This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS174.roa File: AS174.roa (raw, json) Hash identifier: G5ZJhcSnj5gCW9wqhnDMu7bxdqFAR4BtSiEkddzVywE= Subject key identifier: 1E:7B:42:1F:44:1A:EF:79:4F:70:03:5C:81:18:C8:18:1F:44:C0:F4 Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc Certificate serial: 20326CE87C2E8082ED916BF68645217C19092381 Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS174.roa Signing time: Thu 04 Dec 2025 21:35:57 +0000 ROA not before: Thu 04 Dec 2025 21:30:57 +0000 ROA not after: Thu 03 Dec 2026 21:35:57 +0000 asID: 174 IP address blocks: 96.62.32.0/24 maxlen: 24 96.62.33.0/24 maxlen: 24 96.62.34.0/24 maxlen: 24 96.62.35.0/24 maxlen: 24 96.62.36.0/24 maxlen: 24 96.62.38.0/24 maxlen: 24 96.62.39.0/24 maxlen: 24 96.62.40.0/24 maxlen: 24 96.62.41.0/24 maxlen: 24 96.62.42.0/24 maxlen: 24 96.62.43.0/24 maxlen: 24 96.62.44.0/24 maxlen: 24 96.62.46.0/24 maxlen: 24 96.62.64.0/24 maxlen: 24 96.62.65.0/24 maxlen: 24 96.62.66.0/24 maxlen: 24 96.62.67.0/24 maxlen: 24 96.62.68.0/24 maxlen: 24 96.62.70.0/24 maxlen: 24 96.62.102.0/24 maxlen: 24 96.62.104.0/24 maxlen: 24 96.62.106.0/24 maxlen: 24 96.62.107.0/24 maxlen: 24 96.62.108.0/24 maxlen: 24 96.62.109.0/24 maxlen: 24 96.62.110.0/24 maxlen: 24 96.62.112.0/24 maxlen: 24 96.62.113.0/24 maxlen: 24 96.62.116.0/24 maxlen: 24 96.62.117.0/24 maxlen: 24 96.62.118.0/24 maxlen: 24 96.62.119.0/24 maxlen: 24 96.62.120.0/24 maxlen: 24 96.62.121.0/24 maxlen: 24 96.62.122.0/24 maxlen: 24 96.62.123.0/24 maxlen: 24 96.62.124.0/24 maxlen: 24 96.62.125.0/24 maxlen: 24 96.62.126.0/24 maxlen: 24 96.62.132.0/24 maxlen: 24 96.62.133.0/24 maxlen: 24 96.62.134.0/24 maxlen: 24 96.62.136.0/24 maxlen: 24 96.62.137.0/24 maxlen: 24 96.62.138.0/24 maxlen: 24 96.62.139.0/24 maxlen: 24 96.62.141.0/24 maxlen: 24 96.62.142.0/24 maxlen: 24 96.62.143.0/24 maxlen: 24 96.62.146.0/24 maxlen: 24 96.62.147.0/24 maxlen: 24 96.62.160.0/24 maxlen: 24 96.62.161.0/24 maxlen: 24 96.62.162.0/24 maxlen: 24 96.62.163.0/24 maxlen: 24 96.62.164.0/24 maxlen: 24 96.62.165.0/24 maxlen: 24 96.62.166.0/24 maxlen: 24 96.62.167.0/24 maxlen: 24 96.62.168.0/24 maxlen: 24 96.62.169.0/24 maxlen: 24 96.62.170.0/24 maxlen: 24 96.62.171.0/24 maxlen: 24 96.62.172.0/24 maxlen: 24 96.62.173.0/24 maxlen: 24 96.62.174.0/24 maxlen: 24 96.62.175.0/24 maxlen: 24 96.62.177.0/24 maxlen: 24 96.62.178.0/24 maxlen: 24 96.62.179.0/24 maxlen: 24 96.62.188.0/24 maxlen: 24 96.62.189.0/24 maxlen: 24 96.62.196.0/24 maxlen: 24 96.62.198.0/24 maxlen: 24 96.62.199.0/24 maxlen: 24 96.62.212.0/24 maxlen: 24 96.62.213.0/24 maxlen: 24 96.62.215.0/24 maxlen: 24 96.62.225.0/24 maxlen: 24 96.62.226.0/24 maxlen: 24 96.62.230.0/24 maxlen: 24 96.62.236.0/24 maxlen: 24 96.62.237.0/24 maxlen: 24 96.62.238.0/24 maxlen: 24 96.62.239.0/24 maxlen: 24 96.62.240.0/24 maxlen: 24 96.62.241.0/24 maxlen: 24 96.62.245.0/24 maxlen: 24 96.62.246.0/24 maxlen: 24 96.62.252.0/24 maxlen: 24 140.233.160.0/22 maxlen: 22 140.233.180.0/22 maxlen: 22 143.14.50.0/24 maxlen: 24 143.14.51.0/24 maxlen: 24 143.14.66.0/24 maxlen: 24 143.14.129.0/24 maxlen: 24 143.14.146.0/24 maxlen: 24 143.14.148.0/24 maxlen: 24 143.14.153.0/24 maxlen: 24 143.14.155.0/24 maxlen: 24 143.14.195.0/24 maxlen: 24 143.14.197.0/24 maxlen: 24 143.14.245.0/24 maxlen: 24 155.117.23.0/24 maxlen: 24 155.117.86.0/24 maxlen: 24 155.117.97.0/24 maxlen: 24 155.117.102.0/24 maxlen: 24 155.117.105.0/24 maxlen: 24 155.117.106.0/24 maxlen: 24 155.117.116.0/24 maxlen: 24 155.117.118.0/24 maxlen: 24 155.117.140.0/24 maxlen: 24 155.117.156.0/24 maxlen: 24 155.117.218.0/24 maxlen: 24 155.117.241.0/24 maxlen: 24 162.141.21.0/24 maxlen: 24 162.141.37.0/24 maxlen: 24 162.141.38.0/24 maxlen: 24 162.141.51.0/24 maxlen: 24 162.141.54.0/24 maxlen: 24 162.141.55.0/24 maxlen: 24 162.141.68.0/24 maxlen: 24 162.141.103.0/24 maxlen: 24 162.141.108.0/24 maxlen: 24 162.141.118.0/24 maxlen: 24 162.141.121.0/24 maxlen: 24 162.141.128.0/24 maxlen: 24 162.141.129.0/24 maxlen: 24 162.141.153.0/24 maxlen: 24 162.141.155.0/24 maxlen: 24 162.141.164.0/24 maxlen: 24 167.148.69.0/24 maxlen: 24 167.148.126.0/24 maxlen: 24 167.148.135.0/24 maxlen: 24 167.148.138.0/24 maxlen: 24 167.148.147.0/24 maxlen: 24 167.148.148.0/24 maxlen: 24 167.148.150.0/24 maxlen: 24 167.148.153.0/24 maxlen: 24 167.148.170.0/24 maxlen: 24 167.148.171.0/24 maxlen: 24 167.148.201.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.mft rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 16:36:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:32:6c:e8:7c:2e:80:82:ed:91:6b:f6:86:45:21:7c:19:09:23:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc Validity Not Before: Dec 4 21:30:57 2025 GMT Not After : Dec 3 21:35:57 2026 GMT Subject: CN=1E7B421F441AEF794F70035C8118C8181F44C0F4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:96:80:c1:6d:01:2a:65:01:c7:48:2c:33:81: 3d:bb:80:99:60:21:33:9d:f8:12:f4:de:9a:54:dc: 8f:f9:7b:a2:8f:7b:59:3c:a1:90:c2:92:ad:b2:29: 94:94:84:c4:50:d0:15:a5:0e:26:94:91:6a:3b:c8: 9b:05:1c:d8:3b:d1:ca:e4:7f:2b:2d:61:91:bf:4f: 8b:7d:3a:4c:e9:6c:a7:9d:f6:06:fa:69:d0:3e:50: 49:ee:37:0a:c0:37:fc:6f:bd:78:1f:e2:dd:03:89: b4:62:24:a2:68:82:4d:0d:46:4b:50:82:90:f4:14: 4c:b5:da:7d:ca:d7:ce:b7:05:a5:46:73:0d:bd:e2: 83:8a:03:60:70:f5:8f:96:f3:6a:2a:37:6d:64:d7: da:16:6f:d2:f6:e3:7e:78:19:a7:8e:a0:b3:38:cc: 56:67:c3:81:ab:d0:f1:ae:9e:11:35:de:69:a9:69: d9:49:56:ca:8c:f4:3d:b2:d7:d3:d3:ff:8b:13:90: bc:fb:19:e6:57:77:b3:22:e1:73:ae:4c:49:b0:8e: 23:75:c8:0b:a7:07:d3:31:a3:b9:b2:56:46:c9:b1: e5:b0:87:b5:40:fe:f8:7d:d9:7e:9e:59:a8:fe:e2: 88:b8:ac:f8:62:fe:b7:c6:08:8b:3c:fe:14:69:e7: e9:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:7B:42:1F:44:1A:EF:79:4F:70:03:5C:81:18:C8:18:1F:44:C0:F4 X509v3 Authority Key Identifier: keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS174.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.62.32.0-96.62.36.255 96.62.38.0-96.62.44.255 96.62.46.0/24 96.62.64.0-96.62.68.255 96.62.70.0/24 96.62.102.0/24 96.62.104.0/24 96.62.106.0-96.62.110.255 96.62.112.0/23 96.62.116.0-96.62.126.255 96.62.132.0-96.62.134.255 96.62.136.0/22 96.62.141.0-96.62.143.255 96.62.146.0/23 96.62.160.0/20 96.62.177.0-96.62.179.255 96.62.188.0/23 96.62.196.0/24 96.62.198.0/23 96.62.212.0/23 96.62.215.0/24 96.62.225.0-96.62.226.255 96.62.230.0/24 96.62.236.0-96.62.241.255 96.62.245.0-96.62.246.255 96.62.252.0/24 140.233.160.0/22 140.233.180.0/22 143.14.50.0/23 143.14.66.0/24 143.14.129.0/24 143.14.146.0/24 143.14.148.0/24 143.14.153.0/24 143.14.155.0/24 143.14.195.0/24 143.14.197.0/24 143.14.245.0/24 155.117.23.0/24 155.117.86.0/24 155.117.97.0/24 155.117.102.0/24 155.117.105.0-155.117.106.255 155.117.116.0/24 155.117.118.0/24 155.117.140.0/24 155.117.156.0/24 155.117.218.0/24 155.117.241.0/24 162.141.21.0/24 162.141.37.0-162.141.38.255 162.141.51.0/24 162.141.54.0/23 162.141.68.0/24 162.141.103.0/24 162.141.108.0/24 162.141.118.0/24 162.141.121.0/24 162.141.128.0/23 162.141.153.0/24 162.141.155.0/24 162.141.164.0/24 167.148.69.0/24 167.148.126.0/24 167.148.135.0/24 167.148.138.0/24 167.148.147.0-167.148.148.255 167.148.150.0/24 167.148.153.0/24 167.148.170.0/23 167.148.201.0/24 Signature Algorithm: sha256WithRSAEncryption 6e:f3:50:fa:10:dc:60:b9:5f:c5:3a:30:a3:76:40:fc:62:a5: 49:dc:da:ee:75:c1:91:c8:5a:3e:25:3f:ad:50:c2:04:14:3d: 58:2a:34:b8:92:36:18:51:e5:da:59:84:1a:cf:92:76:47:f4: 29:1e:ba:f4:22:ef:6c:f8:e9:9f:e1:ab:fd:e2:d1:3e:0e:77: 70:bb:c0:53:5c:9b:8a:fa:6f:31:23:2d:49:f8:7b:16:aa:ea: 28:fc:55:3c:e3:20:f8:05:2e:a8:a8:f9:e8:56:10:6e:d3:0c: 4c:ef:c2:47:ad:08:9a:5a:4e:89:da:6f:5b:00:fa:78:f5:24: 46:1f:d2:b9:19:fa:7d:b1:56:7a:93:2a:2a:ec:5c:fe:e9:79: de:5d:39:64:48:e7:aa:20:77:18:eb:32:e6:b7:0d:6b:90:86: 23:8e:84:f0:9b:8d:75:ef:d2:17:76:d6:d5:6c:25:d7:6f:a7: 3c:66:8a:57:c1:18:c4:db:cd:96:f3:60:74:3c:3c:ae:0f:88: 49:5c:c4:d5:e0:b1:46:97:c0:51:ec:f7:d0:03:ea:19:7a:2f: b5:59:9b:70:b4:6b:64:58:41:6d:47:3c:24:a0:d0:28:c7:2f: b4:51:8a:25:1e:19:f9:7e:d4:e1:ec:3b:6d:78:00:37:1e:2f: 9c:d3:c0:ec -----BEGIN CERTIFICATE----- MIIHGzCCBgOgAwIBAgIUIDJs6HwugILtkWv2hkUhfBkJI4EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNGZjMzM2YmY5ZjNkZTVjZTQxNDE0YmQxOTcxOTQ1ZjRi MjQ2YmZjYzAeFw0yNTEyMDQyMTMwNTdaFw0yNjEyMDMyMTM1NTdaMDMxMTAvBgNV BAMTKDFFN0I0MjFGNDQxQUVGNzk0RjcwMDM1QzgxMThDODE4MUY0NEMwRjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCOloDBbQEqZQHHSCwzgT27gJlg ITOd+BL03ppU3I/5e6KPe1k8oZDCkq2yKZSUhMRQ0BWlDiaUkWo7yJsFHNg70crk fystYZG/T4t9OkzpbKed9gb6adA+UEnuNwrAN/xvvXgf4t0DibRiJKJogk0NRktQ gpD0FEy12n3K1863BaVGcw294oOKA2Bw9Y+W82oqN21k19oWb9L24354GaeOoLM4 zFZnw4Gr0PGunhE13mmpadlJVsqM9D2y19PT/4sTkLz7GeZXd7Mi4XOuTEmwjiN1 yAunB9Mxo7myVkbJseWwh7VA/vh92X6eWaj+4oi4rPhi/rfGCIs8/hRp5+knAgMB AAGjggQlMIIEITAdBgNVHQ4EFgQUHntCH0Qa73lPcANcgRjIGB9EwPQwHwYDVR0j BBgwFoAUT8M2v5895c5BQUvRlxlF9LJGv8wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMDliZTNhYWUtYWVhMS00MWRjLWIxYjktOTVhYzU5MTgy NDRkLzAvNEZDMzM2QkY5RjNERTVDRTQxNDE0QkQxOTcxOTQ1RjRCMjQ2QkZDQy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1Q4TTJ2NTg5NWM1QlFVdlJseGxGOUxK R3Y4dy5jZXIweAYIKwYBBQUHAQsEbDBqMGgGCCsGAQUFBzALhlxyc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzA5YmUzYWFlLWFlYTEt NDFkYy1iMWI5LTk1YWM1OTE4MjQ0ZC8wL0FTMTc0LnJvYTAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMIICOwYIKwYBBQUHAQcBAf8EggIqMIICJjCCAiIEAgABMIIC GjAMAwQFYD4gAwQAYD4kMAwDBAFgPiYDBABgPiwDBABgPi4wDAMEBmA+QAMEAGA+ RAMEAGA+RgMEAGA+ZgMEAGA+aDAMAwQBYD5qAwQAYD5uAwQBYD5wMAwDBAJgPnQD BABgPn4wDAMEAmA+hAMEAGA+hgMEAmA+iDAMAwQAYD6NAwQEYD6AAwQBYD6SAwQE YD6gMAwDBABgPrEDBAJgPrADBAFgPrwDBABgPsQDBAFgPsYDBAFgPtQDBABgPtcw DAMEAGA+4QMEAGA+4gMEAGA+5jAMAwQCYD7sAwQBYD7wMAwDBABgPvUDBABgPvYD BABgPvwDBAKM6aADBAKM6bQDBAGPDjIDBACPDkIDBACPDoEDBACPDpIDBACPDpQD BACPDpkDBACPDpsDBACPDsMDBACPDsUDBACPDvUDBACbdRcDBACbdVYDBACbdWED BACbdWYwDAMEAJt1aQMEAJt1agMEAJt1dAMEAJt1dgMEAJt1jAMEAJt1nAMEAJt1 2gMEAJt18QMEAKKNFTAMAwQAoo0lAwQAoo0mAwQAoo0zAwQBoo02AwQAoo1EAwQA oo1nAwQAoo1sAwQAoo12AwQAoo15AwQBoo2AAwQAoo2ZAwQAoo2bAwQAoo2kAwQA p5RFAwQAp5R+AwQAp5SHAwQAp5SKMAwDBACnlJMDBACnlJQDBACnlJYDBACnlJkD BAGnlKoDBACnlMkwDQYJKoZIhvcNAQELBQADggEBAG7zUPoQ3GC5X8U6MKN2QPxi pUnc2u51wZHIWj4lP61QwgQUPVgqNLiSNhhR5dpZhBrPknZH9CkeuvQi72z46Z/h q/3i0T4Od3C7wFNcm4r6bzEjLUn4exaq6ij8VTzjIPgFLqio+ehWEG7TDEzvwket CJpaTonab1sA+nj1JEYf0rkZ+n2xVnqTKirsXP7ped5dOWRI56ogdxjrMua3DWuQ hiOOhPCbjXXv0hd21tVsJddvpzxmilfBGMTbzZbzYHQ8PK4PiElcxNXgsUaXwFHs 99AD6hl6L7VZm3C0a2RYQW1HPCSg0CjHL7RRiiUeGfl+1OHsO214ADceL5zTwOw= -----END CERTIFICATE-----Generated at Sat Dec 6 09:09:40 2025 by rpki-client