This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS135391.roa File: AS135391.roa (raw, json) Hash identifier: nu+QnDC36p4gIJcZ8p72E/iIAxhF2wWbKce/NJB06Ko= Subject key identifier: A9:4C:48:21:E4:67:0B:A9:AE:D8:8C:72:3F:7C:0E:90:6F:CF:5F:4F Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc Certificate serial: 61359EAE81AF2296277F57A362ED2B56F91D8B22 Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS135391.roa Signing time: Sat 17 Jan 2026 01:49:46 +0000 ROA not before: Sat 17 Jan 2026 01:44:46 +0000 ROA not after: Sat 16 Jan 2027 01:49:46 +0000 asID: 135391 IP address blocks: 146.103.31.0/24 maxlen: 24 147.79.56.0/24 maxlen: 24 148.135.201.0/24 maxlen: 24 155.117.216.0/24 maxlen: 24 162.141.39.0/24 maxlen: 24 162.141.65.0/24 maxlen: 24 162.141.140.0/24 maxlen: 24 162.141.179.0/24 maxlen: 24 162.141.183.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.mft rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 20:24:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:35:9e:ae:81:af:22:96:27:7f:57:a3:62:ed:2b:56:f9:1d:8b:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc Validity Not Before: Jan 17 01:44:46 2026 GMT Not After : Jan 16 01:49:46 2027 GMT Subject: CN=A94C4821E4670BA9AED88C723F7C0E906FCF5F4F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:eb:bf:7c:38:bd:82:1b:60:9b:00:2a:ce:3e: 04:1b:a8:b9:29:1d:cf:2b:f7:45:f7:9d:d8:7a:e3: c9:9c:b7:0c:0e:46:37:77:2b:c1:23:cc:b3:59:9b: f5:54:f9:40:83:35:eb:53:64:2b:ad:a3:50:97:dc: 06:44:33:19:36:78:27:c2:da:4c:f4:93:c3:10:bb: 1c:55:6f:0d:bf:75:40:7e:ae:f4:e3:45:6b:d9:3f: 87:2f:72:db:bd:09:ec:07:58:1a:bd:23:12:eb:3c: 3c:ce:92:80:07:8d:21:82:b5:91:18:0e:08:11:27: 6f:a4:fd:d9:f3:db:f7:a0:d0:95:71:a0:79:28:3d: ff:84:41:8f:62:62:ff:88:53:47:c7:26:08:4c:cd: 3d:80:57:c2:84:e6:af:67:59:21:ad:2e:04:05:28: 53:c6:37:3a:f4:a2:2c:38:6f:8c:13:cd:18:2e:73: 3b:5b:f6:6d:4b:56:e6:b4:5f:fa:07:5e:b9:6c:1a: 59:60:44:95:26:18:16:f8:09:72:61:1a:80:d0:45: 40:e9:81:0c:50:79:a0:20:24:53:a7:d4:e4:f2:d1: a9:a4:14:26:96:36:bb:bc:18:ca:a3:0f:d2:b3:26: 83:da:25:d6:a8:96:c3:f4:dc:61:24:18:da:18:66: 17:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:4C:48:21:E4:67:0B:A9:AE:D8:8C:72:3F:7C:0E:90:6F:CF:5F:4F X509v3 Authority Key Identifier: keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS135391.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 146.103.31.0/24 147.79.56.0/24 148.135.201.0/24 155.117.216.0/24 162.141.39.0/24 162.141.65.0/24 162.141.140.0/24 162.141.179.0/24 162.141.183.0/24 Signature Algorithm: sha256WithRSAEncryption 44:49:6a:2f:af:07:88:70:43:97:c8:87:43:df:e8:f4:99:72: c5:57:cb:37:83:43:96:3b:01:ef:de:ea:63:4f:94:be:8b:37: 96:49:26:7e:d6:96:bd:ae:ec:0e:dd:14:28:1e:f6:c7:a2:5c: e9:59:60:b1:e5:4f:d5:53:88:bd:7f:60:2f:d6:d3:5f:ea:6e: 1c:46:b4:58:55:71:21:16:34:0f:62:ed:7b:38:cf:1d:49:90: b1:d2:a2:f6:ef:fd:2d:89:08:91:d8:22:50:86:d2:c0:3c:23: 59:7a:c5:d8:dc:a5:af:d3:64:72:8b:e0:eb:e3:9f:32:15:51: 09:7a:3f:ff:57:17:f5:f1:50:f3:53:74:cd:6d:b2:20:96:19: 91:96:8d:e8:b5:54:a3:ca:c0:9c:8c:81:3e:50:54:14:56:5e: 5b:76:ea:c3:11:38:40:b8:9a:41:ba:4e:a1:0a:f2:bf:40:68: c9:16:da:5d:c2:10:e6:08:87:32:25:ad:52:c6:91:67:0a:b5: 82:ce:8f:39:15:9a:cd:15:dd:c5:fa:07:78:23:5c:7d:ac:b5: f3:fb:93:af:c4:2e:5b:db:aa:49:e5:10:88:68:68:20:6f:bb: 3b:9e:79:20:27:cc:6e:ba:61:0e:dc:11:11:32:7b:05:12:57: 01:f0:d5:42 -----BEGIN CERTIFICATE----- MIIFMDCCBBigAwIBAgIUYTWeroGvIpYnf1ejYu0rVvkdiyIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNGZjMzM2YmY5ZjNkZTVjZTQxNDE0YmQxOTcxOTQ1ZjRi MjQ2YmZjYzAeFw0yNjAxMTcwMTQ0NDZaFw0yNzAxMTYwMTQ5NDZaMDMxMTAvBgNV BAMTKEE5NEM0ODIxRTQ2NzBCQTlBRUQ4OEM3MjNGN0MwRTkwNkZDRjVGNEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC06798OL2CG2CbACrOPgQbqLkp Hc8r90X3ndh648mctwwORjd3K8EjzLNZm/VU+UCDNetTZCuto1CX3AZEMxk2eCfC 2kz0k8MQuxxVbw2/dUB+rvTjRWvZP4cvctu9CewHWBq9IxLrPDzOkoAHjSGCtZEY DggRJ2+k/dnz2/eg0JVxoHkoPf+EQY9iYv+IU0fHJghMzT2AV8KE5q9nWSGtLgQF KFPGNzr0oiw4b4wTzRgucztb9m1LVua0X/oHXrlsGllgRJUmGBb4CXJhGoDQRUDp gQxQeaAgJFOn1OTy0amkFCaWNru8GMqjD9KzJoPaJdaolsP03GEkGNoYZhcJAgMB AAGjggI6MIICNjAdBgNVHQ4EFgQUqUxIIeRnC6mu2IxyP3wOkG/PX08wHwYDVR0j BBgwFoAUT8M2v5895c5BQUvRlxlF9LJGv8wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMDliZTNhYWUtYWVhMS00MWRjLWIxYjktOTVhYzU5MTgy NDRkLzAvNEZDMzM2QkY5RjNERTVDRTQxNDE0QkQxOTcxOTQ1RjRCMjQ2QkZDQy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1Q4TTJ2NTg5NWM1QlFVdlJseGxGOUxK R3Y4dy5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzA5YmUzYWFlLWFlYTEt NDFkYy1iMWI5LTk1YWM1OTE4MjQ0ZC8wL0FTMTM1MzkxLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CME8GCCsGAQUFBwEHAQH/BEAwPjA8BAIAATA2AwQAkmcf AwQAk084AwQAlIfJAwQAm3XYAwQAoo0nAwQAoo1BAwQAoo2MAwQAoo2zAwQAoo23 MA0GCSqGSIb3DQEBCwUAA4IBAQBESWovrweIcEOXyIdD3+j0mXLFV8s3g0OWOwHv 3upjT5S+izeWSSZ+1pa9ruwO3RQoHvbHolzpWWCx5U/VU4i9f2Av1tNf6m4cRrRY VXEhFjQPYu17OM8dSZCx0qL27/0tiQiR2CJQhtLAPCNZesXY3KWv02Ryi+Dr458y FVEJej//Vxf18VDzU3TNbbIglhmRlo3otVSjysCcjIE+UFQUVl5bdurDEThAuJpB uk6hCvK/QGjJFtpdwhDmCIcyJa1SxpFnCrWCzo85FZrNFd3F+gd4I1x9rLXz+5Ov xC5b26pJ5RCIaGggb7s7nnkgJ8xuumEO3BERMnsFElcB8NVC -----END CERTIFICATE-----Generated at Sun Jan 25 07:28:25 2026 by rpki-client