This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS996.roa File: AS996.roa (raw, json) Hash identifier: +lRv5hMDHjoEtOWcJOMxAiS+rEZkZNX2H3neFN6mhRw= Subject key identifier: 4B:20:FA:29:B5:40:B7:6B:29:9B:3E:CA:63:12:73:81:BF:F8:4A:85 Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f Certificate serial: 39FA33771DADBEF1B56880CBD30A93E145119866 Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS996.roa Signing time: Tue 25 Nov 2025 04:13:35 +0000 ROA not before: Tue 25 Nov 2025 04:08:35 +0000 ROA not after: Tue 24 Nov 2026 04:13:35 +0000 asID: 996 IP address blocks: 46.203.107.0/24 maxlen: 24 46.203.114.0/24 maxlen: 24 46.203.145.0/24 maxlen: 24 46.203.146.0/24 maxlen: 24 46.203.168.0/24 maxlen: 24 46.203.169.0/24 maxlen: 24 46.203.171.0/24 maxlen: 24 46.203.174.0/24 maxlen: 24 46.203.177.0/24 maxlen: 24 46.203.179.0/24 maxlen: 24 92.112.6.0/24 maxlen: 24 92.112.7.0/24 maxlen: 24 92.112.8.0/24 maxlen: 24 92.112.36.0/24 maxlen: 24 92.112.38.0/24 maxlen: 24 92.112.55.0/24 maxlen: 24 92.112.89.0/24 maxlen: 24 92.112.142.0/24 maxlen: 24 92.113.15.0/24 maxlen: 24 92.113.40.0/24 maxlen: 24 92.113.56.0/24 maxlen: 24 92.113.57.0/24 maxlen: 24 92.113.58.0/24 maxlen: 24 92.113.59.0/24 maxlen: 24 92.113.169.0/24 maxlen: 24 92.113.247.0/24 maxlen: 24 95.134.184.0/24 maxlen: 24 95.134.206.0/24 maxlen: 24 95.134.221.0/24 maxlen: 24 95.134.223.0/24 maxlen: 24 95.135.72.0/24 maxlen: 24 178.92.44.0/24 maxlen: 24 178.92.80.0/24 maxlen: 24 178.92.82.0/24 maxlen: 24 178.93.117.0/24 maxlen: 24 178.93.121.0/24 maxlen: 24 178.94.168.0/24 maxlen: 24 178.94.175.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 11:00:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:fa:33:77:1d:ad:be:f1:b5:68:80:cb:d3:0a:93:e1:45:11:98:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f Validity Not Before: Nov 25 04:08:35 2025 GMT Not After : Nov 24 04:13:35 2026 GMT Subject: CN=4B20FA29B540B76B299B3ECA63127381BFF84A85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:2b:24:b5:ab:8a:cd:d9:69:bd:e0:a7:50:5a: 8b:16:08:8c:8a:56:ba:44:a7:ec:30:14:4f:d4:cc: 75:d7:38:e7:59:7e:e9:5d:e8:56:4e:09:6f:3b:69: 0e:53:ff:7b:be:2b:b7:9c:55:b0:f4:31:9f:6c:21: a2:21:3c:4b:0a:75:4b:94:9c:88:ca:ee:33:fc:52: e1:eb:92:2f:85:a1:30:1d:0e:0a:23:14:36:06:bf: 48:ef:d1:7b:ab:fb:72:e7:83:51:9c:cf:d2:92:d9: 43:41:26:87:29:ee:38:d3:f9:d8:9e:65:b0:42:28: b9:89:f6:ee:ae:4f:09:af:33:ba:ac:36:0d:da:5a: 4e:85:91:35:d2:39:ba:83:07:63:3a:82:d7:3b:ac: 5f:0c:5c:2e:36:12:d6:1a:bb:a1:fc:26:d6:c7:34: 1d:b6:ed:48:65:dd:39:f7:65:d5:30:73:97:3c:3c: 63:0d:b0:18:c7:eb:3f:7c:35:ce:c0:5f:4f:7a:fa: 48:a3:ae:42:32:30:8d:68:3e:51:b7:5d:f7:87:a0: 6d:7d:e9:46:ee:92:a9:5a:b3:5f:93:e6:14:1a:5a: 0a:55:dc:d5:a3:23:b1:f3:a0:4e:bb:f3:65:d1:c4: 2a:06:d4:8e:f4:92:ed:c2:28:dc:b5:84:38:1c:c4: c9:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:20:FA:29:B5:40:B7:6B:29:9B:3E:CA:63:12:73:81:BF:F8:4A:85 X509v3 Authority Key Identifier: keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS996.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 46.203.107.0/24 46.203.114.0/24 46.203.145.0-46.203.146.255 46.203.168.0/23 46.203.171.0/24 46.203.174.0/24 46.203.177.0/24 46.203.179.0/24 92.112.6.0-92.112.8.255 92.112.36.0/24 92.112.38.0/24 92.112.55.0/24 92.112.89.0/24 92.112.142.0/24 92.113.15.0/24 92.113.40.0/24 92.113.56.0/22 92.113.169.0/24 92.113.247.0/24 95.134.184.0/24 95.134.206.0/24 95.134.221.0/24 95.134.223.0/24 95.135.72.0/24 178.92.44.0/24 178.92.80.0/24 178.92.82.0/24 178.93.117.0/24 178.93.121.0/24 178.94.168.0/24 178.94.175.0/24 Signature Algorithm: sha256WithRSAEncryption 0d:41:be:75:76:a2:87:72:3c:7b:17:be:15:b8:38:fd:24:f6: 28:49:ce:96:6c:98:76:f7:16:0b:39:81:21:78:b2:d6:d7:a7: 17:41:f5:9a:50:1a:33:4e:f2:5a:e0:56:5d:f0:fb:af:cf:00: 92:28:ee:24:76:cd:90:94:fe:2e:e1:ae:42:ea:e4:94:fd:3c: e8:1b:7b:da:d1:58:de:98:5b:20:0d:08:ae:ff:2d:4e:15:71: c8:1e:3c:f2:db:6d:5e:74:56:94:d0:76:40:8c:64:0c:4c:cc: 73:77:4d:3d:6b:51:ef:52:9f:9c:51:0f:41:95:fa:d0:a5:5d: 17:f9:e9:43:b1:d2:3a:b9:99:4d:6d:d8:cd:5f:e5:7f:bc:10: 38:50:aa:e5:3a:69:ba:ad:e3:1c:d1:ad:74:ab:09:76:1e:d0: 87:d5:df:72:8e:20:0a:ca:70:8c:5c:6f:08:21:ae:a1:9c:a1: fb:12:43:b6:ea:c3:be:28:f2:c6:b5:b2:45:3a:8c:c0:d9:c8: 7e:e9:ee:b5:48:e0:0f:81:46:eb:f0:26:aa:de:88:bc:b5:43: 71:0a:9c:c5:fd:18:7a:a8:b6:eb:bc:3e:10:10:0f:4c:92:6f: 88:e2:d7:19:af:01:03:72:67:de:d4:5d:21:e4:5f:7a:80:9f: 63:1e:4d:47 -----BEGIN CERTIFICATE----- MIIFxjCCBK6gAwIBAgIUOfozdx2tvvG1aIDL0wqT4UURmGYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOWJkODEzMzkxZTRhZjJhZTMxMDNjMTg5MWIyMjcyZDRk NWMxM2I1ZjAeFw0yNTExMjUwNDA4MzVaFw0yNjExMjQwNDEzMzVaMDMxMTAvBgNV BAMTKDRCMjBGQTI5QjU0MEI3NkIyOTlCM0VDQTYzMTI3MzgxQkZGODRBODUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/KyS1q4rN2Wm94KdQWosWCIyK VrpEp+wwFE/UzHXXOOdZfuld6FZOCW87aQ5T/3u+K7ecVbD0MZ9sIaIhPEsKdUuU nIjK7jP8UuHrki+FoTAdDgojFDYGv0jv0Xur+3Lng1Gcz9KS2UNBJocp7jjT+die ZbBCKLmJ9u6uTwmvM7qsNg3aWk6FkTXSObqDB2M6gtc7rF8MXC42EtYau6H8JtbH NB227Uhl3Tn3ZdUwc5c8PGMNsBjH6z98Nc7AX096+kijrkIyMI1oPlG3XfeHoG19 6Ubukqlas1+T5hQaWgpV3NWjI7HzoE6782XRxCoG1I70ku3CKNy1hDgcxMnFAgMB AAGjggLQMIICzDAdBgNVHQ4EFgQUSyD6KbVAt2spmz7KYxJzgb/4SoUwHwYDVR0j BBgwFoAUm9gTOR5K8q4xA8GJGyJy1NXBO18wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYzQ3OGY2ZjUtNDQ5YS00ODI3LTk5ZDUtYmY2YjkzYThm NmI0LzAvOUJEODEzMzkxRTRBRjJBRTMxMDNDMTg5MUIyMjcyRDRENUMxM0I1Ri5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL205Z1RPUjVLOHE0eEE4R0pHeUp5MU5Y Qk8xOC5jZXIweAYIKwYBBQUHAQsEbDBqMGgGCCsGAQUFBzALhlxyc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2M0NzhmNmY1LTQ0OWEt NDgyNy05OWQ1LWJmNmI5M2E4ZjZiNC8wL0FTOTk2LnJvYTAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMIHnBggrBgEFBQcBBwEB/wSB1zCB1DCB0QQCAAEwgcoDBAAu y2sDBAAuy3IwDAMEAC7LkQMEAC7LkgMEAS7LqAMEAC7LqwMEAC7LrgMEAC7LsQME AC7LszAMAwQBXHAGAwQAXHAIAwQAXHAkAwQAXHAmAwQAXHA3AwQAXHBZAwQAXHCO AwQAXHEPAwQAXHEoAwQCXHE4AwQAXHGpAwQAXHH3AwQAX4a4AwQAX4bOAwQAX4bd AwQAX4bfAwQAX4dIAwQAslwsAwQAslxQAwQAslxSAwQAsl11AwQAsl15AwQAsl6o AwQAsl6vMA0GCSqGSIb3DQEBCwUAA4IBAQANQb51dqKHcjx7F74VuDj9JPYoSc6W bJh29xYLOYEheLLW16cXQfWaUBozTvJa4FZd8PuvzwCSKO4kds2QlP4u4a5C6uSU /TzoG3va0VjemFsgDQiu/y1OFXHIHjzy221edFaU0HZAjGQMTMxzd009a1HvUp+c UQ9BlfrQpV0X+elDsdI6uZlNbdjNX+V/vBA4UKrlOmm6reMc0a10qwl2HtCH1d9y jiAKynCMXG8IIa6hnKH7EkO26sO+KPLGtbJFOozA2ch+6e61SOAPgUbr8Caq3oi8 tUNxCpzF/Rh6qLbrvD4QEA9Mkm+I4tcZrwEDcmfe1F0h5F96gJ9jHk1H -----END CERTIFICATE-----Generated at Fri Dec 5 14:24:24 2025 by rpki-client