This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/22db7555-9aa4-4983-9316-73809dd354bc/0/AS205886.roa File: AS205886.roa (raw, json) Hash identifier: i4bVtnuwwbaBX9VNo0h/qnb1AhXdE9IWgRcqzrtGfrk= Subject key identifier: 4D:EC:E4:F7:88:A5:1F:6A:F0:33:41:89:07:C1:97:9C:A8:14:3A:39 Certificate issuer: /CN=3feccb17be51ee59ec74d64eed917e221ee28a1b Certificate serial: 7CD7B48B457055AA33C26C2D7B1B4562FC69FFA3 Authority key identifier: 3F:EC:CB:17:BE:51:EE:59:EC:74:D6:4E:ED:91:7E:22:1E:E2:8A:1B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P-zLF75R7lnsdNZO7ZF-Ih7iihs.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/22db7555-9aa4-4983-9316-73809dd354bc/0/AS205886.roa Signing time: Wed 21 Jan 2026 07:07:22 +0000 ROA not before: Wed 21 Jan 2026 07:02:22 +0000 ROA not after: Wed 20 Jan 2027 07:07:22 +0000 asID: 205886 IP address blocks: 46.236.216.0/24 maxlen: 24 46.236.254.0/24 maxlen: 24 46.236.255.0/24 maxlen: 24 82.139.220.0/24 maxlen: 24 82.139.248.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/22db7555-9aa4-4983-9316-73809dd354bc/0/3FECCB17BE51EE59EC74D64EED917E221EE28A1B.crl rsync://rsync.paas.rpki.ripe.net/repository/22db7555-9aa4-4983-9316-73809dd354bc/0/3FECCB17BE51EE59EC74D64EED917E221EE28A1B.mft rsync://rpki.ripe.net/repository/DEFAULT/P-zLF75R7lnsdNZO7ZF-Ih7iihs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:d7:b4:8b:45:70:55:aa:33:c2:6c:2d:7b:1b:45:62:fc:69:ff:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3feccb17be51ee59ec74d64eed917e221ee28a1b Validity Not Before: Jan 21 07:02:22 2026 GMT Not After : Jan 20 07:07:22 2027 GMT Subject: CN=4DECE4F788A51F6AF033418907C1979CA8143A39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:25:35:cb:da:c6:64:e7:0e:5b:01:26:16:26: c0:73:d3:c8:d0:97:74:b0:1e:ac:8b:49:b7:21:72: 2e:e6:70:58:74:e0:07:72:0a:d1:03:d7:91:b7:c2: e5:26:26:21:4d:8e:4f:2e:2b:08:c5:f7:b4:8f:45: b5:82:c2:10:f6:13:58:f5:ea:b0:63:a8:07:f8:eb: 2e:19:92:55:85:93:cf:ad:b2:10:08:d3:4e:6f:af: 07:2b:80:69:1a:9f:3d:89:3e:5e:4b:26:47:90:7f: 72:d9:30:c2:a5:cf:f4:b4:81:e4:ac:75:2d:e6:b2: c9:10:89:41:93:75:b8:bc:08:d2:0d:dd:8c:c5:3b: 1c:8f:67:af:f4:13:84:89:0f:20:5f:59:df:b2:6d: af:bf:b4:3d:c1:30:5e:ff:d7:3d:14:c0:6a:5d:0a: b3:ab:8f:7d:71:f5:f8:12:c0:c8:85:8d:5e:1e:98: 0d:14:7c:02:52:45:77:2e:f0:02:72:53:42:c8:26: 47:4c:7c:ef:0c:1d:53:ac:a5:29:7f:f6:01:3a:a2: 06:39:51:e1:fa:75:61:a8:2b:da:04:a4:f5:7d:cf: d9:9c:a4:ce:01:72:eb:71:12:1f:be:62:3d:6c:0c: 21:6e:bf:17:76:4e:13:92:1c:bb:8b:b7:f8:0e:7a: 4b:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:EC:E4:F7:88:A5:1F:6A:F0:33:41:89:07:C1:97:9C:A8:14:3A:39 X509v3 Authority Key Identifier: keyid:3F:EC:CB:17:BE:51:EE:59:EC:74:D6:4E:ED:91:7E:22:1E:E2:8A:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/22db7555-9aa4-4983-9316-73809dd354bc/0/3FECCB17BE51EE59EC74D64EED917E221EE28A1B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P-zLF75R7lnsdNZO7ZF-Ih7iihs.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/22db7555-9aa4-4983-9316-73809dd354bc/0/AS205886.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 46.236.216.0/24 46.236.254.0/23 82.139.220.0/24 82.139.248.0/24 Signature Algorithm: sha256WithRSAEncryption 60:f0:4e:26:74:0d:d5:0c:71:60:9f:24:ec:d4:16:e3:41:f3: 20:30:93:17:86:c2:cd:16:3d:ae:b0:2e:16:ab:4e:d3:ed:2d: 00:63:54:85:97:1f:ce:36:9c:59:86:5f:26:6d:61:5d:f1:00: d4:5a:5a:17:80:81:9e:6f:cd:61:79:d0:78:83:eb:6c:fb:40: bc:71:0e:19:49:15:10:90:b3:22:aa:24:c8:d9:7e:14:5c:5d: e1:e2:cc:4c:1c:80:e6:df:b7:57:8c:b5:d3:48:89:79:d2:36: 53:b8:d9:1b:7f:14:80:81:21:f0:39:87:42:74:c0:e1:35:76: ed:6a:57:8a:a3:6f:2f:42:ef:87:b7:b0:64:1e:4e:49:eb:bd: a3:f6:0c:48:d8:8d:81:99:3b:92:14:93:dd:f5:1f:21:ee:68: 8e:8a:9e:ca:cd:b5:38:04:b2:b4:1e:26:74:a2:3b:96:62:8b: ce:3a:a9:6e:43:f3:78:bd:40:ed:78:d4:1a:8c:98:2d:88:e0: b4:61:de:e7:a5:ff:e7:0c:dd:68:d0:cb:53:68:d7:c3:f1:d9: fa:e0:76:d8:56:7e:39:97:ad:2f:84:eb:c7:f7:7f:68:aa:02: 89:d5:44:24:c7:ec:53:94:e1:e7:61:19:1f:10:d9:b6:4c:94: ce:b8:2c:84 -----BEGIN CERTIFICATE----- MIIFEjCCA/qgAwIBAgIUfNe0i0VwVaozwmwtextFYvxp/6MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM2ZlY2NiMTdiZTUxZWU1OWVjNzRkNjRlZWQ5MTdlMjIx ZWUyOGExYjAeFw0yNjAxMjEwNzAyMjJaFw0yNzAxMjAwNzA3MjJaMDMxMTAvBgNV BAMTKDRERUNFNEY3ODhBNTFGNkFGMDMzNDE4OTA3QzE5NzlDQTgxNDNBMzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnJTXL2sZk5w5bASYWJsBz08jQ l3SwHqyLSbchci7mcFh04AdyCtED15G3wuUmJiFNjk8uKwjF97SPRbWCwhD2E1j1 6rBjqAf46y4ZklWFk8+tshAI005vrwcrgGkanz2JPl5LJkeQf3LZMMKlz/S0geSs dS3msskQiUGTdbi8CNIN3YzFOxyPZ6/0E4SJDyBfWd+yba+/tD3BMF7/1z0UwGpd CrOrj31x9fgSwMiFjV4emA0UfAJSRXcu8AJyU0LIJkdMfO8MHVOspSl/9gE6ogY5 UeH6dWGoK9oEpPV9z9mcpM4BcutxEh++Yj1sDCFuvxd2ThOSHLuLt/gOekv1AgMB AAGjggIcMIICGDAdBgNVHQ4EFgQUTezk94ilH2rwM0GJB8GXnKgUOjkwHwYDVR0j BBgwFoAUP+zLF75R7lnsdNZO7ZF+Ih7iihswDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjJkYjc1NTUtOWFhNC00OTgzLTkzMTYtNzM4MDlkZDM1 NGJjLzAvM0ZFQ0NCMTdCRTUxRUU1OUVDNzRENjRFRUQ5MTdFMjIxRUUyOEExQi5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1AtekxGNzVSN2xuc2ROWk83WkYtSWg3 aWlocy5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzIyZGI3NTU1LTlhYTQt NDk4My05MzE2LTczODA5ZGQzNTRiYy8wL0FTMjA1ODg2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMDEGCCsGAQUFBwEHAQH/BCIwIDAeBAIAATAYAwQALuzY AwQBLuz+AwQAUovcAwQAUov4MA0GCSqGSIb3DQEBCwUAA4IBAQBg8E4mdA3VDHFg nyTs1BbjQfMgMJMXhsLNFj2usC4Wq07T7S0AY1SFlx/ONpxZhl8mbWFd8QDUWloX gIGeb81hedB4g+ts+0C8cQ4ZSRUQkLMiqiTI2X4UXF3h4sxMHIDm37dXjLXTSIl5 0jZTuNkbfxSAgSHwOYdCdMDhNXbtaleKo28vQu+Ht7BkHk5J672j9gxI2I2BmTuS FJPd9R8h7miOip7KzbU4BLK0HiZ0ojuWYovOOqluQ/N4vUDteNQajJgtiOC0Yd7n pf/nDN1o0MtTaNfD8dn64HbYVn45l60vhOvH939oqgKJ1UQkx+xTlOHnYRkfENm2 TJTOuCyE -----END CERTIFICATE-----Generated at Sun Jan 25 14:43:11 2026 by rpki-client