This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS984.roa File: AS984.roa (raw, json) Hash identifier: kubMpQhLCr/7qLI3X7F8kCyUtS47cd7BIYeJ41fPlNI= Subject key identifier: 5F:8B:49:AD:49:6F:33:FA:A9:29:86:3B:85:FD:A5:35:05:6D:9A:3B Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc Certificate serial: 22E99F479939A6D38B722D80E02C0D15FFCE1C33 Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS984.roa Signing time: Fri 05 Dec 2025 04:35:39 +0000 ROA not before: Fri 05 Dec 2025 04:30:39 +0000 ROA not after: Fri 04 Dec 2026 04:35:39 +0000 asID: 984 IP address blocks: 140.233.173.0/24 maxlen: 24 143.14.114.0/24 maxlen: 24 143.14.218.0/24 maxlen: 24 148.135.193.0/24 maxlen: 24 155.117.79.0/24 maxlen: 24 155.117.186.0/24 maxlen: 24 155.117.240.0/24 maxlen: 24 155.117.254.0/24 maxlen: 24 162.141.36.0/24 maxlen: 24 162.141.96.0/24 maxlen: 24 168.222.63.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.mft rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:e9:9f:47:99:39:a6:d3:8b:72:2d:80:e0:2c:0d:15:ff:ce:1c:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc Validity Not Before: Dec 5 04:30:39 2025 GMT Not After : Dec 4 04:35:39 2026 GMT Subject: CN=5F8B49AD496F33FAA929863B85FDA535056D9A3B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:37:4b:1b:2b:57:dd:4b:fb:b4:38:6b:a4:fb: 37:38:3a:bd:f8:2d:35:66:e9:f5:4e:ae:f8:37:26: c5:54:48:e8:23:24:58:ce:98:90:94:ed:f0:21:6e: 3d:9b:73:cd:c6:f3:f6:15:67:df:31:f7:0f:68:c4: fc:3d:d0:7b:a1:e2:0b:20:64:a9:5d:7f:9c:d7:01: 06:da:a4:67:8f:5c:30:2b:02:a9:20:ab:cb:61:d3: 1c:1f:d7:f7:c5:52:e6:59:6b:0d:0e:c3:e6:4f:f7: 25:33:12:2d:d0:48:03:cc:9a:7c:41:a5:a1:29:0a: 0f:d6:a9:6e:d9:2d:87:6a:7a:2d:e9:79:73:58:f5: 45:17:5c:04:c0:6b:15:05:1c:58:10:f2:46:18:dc: a6:ea:c8:4f:ee:94:62:86:b9:74:f0:8e:7f:59:aa: 12:3f:ad:32:a1:5c:f3:1d:3f:54:e9:71:3e:c4:f1: 59:4b:d3:73:98:07:cc:34:5a:ab:29:68:53:ea:4f: ca:c3:f1:f1:f2:32:a8:89:4d:95:60:7c:c2:af:98: 25:94:26:f9:d3:3b:1c:f0:a0:4a:d3:01:ed:92:38: c4:8d:20:4f:93:cb:01:d7:78:ed:15:f2:21:45:97: ac:f0:34:da:7f:6a:29:df:51:5f:aa:60:00:40:79: cc:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:8B:49:AD:49:6F:33:FA:A9:29:86:3B:85:FD:A5:35:05:6D:9A:3B X509v3 Authority Key Identifier: keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS984.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 140.233.173.0/24 143.14.114.0/24 143.14.218.0/24 148.135.193.0/24 155.117.79.0/24 155.117.186.0/24 155.117.240.0/24 155.117.254.0/24 162.141.36.0/24 162.141.96.0/24 168.222.63.0/24 Signature Algorithm: sha256WithRSAEncryption 1e:b1:f1:35:5a:65:fa:76:9b:50:5a:ef:4e:96:a9:cc:e8:4c: ec:7f:f0:5e:c1:b4:5f:04:e1:cc:c1:d8:67:7a:13:2b:da:78: a3:2b:9e:e8:7e:0b:0c:34:50:b7:62:17:65:34:c0:5d:8a:66: 19:d6:73:3d:07:ae:67:bf:3d:02:d4:77:ce:77:33:57:fe:90: a5:2f:a6:6e:be:d5:b3:69:83:5d:da:90:0f:49:bb:0e:58:cf: c8:dc:92:b5:7d:fe:86:30:3a:84:6f:60:69:82:7c:7c:56:f9: 79:d4:72:f0:de:f1:a6:77:19:66:08:dd:67:26:60:ae:6f:c9: 28:66:db:40:b5:99:1a:ae:df:b4:aa:31:fe:cb:ef:5d:b6:ba: 2b:a6:14:58:76:b7:09:c6:7f:96:aa:70:c8:d8:e8:92:28:6f: 0e:87:9f:8d:55:fd:95:ef:04:9e:95:e9:3d:ac:6b:d1:ee:7b: ed:c8:41:26:54:64:ae:83:68:9c:77:18:fe:a4:93:3a:71:6d: e1:a7:6e:c5:02:4d:63:6f:93:45:cc:c2:be:6a:2e:3a:f0:3e: 96:c0:8d:d4:ce:97:e3:f6:08:00:a2:1f:4b:fc:58:b1:c7:4c: 06:1b:07:93:5f:8e:3e:d0:63:3a:cf:71:38:e1:d0:e4:00:28: 7a:3d:e5:8c -----BEGIN CERTIFICATE----- MIIFOTCCBCGgAwIBAgIUIumfR5k5ptOLci2A4CwNFf/OHDMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNGZjMzM2YmY5ZjNkZTVjZTQxNDE0YmQxOTcxOTQ1ZjRi MjQ2YmZjYzAeFw0yNTEyMDUwNDMwMzlaFw0yNjEyMDQwNDM1MzlaMDMxMTAvBgNV BAMTKDVGOEI0OUFENDk2RjMzRkFBOTI5ODYzQjg1RkRBNTM1MDU2RDlBM0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDhN0sbK1fdS/u0OGuk+zc4Or34 LTVm6fVOrvg3JsVUSOgjJFjOmJCU7fAhbj2bc83G8/YVZ98x9w9oxPw90Huh4gsg ZKldf5zXAQbapGePXDArAqkgq8th0xwf1/fFUuZZaw0Ow+ZP9yUzEi3QSAPMmnxB paEpCg/WqW7ZLYdqei3peXNY9UUXXATAaxUFHFgQ8kYY3KbqyE/ulGKGuXTwjn9Z qhI/rTKhXPMdP1TpcT7E8VlL03OYB8w0WqspaFPqT8rD8fHyMqiJTZVgfMKvmCWU JvnTOxzwoErTAe2SOMSNIE+TywHXeO0V8iFFl6zwNNp/ainfUV+qYABAecx9AgMB AAGjggJDMIICPzAdBgNVHQ4EFgQUX4tJrUlvM/qpKYY7hf2lNQVtmjswHwYDVR0j BBgwFoAUT8M2v5895c5BQUvRlxlF9LJGv8wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMDliZTNhYWUtYWVhMS00MWRjLWIxYjktOTVhYzU5MTgy NDRkLzAvNEZDMzM2QkY5RjNERTVDRTQxNDE0QkQxOTcxOTQ1RjRCMjQ2QkZDQy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1Q4TTJ2NTg5NWM1QlFVdlJseGxGOUxK R3Y4dy5jZXIweAYIKwYBBQUHAQsEbDBqMGgGCCsGAQUFBzALhlxyc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzA5YmUzYWFlLWFlYTEt NDFkYy1iMWI5LTk1YWM1OTE4MjQ0ZC8wL0FTOTg0LnJvYTAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMFsGCCsGAQUFBwEHAQH/BEwwSjBIBAIAATBCAwQAjOmtAwQA jw5yAwQAjw7aAwQAlIfBAwQAm3VPAwQAm3W6AwQAm3XwAwQAm3X+AwQAoo0kAwQA oo1gAwQAqN4/MA0GCSqGSIb3DQEBCwUAA4IBAQAesfE1WmX6dptQWu9OlqnM6Ezs f/BewbRfBOHMwdhnehMr2nijK57ofgsMNFC3YhdlNMBdimYZ1nM9B65nvz0C1HfO dzNX/pClL6ZuvtWzaYNd2pAPSbsOWM/I3JK1ff6GMDqEb2Bpgnx8Vvl51HLw3vGm dxlmCN1nJmCub8koZttAtZkart+0qjH+y+9dtrorphRYdrcJxn+WqnDI2OiSKG8O h5+NVf2V7wSelek9rGvR7nvtyEEmVGSug2icdxj+pJM6cW3hp27FAk1jb5NFzMK+ ai468D6WwI3Uzpfj9ggAoh9L/Fixx0wGGweTX44+0GM6z3E44dDkACh6PeWM -----END CERTIFICATE-----Generated at Sat Dec 6 14:18:36 2025 by rpki-client