This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS401838.roa File: AS401838.roa (raw, json) Hash identifier: EuQjECzWjORJsmwwShg7RpPya51ZfUM37vmOygYmmco= Subject key identifier: F3:A1:21:1F:98:63:C2:5E:94:80:30:1E:28:F1:F2:DB:E7:EA:AE:23 Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f Certificate serial: 045A9873863C5DF66599F71B99C3EFC55A1E93EC Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS401838.roa Signing time: Sun 21 Dec 2025 00:05:10 +0000 ROA not before: Sun 21 Dec 2025 00:00:10 +0000 ROA not after: Sun 20 Dec 2026 00:05:10 +0000 asID: 401838 IP address blocks: 46.203.107.0/24 maxlen: 24 46.203.112.0/24 maxlen: 24 46.203.114.0/24 maxlen: 24 46.203.145.0/24 maxlen: 24 46.203.146.0/24 maxlen: 24 46.203.152.0/24 maxlen: 24 46.203.156.0/24 maxlen: 24 46.203.168.0/24 maxlen: 24 46.203.169.0/24 maxlen: 24 46.203.171.0/24 maxlen: 24 46.203.174.0/24 maxlen: 24 46.203.177.0/24 maxlen: 24 46.203.179.0/24 maxlen: 24 46.203.187.0/24 maxlen: 24 46.203.199.0/24 maxlen: 24 46.203.208.0/24 maxlen: 24 46.203.227.0/24 maxlen: 24 46.203.235.0/24 maxlen: 24 46.203.249.0/24 maxlen: 24 91.124.242.0/24 maxlen: 24 92.112.6.0/24 maxlen: 24 92.112.7.0/24 maxlen: 24 92.112.8.0/24 maxlen: 24 92.112.36.0/24 maxlen: 24 92.112.38.0/24 maxlen: 24 92.112.55.0/24 maxlen: 24 92.112.62.0/24 maxlen: 24 92.112.89.0/24 maxlen: 24 92.112.142.0/24 maxlen: 24 92.113.4.0/24 maxlen: 24 92.113.6.0/24 maxlen: 24 92.113.9.0/24 maxlen: 24 92.113.15.0/24 maxlen: 24 92.113.40.0/24 maxlen: 24 92.113.169.0/24 maxlen: 24 92.113.247.0/24 maxlen: 24 95.134.114.0/23 maxlen: 24 95.134.166.0/23 maxlen: 24 95.134.184.0/24 maxlen: 24 95.134.186.0/23 maxlen: 24 95.134.193.0/24 maxlen: 24 95.134.204.0/24 maxlen: 24 95.134.206.0/24 maxlen: 24 95.134.221.0/24 maxlen: 24 95.134.223.0/24 maxlen: 24 95.135.61.0/24 maxlen: 24 95.135.72.0/24 maxlen: 24 178.92.76.0/23 maxlen: 24 178.92.180.0/22 maxlen: 24 178.92.252.0/23 maxlen: 24 178.93.192.0/22 maxlen: 24 178.94.167.0/24 maxlen: 24 178.94.191.0/24 maxlen: 24 178.94.244.0/22 maxlen: 24 178.95.60.0/22 maxlen: 24 178.95.77.0/24 maxlen: 24 178.95.82.0/24 maxlen: 24 178.95.172.0/23 maxlen: 24 178.95.230.0/24 maxlen: 24 178.95.236.0/24 maxlen: 24 178.95.251.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 15:58:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:5a:98:73:86:3c:5d:f6:65:99:f7:1b:99:c3:ef:c5:5a:1e:93:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f Validity Not Before: Dec 21 00:00:10 2025 GMT Not After : Dec 20 00:05:10 2026 GMT Subject: CN=F3A1211F9863C25E9480301E28F1F2DBE7EAAE23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:35:27:36:55:e5:6b:a2:09:67:02:58:ac:a3: bc:66:ed:ec:b1:e5:69:1b:ea:32:37:c1:df:09:a1: f3:8d:5d:62:0c:fd:97:cc:ba:88:de:a9:e8:88:17: 9b:b5:40:24:0a:92:ac:e4:be:6a:76:7a:d9:3a:ed: e9:63:5a:c4:8e:86:6b:48:16:4d:19:1f:8e:48:bc: 9a:12:3a:c9:c4:2e:8d:04:98:73:37:00:11:67:32: b1:41:5c:b5:09:82:f0:45:a5:4e:6b:1c:92:0f:da: b0:f5:b7:9c:92:19:9a:c5:2e:10:de:98:c8:dc:ff: 83:89:b2:35:d6:d9:bd:9e:82:09:93:13:1c:c9:7d: 36:d2:be:10:dc:6c:88:54:7b:e2:ee:18:b8:99:5e: be:de:73:c1:ea:b0:18:b1:1c:b8:92:de:f8:08:8b: 78:fa:bb:a7:53:a5:33:04:af:8f:f9:33:15:b7:38: 27:8c:82:ef:01:cb:fd:37:c2:1f:b7:e9:f1:ac:e4: 7f:e5:20:b5:71:9a:6f:9e:a4:1b:70:48:39:67:4b: ba:2c:b0:4f:3a:2d:cb:d5:ba:2c:91:63:fa:6f:03: 04:aa:7a:49:ee:be:49:69:12:a0:fa:d1:7a:16:d4: 7c:3f:b4:73:00:6f:7f:18:88:7f:4b:ab:08:81:f7: b3:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:A1:21:1F:98:63:C2:5E:94:80:30:1E:28:F1:F2:DB:E7:EA:AE:23 X509v3 Authority Key Identifier: keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS401838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 46.203.107.0/24 46.203.112.0/24 46.203.114.0/24 46.203.145.0-46.203.146.255 46.203.152.0/24 46.203.156.0/24 46.203.168.0/23 46.203.171.0/24 46.203.174.0/24 46.203.177.0/24 46.203.179.0/24 46.203.187.0/24 46.203.199.0/24 46.203.208.0/24 46.203.227.0/24 46.203.235.0/24 46.203.249.0/24 91.124.242.0/24 92.112.6.0-92.112.8.255 92.112.36.0/24 92.112.38.0/24 92.112.55.0/24 92.112.62.0/24 92.112.89.0/24 92.112.142.0/24 92.113.4.0/24 92.113.6.0/24 92.113.9.0/24 92.113.15.0/24 92.113.40.0/24 92.113.169.0/24 92.113.247.0/24 95.134.114.0/23 95.134.166.0/23 95.134.184.0/24 95.134.186.0/23 95.134.193.0/24 95.134.204.0/24 95.134.206.0/24 95.134.221.0/24 95.134.223.0/24 95.135.61.0/24 95.135.72.0/24 178.92.76.0/23 178.92.180.0/22 178.92.252.0/23 178.93.192.0/22 178.94.167.0/24 178.94.191.0/24 178.94.244.0/22 178.95.60.0/22 178.95.77.0/24 178.95.82.0/24 178.95.172.0/23 178.95.230.0/24 178.95.236.0/24 178.95.251.0/24 Signature Algorithm: sha256WithRSAEncryption 0f:cb:c4:76:5a:95:42:3f:f3:a2:b5:c0:6c:1c:5c:8d:05:5d: 42:77:1b:69:ff:69:97:ce:da:a8:89:8f:fe:6e:f6:f5:b8:9e: c5:5d:eb:9d:84:95:09:49:53:23:8a:96:f1:79:aa:c0:85:4f: 84:80:be:18:48:92:f7:72:c3:20:ba:6d:ef:e3:d3:d7:e9:8b: be:94:d6:39:45:7b:2b:67:67:05:2d:fd:c8:46:69:a3:d1:51: 64:82:eb:9f:e0:f9:46:21:35:a6:97:da:88:fc:44:a3:34:b7: 65:16:4c:d4:5f:6d:3a:2c:e3:a1:e9:b6:32:f8:a8:bb:a0:16: 59:e9:7f:32:2f:ab:30:11:7c:22:a8:5c:00:fa:4b:f7:ea:52: 2d:d7:27:3c:82:9d:5c:ce:3a:af:a0:97:f4:7c:ba:4f:4a:0a: b2:1c:32:f9:12:65:de:2c:80:00:d6:18:6b:57:2c:79:fe:d2: f5:09:cb:f1:75:77:ea:fd:34:5b:a7:43:3e:a6:fa:c0:40:98: 28:42:7d:0b:3c:72:6a:8b:7d:82:18:40:1a:82:f1:11:e9:87: 0f:7a:16:a9:c0:d1:d8:ee:d4:46:ca:74:5b:99:29:87:b0:be: d8:f0:c1:86:11:b2:2b:e7:1a:eb:0a:e4:ec:17:6e:b1:34:ce: d4:2c:75:76 -----BEGIN CERTIFICATE----- MIIGajCCBVKgAwIBAgIUBFqYc4Y8XfZlmfcbmcPvxVoek+wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOWJkODEzMzkxZTRhZjJhZTMxMDNjMTg5MWIyMjcyZDRk NWMxM2I1ZjAeFw0yNTEyMjEwMDAwMTBaFw0yNjEyMjAwMDA1MTBaMDMxMTAvBgNV BAMTKEYzQTEyMTFGOTg2M0MyNUU5NDgwMzAxRTI4RjFGMkRCRTdFQUFFMjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvNSc2VeVroglnAliso7xm7eyx 5Wkb6jI3wd8JofONXWIM/ZfMuojeqeiIF5u1QCQKkqzkvmp2etk67eljWsSOhmtI Fk0ZH45IvJoSOsnELo0EmHM3ABFnMrFBXLUJgvBFpU5rHJIP2rD1t5ySGZrFLhDe mMjc/4OJsjXW2b2eggmTExzJfTbSvhDcbIhUe+LuGLiZXr7ec8HqsBixHLiS3vgI i3j6u6dTpTMEr4/5MxW3OCeMgu8By/03wh+36fGs5H/lILVxmm+epBtwSDlnS7os sE86LcvVuiyRY/pvAwSqeknuvklpEqD60XoW1Hw/tHMAb38YiH9LqwiB97NTAgMB AAGjggN0MIIDcDAdBgNVHQ4EFgQU86EhH5hjwl6UgDAeKPHy2+fqriMwHwYDVR0j BBgwFoAUm9gTOR5K8q4xA8GJGyJy1NXBO18wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYzQ3OGY2ZjUtNDQ5YS00ODI3LTk5ZDUtYmY2YjkzYThm NmI0LzAvOUJEODEzMzkxRTRBRjJBRTMxMDNDMTg5MUIyMjcyRDRENUMxM0I1Ri5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL205Z1RPUjVLOHE0eEE4R0pHeUp5MU5Y Qk8xOC5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2M0NzhmNmY1LTQ0OWEt NDgyNy05OWQ1LWJmNmI5M2E4ZjZiNC8wL0FTNDAxODM4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMIIBhwYIKwYBBQUHAQcBAf8EggF2MIIBcjCCAW4EAgAB MIIBZgMEAC7LawMEAC7LcAMEAC7LcjAMAwQALsuRAwQALsuSAwQALsuYAwQALsuc AwQBLsuoAwQALsurAwQALsuuAwQALsuxAwQALsuzAwQALsu7AwQALsvHAwQALsvQ AwQALsvjAwQALsvrAwQALsv5AwQAW3zyMAwDBAFccAYDBABccAgDBABccCQDBABc cCYDBABccDcDBABccD4DBABccFkDBABccI4DBABccQQDBABccQYDBABccQkDBABc cQ8DBABccSgDBABccakDBABccfcDBAFfhnIDBAFfhqYDBABfhrgDBAFfhroDBABf hsEDBABfhswDBABfhs4DBABfht0DBABfht8DBABfhz0DBABfh0gDBAGyXEwDBAKy XLQDBAGyXPwDBAKyXcADBACyXqcDBACyXr8DBAKyXvQDBAKyXzwDBACyX00DBACy X1IDBAGyX6wDBACyX+YDBACyX+wDBACyX/swDQYJKoZIhvcNAQELBQADggEBAA/L xHZalUI/86K1wGwcXI0FXUJ3G2n/aZfO2qiJj/5u9vW4nsVd652ElQlJUyOKlvF5 qsCFT4SAvhhIkvdywyC6be/j09fpi76U1jlFeytnZwUt/chGaaPRUWSC65/g+UYh NaaX2oj8RKM0t2UWTNRfbTos46HptjL4qLugFlnpfzIvqzARfCKoXAD6S/fqUi3X JzyCnVzOOq+gl/R8uk9KCrIcMvkSZd4sgADWGGtXLHn+0vUJy/F1d+r9NFunQz6m +sBAmChCfQs8cmqLfYIYQBqC8RHphw96FqnA0dju1EbKdFuZKYewvtjwwYYRsivn GusK5OwXbrE0ztQsdXY= -----END CERTIFICATE-----Generated at Sat Dec 27 01:41:59 2025 by rpki-client