea:0f:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f Validity Not Before: Nov 5 16:42:26 2025 GMT Not After : Nov 4 16:47:26 2026 GMT Subject: CN=DE407FF9E6C493AFFB7C9948FFA3E964B5856DA0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:a2:3b:c5:ec:f9:b9:d0:da:15:5b:ca:4b:15: 22:41:7e:a0:d1:68:fd:f8:3b:9a:c0:60:34:3a:0b: 98:47:3a:54:93:0e:29:d0:77:46:27:bb:f9:52:c5: 21:17:77:d2:50:63:4b:52:45:c7:5a:14:a0:1f:b2: 9b:9c:86:38:e2:6d:23:1c:7e:ff:cb:5b:6f:e2:11: d8:e8:ec:eb:0e:a1:82:42:9b:03:6b:b8:59:f7:8a: 9b:ad:44:f0:fb:2a:83:d4:53:15:1f:2f:a3:2f:66: c9:25:53:55:01:dc:c7:2a:66:92:d6:1f:05:ba:c0: 90:5c:b3:f7:fa:60:e1:93:24:cd:a0:38:b2:46:e3: ae:29:50:3f:32:1f:7e:28:21:67:10:c7:4c:8c:89: 05:6d:91:b6:08:60:8f:cb:59:32:79:3e:c7:e4:7d: dd:ab:00:07:1b:2d:ce:a2:d8:9e:52:d8:b9:c2:1f: bc:f3:d2:c3:39:e5:46:b9:b3:62:a0:c6:93:6c:ae: 1b:e7:02:35:e1:f8:44:73:df:8c:68:31:ef:5c:1c: 2f:34:2c:b3:48:30:e8:f7:0c:17:fb:06:f0:86:e9: f9:19:59:0d:36:54:6b:a8:c0:ff:28:94:e3:04:bf: d1:03:05:76:e7:d2:3d:a6:a9:b1:c7:b0:21:eb:fa: 50:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:40:7F:F9:E6:C4:93:AF:FB:7C:99:48:FF:A3:E9:64:B5:85:6D:A0 X509v3 Authority Key Identifier: keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS216145.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 46.203.75.0/24 Signature Algorithm: sha256WithRSAEncryption 74:09:f4:ce:53:17:6f:21:50:88:a1:97:09:74:52:74:80:78: fe:1e:67:1d:4d:3e:b2:df:93:af:36:b3:e7:80:b5:c7:37:e7: b3:2f:e7:ea:8c:a5:91:7c:19:53:34:4e:48:fa:46:90:36:1e: 52:38:3e:38:3c:d7:2d:13:48:c7:5d:85:15:3d:12:f5:26:52: 98:91:6a:4e:37:0f:48:dd:78:23:7d:83:15:65:92:41:68:fc: d2:4f:a7:7e:60:5b:e3:00:2e:23:86:bf:13:fa:a5:4e:30:6f: c6:64:19:e0:1e:ce:53:26:a4:ff:d9:5a:e3:7c:8b:62:76:fb: 9e:98:49:a3:b4:f7:df:04:93:b4:56:47:44:a2:05:c3:a5:00: fe:e1:ba:bc:1d:26:12:e4:f4:b9:91:ab:f9:25:72:53:20:44: fb:73:0d:3f:4e:ed:2f:25:b3:e5:b3:75:6e:ac:10:f4:c9:87: ed:ae:51:7f:85:0f:30:1d:81:58:b1:0f:21:d0:3c:b7:82:00: 89:e4:8b:05:9c:c0:f6:a3:4c:62:a9:4b:76:9b:53:d7:da:9d: 99:42:6a:2a:e1:e1:26:79:d2:79:ae:60:f3:fb:bb:24:f1:2d: 68:8c:c9:35:22:9c:98:13:dd:80:05:b0:10:ba:80:fd:4c:e0: 3a:c3:09:29 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgIUCfvTlk58x9ig9OVYX9htM5rqD6swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOWJkODEzMzkxZTRhZjJhZTMxMDNjMTg5MWIyMjcyZDRk NWMxM2I1ZjAeFw0yNTExMDUxNjQyMjZaFw0yNjExMDQxNjQ3MjZaMDMxMTAvBgNV BAMTKERFNDA3RkY5RTZDNDkzQUZGQjdDOTk0OEZGQTNFOTY0QjU4NTZEQTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCVojvF7Pm50NoVW8pLFSJBfqDR aP34O5rAYDQ6C5hHOlSTDinQd0Ynu/lSxSEXd9JQY0tSRcdaFKAfspuchjjibSMc fv/LW2/iEdjo7OsOoYJCmwNruFn3iputRPD7KoPUUxUfL6MvZsklU1UB3McqZpLW HwW6wJBcs/f6YOGTJM2gOLJG464pUD8yH34oIWcQx0yMiQVtkbYIYI/LWTJ5Psfk fd2rAAcbLc6i2J5S2LnCH7zz0sM55Ua5s2KgxpNsrhvnAjXh+ERz34xoMe9cHC80 LLNIMOj3DBf7BvCG6fkZWQ02VGuowP8olOMEv9EDBXbn0j2mqbHHsCHr+lC7AgMB AAGjggIKMIICBjAdBgNVHQ4EFgQU3kB/+ebEk6/7fJlI/6PpZLWFbaAwHwYDVR0j BBgwFoAUm9gTOR5K8q4xA8GJGyJy1NXBO18wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYzQ3OGY2ZjUtNDQ5YS00ODI3LTk5ZDUtYmY2YjkzYThm NmI0LzAvOUJEODEzMzkxRTRBRjJBRTMxMDNDMTg5MUIyMjcyRDRENUMxM0I1Ri5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL205Z1RPUjVLOHE0eEE4R0pHeUp5MU5Y Qk8xOC5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2M0NzhmNmY1LTQ0OWEt NDgyNy05OWQ1LWJmNmI5M2E4ZjZiNC8wL0FTMjE2MTQ1LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALstL MA0GCSqGSIb3DQEBCwUAA4IBAQB0CfTOUxdvIVCIoZcJdFJ0gHj+HmcdTT6y35Ov NrPngLXHN+ezL+fqjKWRfBlTNE5I+kaQNh5SOD44PNctE0jHXYUVPRL1JlKYkWpO Nw9I3XgjfYMVZZJBaPzST6d+YFvjAC4jhr8T+qVOMG/GZBngHs5TJqT/2VrjfIti dvuemEmjtPffBJO0VkdEogXDpQD+4bq8HSYS5PS5kav5JXJTIET7cw0/Tu0vJbPl s3VurBD0yYftrlF/hQ8wHYFYsQ8h0Dy3ggCJ5IsFnMD2o0xiqUt2m1PX2p2ZQmoq 4eEmedJ5rmDz+7sk8S1ojMk1IpyYE92ABbAQuoD9TOA6wwkp -----END CERTIFICATE-----Generated at Mon Dec 1 07:53:27 2025 by rpki-client