This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS834.roa File: AS834.roa (raw, json) Hash identifier: YMmInEOXG8K3CPSXNMc34XeEypmhJJbZow+NSgfDrZc= Subject key identifier: F9:85:EB:0A:F8:7C:BE:B0:A4:A5:2C:ED:31:98:21:7B:CD:2C:2C:E5 Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a Certificate serial: 10679F13095E326F4F4B0EB6047A63874FB236C1 Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS834.roa Signing time: Thu 04 Dec 2025 17:32:22 +0000 ROA not before: Thu 04 Dec 2025 17:27:22 +0000 ROA not after: Thu 03 Dec 2026 17:32:22 +0000 asID: 834 IP address blocks: 5.252.81.0/24 maxlen: 24 45.87.185.0/24 maxlen: 24 45.88.98.0/24 maxlen: 24 45.89.249.0/24 maxlen: 24 45.93.44.0/24 maxlen: 24 45.137.118.0/24 maxlen: 24 45.139.183.0/24 maxlen: 24 92.118.162.0/24 maxlen: 24 92.119.34.0/24 maxlen: 24 92.242.184.0/24 maxlen: 24 179.61.140.0/24 maxlen: 24 179.61.150.0/24 maxlen: 24 179.61.242.0/24 maxlen: 24 181.41.196.0/24 maxlen: 24 181.41.211.0/24 maxlen: 24 181.214.0.0/24 maxlen: 24 181.214.4.0/24 maxlen: 24 181.214.14.0/24 maxlen: 24 181.214.25.0/24 maxlen: 24 181.214.41.0/24 maxlen: 24 181.214.54.0/24 maxlen: 24 181.214.58.0/24 maxlen: 24 181.214.79.0/24 maxlen: 24 181.214.91.0/24 maxlen: 24 181.214.98.0/24 maxlen: 24 181.214.101.0/24 maxlen: 24 181.214.120.0/23 maxlen: 24 181.214.124.0/23 maxlen: 24 181.214.130.0/24 maxlen: 24 181.214.167.0/24 maxlen: 24 181.214.208.0/24 maxlen: 24 181.214.212.0/24 maxlen: 24 181.214.236.0/23 maxlen: 24 181.214.248.0/24 maxlen: 24 181.214.254.0/24 maxlen: 24 181.215.73.0/24 maxlen: 24 181.215.91.0/24 maxlen: 24 181.215.112.0/24 maxlen: 24 181.215.149.0/24 maxlen: 24 181.215.159.0/24 maxlen: 24 181.215.163.0/24 maxlen: 24 181.215.164.0/24 maxlen: 24 181.215.186.0/23 maxlen: 24 181.215.189.0/24 maxlen: 24 181.215.190.0/24 maxlen: 24 181.215.196.0/24 maxlen: 24 181.215.210.0/24 maxlen: 24 181.215.216.0/24 maxlen: 24 181.215.225.0/24 maxlen: 24 181.215.227.0/24 maxlen: 24 181.215.237.0/24 maxlen: 24 181.215.240.0/24 maxlen: 24 181.215.247.0/24 maxlen: 24 185.137.15.0/24 maxlen: 24 185.142.25.0/24 maxlen: 24 185.145.37.0/24 maxlen: 24 185.151.58.0/24 maxlen: 24 185.158.135.0/24 maxlen: 24 185.158.151.0/24 maxlen: 24 185.173.35.0/24 maxlen: 24 191.96.3.0/24 maxlen: 24 191.96.24.0/24 maxlen: 24 191.96.102.0/24 maxlen: 24 191.96.230.0/24 maxlen: 24 191.101.20.0/24 maxlen: 24 191.101.22.0/24 maxlen: 24 191.101.29.0/24 maxlen: 24 191.101.76.0/24 maxlen: 24 191.101.82.0/24 maxlen: 24 191.101.97.0/24 maxlen: 24 191.101.132.0/24 maxlen: 24 191.101.136.0/24 maxlen: 24 191.101.177.0/24 maxlen: 24 191.101.180.0/24 maxlen: 24 191.101.182.0/24 maxlen: 24 191.101.186.0/24 maxlen: 24 191.101.192.0/24 maxlen: 24 191.101.198.0/24 maxlen: 24 191.101.236.0/24 maxlen: 24 191.101.240.0/24 maxlen: 24 191.101.247.0/24 maxlen: 24 191.101.252.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.mft rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 22:12:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:67:9f:13:09:5e:32:6f:4f:4b:0e:b6:04:7a:63:87:4f:b2:36:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a Validity Not Before: Dec 4 17:27:22 2025 GMT Not After : Dec 3 17:32:22 2026 GMT Subject: CN=F985EB0AF87CBEB0A4A52CED3198217BCD2C2CE5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:6d:90:47:b4:b3:8d:bb:c0:9a:7a:4b:02:74: 9e:e2:ba:c6:d9:8e:af:70:33:3b:ef:c4:f1:af:52: 6b:e0:e0:f3:a9:b2:70:6f:d5:83:43:b9:29:01:2f: 7c:2f:2e:f2:21:53:6c:1f:ff:e2:d4:66:e0:06:4e: 7f:28:80:bb:c1:a7:c8:59:6c:c2:eb:dd:d0:17:2e: 17:f6:65:26:be:57:a3:b5:4e:9c:0e:9d:4f:25:68: b4:c2:80:f5:da:df:a3:0f:6e:77:97:9d:e1:ad:51: b6:62:e7:11:0e:7d:27:67:b5:30:63:1a:5f:77:2c: c7:da:6c:9c:bc:c1:16:74:b6:f5:42:0a:5d:eb:58: 55:2e:3a:93:7f:14:70:9d:ac:78:c9:bf:f6:49:25: 39:b7:02:01:9d:09:20:6d:6e:01:34:1a:fc:e3:82: f7:51:b1:87:42:68:0f:47:c3:b6:54:8c:44:c8:d1: 9c:e6:d0:94:fc:d9:8c:fc:4d:8c:f2:da:75:6d:5b: da:85:24:db:f8:eb:86:f0:f6:71:3f:1f:a5:1f:8c: af:c4:07:db:da:85:b9:5f:b8:06:30:40:24:73:42: 1f:b7:2f:f1:b2:bc:e5:64:2d:2e:43:06:a0:2b:fc: 3e:03:e7:d5:af:82:18:64:25:d9:5d:be:6f:b9:9e: af:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:85:EB:0A:F8:7C:BE:B0:A4:A5:2C:ED:31:98:21:7B:CD:2C:2C:E5 X509v3 Authority Key Identifier: keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS834.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.252.81.0/24 45.87.185.0/24 45.88.98.0/24 45.89.249.0/24 45.93.44.0/24 45.137.118.0/24 45.139.183.0/24 92.118.162.0/24 92.119.34.0/24 92.242.184.0/24 179.61.140.0/24 179.61.150.0/24 179.61.242.0/24 181.41.196.0/24 181.41.211.0/24 181.214.0.0/24 181.214.4.0/24 181.214.14.0/24 181.214.25.0/24 181.214.41.0/24 181.214.54.0/24 181.214.58.0/24 181.214.79.0/24 181.214.91.0/24 181.214.98.0/24 181.214.101.0/24 181.214.120.0/23 181.214.124.0/23 181.214.130.0/24 181.214.167.0/24 181.214.208.0/24 181.214.212.0/24 181.214.236.0/23 181.214.248.0/24 181.214.254.0/24 181.215.73.0/24 181.215.91.0/24 181.215.112.0/24 181.215.149.0/24 181.215.159.0/24 181.215.163.0-181.215.164.255 181.215.186.0/23 181.215.189.0-181.215.190.255 181.215.196.0/24 181.215.210.0/24 181.215.216.0/24 181.215.225.0/24 181.215.227.0/24 181.215.237.0/24 181.215.240.0/24 181.215.247.0/24 185.137.15.0/24 185.142.25.0/24 185.145.37.0/24 185.151.58.0/24 185.158.135.0/24 185.158.151.0/24 185.173.35.0/24 191.96.3.0/24 191.96.24.0/24 191.96.102.0/24 191.96.230.0/24 191.101.20.0/24 191.101.22.0/24 191.101.29.0/24 191.101.76.0/24 191.101.82.0/24 191.101.97.0/24 191.101.132.0/24 191.101.136.0/24 191.101.177.0/24 191.101.180.0/24 191.101.182.0/24 191.101.186.0/24 191.101.192.0/24 191.101.198.0/24 191.101.236.0/24 191.101.240.0/24 191.101.247.0/24 191.101.252.0/24 Signature Algorithm: sha256WithRSAEncryption 4b:02:ec:50:f5:71:56:c9:7e:63:d9:88:0a:7f:1b:d2:81:80: 6c:f7:5c:51:82:8d:5f:63:a1:04:c4:57:69:c8:14:78:a3:65: a8:cf:d9:2c:de:40:a2:ab:54:2d:6d:c6:7c:eb:b1:83:dd:eb: 1c:a0:84:48:c5:67:4d:91:19:29:7b:13:70:0f:dd:b3:aa:a2: bc:62:5b:60:75:db:b2:49:31:9a:cc:a0:58:27:83:45:fb:93: 4d:ec:63:2a:ae:c3:8a:cd:22:60:e7:32:40:f0:94:9b:34:41: 58:37:92:6b:23:08:d9:b2:8b:27:35:55:d1:15:29:95:cf:85: d4:9a:b9:82:48:9b:9d:f7:17:62:2d:02:77:5c:47:c5:86:ba: 87:24:0f:6e:eb:97:76:1d:0c:e6:10:6f:0d:74:49:ce:4a:0c: 22:60:bf:c2:45:b9:74:82:05:27:e4:c9:2d:ee:7c:55:1b:29: 2a:ce:18:85:24:79:51:a0:97:bd:99:67:38:23:3a:51:f3:f5: f2:2e:a0:64:49:bd:b2:05:ce:29:5e:7e:89:20:04:de:72:7b: d2:bc:45:a8:dc:5d:81:d8:ef:30:af:b2:99:7e:b0:d7:f5:17: 2d:8a:a7:b1:bc:e8:a0:a7:23:5f:10:9c:46:a7:a0:41:05:f6: 3b:0d:07:61 -----BEGIN CERTIFICATE----- MIIG8TCCBdmgAwIBAgIUEGefEwleMm9PSw62BHpjh0+yNsEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjFiMWJiNDQ0NzcxOGYxNmIzZDM2Njc1ZDIwNWM0ZGVh NDFiYmEwYTAeFw0yNTEyMDQxNzI3MjJaFw0yNjEyMDMxNzMyMjJaMDMxMTAvBgNV BAMTKEY5ODVFQjBBRjg3Q0JFQjBBNEE1MkNFRDMxOTgyMTdCQ0QyQzJDRTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCybZBHtLONu8CaeksCdJ7iusbZ jq9wMzvvxPGvUmvg4POpsnBv1YNDuSkBL3wvLvIhU2wf/+LUZuAGTn8ogLvBp8hZ bMLr3dAXLhf2ZSa+V6O1TpwOnU8laLTCgPXa36MPbneXneGtUbZi5xEOfSdntTBj Gl93LMfabJy8wRZ0tvVCCl3rWFUuOpN/FHCdrHjJv/ZJJTm3AgGdCSBtbgE0Gvzj gvdRsYdCaA9Hw7ZUjETI0Zzm0JT82Yz8TYzy2nVtW9qFJNv464bw9nE/H6UfjK/E B9vahblfuAYwQCRzQh+3L/GyvOVkLS5DBqAr/D4D59WvghhkJdldvm+5nq8dAgMB AAGjggP7MIID9zAdBgNVHQ4EFgQU+YXrCvh8vrCkpSztMZghe80sLOUwHwYDVR0j BBgwFoAUYbG7REdxjxaz02Z10gXE3qQbugowDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNTM3NDU5ZTctMmE4My00M2QxLTlhYTEtNTg0MTdhYmFj NGI2LzEvNjFCMUJCNDQ0NzcxOEYxNkIzRDM2Njc1RDIwNUM0REVBNDFCQkEwQS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1liRzdSRWR4anhhejAyWjEwZ1hFM3FR YnVnby5jZXIweAYIKwYBBQUHAQsEbDBqMGgGCCsGAQUFBzALhlxyc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzUzNzQ1OWU3LTJhODMt NDNkMS05YWExLTU4NDE3YWJhYzRiNi8xL0FTODM0LnJvYTAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMIICEQYIKwYBBQUHAQcBAf8EggIAMIIB/DCCAfgEAgABMIIB 8AMEAAX8UQMEAC1XuQMEAC1YYgMEAC1Z+QMEAC1dLAMEAC2JdgMEAC2LtwMEAFx2 ogMEAFx3IgMEAFzyuAMEALM9jAMEALM9lgMEALM98gMEALUpxAMEALUp0wMEALXW AAMEALXWBAMEALXWDgMEALXWGQMEALXWKQMEALXWNgMEALXWOgMEALXWTwMEALXW WwMEALXWYgMEALXWZQMEAbXWeAMEAbXWfAMEALXWggMEALXWpwMEALXW0AMEALXW 1AMEAbXW7AMEALXW+AMEALXW/gMEALXXSQMEALXXWwMEALXXcAMEALXXlQMEALXX nzAMAwQAtdejAwQAtdekAwQBtde6MAwDBAC1170DBAC1174DBAC118QDBAC119ID BAC119gDBAC11+EDBAC11+MDBAC11+0DBAC11/ADBAC11/cDBAC5iQ8DBAC5jhkD BAC5kSUDBAC5lzoDBAC5nocDBAC5npcDBAC5rSMDBAC/YAMDBAC/YBgDBAC/YGYD BAC/YOYDBAC/ZRQDBAC/ZRYDBAC/ZR0DBAC/ZUwDBAC/ZVIDBAC/ZWEDBAC/ZYQD BAC/ZYgDBAC/ZbEDBAC/ZbQDBAC/ZbYDBAC/ZboDBAC/ZcADBAC/ZcYDBAC/ZewD BAC/ZfADBAC/ZfcDBAC/ZfwwDQYJKoZIhvcNAQELBQADggEBAEsC7FD1cVbJfmPZ iAp/G9KBgGz3XFGCjV9joQTEV2nIFHijZajP2SzeQKKrVC1txnzrsYPd6xyghEjF Z02RGSl7E3AP3bOqorxiW2B127JJMZrMoFgng0X7k03sYyquw4rNImDnMkDwlJs0 QVg3kmsjCNmyiyc1VdEVKZXPhdSauYJIm533F2ItAndcR8WGuockD27rl3YdDOYQ bw10Sc5KDCJgv8JFuXSCBSfkyS3ufFUbKSrOGIUkeVGgl72ZZzgjOlHz9fIuoGRJ vbIFzilefokgBN5ye9K8RajcXYHY7zCvspl+sNf1Fy2Kp7G86KCnI18QnEanoEEF 9jsNB2E= -----END CERTIFICATE-----Generated at Sat Dec 6 13:39:36 2025 by rpki-client