This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS6849.roa File: AS6849.roa (raw, json) Hash identifier: cJYB+hmnUgXhwb5k/EkuquVaj2CKIuIwH7YUavk/dGg= Subject key identifier: 02:24:14:1A:54:6C:B1:B4:0F:37:80:71:3E:D1:B9:EF:7D:FE:9A:D1 Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f Certificate serial: 3ED0CF375A077C89AA5D556B9F042A27BD25D6C5 Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS6849.roa Signing time: Thu 29 Jan 2026 09:06:25 +0000 ROA not before: Thu 29 Jan 2026 09:01:25 +0000 ROA not after: Thu 28 Jan 2027 09:06:25 +0000 asID: 6849 IP address blocks: 37.52.0.0/21 maxlen: 21 37.52.0.0/24 maxlen: 24 37.52.1.0/24 maxlen: 24 37.52.2.0/24 maxlen: 24 37.52.3.0/24 maxlen: 24 37.52.4.0/24 maxlen: 24 37.52.16.0/20 maxlen: 20 37.52.32.0/21 maxlen: 21 37.52.32.0/24 maxlen: 24 37.52.33.0/24 maxlen: 24 37.52.34.0/24 maxlen: 24 37.52.35.0/24 maxlen: 24 37.52.36.0/24 maxlen: 24 37.52.37.0/24 maxlen: 24 37.52.38.0/24 maxlen: 24 37.52.39.0/24 maxlen: 24 37.52.40.0/21 maxlen: 21 37.52.56.0/21 maxlen: 21 37.52.64.0/21 maxlen: 24 37.52.64.0/24 maxlen: 24 37.52.65.0/24 maxlen: 24 37.52.66.0/24 maxlen: 24 37.52.67.0/24 maxlen: 24 37.52.68.0/24 maxlen: 24 37.52.69.0/24 maxlen: 24 37.52.70.0/24 maxlen: 24 37.52.71.0/24 maxlen: 24 37.52.72.0/21 maxlen: 21 37.52.72.0/24 maxlen: 24 37.52.73.0/24 maxlen: 24 37.52.74.0/24 maxlen: 24 37.52.75.0/24 maxlen: 24 37.52.76.0/24 maxlen: 24 37.52.77.0/24 maxlen: 24 37.52.78.0/24 maxlen: 24 37.52.79.0/24 maxlen: 24 37.52.80.0/21 maxlen: 21 37.52.80.0/24 maxlen: 24 37.52.81.0/24 maxlen: 24 37.52.82.0/24 maxlen: 24 37.52.83.0/24 maxlen: 24 37.52.84.0/24 maxlen: 24 37.52.85.0/24 maxlen: 24 37.52.86.0/24 maxlen: 24 37.52.87.0/24 maxlen: 24 37.52.88.0/24 maxlen: 24 37.52.89.0/24 maxlen: 24 37.52.90.0/24 maxlen: 24 37.52.91.0/24 maxlen: 24 37.52.92.0/24 maxlen: 24 37.52.93.0/24 maxlen: 24 37.52.94.0/24 maxlen: 24 37.52.95.0/24 maxlen: 24 37.52.96.0/21 maxlen: 21 37.52.96.0/24 maxlen: 24 37.52.97.0/24 maxlen: 24 37.52.98.0/24 maxlen: 24 37.52.99.0/24 maxlen: 24 37.52.100.0/24 maxlen: 24 37.52.101.0/24 maxlen: 24 37.52.102.0/24 maxlen: 24 37.52.103.0/24 maxlen: 24 37.52.104.0/24 maxlen: 24 37.52.105.0/24 maxlen: 24 37.52.106.0/24 maxlen: 24 37.52.107.0/24 maxlen: 24 37.52.108.0/24 maxlen: 24 37.52.109.0/24 maxlen: 24 37.52.110.0/24 maxlen: 24 37.52.111.0/24 maxlen: 24 37.52.112.0/22 maxlen: 22 37.52.116.0/23 maxlen: 23 37.52.118.0/23 maxlen: 23 37.52.128.0/21 maxlen: 21 37.52.134.0/24 maxlen: 24 37.52.136.0/21 maxlen: 21 37.52.144.0/21 maxlen: 21 37.52.144.0/24 maxlen: 24 37.52.145.0/24 maxlen: 24 37.52.146.0/24 maxlen: 24 37.52.147.0/24 maxlen: 24 37.52.148.0/24 maxlen: 24 37.52.149.0/24 maxlen: 24 178.94.192.0/20 maxlen: 24 178.95.212.0/22 maxlen: 24 178.95.216.0/22 maxlen: 24 178.95.220.0/22 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 11 Feb 2026 00:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:d0:cf:37:5a:07:7c:89:aa:5d:55:6b:9f:04:2a:27:bd:25:d6:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f Validity Not Before: Jan 29 09:01:25 2026 GMT Not After : Jan 28 09:06:25 2027 GMT Subject: CN=0224141A546CB1B40F3780713ED1B9EF7DFE9AD1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:3f:aa:33:85:56:6e:a8:ad:fa:96:5a:9b:1d: 06:56:8c:79:a8:f0:63:7c:b3:11:60:2c:60:4b:59: a2:34:1e:05:f5:25:4f:aa:29:1e:29:fa:b3:6f:f9: 94:fd:91:3b:aa:7b:1a:3b:c5:9e:61:14:71:b7:27: 72:3e:eb:44:76:39:ee:db:c1:e6:80:c3:1d:84:58: 71:b1:e9:e4:8f:8d:89:57:8c:74:65:ad:11:e3:95: 29:24:e9:2e:3d:40:fb:d7:6f:cc:c6:3c:69:e7:3d: 48:ef:89:5e:87:81:a5:67:d7:57:e4:74:4f:99:86: 81:38:23:e5:32:2f:d2:52:50:c9:15:3f:ac:fa:6c: 46:8a:10:e6:d4:e8:e5:57:ea:1c:bf:3d:3d:19:4c: ac:d2:a8:98:22:90:95:90:63:84:1e:56:0f:69:14: 20:26:5e:24:fe:60:8e:03:85:41:be:88:25:d5:b7: 93:72:99:a1:06:b4:b2:43:41:4e:a9:2c:9c:87:f5: 7e:76:60:b3:fd:e0:82:bc:70:ba:98:38:05:8c:17: ed:15:c9:ed:d1:7e:49:91:3e:d9:3e:3f:14:3c:65: a4:40:4f:d6:35:0b:1a:1f:f5:0d:67:16:a3:5a:6e: bc:0f:c6:44:d8:5c:c5:f7:8a:bb:c6:e7:8d:ab:80: 5f:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:24:14:1A:54:6C:B1:B4:0F:37:80:71:3E:D1:B9:EF:7D:FE:9A:D1 X509v3 Authority Key Identifier: keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS6849.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.52.0.0/21 37.52.16.0-37.52.47.255 37.52.56.0-37.52.119.255 37.52.128.0-37.52.151.255 178.94.192.0/20 178.95.212.0-178.95.223.255 Signature Algorithm: sha256WithRSAEncryption 70:53:0c:b9:e3:de:16:3a:a0:2e:bd:14:b1:b8:ab:d1:99:f1: e8:e1:4a:30:c6:60:42:50:7e:48:2c:69:d2:11:55:ef:81:59: d7:ad:7f:82:4f:db:e1:6a:69:3d:2a:e5:ec:9d:ee:b7:b2:fa: 36:75:e6:b8:7f:da:83:26:43:95:0a:13:64:8e:f9:71:52:2b: 29:cd:90:7a:15:13:be:a3:7a:91:29:6c:67:d2:f5:c1:33:05: a8:18:3f:5e:ec:64:5a:73:24:df:0c:0c:02:fe:bd:b3:db:0e: d2:f1:2d:57:0a:5c:96:f3:39:3d:bf:b0:e3:da:91:70:43:25: fc:63:fc:e5:94:6b:76:a4:70:ab:3d:4f:e5:1c:f5:ad:ca:c6: f8:73:04:a4:04:88:7a:f9:9d:d4:88:7c:71:5f:4b:b9:3d:18: c3:d7:d8:0b:14:02:86:26:cc:2c:40:3b:c3:1f:ba:61:0a:20: 42:55:aa:8d:cc:a1:2a:dd:33:8e:03:e9:05:98:39:e5:e1:4a: 5a:e1:aa:fa:79:42:15:b7:0a:d0:ca:49:7d:56:b0:14:eb:0e: fc:bd:e6:7d:32:c8:d7:a3:25:d8:38:df:73:62:c5:ea:6f:f2: b0:16:b9:36:d2:fe:ec:3b:c3:a2:27:7d:63:9a:83:da:fc:b3: a8:88:2a:9e -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgIUPtDPN1oHfImqXVVrnwQqJ70l1sUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOWJkODEzMzkxZTRhZjJhZTMxMDNjMTg5MWIyMjcyZDRk NWMxM2I1ZjAeFw0yNjAxMjkwOTAxMjVaFw0yNzAxMjgwOTA2MjVaMDMxMTAvBgNV BAMTKDAyMjQxNDFBNTQ2Q0IxQjQwRjM3ODA3MTNFRDFCOUVGN0RGRTlBRDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLP6ozhVZuqK36llqbHQZWjHmo 8GN8sxFgLGBLWaI0HgX1JU+qKR4p+rNv+ZT9kTuqexo7xZ5hFHG3J3I+60R2Oe7b weaAwx2EWHGx6eSPjYlXjHRlrRHjlSkk6S49QPvXb8zGPGnnPUjviV6HgaVn11fk dE+ZhoE4I+UyL9JSUMkVP6z6bEaKEObU6OVX6hy/PT0ZTKzSqJgikJWQY4QeVg9p FCAmXiT+YI4DhUG+iCXVt5NymaEGtLJDQU6pLJyH9X52YLP94IK8cLqYOAWMF+0V ye3RfkmRPtk+PxQ8ZaRAT9Y1Cxof9Q1nFqNabrwPxkTYXMX3irvG542rgF/zAgMB AAGjggJGMIICQjAdBgNVHQ4EFgQUAiQUGlRssbQPN4BxPtG5733+mtEwHwYDVR0j BBgwFoAUm9gTOR5K8q4xA8GJGyJy1NXBO18wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYzQ3OGY2ZjUtNDQ5YS00ODI3LTk5ZDUtYmY2YjkzYThm NmI0LzAvOUJEODEzMzkxRTRBRjJBRTMxMDNDMTg5MUIyMjcyRDRENUMxM0I1Ri5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL205Z1RPUjVLOHE0eEE4R0pHeUp5MU5Y Qk8xOC5jZXIweQYIKwYBBQUHAQsEbTBrMGkGCCsGAQUFBzALhl1yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2M0NzhmNmY1LTQ0OWEt NDgyNy05OWQ1LWJmNmI5M2E4ZjZiNC8wL0FTNjg0OS5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjBdBggrBgEFBQcBBwEB/wROMEwwSgQCAAEwRAMEAyU0ADAM AwQEJTQQAwQEJTQgMAwDBAMlNDgDBAMlNHAwDAMEByU0gAMEAyU0kAMEBLJewDAM AwQCsl/UAwQFsl/AMA0GCSqGSIb3DQEBCwUAA4IBAQBwUwy5494WOqAuvRSxuKvR mfHo4UowxmBCUH5ILGnSEVXvgVnXrX+CT9vhamk9KuXsne63svo2dea4f9qDJkOV ChNkjvlxUispzZB6FRO+o3qRKWxn0vXBMwWoGD9e7GRacyTfDAwC/r2z2w7S8S1X ClyW8zk9v7Dj2pFwQyX8Y/zllGt2pHCrPU/lHPWtysb4cwSkBIh6+Z3UiHxxX0u5 PRjD19gLFAKGJswsQDvDH7phCiBCVaqNzKEq3TOOA+kFmDnl4Upa4ar6eUIVtwrQ ykl9VrAU6w78veZ9MsjXoyXYON9zYsXqb/KwFrk20v7sO8OiJ31jmoPa/LOoiCqe -----END CERTIFICATE-----Generated at Tue Feb 10 10:54:47 2026 by rpki-client