This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS31715.roa File: AS31715.roa (raw, json) Hash identifier: ThGv+NGFt+1Tvd0pjUZxhdK+vHJpNituYpclb+iGKAM= Subject key identifier: 47:A6:0B:04:2D:BC:23:F3:0D:10:15:19:B3:A8:05:4B:2B:0D:85:BE Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc Certificate serial: 023809D88652C5339586B68ADF5A60AACA887793 Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS31715.roa Signing time: Tue 11 Nov 2025 09:28:39 +0000 ROA not before: Tue 11 Nov 2025 09:23:39 +0000 ROA not after: Tue 10 Nov 2026 09:28:39 +0000 asID: 31715 IP address blocks: 143.14.217.0/24 maxlen: 24 148.135.152.0/24 maxlen: 24 150.241.249.0/24 maxlen: 24 155.117.38.0/24 maxlen: 24 155.117.150.0/24 maxlen: 24 162.141.106.0/24 maxlen: 24 167.148.199.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.mft rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:38:09:d8:86:52:c5:33:95:86:b6:8a:df:5a:60:aa:ca:88:77:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc Validity Not Before: Nov 11 09:23:39 2025 GMT Not After : Nov 10 09:28:39 2026 GMT Subject: CN=47A60B042DBC23F30D101519B3A8054B2B0D85BE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:4d:43:0d:27:e3:17:1a:f0:dc:08:b6:e4:80: b6:fc:64:68:16:5b:89:85:59:fc:e1:0c:d4:89:66: ec:15:5c:45:bf:1e:a5:d4:63:f4:47:4a:0e:33:82: 6d:82:9e:1b:0d:de:ca:c9:00:26:0b:74:8f:9d:7e: d8:e3:c6:20:9f:97:ba:97:1a:f9:e6:37:6e:17:34: 03:d0:82:30:ad:2d:7d:05:f0:d4:0d:31:1c:86:83: 24:68:e2:d1:99:84:58:54:db:89:f1:15:44:77:de: 01:d1:3a:aa:c4:91:60:ff:9b:97:c4:b5:e3:da:e4: a1:66:f4:3b:b0:d7:f9:54:81:e5:e1:d3:07:80:4f: cc:e8:41:e4:2e:1d:77:12:0d:cd:9e:01:2f:85:a5: 55:3f:e4:88:09:88:55:2f:69:85:d0:35:4f:7f:d6: dc:17:90:66:4d:7b:fc:38:68:75:dd:7a:89:0a:33: 6d:ed:15:82:50:04:38:67:fb:a9:b9:c5:13:53:11: 49:5a:74:48:69:ae:0a:77:eb:98:38:2d:1d:b6:23: 18:1f:87:90:8e:89:a2:52:e7:b4:44:bb:98:cf:45: 81:03:e3:d2:b9:4a:3e:ca:83:6c:d6:aa:5f:6b:34: 5d:2f:e3:13:6f:8c:de:cf:c7:45:33:72:35:33:80: 0f:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:A6:0B:04:2D:BC:23:F3:0D:10:15:19:B3:A8:05:4B:2B:0D:85:BE X509v3 Authority Key Identifier: keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS31715.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 143.14.217.0/24 148.135.152.0/24 150.241.249.0/24 155.117.38.0/24 155.117.150.0/24 162.141.106.0/24 167.148.199.0/24 Signature Algorithm: sha256WithRSAEncryption 50:0a:0c:c9:15:b0:c4:c2:79:c0:cc:28:63:b7:7d:b5:17:a7: 06:88:88:90:0b:09:d3:ae:c9:ec:d5:b2:3e:e6:f5:0d:46:39: 18:71:1d:a3:a7:10:8c:1e:91:58:60:9a:72:0b:be:b4:3d:32: c8:88:e0:29:61:c5:f7:bf:a9:03:41:92:81:f1:94:8a:8f:a0: 0b:bc:1b:f6:ae:9b:31:e8:9c:44:cd:50:66:e4:a2:42:74:19: 83:a3:dd:0b:48:b4:f0:44:59:a9:a1:81:d4:57:1f:01:15:75: 5d:a3:57:90:88:39:e4:0d:f0:2a:0b:1b:d4:68:08:15:d8:fa: 1b:38:94:85:ab:cd:aa:54:d3:18:e4:6e:e3:ba:af:14:f1:5c: ca:1e:68:ab:79:25:52:a4:b8:78:7a:32:fe:31:53:49:31:b7: 80:d4:4d:38:8e:15:47:38:f6:08:9f:a5:19:2d:f4:f5:31:24: ab:bf:da:26:2f:21:8d:b8:20:4a:2a:53:15:1b:95:10:c7:05: 5a:59:96:7a:9b:b7:b7:84:c2:29:2f:dc:af:b5:82:c1:de:5e: 82:ba:e7:9b:8f:b1:47:ca:4c:95:e5:89:f6:09:2f:62:cf:a5: 1b:ce:7a:7e:bc:cc:cd:ca:44:03:2d:24:19:cd:98:4c:14:3b: ee:ec:91:00 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUAjgJ2IZSxTOVhraK31pgqsqId5MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNGZjMzM2YmY5ZjNkZTVjZTQxNDE0YmQxOTcxOTQ1ZjRi MjQ2YmZjYzAeFw0yNTExMTEwOTIzMzlaFw0yNjExMTAwOTI4MzlaMDMxMTAvBgNV BAMTKDQ3QTYwQjA0MkRCQzIzRjMwRDEwMTUxOUIzQTgwNTRCMkIwRDg1QkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCTTUMNJ+MXGvDcCLbkgLb8ZGgW W4mFWfzhDNSJZuwVXEW/HqXUY/RHSg4zgm2CnhsN3srJACYLdI+dftjjxiCfl7qX GvnmN24XNAPQgjCtLX0F8NQNMRyGgyRo4tGZhFhU24nxFUR33gHROqrEkWD/m5fE tePa5KFm9Duw1/lUgeXh0weAT8zoQeQuHXcSDc2eAS+FpVU/5IgJiFUvaYXQNU9/ 1twXkGZNe/w4aHXdeokKM23tFYJQBDhn+6m5xRNTEUladEhprgp365g4LR22Ixgf h5COiaJS57REu5jPRYED49K5Sj7Kg2zWql9rNF0v4xNvjN7Px0UzcjUzgA9DAgMB AAGjggItMIICKTAdBgNVHQ4EFgQUR6YLBC28I/MNEBUZs6gFSysNhb4wHwYDVR0j BBgwFoAUT8M2v5895c5BQUvRlxlF9LJGv8wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMDliZTNhYWUtYWVhMS00MWRjLWIxYjktOTVhYzU5MTgy NDRkLzAvNEZDMzM2QkY5RjNERTVDRTQxNDE0QkQxOTcxOTQ1RjRCMjQ2QkZDQy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1Q4TTJ2NTg5NWM1QlFVdlJseGxGOUxK R3Y4dy5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzA5YmUzYWFlLWFlYTEt NDFkYy1iMWI5LTk1YWM1OTE4MjQ0ZC8wL0FTMzE3MTUucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwQwYIKwYBBQUHAQcBAf8ENDAyMDAEAgABMCoDBACPDtkD BACUh5gDBACW8fkDBACbdSYDBACbdZYDBACijWoDBACnlMcwDQYJKoZIhvcNAQEL BQADggEBAFAKDMkVsMTCecDMKGO3fbUXpwaIiJALCdOuyezVsj7m9Q1GORhxHaOn EIwekVhgmnILvrQ9MsiI4Clhxfe/qQNBkoHxlIqPoAu8G/aumzHonETNUGbkokJ0 GYOj3QtItPBEWamhgdRXHwEVdV2jV5CIOeQN8CoLG9RoCBXY+hs4lIWrzapU0xjk buO6rxTxXMoeaKt5JVKkuHh6Mv4xU0kxt4DUTTiOFUc49gifpRkt9PUxJKu/2iYv IY24IEoqUxUblRDHBVpZlnqbt7eEwikv3K+1gsHeXoK655uPsUfKTJXlifYJL2LP pRvOen68zM3KRAMtJBnNmEwUO+7skQA= -----END CERTIFICATE-----Generated at Sat Dec 6 11:52:00 2025 by rpki-client