This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS834.roa File: AS834.roa (raw, json) Hash identifier: ePjUqn1Y2m7qBvk65Q/tmJeY4vH4tkYjswWCmLLIVn4= Subject key identifier: 15:D7:99:3F:1F:6D:CE:9D:D1:38:75:9D:61:54:C3:03:B6:56:15:E6 Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc Certificate serial: 626B0AD6A2621BA3C03E893FB4F371260EF9CE50 Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS834.roa Signing time: Sat 24 Jan 2026 19:41:28 +0000 ROA not before: Sat 24 Jan 2026 19:36:28 +0000 ROA not after: Sat 23 Jan 2027 19:41:28 +0000 asID: 834 IP address blocks: 96.62.74.0/24 maxlen: 24 96.62.223.0/24 maxlen: 24 96.62.231.0/24 maxlen: 24 140.150.155.0/24 maxlen: 24 143.14.71.0/24 maxlen: 24 143.14.75.0/24 maxlen: 24 143.14.79.0/24 maxlen: 24 143.14.81.0/24 maxlen: 24 143.14.114.0/24 maxlen: 24 143.14.147.0/24 maxlen: 24 143.14.166.0/24 maxlen: 24 143.14.187.0/24 maxlen: 24 143.14.194.0/24 maxlen: 24 147.79.18.0/24 maxlen: 24 147.79.30.0/24 maxlen: 24 148.135.173.0/24 maxlen: 24 148.135.181.0/24 maxlen: 24 150.241.137.0/24 maxlen: 24 150.241.139.0/24 maxlen: 24 150.241.141.0/24 maxlen: 24 150.241.143.0/24 maxlen: 24 150.241.174.0/24 maxlen: 24 155.117.5.0/24 maxlen: 24 155.117.13.0/24 maxlen: 24 155.117.99.0/24 maxlen: 24 155.117.109.0/24 maxlen: 24 155.117.110.0/24 maxlen: 24 155.117.115.0/24 maxlen: 24 155.117.119.0/24 maxlen: 24 155.117.196.0/23 maxlen: 24 155.117.202.0/24 maxlen: 24 155.117.206.0/24 maxlen: 24 155.117.228.0/24 maxlen: 24 155.117.230.0/24 maxlen: 24 162.141.1.0/24 maxlen: 24 162.141.44.0/24 maxlen: 24 162.141.70.0/24 maxlen: 24 162.141.121.0/24 maxlen: 24 162.141.137.0/24 maxlen: 24 162.141.142.0/24 maxlen: 24 162.141.152.0/24 maxlen: 24 167.148.126.0/24 maxlen: 24 167.148.139.0/24 maxlen: 24 167.148.144.0/24 maxlen: 24 167.148.154.0/24 maxlen: 24 167.148.156.0/24 maxlen: 24 167.148.180.0/24 maxlen: 24 167.148.186.0/24 maxlen: 24 167.148.189.0/24 maxlen: 24 167.148.201.0/24 maxlen: 24 167.148.212.0/24 maxlen: 24 167.148.215.0/24 maxlen: 24 168.222.64.0/18 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.mft rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 20:24:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:6b:0a:d6:a2:62:1b:a3:c0:3e:89:3f:b4:f3:71:26:0e:f9:ce:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc Validity Not Before: Jan 24 19:36:28 2026 GMT Not After : Jan 23 19:41:28 2027 GMT Subject: CN=15D7993F1F6DCE9DD138759D6154C303B65615E6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:86:3f:d3:15:9d:ea:2f:98:1e:9a:55:5e:40:d3: f3:87:cd:0c:f6:e5:b9:ad:c6:ef:c7:af:3c:29:29: 26:20:60:d4:80:99:5e:fa:6b:cf:ba:67:f0:1c:61: 15:9c:60:eb:56:b4:b3:06:34:5d:3f:62:f1:a0:a5: eb:97:9a:8e:e0:75:a7:b2:75:42:d7:c4:ed:8e:b5: ec:6d:31:8f:40:c9:2c:bd:e9:1a:3c:e2:84:f5:fd: 66:04:3a:4a:a6:6e:c4:35:47:19:21:03:19:4b:11: a5:6e:e4:fd:93:85:df:ce:75:a4:a2:77:d9:97:94: b2:45:ef:3c:0f:1d:7b:21:ca:78:1d:06:4b:88:3b: 39:d2:23:47:6e:fe:64:e1:43:67:6d:2d:a8:a6:bd: 2e:dd:0c:be:8e:e6:53:d9:e1:c4:be:bf:40:b0:06: 01:33:42:09:fc:79:55:01:66:24:a0:17:14:19:c4: a1:7a:52:76:23:06:03:fe:34:ce:41:96:e0:b6:b5: f8:67:bd:e7:1f:3b:d6:cb:ac:87:9e:f6:b3:7a:1a: c3:e0:b4:65:ed:52:e8:f3:80:7d:5a:03:bc:03:a7: cc:94:f2:ab:f0:01:52:13:3f:fd:08:76:11:5c:46: 3b:22:1f:38:47:6b:f2:bd:5e:0b:1a:03:b0:b2:84: 51:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:D7:99:3F:1F:6D:CE:9D:D1:38:75:9D:61:54:C3:03:B6:56:15:E6 X509v3 Authority Key Identifier: keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS834.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.62.74.0/24 96.62.223.0/24 96.62.231.0/24 140.150.155.0/24 143.14.71.0/24 143.14.75.0/24 143.14.79.0/24 143.14.81.0/24 143.14.114.0/24 143.14.147.0/24 143.14.166.0/24 143.14.187.0/24 143.14.194.0/24 147.79.18.0/24 147.79.30.0/24 148.135.173.0/24 148.135.181.0/24 150.241.137.0/24 150.241.139.0/24 150.241.141.0/24 150.241.143.0/24 150.241.174.0/24 155.117.5.0/24 155.117.13.0/24 155.117.99.0/24 155.117.109.0-155.117.110.255 155.117.115.0/24 155.117.119.0/24 155.117.196.0/23 155.117.202.0/24 155.117.206.0/24 155.117.228.0/24 155.117.230.0/24 162.141.1.0/24 162.141.44.0/24 162.141.70.0/24 162.141.121.0/24 162.141.137.0/24 162.141.142.0/24 162.141.152.0/24 167.148.126.0/24 167.148.139.0/24 167.148.144.0/24 167.148.154.0/24 167.148.156.0/24 167.148.180.0/24 167.148.186.0/24 167.148.189.0/24 167.148.201.0/24 167.148.212.0/24 167.148.215.0/24 168.222.64.0/18 Signature Algorithm: sha256WithRSAEncryption 5e:20:91:5e:0b:34:14:04:d3:79:b9:b4:0f:9e:76:92:cf:ff: 6a:13:92:0b:fc:52:1a:4c:d3:53:80:91:44:72:3c:af:b3:3c: 5f:90:0c:6a:22:3a:e1:99:1c:4e:0f:6d:3d:20:b9:bd:ba:ef: 48:39:21:e3:68:07:ee:aa:42:fe:be:49:cc:89:84:bc:f4:fe: d9:47:74:6c:35:41:34:e3:8d:0b:4f:62:12:a0:37:58:9e:4b: 21:ae:6c:28:dd:60:82:45:5b:54:74:c5:67:86:df:7c:9e:47: ae:1a:5e:ea:40:1e:8d:e3:a3:f8:e5:d8:86:2d:e1:59:51:07: c8:4c:e3:e0:4b:05:f4:2c:f1:93:be:81:61:1e:12:89:66:2a: fe:0c:f3:43:2e:f1:90:e2:50:4f:f6:7d:16:74:37:9e:ee:0b: 51:57:cc:44:b6:5e:bf:2b:e4:0e:3e:64:cb:10:e7:bb:f9:de: 1b:8f:ec:80:b2:55:37:fb:cd:25:8e:84:32:e4:60:2e:ce:ac: 2d:17:39:6b:cb:d4:e4:ac:4a:5e:6e:29:c3:b9:49:de:ef:8f: 1b:b9:ae:87:b3:aa:2c:dc:a7:86:e5:57:72:28:62:1b:b5:82: f1:00:b2:50:aa:66:7e:29:7c:9a:c2:69:78:cf:f6:ca:e2:75: dc:d8:bc:b5 -----BEGIN CERTIFICATE----- MIIGQTCCBSmgAwIBAgIUYmsK1qJiG6PAPok/tPNxJg75zlAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNGZjMzM2YmY5ZjNkZTVjZTQxNDE0YmQxOTcxOTQ1ZjRi MjQ2YmZjYzAeFw0yNjAxMjQxOTM2MjhaFw0yNzAxMjMxOTQxMjhaMDMxMTAvBgNV BAMTKDE1RDc5OTNGMUY2RENFOUREMTM4NzU5RDYxNTRDMzAzQjY1NjE1RTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCGP9MVneovmB6aVV5A0/OHzQz2 5bmtxu/HrzwpKSYgYNSAmV76a8+6Z/AcYRWcYOtWtLMGNF0/YvGgpeuXmo7gdaey dULXxO2OtextMY9AySy96Ro84oT1/WYEOkqmbsQ1RxkhAxlLEaVu5P2Thd/OdaSi d9mXlLJF7zwPHXshyngdBkuIOznSI0du/mThQ2dtLaimvS7dDL6O5lPZ4cS+v0Cw BgEzQgn8eVUBZiSgFxQZxKF6UnYjBgP+NM5BluC2tfhnvecfO9bLrIee9rN6GsPg tGXtUujzgH1aA7wDp8yU8qvwAVITP/0IdhFcRjsiHzhHa/K9XgsaA7CyhFFVAgMB AAGjggNLMIIDRzAdBgNVHQ4EFgQUFdeZPx9tzp3ROHWdYVTDA7ZWFeYwHwYDVR0j BBgwFoAUT8M2v5895c5BQUvRlxlF9LJGv8wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMDliZTNhYWUtYWVhMS00MWRjLWIxYjktOTVhYzU5MTgy NDRkLzAvNEZDMzM2QkY5RjNERTVDRTQxNDE0QkQxOTcxOTQ1RjRCMjQ2QkZDQy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1Q4TTJ2NTg5NWM1QlFVdlJseGxGOUxK R3Y4dy5jZXIweAYIKwYBBQUHAQsEbDBqMGgGCCsGAQUFBzALhlxyc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzA5YmUzYWFlLWFlYTEt NDFkYy1iMWI5LTk1YWM1OTE4MjQ0ZC8wL0FTODM0LnJvYTAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMIIBYQYIKwYBBQUHAQcBAf8EggFQMIIBTDCCAUgEAgABMIIB QAMEAGA+SgMEAGA+3wMEAGA+5wMEAIyWmwMEAI8ORwMEAI8OSwMEAI8OTwMEAI8O UQMEAI8OcgMEAI8OkwMEAI8OpgMEAI8OuwMEAI8OwgMEAJNPEgMEAJNPHgMEAJSH rQMEAJSHtQMEAJbxiQMEAJbxiwMEAJbxjQMEAJbxjwMEAJbxrgMEAJt1BQMEAJt1 DQMEAJt1YzAMAwQAm3VtAwQAm3VuAwQAm3VzAwQAm3V3AwQBm3XEAwQAm3XKAwQA m3XOAwQAm3XkAwQAm3XmAwQAoo0BAwQAoo0sAwQAoo1GAwQAoo15AwQAoo2JAwQA oo2OAwQAoo2YAwQAp5R+AwQAp5SLAwQAp5SQAwQAp5SaAwQAp5ScAwQAp5S0AwQA p5S6AwQAp5S9AwQAp5TJAwQAp5TUAwQAp5TXAwQGqN5AMA0GCSqGSIb3DQEBCwUA A4IBAQBeIJFeCzQUBNN5ubQPnnaSz/9qE5IL/FIaTNNTgJFEcjyvszxfkAxqIjrh mRxOD209ILm9uu9IOSHjaAfuqkL+vknMiYS89P7ZR3RsNUE0440LT2ISoDdYnksh rmwo3WCCRVtUdMVnht98nkeuGl7qQB6N46P45diGLeFZUQfITOPgSwX0LPGTvoFh HhKJZir+DPNDLvGQ4lBP9n0WdDee7gtRV8xEtl6/K+QOPmTLEOe7+d4bj+yAslU3 +80ljoQy5GAuzqwtFzlry9TkrEpebinDuUne748bua6Hs6os3KeG5VdyKGIbtYLx ALJQqmZ+KXyawml4z/bK4nXc2Ly1 -----END CERTIFICATE-----Generated at Sun Jan 25 10:34:20 2026 by rpki-client