This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS13335.roa File: AS13335.roa (raw, json) Hash identifier: a+HB0Xvvju5LOOrh4OblBSPf1aZ85hFFMMn3vDcRJQE= Subject key identifier: E2:7A:66:57:AE:56:3B:A3:B5:A9:41:9C:C2:0F:A7:56:EB:27:F7:FE Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc Certificate serial: 6F19544D7E47733CAAE48EB6D99083D2C2CCAFA3 Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS13335.roa Signing time: Fri 07 Nov 2025 02:43:16 +0000 ROA not before: Fri 07 Nov 2025 02:38:16 +0000 ROA not after: Fri 06 Nov 2026 02:43:16 +0000 asID: 13335 IP address blocks: 143.14.163.0/24 maxlen: 24 143.14.165.0/24 maxlen: 24 143.14.167.0/24 maxlen: 24 143.14.168.0/24 maxlen: 24 143.14.176.0/22 maxlen: 24 143.14.224.0/24 maxlen: 24 143.14.229.0/24 maxlen: 24 143.14.251.0/24 maxlen: 24 155.117.208.0/23 maxlen: 23 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.mft rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:19:54:4d:7e:47:73:3c:aa:e4:8e:b6:d9:90:83:d2:c2:cc:af:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc Validity Not Before: Nov 7 02:38:16 2025 GMT Not After : Nov 6 02:43:16 2026 GMT Subject: CN=E27A6657AE563BA3B5A9419CC20FA756EB27F7FE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:3e:c5:b9:12:eb:6e:8e:b2:a6:8d:0b:a6:b2: 2d:84:2f:e4:7d:3c:8b:d1:ec:f1:5a:f8:7f:fd:4a: 3e:9b:5c:95:6a:30:8f:60:09:62:f4:5b:57:b6:11: 5b:d8:aa:c7:d0:df:1f:24:08:e2:28:dd:43:8b:55: 31:e7:ef:f1:69:77:3c:fe:de:68:0a:e0:6d:94:84: 18:8d:91:7f:cf:aa:7b:f6:cf:3b:57:34:1a:b4:0d: d8:cf:a3:9c:0b:5d:2d:be:aa:c8:b5:64:5d:81:d5: 94:4c:47:35:1e:f4:d0:59:6c:b3:82:5c:0e:03:21: 87:e2:cf:d5:f3:0f:79:a1:64:3f:91:0c:5d:95:c0: 91:1a:af:f3:46:f3:b1:4b:fd:d0:6b:82:f7:e9:7a: 91:2d:96:90:e8:ce:de:a5:10:b5:8f:cf:bf:85:5f: 8f:16:3e:f9:84:e7:50:ad:3b:f2:52:62:05:01:b3: 3d:b4:b4:ce:e9:27:75:a5:0b:87:e8:d7:70:8f:58: a1:eb:d2:8a:54:d9:22:4d:3a:16:99:16:11:d6:b9: 7a:f7:5a:b6:64:b3:de:5f:4c:e8:8b:5b:b2:3a:10: 07:f6:30:9e:af:d0:fe:03:e8:0c:68:c8:9f:46:24: 34:4f:31:b2:d7:cb:76:34:0a:d3:b1:b1:5b:7a:f6: 8f:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:7A:66:57:AE:56:3B:A3:B5:A9:41:9C:C2:0F:A7:56:EB:27:F7:FE X509v3 Authority Key Identifier: keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS13335.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 143.14.163.0/24 143.14.165.0/24 143.14.167.0-143.14.168.255 143.14.176.0/22 143.14.224.0/24 143.14.229.0/24 143.14.251.0/24 155.117.208.0/23 Signature Algorithm: sha256WithRSAEncryption ba:ab:6a:ba:a6:a2:22:a4:ce:b1:f5:f0:3d:cb:f2:df:e3:2d: 8a:5e:25:10:a2:f4:c4:00:e4:4e:f7:3c:ec:61:4d:62:7e:bd: 11:93:6d:39:8f:87:3e:c2:38:1b:f7:f0:b0:b4:44:34:72:50: 12:34:eb:78:30:5d:6a:ca:c2:ad:fe:07:62:80:39:74:19:a4: b6:c8:98:06:3d:6f:0d:00:3f:68:57:8c:7a:59:80:3d:46:95: 91:68:ca:18:f0:4b:f4:02:76:44:e9:d8:d0:bf:7d:c6:c9:38: f6:3a:7e:ab:4d:84:28:eb:16:b9:2b:4a:0d:15:2f:a0:36:53: 07:0b:19:99:fd:07:7c:46:9e:78:b3:00:24:c5:20:9a:92:b7: 73:12:ed:1a:62:03:7f:6f:81:63:17:42:7b:6e:25:fb:60:d6: 63:74:72:c5:b1:b3:ba:91:e4:58:b4:bc:83:9c:dd:73:29:53: 0b:71:4f:36:f6:da:b2:98:06:7d:3f:71:b0:09:8f:b4:e1:b6: 89:47:5c:85:f7:56:15:49:d2:d9:1d:a2:e3:77:25:04:93:fb: 27:c8:ea:14:01:8c:2c:09:a9:48:92:e7:fa:63:d9:d7:6d:d7: 77:ac:b7:2b:6b:16:79:55:41:8c:e9:8b:7c:7f:5a:29:81:90: af:5a:12:be -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUbxlUTX5Hczyq5I622ZCD0sLMr6MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNGZjMzM2YmY5ZjNkZTVjZTQxNDE0YmQxOTcxOTQ1ZjRi MjQ2YmZjYzAeFw0yNTExMDcwMjM4MTZaFw0yNjExMDYwMjQzMTZaMDMxMTAvBgNV BAMTKEUyN0E2NjU3QUU1NjNCQTNCNUE5NDE5Q0MyMEZBNzU2RUIyN0Y3RkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRPsW5EutujrKmjQumsi2EL+R9 PIvR7PFa+H/9Sj6bXJVqMI9gCWL0W1e2EVvYqsfQ3x8kCOIo3UOLVTHn7/Fpdzz+ 3mgK4G2UhBiNkX/Pqnv2zztXNBq0DdjPo5wLXS2+qsi1ZF2B1ZRMRzUe9NBZbLOC XA4DIYfiz9XzD3mhZD+RDF2VwJEar/NG87FL/dBrgvfpepEtlpDozt6lELWPz7+F X48WPvmE51CtO/JSYgUBsz20tM7pJ3WlC4fo13CPWKHr0opU2SJNOhaZFhHWuXr3 WrZks95fTOiLW7I6EAf2MJ6v0P4D6AxoyJ9GJDRPMbLXy3Y0CtOxsVt69o8FAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQU4npmV65WO6O1qUGcwg+nVusn9/4wHwYDVR0j BBgwFoAUT8M2v5895c5BQUvRlxlF9LJGv8wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMDliZTNhYWUtYWVhMS00MWRjLWIxYjktOTVhYzU5MTgy NDRkLzAvNEZDMzM2QkY5RjNERTVDRTQxNDE0QkQxOTcxOTQ1RjRCMjQ2QkZDQy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1Q4TTJ2NTg5NWM1QlFVdlJseGxGOUxK R3Y4dy5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzA5YmUzYWFlLWFlYTEt NDFkYy1iMWI5LTk1YWM1OTE4MjQ0ZC8wL0FTMTMzMzUucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwUQYIKwYBBQUHAQcBAf8EQjBAMD4EAgABMDgDBACPDqMD BACPDqUwDAMEAI8OpwMEAI8OqAMEAo8OsAMEAI8O4AMEAI8O5QMEAI8O+wMEAZt1 0DANBgkqhkiG9w0BAQsFAAOCAQEAuqtquqaiIqTOsfXwPcvy3+Mtil4lEKL0xADk Tvc87GFNYn69EZNtOY+HPsI4G/fwsLRENHJQEjTreDBdasrCrf4HYoA5dBmktsiY Bj1vDQA/aFeMelmAPUaVkWjKGPBL9AJ2ROnY0L99xsk49jp+q02EKOsWuStKDRUv oDZTBwsZmf0HfEaeeLMAJMUgmpK3cxLtGmIDf2+BYxdCe24l+2DWY3RyxbGzupHk WLS8g5zdcylTC3FPNvbaspgGfT9xsAmPtOG2iUdchfdWFUnS2R2i43clBJP7J8jq FAGMLAmpSJLn+mPZ123Xd6y3K2sWeVVBjOmLfH9aKYGQr1oSvg== -----END CERTIFICATE-----Generated at Sat Dec 6 14:19:33 2025 by rpki-client