This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS42831.roa File: AS42831.roa (raw, json) Hash identifier: 5+gboL//gPXsk5/VcsD4nscux236u0vuI8elKFQbngk= Subject key identifier: B7:EF:17:B9:C4:55:7B:F8:46:16:69:EE:2D:EE:A3:F6:F4:20:C4:E0 Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc Certificate serial: 40D7ECC5D1A96B80C869A559240272A7F640BD89 Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS42831.roa Signing time: Mon 19 Jan 2026 23:19:55 +0000 ROA not before: Mon 19 Jan 2026 23:14:55 +0000 ROA not after: Mon 18 Jan 2027 23:19:55 +0000 asID: 42831 IP address blocks: 143.14.80.0/24 maxlen: 24 146.103.28.0/24 maxlen: 24 147.79.4.0/24 maxlen: 24 150.241.132.0/24 maxlen: 24 150.241.133.0/24 maxlen: 24 150.241.134.0/24 maxlen: 24 150.241.144.0/24 maxlen: 24 150.241.241.0/24 maxlen: 24 155.117.244.0/24 maxlen: 24 162.141.88.0/24 maxlen: 24 167.148.152.0/24 maxlen: 24 167.148.157.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.mft rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 20:24:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:d7:ec:c5:d1:a9:6b:80:c8:69:a5:59:24:02:72:a7:f6:40:bd:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc Validity Not Before: Jan 19 23:14:55 2026 GMT Not After : Jan 18 23:19:55 2027 GMT Subject: CN=B7EF17B9C4557BF8461669EE2DEEA3F6F420C4E0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:31:9d:d2:60:e1:56:ec:ef:e9:99:39:95:15: 6e:6c:5d:b5:d5:25:ef:df:c8:09:3d:4f:0e:37:f9: a7:0f:6f:25:fa:8a:05:00:98:90:9c:ec:a2:83:d3: 88:d4:8e:1d:e5:47:a2:37:36:34:f8:7c:dc:5e:9f: 5d:73:ae:d3:19:4e:90:9a:69:26:69:c4:75:8e:0e: 40:0a:8e:53:95:54:c6:7a:3c:92:d9:03:da:ac:d5: 3a:48:2c:e2:4a:c0:26:44:9e:4a:f9:71:22:3f:44: 49:4a:06:12:c7:d7:ac:3b:7c:0f:1a:dc:60:bd:5d: cd:a5:e5:e2:72:01:cd:e3:42:a2:c3:3c:66:d4:5b: 4a:00:4f:6b:16:56:aa:ee:53:7b:ec:12:6a:a5:c1: 38:1b:44:35:4e:51:e6:de:26:82:ed:fe:62:08:64: 4b:f3:e8:ff:a5:59:7e:fb:f2:39:93:73:ee:c1:77: 76:96:e7:fb:d3:2b:d0:fb:35:23:37:23:c5:d6:05: 91:57:80:f2:09:d9:77:0e:db:72:3d:d5:6c:4b:8e: 5c:91:a5:da:5f:5d:ee:5d:dc:ea:4d:8e:8c:b8:96: 3f:19:e9:61:97:e1:8c:1e:9b:1b:f8:64:33:6e:9b: 1c:17:4e:ee:89:22:c6:f4:fb:e6:b8:f1:57:f6:9f: 35:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:EF:17:B9:C4:55:7B:F8:46:16:69:EE:2D:EE:A3:F6:F4:20:C4:E0 X509v3 Authority Key Identifier: keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS42831.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 143.14.80.0/24 146.103.28.0/24 147.79.4.0/24 150.241.132.0-150.241.134.255 150.241.144.0/24 150.241.241.0/24 155.117.244.0/24 162.141.88.0/24 167.148.152.0/24 167.148.157.0/24 Signature Algorithm: sha256WithRSAEncryption 6a:aa:7e:93:03:c8:b8:74:fb:69:7c:77:90:56:2c:70:e1:55: 00:be:0f:cc:37:89:87:5d:bc:c7:d6:81:82:7a:1c:3c:e8:4c: 16:07:cb:ce:19:e0:ae:1d:3c:12:dd:81:29:8c:63:19:c6:cf: 94:da:ac:45:77:d5:30:8a:3d:d5:44:c0:96:2a:16:40:ff:7c: cf:b9:5d:98:fb:02:55:86:ee:2f:7c:c2:ef:d6:e3:cc:c7:f5: f9:0b:2b:05:30:bb:ab:de:c6:09:4f:29:8c:d6:92:e7:b5:58: 7f:8c:41:32:a8:b5:90:ae:7b:78:37:cc:14:53:20:bb:d8:54: 37:99:d7:76:73:0c:2f:85:13:e8:67:d2:e3:b1:3b:57:e5:7a: 06:ca:d8:a9:2e:e4:3b:ab:3e:79:26:44:9d:74:85:32:25:20: 9c:af:e3:d4:36:c9:3c:d7:13:15:aa:9a:04:17:27:aa:ff:11: e2:8e:eb:82:ab:cf:8e:cb:2e:45:48:db:e1:cb:86:ae:98:50: da:68:c9:0e:f3:f1:1b:5f:ad:e6:38:3d:ee:44:bf:f0:39:db: ff:da:7d:4e:c3:33:93:59:2c:d1:6a:19:e0:22:e1:ec:0f:b6: 17:d7:79:7f:fb:d5:88:62:f1:b2:14:55:6c:ea:9b:43:7d:7e: 9d:63:44:d1 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUQNfsxdGpa4DIaaVZJAJyp/ZAvYkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNGZjMzM2YmY5ZjNkZTVjZTQxNDE0YmQxOTcxOTQ1ZjRi MjQ2YmZjYzAeFw0yNjAxMTkyMzE0NTVaFw0yNzAxMTgyMzE5NTVaMDMxMTAvBgNV BAMTKEI3RUYxN0I5QzQ1NTdCRjg0NjE2NjlFRTJERUVBM0Y2RjQyMEM0RTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxMZ3SYOFW7O/pmTmVFW5sXbXV Je/fyAk9Tw43+acPbyX6igUAmJCc7KKD04jUjh3lR6I3NjT4fNxen11zrtMZTpCa aSZpxHWODkAKjlOVVMZ6PJLZA9qs1TpILOJKwCZEnkr5cSI/RElKBhLH16w7fA8a 3GC9Xc2l5eJyAc3jQqLDPGbUW0oAT2sWVqruU3vsEmqlwTgbRDVOUebeJoLt/mII ZEvz6P+lWX778jmTc+7Bd3aW5/vTK9D7NSM3I8XWBZFXgPIJ2XcO23I91WxLjlyR pdpfXe5d3OpNjoy4lj8Z6WGX4Ywemxv4ZDNumxwXTu6JIsb0++a48Vf2nzU5AgMB AAGjggJHMIICQzAdBgNVHQ4EFgQUt+8XucRVe/hGFmnuLe6j9vQgxOAwHwYDVR0j BBgwFoAUT8M2v5895c5BQUvRlxlF9LJGv8wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMDliZTNhYWUtYWVhMS00MWRjLWIxYjktOTVhYzU5MTgy NDRkLzAvNEZDMzM2QkY5RjNERTVDRTQxNDE0QkQxOTcxOTQ1RjRCMjQ2QkZDQy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1Q4TTJ2NTg5NWM1QlFVdlJseGxGOUxK R3Y4dy5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzA5YmUzYWFlLWFlYTEt NDFkYy1iMWI5LTk1YWM1OTE4MjQ0ZC8wL0FTNDI4MzEucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwXQYIKwYBBQUHAQcBAf8ETjBMMEoEAgABMEQDBACPDlAD BACSZxwDBACTTwQwDAMEApbxhAMEAJbxhgMEAJbxkAMEAJbx8QMEAJt19AMEAKKN WAMEAKeUmAMEAKeUnTANBgkqhkiG9w0BAQsFAAOCAQEAaqp+kwPIuHT7aXx3kFYs cOFVAL4PzDeJh128x9aBgnocPOhMFgfLzhngrh08Et2BKYxjGcbPlNqsRXfVMIo9 1UTAlioWQP98z7ldmPsCVYbuL3zC79bjzMf1+QsrBTC7q97GCU8pjNaS57VYf4xB Mqi1kK57eDfMFFMgu9hUN5nXdnMML4UT6GfS47E7V+V6BsrYqS7kO6s+eSZEnXSF MiUgnK/j1DbJPNcTFaqaBBcnqv8R4o7rgqvPjssuRUjb4cuGrphQ2mjJDvPxG1+t 5jg97kS/8Dnb/9p9TsMzk1ks0WoZ4CLh7A+2F9d5f/vViGLxshRVbOqbQ31+nWNE 0Q== -----END CERTIFICATE-----Generated at Sun Jan 25 07:28:49 2026 by rpki-client