This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS174.roa File: AS174.roa (raw, json) Hash identifier: PsiJOcL+wfDeYzn2OBOzxzRUVMsahS5QoSaYjKnzhQE= Subject key identifier: C0:14:09:AB:FC:1F:6B:92:22:76:E1:8E:0F:63:43:A5:86:11:C4:2E Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc Certificate serial: 40C4E6D56879E6D50FF7E5958DE2111B5FDEE1DE Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS174.roa Signing time: Wed 21 Jan 2026 19:30:57 +0000 ROA not before: Wed 21 Jan 2026 19:25:57 +0000 ROA not after: Wed 20 Jan 2027 19:30:57 +0000 asID: 174 IP address blocks: 96.62.32.0/24 maxlen: 24 96.62.33.0/24 maxlen: 24 96.62.34.0/24 maxlen: 24 96.62.35.0/24 maxlen: 24 96.62.36.0/24 maxlen: 24 96.62.38.0/24 maxlen: 24 96.62.39.0/24 maxlen: 24 96.62.40.0/24 maxlen: 24 96.62.41.0/24 maxlen: 24 96.62.42.0/24 maxlen: 24 96.62.43.0/24 maxlen: 24 96.62.44.0/24 maxlen: 24 96.62.46.0/24 maxlen: 24 96.62.64.0/24 maxlen: 24 96.62.65.0/24 maxlen: 24 96.62.66.0/24 maxlen: 24 96.62.67.0/24 maxlen: 24 96.62.68.0/24 maxlen: 24 96.62.70.0/24 maxlen: 24 96.62.102.0/24 maxlen: 24 96.62.104.0/24 maxlen: 24 96.62.106.0/24 maxlen: 24 96.62.107.0/24 maxlen: 24 96.62.108.0/24 maxlen: 24 96.62.109.0/24 maxlen: 24 96.62.110.0/24 maxlen: 24 96.62.112.0/24 maxlen: 24 96.62.113.0/24 maxlen: 24 96.62.116.0/24 maxlen: 24 96.62.117.0/24 maxlen: 24 96.62.118.0/24 maxlen: 24 96.62.119.0/24 maxlen: 24 96.62.120.0/24 maxlen: 24 96.62.121.0/24 maxlen: 24 96.62.122.0/24 maxlen: 24 96.62.123.0/24 maxlen: 24 96.62.124.0/24 maxlen: 24 96.62.125.0/24 maxlen: 24 96.62.126.0/24 maxlen: 24 96.62.132.0/24 maxlen: 24 96.62.133.0/24 maxlen: 24 96.62.134.0/24 maxlen: 24 96.62.136.0/24 maxlen: 24 96.62.137.0/24 maxlen: 24 96.62.138.0/24 maxlen: 24 96.62.139.0/24 maxlen: 24 96.62.141.0/24 maxlen: 24 96.62.142.0/24 maxlen: 24 96.62.143.0/24 maxlen: 24 96.62.146.0/24 maxlen: 24 96.62.147.0/24 maxlen: 24 96.62.160.0/24 maxlen: 24 96.62.161.0/24 maxlen: 24 96.62.162.0/24 maxlen: 24 96.62.163.0/24 maxlen: 24 96.62.164.0/24 maxlen: 24 96.62.165.0/24 maxlen: 24 96.62.166.0/24 maxlen: 24 96.62.167.0/24 maxlen: 24 96.62.168.0/24 maxlen: 24 96.62.169.0/24 maxlen: 24 96.62.170.0/24 maxlen: 24 96.62.171.0/24 maxlen: 24 96.62.172.0/24 maxlen: 24 96.62.173.0/24 maxlen: 24 96.62.174.0/24 maxlen: 24 96.62.175.0/24 maxlen: 24 96.62.177.0/24 maxlen: 24 96.62.178.0/24 maxlen: 24 96.62.179.0/24 maxlen: 24 96.62.188.0/24 maxlen: 24 96.62.189.0/24 maxlen: 24 96.62.196.0/24 maxlen: 24 96.62.198.0/24 maxlen: 24 96.62.199.0/24 maxlen: 24 96.62.212.0/24 maxlen: 24 96.62.213.0/24 maxlen: 24 96.62.215.0/24 maxlen: 24 96.62.225.0/24 maxlen: 24 96.62.226.0/24 maxlen: 24 96.62.230.0/24 maxlen: 24 96.62.236.0/24 maxlen: 24 96.62.237.0/24 maxlen: 24 96.62.238.0/24 maxlen: 24 96.62.239.0/24 maxlen: 24 96.62.240.0/24 maxlen: 24 96.62.241.0/24 maxlen: 24 96.62.245.0/24 maxlen: 24 96.62.246.0/24 maxlen: 24 96.62.252.0/24 maxlen: 24 140.233.160.0/22 maxlen: 22 140.233.180.0/22 maxlen: 22 143.14.33.0/24 maxlen: 24 143.14.50.0/24 maxlen: 24 143.14.51.0/24 maxlen: 24 143.14.66.0/24 maxlen: 24 143.14.129.0/24 maxlen: 24 143.14.132.0/24 maxlen: 24 143.14.146.0/24 maxlen: 24 143.14.148.0/24 maxlen: 24 143.14.153.0/24 maxlen: 24 143.14.155.0/24 maxlen: 24 143.14.195.0/24 maxlen: 24 143.14.197.0/24 maxlen: 24 143.14.245.0/24 maxlen: 24 155.117.23.0/24 maxlen: 24 155.117.86.0/24 maxlen: 24 155.117.97.0/24 maxlen: 24 155.117.102.0/24 maxlen: 24 155.117.105.0/24 maxlen: 24 155.117.106.0/24 maxlen: 24 155.117.116.0/24 maxlen: 24 155.117.140.0/24 maxlen: 24 155.117.218.0/24 maxlen: 24 155.117.241.0/24 maxlen: 24 162.141.37.0/24 maxlen: 24 162.141.38.0/24 maxlen: 24 162.141.51.0/24 maxlen: 24 162.141.54.0/24 maxlen: 24 162.141.55.0/24 maxlen: 24 162.141.103.0/24 maxlen: 24 162.141.118.0/24 maxlen: 24 162.141.128.0/24 maxlen: 24 162.141.129.0/24 maxlen: 24 162.141.153.0/24 maxlen: 24 162.141.155.0/24 maxlen: 24 162.141.164.0/24 maxlen: 24 167.148.69.0/24 maxlen: 24 167.148.135.0/24 maxlen: 24 167.148.138.0/24 maxlen: 24 167.148.147.0/24 maxlen: 24 167.148.148.0/24 maxlen: 24 167.148.150.0/24 maxlen: 24 167.148.153.0/24 maxlen: 24 167.148.214.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.mft rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 20:24:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:c4:e6:d5:68:79:e6:d5:0f:f7:e5:95:8d:e2:11:1b:5f:de:e1:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc Validity Not Before: Jan 21 19:25:57 2026 GMT Not After : Jan 20 19:30:57 2027 GMT Subject: CN=C01409ABFC1F6B922276E18E0F6343A58611C42E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:ec:7c:1f:58:aa:66:84:e9:7c:ff:9c:6b:a2: 18:da:f2:48:b3:b5:ba:d1:6b:57:b0:e4:a3:46:aa: e0:72:9c:92:7d:20:9d:e0:4d:72:af:16:af:10:df: f4:81:52:2e:65:72:e4:07:46:2d:11:97:4d:dc:ad: 1e:0c:0c:4c:8b:e2:d8:48:ab:6f:e9:e7:21:5b:b0: 1b:39:41:01:5a:3c:c4:7c:4a:b9:3e:55:a0:0b:65: 6e:2b:c4:fe:13:b8:cf:e6:a3:ed:26:41:99:2c:e8: b6:f1:7a:7f:41:5e:a6:00:9f:87:68:2d:a5:74:c3: 29:f0:44:8a:29:9e:21:0c:a6:a2:66:4f:d5:36:fb: df:86:d1:be:14:3a:ae:e1:1c:6e:5a:bc:7b:d1:bb: b7:2f:c2:44:5d:a3:3c:7c:d6:92:a9:0b:7b:65:17: 07:2d:33:6f:6c:e5:93:93:c9:34:94:8b:98:df:01: 33:82:9e:70:b0:2e:86:c9:ee:1b:34:46:d1:92:e9: 79:b7:40:9c:26:07:dc:08:c7:2b:c8:82:a3:07:46: 23:69:81:77:a5:18:39:36:9d:83:04:bb:de:31:57: 87:6f:55:2d:20:5c:22:ec:59:58:b8:e6:52:0f:09: d1:f6:ee:c6:90:0e:10:14:f8:0b:da:b6:8d:b8:7d: 33:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:14:09:AB:FC:1F:6B:92:22:76:E1:8E:0F:63:43:A5:86:11:C4:2E X509v3 Authority Key Identifier: keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS174.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.62.32.0-96.62.36.255 96.62.38.0-96.62.44.255 96.62.46.0/24 96.62.64.0-96.62.68.255 96.62.70.0/24 96.62.102.0/24 96.62.104.0/24 96.62.106.0-96.62.110.255 96.62.112.0/23 96.62.116.0-96.62.126.255 96.62.132.0-96.62.134.255 96.62.136.0/22 96.62.141.0-96.62.143.255 96.62.146.0/23 96.62.160.0/20 96.62.177.0-96.62.179.255 96.62.188.0/23 96.62.196.0/24 96.62.198.0/23 96.62.212.0/23 96.62.215.0/24 96.62.225.0-96.62.226.255 96.62.230.0/24 96.62.236.0-96.62.241.255 96.62.245.0-96.62.246.255 96.62.252.0/24 140.233.160.0/22 140.233.180.0/22 143.14.33.0/24 143.14.50.0/23 143.14.66.0/24 143.14.129.0/24 143.14.132.0/24 143.14.146.0/24 143.14.148.0/24 143.14.153.0/24 143.14.155.0/24 143.14.195.0/24 143.14.197.0/24 143.14.245.0/24 155.117.23.0/24 155.117.86.0/24 155.117.97.0/24 155.117.102.0/24 155.117.105.0-155.117.106.255 155.117.116.0/24 155.117.140.0/24 155.117.218.0/24 155.117.241.0/24 162.141.37.0-162.141.38.255 162.141.51.0/24 162.141.54.0/23 162.141.103.0/24 162.141.118.0/24 162.141.128.0/23 162.141.153.0/24 162.141.155.0/24 162.141.164.0/24 167.148.69.0/24 167.148.135.0/24 167.148.138.0/24 167.148.147.0-167.148.148.255 167.148.150.0/24 167.148.153.0/24 167.148.214.0/24 Signature Algorithm: sha256WithRSAEncryption 18:c9:cb:b6:cd:e4:c1:1c:b5:e9:6e:43:04:60:07:b5:27:18: 2e:b8:60:83:3c:6e:62:f0:25:09:78:01:8a:a1:15:85:a8:30: f3:35:17:01:cb:08:d4:4a:bf:c8:52:e8:42:d2:7b:c0:bb:e4: 18:5c:ed:84:b5:9c:35:ed:f8:cc:3e:b0:80:c0:79:97:91:a6: f1:4a:d4:71:36:46:51:86:d1:00:57:90:1c:a5:7d:5d:08:db: 47:e4:c8:3a:32:31:30:ab:a5:38:40:6c:df:71:bc:03:66:56: f2:08:ff:3a:4e:09:1b:a3:ee:10:ec:19:7b:ae:ab:d4:bf:ee: 99:03:ea:9f:f8:80:74:63:fe:48:66:fd:04:0d:ee:a2:0e:c5: c6:93:34:77:be:22:da:ea:2d:85:21:3a:ea:21:86:38:c3:6c: e5:63:c1:7d:95:5d:ab:bf:6e:3a:6f:ba:9e:80:ab:26:75:b2: 4c:e4:19:c7:de:c4:8b:2b:a5:6e:d6:3c:a7:e4:2e:f1:98:35: f9:88:d2:34:c8:ae:71:0e:4b:4f:00:22:61:58:34:5a:94:9d: de:83:6e:92:1f:e9:50:e5:a9:23:06:88:a7:f6:57:d2:6b:bd: a3:e7:f2:db:a5:70:c4:ad:2c:54:12:6a:3b:4f:75:dd:fc:e1: 8b:40:34:5d -----BEGIN CERTIFICATE----- MIIG9zCCBd+gAwIBAgIUQMTm1Wh55tUP9+WVjeIRG1/e4d4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNGZjMzM2YmY5ZjNkZTVjZTQxNDE0YmQxOTcxOTQ1ZjRi MjQ2YmZjYzAeFw0yNjAxMjExOTI1NTdaFw0yNzAxMjAxOTMwNTdaMDMxMTAvBgNV BAMTKEMwMTQwOUFCRkMxRjZCOTIyMjc2RTE4RTBGNjM0M0E1ODYxMUM0MkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDs7HwfWKpmhOl8/5xrohja8kiz tbrRa1ew5KNGquBynJJ9IJ3gTXKvFq8Q3/SBUi5lcuQHRi0Rl03crR4MDEyL4thI q2/p5yFbsBs5QQFaPMR8Srk+VaALZW4rxP4TuM/mo+0mQZks6Lbxen9BXqYAn4do LaV0wynwRIopniEMpqJmT9U2+9+G0b4UOq7hHG5avHvRu7cvwkRdozx81pKpC3tl FwctM29s5ZOTyTSUi5jfATOCnnCwLobJ7hs0RtGS6Xm3QJwmB9wIxyvIgqMHRiNp gXelGDk2nYMEu94xV4dvVS0gXCLsWVi45lIPCdH27saQDhAU+Avato24fTOLAgMB AAGjggQBMIID/TAdBgNVHQ4EFgQUwBQJq/wfa5IiduGOD2NDpYYRxC4wHwYDVR0j BBgwFoAUT8M2v5895c5BQUvRlxlF9LJGv8wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMDliZTNhYWUtYWVhMS00MWRjLWIxYjktOTVhYzU5MTgy NDRkLzAvNEZDMzM2QkY5RjNERTVDRTQxNDE0QkQxOTcxOTQ1RjRCMjQ2QkZDQy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1Q4TTJ2NTg5NWM1QlFVdlJseGxGOUxK R3Y4dy5jZXIweAYIKwYBBQUHAQsEbDBqMGgGCCsGAQUFBzALhlxyc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzA5YmUzYWFlLWFlYTEt NDFkYy1iMWI5LTk1YWM1OTE4MjQ0ZC8wL0FTMTc0LnJvYTAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMIICFwYIKwYBBQUHAQcBAf8EggIGMIICAjCCAf4EAgABMIIB 9jAMAwQFYD4gAwQAYD4kMAwDBAFgPiYDBABgPiwDBABgPi4wDAMEBmA+QAMEAGA+ RAMEAGA+RgMEAGA+ZgMEAGA+aDAMAwQBYD5qAwQAYD5uAwQBYD5wMAwDBAJgPnQD BABgPn4wDAMEAmA+hAMEAGA+hgMEAmA+iDAMAwQAYD6NAwQEYD6AAwQBYD6SAwQE YD6gMAwDBABgPrEDBAJgPrADBAFgPrwDBABgPsQDBAFgPsYDBAFgPtQDBABgPtcw DAMEAGA+4QMEAGA+4gMEAGA+5jAMAwQCYD7sAwQBYD7wMAwDBABgPvUDBABgPvYD BABgPvwDBAKM6aADBAKM6bQDBACPDiEDBAGPDjIDBACPDkIDBACPDoEDBACPDoQD BACPDpIDBACPDpQDBACPDpkDBACPDpsDBACPDsMDBACPDsUDBACPDvUDBACbdRcD BACbdVYDBACbdWEDBACbdWYwDAMEAJt1aQMEAJt1agMEAJt1dAMEAJt1jAMEAJt1 2gMEAJt18TAMAwQAoo0lAwQAoo0mAwQAoo0zAwQBoo02AwQAoo1nAwQAoo12AwQB oo2AAwQAoo2ZAwQAoo2bAwQAoo2kAwQAp5RFAwQAp5SHAwQAp5SKMAwDBACnlJMD BACnlJQDBACnlJYDBACnlJkDBACnlNYwDQYJKoZIhvcNAQELBQADggEBABjJy7bN 5MEcteluQwRgB7UnGC64YIM8bmLwJQl4AYqhFYWoMPM1FwHLCNRKv8hS6ELSe8C7 5Bhc7YS1nDXt+Mw+sIDAeZeRpvFK1HE2RlGG0QBXkBylfV0I20fkyDoyMTCrpThA bN9xvANmVvII/zpOCRuj7hDsGXuuq9S/7pkD6p/4gHRj/khm/QQN7qIOxcaTNHe+ ItrqLYUhOuohhjjDbOVjwX2VXau/bjpvup6AqyZ1skzkGcfexIsrpW7WPKfkLvGY NfmI0jTIrnEOS08AImFYNFqUnd6DbpIf6VDlqSMGiKf2V9JrvaPn8tulcMStLFQS ajtPdd384YtANF0= -----END CERTIFICATE-----Generated at Sun Jan 25 10:34:22 2026 by rpki-client