This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS996.roa File: AS996.roa (raw, json) Hash identifier: hXBZsXhrHRb+UREFFjAxckKT+iRrbYhQvd4wnEPsjKA= Subject key identifier: 2A:5B:49:6C:C4:0C:64:4C:27:C2:A5:9F:A3:7C:56:95:48:DD:C4:E4 Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f Certificate serial: 1BAE3AE39707011EB72392C0DDC2AC51B838F5C9 Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS996.roa Signing time: Thu 01 Jan 2026 00:07:11 +0000 ROA not before: Thu 01 Jan 2026 00:02:11 +0000 ROA not after: Thu 31 Dec 2026 00:07:11 +0000 asID: 996 IP address blocks: 46.203.107.0/24 maxlen: 24 46.203.114.0/24 maxlen: 24 46.203.145.0/24 maxlen: 24 46.203.146.0/24 maxlen: 24 46.203.168.0/24 maxlen: 24 46.203.169.0/24 maxlen: 24 46.203.171.0/24 maxlen: 24 46.203.174.0/24 maxlen: 24 46.203.177.0/24 maxlen: 24 46.203.179.0/24 maxlen: 24 92.112.6.0/24 maxlen: 24 92.112.7.0/24 maxlen: 24 92.112.8.0/24 maxlen: 24 92.112.55.0/24 maxlen: 24 92.112.89.0/24 maxlen: 24 92.112.142.0/24 maxlen: 24 92.113.15.0/24 maxlen: 24 92.113.40.0/24 maxlen: 24 95.134.184.0/24 maxlen: 24 95.134.206.0/24 maxlen: 24 95.134.221.0/24 maxlen: 24 95.134.223.0/24 maxlen: 24 95.135.72.0/24 maxlen: 24 178.92.80.0/24 maxlen: 24 178.92.82.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 09:01:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:ae:3a:e3:97:07:01:1e:b7:23:92:c0:dd:c2:ac:51:b8:38:f5:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f Validity Not Before: Jan 1 00:02:11 2026 GMT Not After : Dec 31 00:07:11 2026 GMT Subject: CN=2A5B496CC40C644C27C2A59FA37C569548DDC4E4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:8f:75:95:9d:3f:2c:69:4e:ea:1c:24:81:fe: 26:ba:a5:3c:08:45:71:14:32:33:13:8a:b1:ef:91: ae:d1:f3:ee:eb:12:a6:25:3c:5f:83:b3:34:d3:b4: 15:aa:d5:f9:65:73:a7:19:3b:2c:0d:bc:f0:3c:5b: 5d:0e:ba:84:ac:27:a3:cb:e9:61:65:70:23:c3:1f: 84:ce:29:c5:30:b2:d5:62:fd:87:f9:c5:ed:fe:c3: 08:44:af:6e:08:e2:fc:1a:bf:7b:13:54:53:37:1f: 45:77:8b:e0:ad:ec:c6:7f:1d:0e:b5:e4:09:ca:30: a4:9e:1c:c4:07:df:bd:5d:46:11:15:2c:1f:de:5c: cb:7c:fb:39:f9:7b:d9:46:17:6a:81:81:0a:4d:3a: 5e:82:c3:f2:64:be:b7:a4:67:d5:c6:d0:57:4d:02: d9:80:ac:f9:1c:80:3b:7a:fa:97:d5:dc:a6:9a:2a: df:07:86:2c:c5:07:bf:19:ec:f5:77:5c:63:65:7c: 41:c1:b2:0a:d1:3f:e9:5a:74:0e:ec:80:1b:65:2c: 66:6a:62:6d:65:c4:07:23:47:60:d7:ff:29:0c:2a: b2:9c:7b:d6:e7:f9:c5:1d:f9:1f:03:46:7a:56:34: a9:1e:f0:c5:4c:2c:e4:7b:ff:23:5f:c3:fc:07:a5: dc:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:5B:49:6C:C4:0C:64:4C:27:C2:A5:9F:A3:7C:56:95:48:DD:C4:E4 X509v3 Authority Key Identifier: keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS996.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 46.203.107.0/24 46.203.114.0/24 46.203.145.0-46.203.146.255 46.203.168.0/23 46.203.171.0/24 46.203.174.0/24 46.203.177.0/24 46.203.179.0/24 92.112.6.0-92.112.8.255 92.112.55.0/24 92.112.89.0/24 92.112.142.0/24 92.113.15.0/24 92.113.40.0/24 95.134.184.0/24 95.134.206.0/24 95.134.221.0/24 95.134.223.0/24 95.135.72.0/24 178.92.80.0/24 178.92.82.0/24 Signature Algorithm: sha256WithRSAEncryption 78:59:e6:f0:b7:e6:7a:14:69:17:a3:c1:11:36:65:96:c9:4a: 1b:44:1c:8e:61:c8:91:9c:c1:40:79:c2:5b:78:b4:c9:0b:60: e0:d3:16:38:ab:c4:e4:87:7e:8b:6b:1b:df:6b:1e:86:52:41: 78:2d:55:c6:a9:3a:01:16:50:c7:83:c2:28:57:bd:bf:f7:8e: d5:a4:80:11:7f:4c:af:8d:6e:3b:04:a2:e3:fc:56:91:f3:c0: 7a:79:3c:47:3e:d3:af:86:0c:cf:35:87:8a:2e:34:f0:86:6f: 6d:4f:f6:6c:06:88:29:7f:2a:c8:99:81:0f:16:f2:12:ab:f7: 1a:00:e3:9d:b1:9b:f5:bd:33:a8:4e:6a:b3:dd:28:bb:44:1e: 24:75:26:1c:20:5c:88:d5:b8:a2:20:67:7f:1a:fc:a6:fe:0b: c7:14:ae:9e:81:81:e1:ac:a6:97:38:6b:33:ac:a4:90:d0:b0: b8:a4:a0:15:74:2d:e8:b6:d5:be:2b:67:4b:9a:a7:b3:9f:b6: f4:22:20:94:53:98:55:bf:af:6a:f4:b1:f2:50:33:d8:7a:45: f5:8e:0b:c1:1c:d2:10:a6:66:e6:86:bb:e2:52:6b:3d:8d:7c: 79:e9:2c:9a:c5:96:35:d7:b1:06:54:bb:00:28:47:62:2b:99: c4:01:90:4b -----BEGIN CERTIFICATE----- MIIFijCCBHKgAwIBAgIUG64645cHAR63I5LA3cKsUbg49ckwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOWJkODEzMzkxZTRhZjJhZTMxMDNjMTg5MWIyMjcyZDRk NWMxM2I1ZjAeFw0yNjAxMDEwMDAyMTFaFw0yNjEyMzEwMDA3MTFaMDMxMTAvBgNV BAMTKDJBNUI0OTZDQzQwQzY0NEMyN0MyQTU5RkEzN0M1Njk1NDhEREM0RTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCmj3WVnT8saU7qHCSB/ia6pTwI RXEUMjMTirHvka7R8+7rEqYlPF+DszTTtBWq1fllc6cZOywNvPA8W10OuoSsJ6PL 6WFlcCPDH4TOKcUwstVi/Yf5xe3+wwhEr24I4vwav3sTVFM3H0V3i+Ct7MZ/HQ61 5AnKMKSeHMQH371dRhEVLB/eXMt8+zn5e9lGF2qBgQpNOl6Cw/JkvrekZ9XG0FdN AtmArPkcgDt6+pfV3KaaKt8HhizFB78Z7PV3XGNlfEHBsgrRP+ladA7sgBtlLGZq Ym1lxAcjR2DX/ykMKrKce9bn+cUd+R8DRnpWNKke8MVMLOR7/yNfw/wHpdxtAgMB AAGjggKUMIICkDAdBgNVHQ4EFgQUKltJbMQMZEwnwqWfo3xWlUjdxOQwHwYDVR0j BBgwFoAUm9gTOR5K8q4xA8GJGyJy1NXBO18wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYzQ3OGY2ZjUtNDQ5YS00ODI3LTk5ZDUtYmY2YjkzYThm NmI0LzAvOUJEODEzMzkxRTRBRjJBRTMxMDNDMTg5MUIyMjcyRDRENUMxM0I1Ri5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL205Z1RPUjVLOHE0eEE4R0pHeUp5MU5Y Qk8xOC5jZXIweAYIKwYBBQUHAQsEbDBqMGgGCCsGAQUFBzALhlxyc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2M0NzhmNmY1LTQ0OWEt NDgyNy05OWQ1LWJmNmI5M2E4ZjZiNC8wL0FTOTk2LnJvYTAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMIGrBggrBgEFBQcBBwEB/wSBmzCBmDCBlQQCAAEwgY4DBAAu y2sDBAAuy3IwDAMEAC7LkQMEAC7LkgMEAS7LqAMEAC7LqwMEAC7LrgMEAC7LsQME AC7LszAMAwQBXHAGAwQAXHAIAwQAXHA3AwQAXHBZAwQAXHCOAwQAXHEPAwQAXHEo AwQAX4a4AwQAX4bOAwQAX4bdAwQAX4bfAwQAX4dIAwQAslxQAwQAslxSMA0GCSqG SIb3DQEBCwUAA4IBAQB4Webwt+Z6FGkXo8ERNmWWyUobRByOYciRnMFAecJbeLTJ C2Dg0xY4q8Tkh36Laxvfax6GUkF4LVXGqToBFlDHg8IoV72/947VpIARf0yvjW47 BKLj/FaR88B6eTxHPtOvhgzPNYeKLjTwhm9tT/ZsBogpfyrImYEPFvISq/caAOOd sZv1vTOoTmqz3Si7RB4kdSYcIFyI1biiIGd/Gvym/gvHFK6egYHhrKaXOGszrKSQ 0LC4pKAVdC3ottW+K2dLmqezn7b0IiCUU5hVv69q9LHyUDPYekX1jgvBHNIQpmbm hrviUms9jXx56SyaxZY117EGVLsAKEdiK5nEAZBL -----END CERTIFICATE-----Generated at Mon Jan 19 19:01:46 2026 by rpki-client