This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS36530.roa File: AS36530.roa (raw, json) Hash identifier: +g61h/TINiekQMhzLOsDbRGH+rGRJqSJ9TSOvcoAo5A= Subject key identifier: E5:08:51:61:60:F5:07:74:3C:9A:A3:BF:C6:61:22:1D:72:8C:3F:D2 Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc Certificate serial: 2E60EAB00AD92ED1C591E670791A2174E31F4BDC Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS36530.roa Signing time: Wed 17 Dec 2025 00:13:02 +0000 ROA not before: Wed 17 Dec 2025 00:08:02 +0000 ROA not after: Wed 16 Dec 2026 00:13:02 +0000 asID: 36530 IP address blocks: 96.62.115.0/24 maxlen: 24 143.14.226.0/24 maxlen: 24 148.135.181.0/24 maxlen: 24 155.117.6.0/24 maxlen: 24 155.117.197.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.mft rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 18 Dec 2025 09:00:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:60:ea:b0:0a:d9:2e:d1:c5:91:e6:70:79:1a:21:74:e3:1f:4b:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc Validity Not Before: Dec 17 00:08:02 2025 GMT Not After : Dec 16 00:13:02 2026 GMT Subject: CN=E508516160F507743C9AA3BFC661221D728C3FD2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:4a:b2:e3:0f:f5:9c:34:df:65:d2:89:a2:d5: 9d:2d:66:ca:ad:22:b7:25:0a:d6:43:86:a5:c7:8c: 73:26:79:39:ef:a9:ed:a1:58:c9:d4:7b:57:e8:ce: 2d:52:b0:30:8e:eb:bb:51:dd:85:e2:0a:61:69:65: f1:ff:7b:c6:68:be:0d:39:4d:d6:2e:96:c4:c2:2d: b2:f0:45:02:9a:76:08:66:ff:11:41:24:ce:e5:2e: 64:49:4d:09:7f:37:ec:bf:51:5e:63:a2:f8:84:8a: 18:3c:10:5e:af:c7:2c:e1:b4:c8:55:cd:d6:71:d6: ac:f3:25:a3:d3:5c:ff:5b:75:4a:35:b0:53:0c:32: 4a:2c:31:e3:68:0d:b7:31:b6:c3:b8:36:4c:c5:e4: 26:7e:b0:b5:85:d3:b7:4f:ac:ac:03:77:ca:92:40: 0a:5b:0a:ff:9a:5d:ee:98:e9:41:b4:14:38:d6:15: d9:71:ce:b3:60:05:d1:26:a1:d7:9c:ca:74:dc:f3: f3:1f:45:4f:22:6b:fe:6c:a5:14:cd:88:f8:95:d9: 67:da:34:f6:64:22:5b:16:06:8e:7d:f2:fb:e9:ce: 1a:9b:5a:20:58:16:6e:a7:3c:a8:f4:fe:47:71:cb: 05:29:44:38:60:36:5d:2b:ac:01:eb:2e:d1:aa:01: d0:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:08:51:61:60:F5:07:74:3C:9A:A3:BF:C6:61:22:1D:72:8C:3F:D2 X509v3 Authority Key Identifier: keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS36530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.62.115.0/24 143.14.226.0/24 148.135.181.0/24 155.117.6.0/24 155.117.197.0/24 Signature Algorithm: sha256WithRSAEncryption 1e:0b:eb:9d:b4:21:ce:47:d1:4f:5d:0b:cd:87:a4:53:7c:f6: ad:a6:f9:c3:8c:09:98:ea:93:9c:63:bc:55:81:70:f7:64:5a: 7b:c2:85:2c:65:f5:0c:53:46:1f:97:c8:e4:15:37:ce:da:d2: 45:f2:22:12:23:87:77:6f:b3:a1:a9:d9:c1:99:a3:04:b4:3f: cb:33:fc:93:54:e4:cd:46:76:0c:8d:02:a8:f9:bd:e7:25:5b: 96:91:1a:75:03:b5:f7:d9:31:23:0f:63:0f:63:3d:80:45:6a: a6:be:37:86:fc:84:d0:a7:6d:45:51:86:0d:91:54:1c:d0:66: ad:64:b5:a6:61:ba:44:6c:00:a0:5e:26:ce:5f:cb:85:fe:76: 45:a1:37:bb:30:2e:65:fe:ab:19:df:81:36:35:78:55:e5:0b: 6d:17:dd:bd:fe:5e:71:9f:21:a0:95:36:f1:ba:16:a3:60:e6: 4b:2a:86:ec:5f:79:84:07:06:72:1b:32:02:e4:de:16:57:75: 96:74:10:c0:09:3f:98:43:fe:47:90:7a:e3:22:de:c2:05:00: e6:ec:1f:8f:71:a7:46:93:1d:89:51:57:91:6a:59:1a:2b:22: 92:ea:fd:e1:1a:d3:49:8a:c5:ac:c8:35:23:38:29:94:95:64: 25:2c:66:50 -----BEGIN CERTIFICATE----- MIIFFzCCA/+gAwIBAgIULmDqsArZLtHFkeZweRohdOMfS9wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNGZjMzM2YmY5ZjNkZTVjZTQxNDE0YmQxOTcxOTQ1ZjRi MjQ2YmZjYzAeFw0yNTEyMTcwMDA4MDJaFw0yNjEyMTYwMDEzMDJaMDMxMTAvBgNV BAMTKEU1MDg1MTYxNjBGNTA3NzQzQzlBQTNCRkM2NjEyMjFENzI4QzNGRDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFSrLjD/WcNN9l0omi1Z0tZsqt IrclCtZDhqXHjHMmeTnvqe2hWMnUe1fozi1SsDCO67tR3YXiCmFpZfH/e8Zovg05 TdYulsTCLbLwRQKadghm/xFBJM7lLmRJTQl/N+y/UV5joviEihg8EF6vxyzhtMhV zdZx1qzzJaPTXP9bdUo1sFMMMkosMeNoDbcxtsO4NkzF5CZ+sLWF07dPrKwDd8qS QApbCv+aXe6Y6UG0FDjWFdlxzrNgBdEmodecynTc8/MfRU8ia/5spRTNiPiV2Wfa NPZkIlsWBo598vvpzhqbWiBYFm6nPKj0/kdxywUpRDhgNl0rrAHrLtGqAdA9AgMB AAGjggIhMIICHTAdBgNVHQ4EFgQU5QhRYWD1B3Q8mqO/xmEiHXKMP9IwHwYDVR0j BBgwFoAUT8M2v5895c5BQUvRlxlF9LJGv8wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMDliZTNhYWUtYWVhMS00MWRjLWIxYjktOTVhYzU5MTgy NDRkLzAvNEZDMzM2QkY5RjNERTVDRTQxNDE0QkQxOTcxOTQ1RjRCMjQ2QkZDQy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1Q4TTJ2NTg5NWM1QlFVdlJseGxGOUxK R3Y4dy5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzA5YmUzYWFlLWFlYTEt NDFkYy1iMWI5LTk1YWM1OTE4MjQ0ZC8wL0FTMzY1MzAucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwNwYIKwYBBQUHAQcBAf8EKDAmMCQEAgABMB4DBABgPnMD BACPDuIDBACUh7UDBACbdQYDBACbdcUwDQYJKoZIhvcNAQELBQADggEBAB4L6520 Ic5H0U9dC82HpFN89q2m+cOMCZjqk5xjvFWBcPdkWnvChSxl9QxTRh+XyOQVN87a 0kXyIhIjh3dvs6Gp2cGZowS0P8sz/JNU5M1GdgyNAqj5veclW5aRGnUDtffZMSMP Yw9jPYBFaqa+N4b8hNCnbUVRhg2RVBzQZq1ktaZhukRsAKBeJs5fy4X+dkWhN7sw LmX+qxnfgTY1eFXlC20X3b3+XnGfIaCVNvG6FqNg5ksqhuxfeYQHBnIbMgLk3hZX dZZ0EMAJP5hD/keQeuMi3sIFAObsH49xp0aTHYlRV5FqWRorIpLq/eEa00mKxazI NSM4KZSVZCUsZlA= -----END CERTIFICATE-----Generated at Wed Dec 17 18:11:22 2025 by rpki-client