This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS834.roa File: AS834.roa (raw, json) Hash identifier: ix6NRZXGWyeZLNW8k9+ohCQnCpltEH5QZu9Lp0rc20w= Subject key identifier: 13:FD:BE:53:14:92:67:FF:13:EB:AD:FD:2D:13:A1:4A:0B:15:26:65 Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc Certificate serial: 2735C8711A33E7F0A9829D2FA587A734C1AD0F82 Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS834.roa Signing time: Sat 06 Dec 2025 16:27:42 +0000 ROA not before: Sat 06 Dec 2025 16:22:42 +0000 ROA not after: Sat 05 Dec 2026 16:27:42 +0000 asID: 834 IP address blocks: 96.62.71.0/24 maxlen: 24 96.62.73.0/24 maxlen: 24 96.62.74.0/24 maxlen: 24 96.62.100.0/23 maxlen: 24 96.62.103.0/24 maxlen: 24 96.62.114.0/24 maxlen: 24 96.62.152.0/24 maxlen: 24 96.62.220.0/24 maxlen: 24 96.62.223.0/24 maxlen: 24 96.62.231.0/24 maxlen: 24 140.150.152.0/22 maxlen: 24 140.150.224.0/23 maxlen: 24 140.233.173.0/24 maxlen: 24 140.233.174.0/23 maxlen: 24 143.14.6.0/23 maxlen: 24 143.14.16.0/24 maxlen: 24 143.14.33.0/24 maxlen: 24 143.14.46.0/23 maxlen: 24 143.14.77.0/24 maxlen: 24 143.14.78.0/24 maxlen: 24 143.14.80.0/24 maxlen: 24 143.14.92.0/24 maxlen: 24 143.14.157.0/24 maxlen: 24 143.14.166.0/24 maxlen: 24 143.14.192.0/24 maxlen: 24 143.14.194.0/24 maxlen: 24 143.14.250.0/24 maxlen: 24 143.14.254.0/24 maxlen: 24 146.103.22.0/24 maxlen: 24 147.79.1.0/24 maxlen: 24 147.79.4.0/24 maxlen: 24 147.79.18.0/23 maxlen: 24 147.79.31.0/24 maxlen: 24 147.79.60.0/24 maxlen: 24 148.135.172.0/23 maxlen: 24 150.241.128.0/24 maxlen: 24 150.241.174.0/23 maxlen: 24 150.241.228.0/24 maxlen: 24 150.241.238.0/23 maxlen: 24 155.117.4.0/23 maxlen: 24 155.117.13.0/24 maxlen: 24 155.117.22.0/24 maxlen: 24 155.117.109.0/24 maxlen: 24 155.117.110.0/24 maxlen: 24 155.117.112.0/24 maxlen: 24 155.117.115.0/24 maxlen: 24 155.117.141.0/24 maxlen: 24 155.117.144.0/22 maxlen: 24 155.117.157.0/24 maxlen: 24 155.117.166.0/24 maxlen: 24 155.117.171.0/24 maxlen: 24 155.117.196.0/24 maxlen: 24 155.117.202.0/24 maxlen: 24 155.117.205.0/24 maxlen: 24 155.117.206.0/24 maxlen: 24 155.117.255.0/24 maxlen: 24 162.141.17.0/24 maxlen: 24 162.141.69.0/24 maxlen: 24 162.141.83.0/24 maxlen: 24 162.141.104.0/23 maxlen: 24 162.141.107.0/24 maxlen: 24 162.141.123.0/24 maxlen: 24 162.141.133.0/24 maxlen: 24 162.141.136.0/24 maxlen: 24 162.141.139.0/24 maxlen: 24 162.141.142.0/24 maxlen: 24 162.141.161.0/24 maxlen: 24 162.141.167.0/24 maxlen: 24 162.141.178.0/24 maxlen: 24 167.148.0.0/24 maxlen: 24 167.148.2.0/24 maxlen: 24 167.148.8.0/24 maxlen: 24 167.148.41.0/24 maxlen: 24 167.148.43.0/24 maxlen: 24 167.148.68.0/24 maxlen: 24 167.148.75.0/24 maxlen: 24 167.148.118.0/23 maxlen: 24 167.148.120.0/24 maxlen: 24 167.148.122.0/23 maxlen: 24 167.148.141.0/24 maxlen: 24 167.148.154.0/24 maxlen: 24 167.148.156.0/23 maxlen: 24 167.148.161.0/24 maxlen: 24 167.148.162.0/24 maxlen: 24 167.148.180.0/23 maxlen: 24 167.148.183.0/24 maxlen: 24 167.148.184.0/24 maxlen: 24 167.148.192.0/24 maxlen: 24 167.148.197.0/24 maxlen: 24 167.148.200.0/24 maxlen: 24 167.148.205.0/24 maxlen: 24 167.148.211.0/24 maxlen: 24 168.222.64.0/18 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.mft rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:35:c8:71:1a:33:e7:f0:a9:82:9d:2f:a5:87:a7:34:c1:ad:0f:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc Validity Not Before: Dec 6 16:22:42 2025 GMT Not After : Dec 5 16:27:42 2026 GMT Subject: CN=13FDBE53149267FF13EBADFD2D13A14A0B152665 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:6c:0c:7e:5b:dc:d7:b2:8b:61:fa:d1:bf:56: 96:ab:80:b3:56:68:41:a1:35:3e:42:e7:0b:92:28: 9d:4d:58:f3:d8:50:2b:b2:dd:b1:fa:58:d6:ae:bf: cc:54:f9:e8:b9:25:9f:11:bf:33:b5:6b:25:93:43: db:96:fd:86:b1:5b:aa:05:a6:9b:2b:a1:3c:a2:ef: 84:e9:18:40:4f:69:b8:bf:be:93:66:70:95:99:19: 14:da:b9:67:8f:d4:72:71:18:56:d3:00:43:34:89: 47:04:ce:93:f5:8d:cd:73:1c:24:89:b5:81:92:82: 97:84:c4:5b:16:a7:70:17:04:5a:c8:b1:14:cd:f7: 29:17:48:1c:23:68:5d:8c:04:77:e8:56:74:d6:37: e2:2e:10:54:10:5b:c0:a0:5e:35:50:24:d8:c4:ce: 01:16:a3:fe:66:e6:d4:6e:25:08:1e:c3:db:5e:5c: 99:a3:ef:da:3b:ef:18:6f:d5:13:ed:6b:76:c4:7c: e2:f3:fe:71:94:2c:d0:73:7e:eb:dd:26:7f:c3:13: ec:0c:b0:ca:68:96:51:a0:58:23:e0:58:65:e8:b2: be:91:74:ae:aa:f9:78:94:63:35:83:b3:ff:d1:4a: a5:ca:0b:bd:b9:19:65:96:74:42:fb:4f:11:7e:f3: b5:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:FD:BE:53:14:92:67:FF:13:EB:AD:FD:2D:13:A1:4A:0B:15:26:65 X509v3 Authority Key Identifier: keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS834.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.62.71.0/24 96.62.73.0-96.62.74.255 96.62.100.0/23 96.62.103.0/24 96.62.114.0/24 96.62.152.0/24 96.62.220.0/24 96.62.223.0/24 96.62.231.0/24 140.150.152.0/22 140.150.224.0/23 140.233.173.0-140.233.175.255 143.14.6.0/23 143.14.16.0/24 143.14.33.0/24 143.14.46.0/23 143.14.77.0-143.14.78.255 143.14.80.0/24 143.14.92.0/24 143.14.157.0/24 143.14.166.0/24 143.14.192.0/24 143.14.194.0/24 143.14.250.0/24 143.14.254.0/24 146.103.22.0/24 147.79.1.0/24 147.79.4.0/24 147.79.18.0/23 147.79.31.0/24 147.79.60.0/24 148.135.172.0/23 150.241.128.0/24 150.241.174.0/23 150.241.228.0/24 150.241.238.0/23 155.117.4.0/23 155.117.13.0/24 155.117.22.0/24 155.117.109.0-155.117.110.255 155.117.112.0/24 155.117.115.0/24 155.117.141.0/24 155.117.144.0/22 155.117.157.0/24 155.117.166.0/24 155.117.171.0/24 155.117.196.0/24 155.117.202.0/24 155.117.205.0-155.117.206.255 155.117.255.0/24 162.141.17.0/24 162.141.69.0/24 162.141.83.0/24 162.141.104.0/23 162.141.107.0/24 162.141.123.0/24 162.141.133.0/24 162.141.136.0/24 162.141.139.0/24 162.141.142.0/24 162.141.161.0/24 162.141.167.0/24 162.141.178.0/24 167.148.0.0/24 167.148.2.0/24 167.148.8.0/24 167.148.41.0/24 167.148.43.0/24 167.148.68.0/24 167.148.75.0/24 167.148.118.0-167.148.120.255 167.148.122.0/23 167.148.141.0/24 167.148.154.0/24 167.148.156.0/23 167.148.161.0-167.148.162.255 167.148.180.0/23 167.148.183.0-167.148.184.255 167.148.192.0/24 167.148.197.0/24 167.148.200.0/24 167.148.205.0/24 167.148.211.0/24 168.222.64.0/18 Signature Algorithm: sha256WithRSAEncryption 9a:de:d0:2b:9c:34:2e:52:3f:2b:65:57:4a:21:99:18:3f:a7: ee:77:93:e3:16:18:93:22:34:8a:f5:2a:da:2c:d0:23:98:e3: 4e:2c:f5:58:c5:20:99:22:4d:fa:1a:8a:66:47:db:db:53:72: a0:ed:29:b7:7f:fb:93:d9:1c:45:80:8a:7b:de:4f:01:3b:18: ef:cc:96:3f:9b:dc:e8:70:59:75:74:c0:d1:f5:e4:34:f1:4a: 75:98:98:34:96:10:af:00:0d:2c:ef:da:90:a8:94:9d:a2:e3: 6d:9b:29:37:cb:43:c3:63:72:3f:d9:be:74:ef:ce:19:28:09: 9e:77:ca:d8:cc:e8:4a:c2:46:f0:5f:26:b5:0b:6a:a6:82:58: 7c:00:9d:bb:79:7f:c2:98:4a:a9:70:78:fa:26:61:c1:77:f4: b8:37:75:9b:e1:e5:a3:aa:69:e7:38:6e:9d:17:64:c3:39:a1: 69:8e:55:65:fb:09:bf:5a:21:36:08:d6:b0:6a:7d:25:ae:13: c8:bf:e9:13:92:59:f4:a0:e3:35:6b:23:d8:56:8b:8d:59:22: f6:68:ca:d7:78:9f:29:b5:bf:7e:ab:05:15:20:b6:50:57:6f: 9c:e9:52:c5:50:90:bf:fe:0e:a7:85:ad:97:bc:76:fd:b9:00: 84:9b:dc:fb -----BEGIN CERTIFICATE----- MIIHPzCCBiegAwIBAgIUJzXIcRoz5/Cpgp0vpYenNMGtD4IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNGZjMzM2YmY5ZjNkZTVjZTQxNDE0YmQxOTcxOTQ1ZjRi MjQ2YmZjYzAeFw0yNTEyMDYxNjIyNDJaFw0yNjEyMDUxNjI3NDJaMDMxMTAvBgNV BAMTKDEzRkRCRTUzMTQ5MjY3RkYxM0VCQURGRDJEMTNBMTRBMEIxNTI2NjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDfbAx+W9zXsoth+tG/VpargLNW aEGhNT5C5wuSKJ1NWPPYUCuy3bH6WNauv8xU+ei5JZ8RvzO1ayWTQ9uW/YaxW6oF ppsroTyi74TpGEBPabi/vpNmcJWZGRTauWeP1HJxGFbTAEM0iUcEzpP1jc1zHCSJ tYGSgpeExFsWp3AXBFrIsRTN9ykXSBwjaF2MBHfoVnTWN+IuEFQQW8CgXjVQJNjE zgEWo/5m5tRuJQgew9teXJmj79o77xhv1RPta3bEfOLz/nGULNBzfuvdJn/DE+wM sMpollGgWCPgWGXosr6RdK6q+XiUYzWDs//RSqXKC725GWWWdEL7TxF+87W5AgMB AAGjggRJMIIERTAdBgNVHQ4EFgQUE/2+UxSSZ/8T6639LROhSgsVJmUwHwYDVR0j BBgwFoAUT8M2v5895c5BQUvRlxlF9LJGv8wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMDliZTNhYWUtYWVhMS00MWRjLWIxYjktOTVhYzU5MTgy NDRkLzAvNEZDMzM2QkY5RjNERTVDRTQxNDE0QkQxOTcxOTQ1RjRCMjQ2QkZDQy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1Q4TTJ2NTg5NWM1QlFVdlJseGxGOUxK R3Y4dy5jZXIweAYIKwYBBQUHAQsEbDBqMGgGCCsGAQUFBzALhlxyc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzA5YmUzYWFlLWFlYTEt NDFkYy1iMWI5LTk1YWM1OTE4MjQ0ZC8wL0FTODM0LnJvYTAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMIICXwYIKwYBBQUHAQcBAf8EggJOMIICSjCCAkYEAgABMIIC PgMEAGA+RzAMAwQAYD5JAwQAYD5KAwQBYD5kAwQAYD5nAwQAYD5yAwQAYD6YAwQA YD7cAwQAYD7fAwQAYD7nAwQCjJaYAwQBjJbgMAwDBACM6a0DBASM6aADBAGPDgYD BACPDhADBACPDiEDBAGPDi4wDAMEAI8OTQMEAI8OTgMEAI8OUAMEAI8OXAMEAI8O nQMEAI8OpgMEAI8OwAMEAI8OwgMEAI8O+gMEAI8O/gMEAJJnFgMEAJNPAQMEAJNP BAMEAZNPEgMEAJNPHwMEAJNPPAMEAZSHrAMEAJbxgAMEAZbxrgMEAJbx5AMEAZbx 7gMEAZt1BAMEAJt1DQMEAJt1FjAMAwQAm3VtAwQAm3VuAwQAm3VwAwQAm3VzAwQA m3WNAwQCm3WQAwQAm3WdAwQAm3WmAwQAm3WrAwQAm3XEAwQAm3XKMAwDBACbdc0D BACbdc4DBACbdf8DBACijREDBACijUUDBACijVMDBAGijWgDBACijWsDBACijXsD BACijYUDBACijYgDBACijYsDBACijY4DBACijaEDBACijacDBACijbIDBACnlAAD BACnlAIDBACnlAgDBACnlCkDBACnlCsDBACnlEQDBACnlEswDAMEAaeUdgMEAKeU eAMEAaeUegMEAKeUjQMEAKeUmgMEAaeUnDAMAwQAp5ShAwQAp5SiAwQBp5S0MAwD BACnlLcDBACnlLgDBACnlMADBACnlMUDBACnlMgDBACnlM0DBACnlNMDBAao3kAw DQYJKoZIhvcNAQELBQADggEBAJre0CucNC5SPytlV0ohmRg/p+53k+MWGJMiNIr1 Ktos0COY404s9VjFIJkiTfoaimZH29tTcqDtKbd/+5PZHEWAinveTwE7GO/Mlj+b 3OhwWXV0wNH15DTxSnWYmDSWEK8ADSzv2pColJ2i422bKTfLQ8Njcj/ZvnTvzhko CZ53ytjM6ErCRvBfJrULaqaCWHwAnbt5f8KYSqlwePomYcF39Lg3dZvh5aOqaec4 bp0XZMM5oWmOVWX7Cb9aITYI1rBqfSWuE8i/6ROSWfSg4zVrI9hWi41ZIvZoytd4 nym1v36rBRUgtlBXb5zpUsVQkL/+DqeFrZe8dv25AISb3Ps= -----END CERTIFICATE-----Generated at Sat Dec 6 21:38:48 2025 by rpki-client