This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/22db7555-9aa4-4983-9316-73809dd354bc/0/AS834.roa File: AS834.roa (raw, json) Hash identifier: /6hzO4E2f6Ekuz3ROiPb/5KegrdTxe8Lf+UYI82/Vks= Subject key identifier: 56:02:8F:17:CF:1E:9A:4D:3A:04:1A:72:B7:52:7A:C5:15:C5:73:4D Certificate issuer: /CN=3feccb17be51ee59ec74d64eed917e221ee28a1b Certificate serial: 0F1568F9DCCDA2A4C105B18A746B4B84508FB524 Authority key identifier: 3F:EC:CB:17:BE:51:EE:59:EC:74:D6:4E:ED:91:7E:22:1E:E2:8A:1B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P-zLF75R7lnsdNZO7ZF-Ih7iihs.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/22db7555-9aa4-4983-9316-73809dd354bc/0/AS834.roa Signing time: Fri 23 Jan 2026 11:35:28 +0000 ROA not before: Fri 23 Jan 2026 11:30:28 +0000 ROA not after: Fri 22 Jan 2027 11:35:28 +0000 asID: 834 IP address blocks: 46.236.210.0/24 maxlen: 24 46.236.213.0/24 maxlen: 24 46.236.214.0/24 maxlen: 24 46.236.217.0/24 maxlen: 24 46.236.223.0/24 maxlen: 24 46.236.252.0/24 maxlen: 24 82.139.192.0/24 maxlen: 24 82.139.204.0/24 maxlen: 24 82.139.206.0/24 maxlen: 24 82.139.208.0/22 maxlen: 24 82.139.212.0/23 maxlen: 24 82.139.218.0/23 maxlen: 24 82.139.221.0/24 maxlen: 24 82.139.224.0/23 maxlen: 24 82.139.227.0/24 maxlen: 24 82.139.228.0/23 maxlen: 24 82.139.231.0/24 maxlen: 24 82.139.232.0/24 maxlen: 24 82.139.234.0/23 maxlen: 24 82.139.236.0/24 maxlen: 24 82.139.240.0/23 maxlen: 24 82.139.245.0/24 maxlen: 24 82.139.247.0/24 maxlen: 24 82.139.249.0/24 maxlen: 24 212.60.149.0/24 maxlen: 24 212.60.150.0/24 maxlen: 24 212.60.154.0/24 maxlen: 24 212.60.159.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/22db7555-9aa4-4983-9316-73809dd354bc/0/3FECCB17BE51EE59EC74D64EED917E221EE28A1B.crl rsync://rsync.paas.rpki.ripe.net/repository/22db7555-9aa4-4983-9316-73809dd354bc/0/3FECCB17BE51EE59EC74D64EED917E221EE28A1B.mft rsync://rpki.ripe.net/repository/DEFAULT/P-zLF75R7lnsdNZO7ZF-Ih7iihs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:15:68:f9:dc:cd:a2:a4:c1:05:b1:8a:74:6b:4b:84:50:8f:b5:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3feccb17be51ee59ec74d64eed917e221ee28a1b Validity Not Before: Jan 23 11:30:28 2026 GMT Not After : Jan 22 11:35:28 2027 GMT Subject: CN=56028F17CF1E9A4D3A041A72B7527AC515C5734D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:6b:19:22:f2:66:54:98:21:8e:ef:51:d3:3c: 90:08:a3:67:1b:9f:a3:c6:eb:aa:c9:15:17:63:a0: 90:9e:d9:76:0b:33:ff:44:9f:92:bc:3f:51:58:6e: 11:8e:72:8c:4b:fc:8e:58:a8:de:3e:ff:e8:bd:a1: e0:aa:fc:77:7d:d4:c2:83:d5:d3:82:47:0a:df:39: 61:0d:42:40:ea:ac:20:27:08:04:27:83:86:64:fc: d6:fd:49:f8:f8:d5:37:44:75:37:c5:17:8f:16:54: 7e:1e:5e:34:c3:75:a0:9a:1a:9d:52:7b:a3:0d:cb: c0:05:ca:d8:93:2a:5e:3e:94:34:25:ff:58:6d:4a: fa:dd:cc:03:72:12:35:11:c4:10:2f:e3:ab:c3:56: ba:7a:02:48:fc:e3:00:18:d3:85:39:07:b2:6d:c3: 3d:dc:b5:61:78:f0:d7:49:c8:dc:61:06:da:7a:54: 40:58:9b:67:9a:c5:5e:0d:e9:f9:ed:2b:bd:24:5c: be:eb:07:b7:de:b7:29:1d:8a:1d:14:49:59:3e:85: e6:b4:04:4a:92:1b:c7:86:2a:0f:2f:03:1c:63:67: fb:8b:ce:38:98:52:d1:b6:53:ee:ae:8d:21:f0:f9: 7e:ae:bc:b7:6e:2b:c6:77:33:a8:04:f4:4e:09:f1: 85:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:02:8F:17:CF:1E:9A:4D:3A:04:1A:72:B7:52:7A:C5:15:C5:73:4D X509v3 Authority Key Identifier: keyid:3F:EC:CB:17:BE:51:EE:59:EC:74:D6:4E:ED:91:7E:22:1E:E2:8A:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/22db7555-9aa4-4983-9316-73809dd354bc/0/3FECCB17BE51EE59EC74D64EED917E221EE28A1B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P-zLF75R7lnsdNZO7ZF-Ih7iihs.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/22db7555-9aa4-4983-9316-73809dd354bc/0/AS834.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 46.236.210.0/24 46.236.213.0-46.236.214.255 46.236.217.0/24 46.236.223.0/24 46.236.252.0/24 82.139.192.0/24 82.139.204.0/24 82.139.206.0/24 82.139.208.0-82.139.213.255 82.139.218.0/23 82.139.221.0/24 82.139.224.0/23 82.139.227.0-82.139.229.255 82.139.231.0-82.139.232.255 82.139.234.0-82.139.236.255 82.139.240.0/23 82.139.245.0/24 82.139.247.0/24 82.139.249.0/24 212.60.149.0-212.60.150.255 212.60.154.0/24 212.60.159.0/24 Signature Algorithm: sha256WithRSAEncryption 23:dc:1b:36:de:eb:b1:0c:36:70:8a:74:85:97:92:b4:a7:e9: 7c:c8:36:12:08:67:15:ed:5c:d1:cb:cb:b0:c2:d4:e4:b9:b5: 3c:d5:55:d9:6d:db:01:e9:4a:27:4e:9b:3c:93:a3:ff:2f:9f: b2:8e:17:d9:cc:6e:8a:9a:00:f4:0b:db:57:d2:96:cd:f4:4b: 71:4a:1d:15:f1:57:97:3f:c5:89:b6:09:41:5a:93:f0:4c:e7: 35:17:c3:ab:aa:11:15:ac:97:7b:c8:e9:77:a2:59:f0:b6:c0: 1c:70:84:45:14:e1:e3:4c:50:72:e8:af:1b:48:b3:a7:7b:04: 7d:fa:2a:54:d2:2b:78:13:52:ec:d9:b9:9e:79:5d:75:a4:f1: 0f:39:1c:39:64:fb:4f:a8:96:d2:db:ba:34:4e:c9:07:0e:dc: ab:2a:64:20:31:07:91:6b:47:3a:71:d3:ee:5f:cd:71:0a:df: 6d:1c:83:e7:4e:d6:45:2b:8b:85:da:84:ac:a4:f2:2c:ad:98: 4d:30:5a:b2:46:1e:dc:bc:c1:81:e8:19:0b:a0:cf:d7:dd:97: 78:ae:b8:76:ba:41:c4:9a:ae:ce:d3:fe:dd:ea:56:59:63:c7: 92:d2:4c:f8:b2:a3:3a:5a:b5:28:fa:8e:25:84:ca:2e:01:12: 33:8c:25:18 -----BEGIN CERTIFICATE----- MIIFsDCCBJigAwIBAgIUDxVo+dzNoqTBBbGKdGtLhFCPtSQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM2ZlY2NiMTdiZTUxZWU1OWVjNzRkNjRlZWQ5MTdlMjIx ZWUyOGExYjAeFw0yNjAxMjMxMTMwMjhaFw0yNzAxMjIxMTM1MjhaMDMxMTAvBgNV BAMTKDU2MDI4RjE3Q0YxRTlBNEQzQTA0MUE3MkI3NTI3QUM1MTVDNTczNEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdaxki8mZUmCGO71HTPJAIo2cb n6PG66rJFRdjoJCe2XYLM/9En5K8P1FYbhGOcoxL/I5YqN4+/+i9oeCq/Hd91MKD 1dOCRwrfOWENQkDqrCAnCAQng4Zk/Nb9Sfj41TdEdTfFF48WVH4eXjTDdaCaGp1S e6MNy8AFytiTKl4+lDQl/1htSvrdzANyEjURxBAv46vDVrp6Akj84wAY04U5B7Jt wz3ctWF48NdJyNxhBtp6VEBYm2eaxV4N6fntK70kXL7rB7fetykdih0USVk+hea0 BEqSG8eGKg8vAxxjZ/uLzjiYUtG2U+6ujSHw+X6uvLduK8Z3M6gE9E4J8YXlAgMB AAGjggK6MIICtjAdBgNVHQ4EFgQUVgKPF88emk06BBpyt1J6xRXFc00wHwYDVR0j BBgwFoAUP+zLF75R7lnsdNZO7ZF+Ih7iihswDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjJkYjc1NTUtOWFhNC00OTgzLTkzMTYtNzM4MDlkZDM1 NGJjLzAvM0ZFQ0NCMTdCRTUxRUU1OUVDNzRENjRFRUQ5MTdFMjIxRUUyOEExQi5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1AtekxGNzVSN2xuc2ROWk83WkYtSWg3 aWlocy5jZXIweAYIKwYBBQUHAQsEbDBqMGgGCCsGAQUFBzALhlxyc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzIyZGI3NTU1LTlhYTQt NDk4My05MzE2LTczODA5ZGQzNTRiYy8wL0FTODM0LnJvYTAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMIHRBggrBgEFBQcBBwEB/wSBwTCBvjCBuwQCAAEwgbQDBAAu 7NIwDAMEAC7s1QMEAC7s1gMEAC7s2QMEAC7s3wMEAC7s/AMEAFKLwAMEAFKLzAME AFKLzjAMAwQEUovQAwQBUovUAwQBUovaAwQAUovdAwQBUovgMAwDBABSi+MDBAFS i+QwDAMEAFKL5wMEAFKL6DAMAwQBUovqAwQAUovsAwQBUovwAwQAUov1AwQAUov3 AwQAUov5MAwDBADUPJUDBADUPJYDBADUPJoDBADUPJ8wDQYJKoZIhvcNAQELBQAD ggEBACPcGzbe67EMNnCKdIWXkrSn6XzINhIIZxXtXNHLy7DC1OS5tTzVVdlt2wHp SidOmzyTo/8vn7KOF9nMboqaAPQL21fSls30S3FKHRXxV5c/xYm2CUFak/BM5zUX w6uqERWsl3vI6XeiWfC2wBxwhEUU4eNMUHLorxtIs6d7BH36KlTSK3gTUuzZuZ55 XXWk8Q85HDlk+0+oltLbujROyQcO3KsqZCAxB5FrRzpx0+5fzXEK320cg+dO1kUr i4XahKyk8iytmE0wWrJGHty8wYHoGQugz9fdl3iuuHa6QcSars7T/t3qVlljx5LS TPiyozpatSj6jiWEyi4BEjOMJRg= -----END CERTIFICATE-----Generated at Sun Jan 25 14:43:50 2026 by rpki-client