This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS812.roa File: AS812.roa (raw, json) Hash identifier: WOfmF2VgUavkxJkwKtodqz2dDhe/o0visS+OrPrlgeY= Subject key identifier: E1:26:06:F1:70:0D:E9:A7:36:3D:97:B7:1D:E1:57:CA:8D:EF:67:96 Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc Certificate serial: 567834038FC38A7F6640F87F504980EF637D966E Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS812.roa Signing time: Fri 28 Nov 2025 13:24:50 +0000 ROA not before: Fri 28 Nov 2025 13:19:50 +0000 ROA not after: Fri 27 Nov 2026 13:24:50 +0000 asID: 812 IP address blocks: 143.14.232.0/21 maxlen: 24 155.117.204.0/24 maxlen: 24 162.141.22.0/23 maxlen: 24 162.141.24.0/22 maxlen: 24 162.141.28.0/22 maxlen: 24 162.141.32.0/22 maxlen: 24 162.141.40.0/22 maxlen: 24 162.141.56.0/22 maxlen: 24 162.141.60.0/22 maxlen: 24 162.141.72.0/22 maxlen: 24 162.141.144.0/21 maxlen: 24 162.141.156.0/23 maxlen: 24 162.141.168.0/21 maxlen: 24 162.141.184.0/21 maxlen: 24 167.148.16.0/21 maxlen: 24 167.148.24.0/22 maxlen: 24 167.148.48.0/21 maxlen: 24 167.148.56.0/22 maxlen: 24 167.148.60.0/22 maxlen: 24 167.148.64.0/22 maxlen: 24 167.148.76.0/22 maxlen: 24 167.148.88.0/21 maxlen: 24 167.148.108.0/22 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.mft rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 14:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:78:34:03:8f:c3:8a:7f:66:40:f8:7f:50:49:80:ef:63:7d:96:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc Validity Not Before: Nov 28 13:19:50 2025 GMT Not After : Nov 27 13:24:50 2026 GMT Subject: CN=E12606F1700DE9A7363D97B71DE157CA8DEF6796 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:f2:5b:9a:0b:50:37:26:ab:04:f6:af:7e:1a: 14:d8:9f:a0:fc:4a:9e:c7:cb:e9:58:40:72:2f:eb: b2:31:14:6b:f9:a6:a4:75:23:e8:09:f9:a1:8e:1d: 59:96:d6:d9:a9:74:6d:52:96:7e:a0:21:a7:a7:62: 38:cc:e6:e7:e6:91:38:3f:24:b4:51:8a:f2:39:bd: 09:37:46:ba:c3:37:52:46:90:dd:a6:12:9d:e4:d6: 0a:45:a5:5f:ec:db:64:d5:4d:e8:6a:b1:f6:c6:07: 75:04:a5:74:bf:83:6f:b0:5c:55:b7:38:7d:0f:3e: 69:ce:40:cc:04:c5:14:98:43:6d:f9:3d:dd:d0:90: 34:e4:e0:fa:57:8d:c9:0a:0c:5a:11:b7:fe:e5:c0: d5:24:5e:aa:35:23:9c:12:ce:4b:b2:dc:63:b5:fa: 5f:6f:08:44:12:6e:64:14:bc:c0:46:7e:45:20:34: 61:e9:fa:ef:91:8b:93:9d:d0:cd:cc:33:76:9f:26: 69:68:db:f0:69:51:e2:7f:3d:5d:7a:73:33:e8:39: 50:41:bf:4b:42:a6:78:d4:55:4d:03:85:b8:ad:97: 96:22:18:94:47:34:03:20:e8:8c:61:c3:80:06:a0: a0:58:3a:0e:12:80:7b:83:a5:99:f2:72:59:3d:03: 2b:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:26:06:F1:70:0D:E9:A7:36:3D:97:B7:1D:E1:57:CA:8D:EF:67:96 X509v3 Authority Key Identifier: keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS812.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 143.14.232.0/21 155.117.204.0/24 162.141.22.0-162.141.35.255 162.141.40.0/22 162.141.56.0/21 162.141.72.0/22 162.141.144.0/21 162.141.156.0/23 162.141.168.0/21 162.141.184.0/21 167.148.16.0-167.148.27.255 167.148.48.0-167.148.67.255 167.148.76.0/22 167.148.88.0/21 167.148.108.0/22 Signature Algorithm: sha256WithRSAEncryption 00:6c:f7:fc:b8:18:8c:17:08:0e:4a:52:83:a3:5a:80:36:74: bf:cb:89:05:25:73:a3:4d:14:aa:4e:0b:de:7d:cc:1f:f0:7d: b3:5f:c8:92:44:4f:bd:23:26:2a:53:4a:d3:7d:7e:bd:3d:bf: 2b:a8:09:63:11:f9:91:3f:45:72:be:c0:f6:b3:2b:40:7b:d4: 0b:01:34:c3:5a:5e:75:bb:ee:2f:d5:2d:6c:0b:fa:22:3c:b4: 7e:47:6b:2f:e1:16:4d:b6:e1:95:11:0d:3a:84:8b:0a:9e:e8: 00:ba:26:0e:a7:6f:9c:2f:52:42:60:29:8d:e6:78:cb:dd:47: 1b:6c:96:bb:cb:dc:aa:ee:a6:8d:07:89:4c:80:41:22:30:cd: 7e:d9:0a:4d:c2:d6:4d:58:15:4c:a0:17:35:a3:c3:ed:ae:92: 18:72:7e:5f:06:5b:e3:04:17:51:03:f4:91:00:ed:71:18:e5: 56:4b:0a:76:6a:be:5c:06:d9:91:61:19:c1:43:41:b4:31:c1: 67:d6:86:2e:d0:be:a7:ab:e8:58:b7:8a:02:1a:b5:0a:8f:18: 03:a0:c4:92:a7:4f:47:e2:51:6d:cb:a2:49:d8:94:ce:8f:8b: 29:30:ef:77:80:a4:d0:4c:85:18:f2:bf:4c:47:1f:fe:7d:a9: 9e:93:26:59 -----BEGIN CERTIFICATE----- MIIFajCCBFKgAwIBAgIUVng0A4/Din9mQPh/UEmA72N9lm4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNGZjMzM2YmY5ZjNkZTVjZTQxNDE0YmQxOTcxOTQ1ZjRi MjQ2YmZjYzAeFw0yNTExMjgxMzE5NTBaFw0yNjExMjcxMzI0NTBaMDMxMTAvBgNV BAMTKEUxMjYwNkYxNzAwREU5QTczNjNEOTdCNzFERTE1N0NBOERFRjY3OTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDp8luaC1A3JqsE9q9+GhTYn6D8 Sp7Hy+lYQHIv67IxFGv5pqR1I+gJ+aGOHVmW1tmpdG1Sln6gIaenYjjM5ufmkTg/ JLRRivI5vQk3RrrDN1JGkN2mEp3k1gpFpV/s22TVTehqsfbGB3UEpXS/g2+wXFW3 OH0PPmnOQMwExRSYQ235Pd3QkDTk4PpXjckKDFoRt/7lwNUkXqo1I5wSzkuy3GO1 +l9vCEQSbmQUvMBGfkUgNGHp+u+Ri5Od0M3MM3afJmlo2/BpUeJ/PV16czPoOVBB v0tCpnjUVU0Dhbitl5YiGJRHNAMg6Ixhw4AGoKBYOg4SgHuDpZnyclk9AyvLAgMB AAGjggJ0MIICcDAdBgNVHQ4EFgQU4SYG8XAN6ac2PZe3HeFXyo3vZ5YwHwYDVR0j BBgwFoAUT8M2v5895c5BQUvRlxlF9LJGv8wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMDliZTNhYWUtYWVhMS00MWRjLWIxYjktOTVhYzU5MTgy NDRkLzAvNEZDMzM2QkY5RjNERTVDRTQxNDE0QkQxOTcxOTQ1RjRCMjQ2QkZDQy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1Q4TTJ2NTg5NWM1QlFVdlJseGxGOUxK R3Y4dy5jZXIweAYIKwYBBQUHAQsEbDBqMGgGCCsGAQUFBzALhlxyc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzA5YmUzYWFlLWFlYTEt NDFkYy1iMWI5LTk1YWM1OTE4MjQ0ZC8wL0FTODEyLnJvYTAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMIGLBggrBgEFBQcBBwEB/wR8MHoweAQCAAEwcgMEA48O6AME AJt1zDAMAwQBoo0WAwQCoo0gAwQCoo0oAwQDoo04AwQCoo1IAwQDoo2QAwQBoo2c AwQDoo2oAwQDoo24MAwDBASnlBADBAKnlBgwDAMEBKeUMAMEAqeUQAMEAqeUTAME A6eUWAMEAqeUbDANBgkqhkiG9w0BAQsFAAOCAQEAAGz3/LgYjBcIDkpSg6NagDZ0 v8uJBSVzo00Uqk4L3n3MH/B9s1/IkkRPvSMmKlNK031+vT2/K6gJYxH5kT9Fcr7A 9rMrQHvUCwE0w1pedbvuL9UtbAv6Ijy0fkdrL+EWTbbhlRENOoSLCp7oALomDqdv nC9SQmApjeZ4y91HG2yWu8vcqu6mjQeJTIBBIjDNftkKTcLWTVgVTKAXNaPD7a6S GHJ+XwZb4wQXUQP0kQDtcRjlVksKdmq+XAbZkWEZwUNBtDHBZ9aGLtC+p6voWLeK Ahq1Co8YA6DEkqdPR+JRbcuiSdiUzo+LKTDvd4Ck0EyFGPK/TEcf/n2pnpMmWQ== -----END CERTIFICATE-----Generated at Sat Dec 6 23:32:20 2025 by rpki-client