This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS13335.roa File: AS13335.roa (raw, json) Hash identifier: KUJwQZO3YxUMpfzvlAvI7Wt5jZ1dYYKdcyMlWjXL2xs= Subject key identifier: 26:A7:97:A8:1D:6D:B7:82:19:C2:D2:07:55:1C:A6:BA:07:18:0C:5D Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc Certificate serial: 539127B1BB76B959848A8BB35D119281B3A8B0D2 Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS13335.roa Signing time: Fri 23 Jan 2026 10:32:05 +0000 ROA not before: Fri 23 Jan 2026 10:27:05 +0000 ROA not after: Fri 22 Jan 2027 10:32:05 +0000 asID: 13335 IP address blocks: 143.14.142.0/24 maxlen: 24 143.14.163.0/24 maxlen: 24 143.14.165.0/24 maxlen: 24 143.14.167.0/24 maxlen: 24 143.14.168.0/24 maxlen: 24 143.14.176.0/22 maxlen: 24 143.14.224.0/24 maxlen: 24 143.14.229.0/24 maxlen: 24 143.14.251.0/24 maxlen: 24 155.117.208.0/23 maxlen: 23 167.148.120.0/23 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.mft rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 20:24:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:91:27:b1:bb:76:b9:59:84:8a:8b:b3:5d:11:92:81:b3:a8:b0:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc Validity Not Before: Jan 23 10:27:05 2026 GMT Not After : Jan 22 10:32:05 2027 GMT Subject: CN=26A797A81D6DB78219C2D207551CA6BA07180C5D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:14:f7:3b:39:30:46:94:48:27:90:65:cf:28: 5f:c3:a4:d9:4a:88:d1:be:7e:9a:a7:4b:6d:32:e5: 19:61:3d:2a:a8:d8:ac:02:4b:9d:c6:75:d3:d8:a3: a5:43:42:99:91:99:76:03:73:af:6a:f5:d8:bd:ac: 56:2a:90:20:b0:c2:b7:37:ac:85:da:cb:1c:15:ff: cb:19:d2:4d:6c:78:77:24:24:17:aa:5b:32:1b:af: d2:c3:e8:51:8c:96:dc:00:83:ec:68:a3:e2:39:16: 49:c2:3a:79:24:eb:b1:37:05:2a:89:b0:4a:99:e0: 98:b0:4d:f9:64:35:e9:64:d3:79:54:60:4c:4b:1b: c4:d9:65:5a:b5:10:81:fb:4c:fc:b3:98:0d:5a:31: f5:22:8b:61:1b:78:41:dd:c6:e4:f2:0b:f8:6d:8d: 16:18:18:06:db:3c:c2:30:4c:a4:4a:30:db:a6:70: 04:44:b8:7b:ab:59:c3:b5:36:4d:a7:1d:87:d0:8b: a5:98:98:8a:a3:f5:ea:26:41:88:b0:e2:14:fc:cb: 41:54:b9:aa:89:02:2d:55:a9:dc:17:6c:1d:50:3d: 07:f0:c8:f5:da:84:69:7e:29:28:ce:a8:17:2a:83: 00:ee:c4:36:2b:db:a6:d1:f9:86:ab:90:e4:f2:5b: 08:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:A7:97:A8:1D:6D:B7:82:19:C2:D2:07:55:1C:A6:BA:07:18:0C:5D X509v3 Authority Key Identifier: keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS13335.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 143.14.142.0/24 143.14.163.0/24 143.14.165.0/24 143.14.167.0-143.14.168.255 143.14.176.0/22 143.14.224.0/24 143.14.229.0/24 143.14.251.0/24 155.117.208.0/23 167.148.120.0/23 Signature Algorithm: sha256WithRSAEncryption 20:65:78:26:dc:fd:2b:ae:18:b0:0f:f9:bd:4a:97:0f:b5:b4: cd:d3:55:25:39:04:af:5f:46:fd:a5:fe:ae:5b:81:31:e3:1c: 34:b7:54:b3:ac:35:65:b1:2b:13:d4:d9:4f:cf:f6:78:12:25: 02:86:4a:fd:40:3a:b8:7b:52:f7:6e:44:6e:c6:a8:56:be:d6: a4:4b:dd:29:8c:b0:cb:c5:44:8c:ff:5d:8f:b5:f1:8f:8e:fc: 9d:a9:5d:b6:5e:df:a9:f4:64:2a:49:40:b1:d9:be:d6:a4:43: 96:db:61:25:be:0d:ec:91:30:8f:e6:24:ab:f7:d0:d4:37:13: 0b:b5:13:d6:01:aa:6c:ea:b4:a5:d2:5d:f0:28:92:1c:cf:4d: 16:0e:bb:72:0a:a4:d0:5d:fe:e0:21:30:0c:82:9a:e8:12:a1: b9:c2:d3:fa:22:f5:3a:14:82:3b:fb:13:4a:e1:8c:78:a6:09: 07:19:67:fb:6a:3d:e1:e9:be:de:dc:3a:1d:45:0b:2b:e5:88: b4:10:3f:cd:58:ea:e2:2e:9f:9c:44:1e:ec:cf:72:b8:04:17: f3:88:61:45:be:09:77:47:1f:f5:ed:eb:a0:92:b8:99:02:04: 7c:e8:58:5b:1a:a9:69:98:df:f6:5f:08:2b:71:ad:2f:1f:c6: e7:78:f7:35 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUU5Ensbt2uVmEiouzXRGSgbOosNIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNGZjMzM2YmY5ZjNkZTVjZTQxNDE0YmQxOTcxOTQ1ZjRi MjQ2YmZjYzAeFw0yNjAxMjMxMDI3MDVaFw0yNzAxMjIxMDMyMDVaMDMxMTAvBgNV BAMTKDI2QTc5N0E4MUQ2REI3ODIxOUMyRDIwNzU1MUNBNkJBMDcxODBDNUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDbFPc7OTBGlEgnkGXPKF/DpNlK iNG+fpqnS20y5RlhPSqo2KwCS53GddPYo6VDQpmRmXYDc69q9di9rFYqkCCwwrc3 rIXayxwV/8sZ0k1seHckJBeqWzIbr9LD6FGMltwAg+xoo+I5FknCOnkk67E3BSqJ sEqZ4JiwTflkNelk03lUYExLG8TZZVq1EIH7TPyzmA1aMfUii2EbeEHdxuTyC/ht jRYYGAbbPMIwTKRKMNumcAREuHurWcO1Nk2nHYfQi6WYmIqj9eomQYiw4hT8y0FU uaqJAi1VqdwXbB1QPQfwyPXahGl+KSjOqBcqgwDuxDYr26bR+YarkOTyWwjlAgMB AAGjggJHMIICQzAdBgNVHQ4EFgQUJqeXqB1tt4IZwtIHVRymugcYDF0wHwYDVR0j BBgwFoAUT8M2v5895c5BQUvRlxlF9LJGv8wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMDliZTNhYWUtYWVhMS00MWRjLWIxYjktOTVhYzU5MTgy NDRkLzAvNEZDMzM2QkY5RjNERTVDRTQxNDE0QkQxOTcxOTQ1RjRCMjQ2QkZDQy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1Q4TTJ2NTg5NWM1QlFVdlJseGxGOUxK R3Y4dy5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzA5YmUzYWFlLWFlYTEt NDFkYy1iMWI5LTk1YWM1OTE4MjQ0ZC8wL0FTMTMzMzUucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwXQYIKwYBBQUHAQcBAf8ETjBMMEoEAgABMEQDBACPDo4D BACPDqMDBACPDqUwDAMEAI8OpwMEAI8OqAMEAo8OsAMEAI8O4AMEAI8O5QMEAI8O +wMEAZt10AMEAaeUeDANBgkqhkiG9w0BAQsFAAOCAQEAIGV4Jtz9K64YsA/5vUqX D7W0zdNVJTkEr19G/aX+rluBMeMcNLdUs6w1ZbErE9TZT8/2eBIlAoZK/UA6uHtS 925EbsaoVr7WpEvdKYywy8VEjP9dj7Xxj478naldtl7fqfRkKklAsdm+1qRDltth Jb4N7JEwj+Ykq/fQ1DcTC7UT1gGqbOq0pdJd8CiSHM9NFg67cgqk0F3+4CEwDIKa 6BKhucLT+iL1OhSCO/sTSuGMeKYJBxln+2o94em+3tw6HUULK+WItBA/zVjq4i6f nEQe7M9yuAQX84hhRb4Jd0cf9e3roJK4mQIEfOhYWxqpaZjf9l8IK3GtLx/G53j3 NQ== -----END CERTIFICATE-----Generated at Sun Jan 25 07:28:44 2026 by rpki-client