This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/AS0.roa File: AS0.roa (raw, json) Hash identifier: YKCk20ZPEbC0CZNVMq1IDAIREyxQUdB9+Iolvlg3bLM= Subject key identifier: 51:14:D4:F6:4B:9D:BD:AD:24:B6:25:40:A7:F4:DB:CB:5E:67:06:C5 Certificate issuer: /CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772 Certificate serial: 5B27826E3220061D6633E0C8DDFF9C99CAF30A0F Authority key identifier: A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/AS0.roa Signing time: Sat 10 Jan 2026 01:56:19 +0000 ROA not before: Sat 10 Jan 2026 01:51:19 +0000 ROA not after: Sat 09 Jan 2027 01:56:19 +0000 asID: 0 IP address blocks: 193.150.40.0/24 maxlen: 24 2a14:7580:50::/44 maxlen: 44 2a14:7580:5000::/36 maxlen: 48 2a14:7580:9000::/36 maxlen: 48 2a14:7580:b000::/36 maxlen: 48 2a14:7580:c000::/36 maxlen: 48 2a14:7580:e100::/40 maxlen: 48 2a14:7580:fa00::/40 maxlen: 48 2a14:7580:ff00::/44 maxlen: 48 2a14:7580:ff30::/44 maxlen: 48 2a14:7580:ff90::/44 maxlen: 48 2a14:7580:ffef::/48 maxlen: 48 2a14:7581:fe6::/48 maxlen: 48 2a14:7581:ff0::/48 maxlen: 48 2a14:7581:ff2::/48 maxlen: 48 2a14:7581:ff7::/48 maxlen: 48 2a14:7581:ffa::/48 maxlen: 48 2a14:7581:ffc::/48 maxlen: 48 2a14:7581:e000::/36 maxlen: 48 2a14:7582::/32 maxlen: 48 2a14:7583:4000::/36 maxlen: 48 2a14:7583:5000::/36 maxlen: 48 2a14:7584:1000::/36 maxlen: 48 2a14:7584:6000::/36 maxlen: 48 2a14:7584:8000::/36 maxlen: 48 2a14:7584:a000::/36 maxlen: 48 2a14:7584:b000::/36 maxlen: 48 2a14:7584:c000::/36 maxlen: 48 2a14:7585::/32 maxlen: 48 2a14:7586::/32 maxlen: 48 2a14:7587::/32 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 01:36:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:27:82:6e:32:20:06:1d:66:33:e0:c8:dd:ff:9c:99:ca:f3:0a:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772 Validity Not Before: Jan 10 01:51:19 2026 GMT Not After : Jan 9 01:56:19 2027 GMT Subject: CN=5114D4F64B9DBDAD24B62540A7F4DBCB5E6706C5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:bb:d2:73:26:20:e5:cd:58:53:41:df:fb:de: 03:ec:6d:1a:d9:1e:3e:82:b7:f0:c9:86:32:d9:07: 29:0a:3e:78:3a:74:10:71:68:2c:05:74:36:eb:ae: ed:d1:4b:ae:42:98:64:56:51:86:d9:de:74:26:97: 74:11:d0:7f:71:86:1d:3b:6f:f4:ad:42:0b:54:73: 46:3d:ce:cd:f1:22:14:be:22:89:4d:0b:25:08:f3: 3a:0c:18:2a:85:18:0f:f0:15:3b:18:2f:4f:67:12: 69:16:9b:72:0a:b6:b3:89:5b:71:0b:09:e9:0a:20: 10:32:77:ee:9a:c2:8a:07:9d:fa:97:90:84:17:c2: ee:27:1c:18:4c:ea:dd:d2:e3:91:39:be:5f:51:6e: e3:43:51:a0:72:59:87:eb:2a:df:71:69:07:35:e1: 47:df:be:fd:0a:fb:f9:02:75:d6:15:49:9d:f9:f6: e9:94:58:cf:94:fe:85:26:d9:ad:a9:5d:ad:47:81: f5:27:f4:6c:cf:56:db:a5:b1:a6:15:29:d6:09:d5: 4c:2d:8f:b0:7a:48:ae:63:10:7e:d5:32:86:fa:86: b4:e0:d3:87:8d:3c:d8:ca:c1:26:2d:93:24:e2:56: 6e:ad:1f:eb:52:7f:16:a2:66:b9:d7:d3:b0:71:0a: 8a:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:14:D4:F6:4B:9D:BD:AD:24:B6:25:40:A7:F4:DB:CB:5E:67:06:C5 X509v3 Authority Key Identifier: keyid:A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/AS0.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.150.40.0/24 IPv6: 2a14:7580:50::/44 2a14:7580:5000::/36 2a14:7580:9000::/36 2a14:7580:b000::-2a14:7580:cfff:ffff:ffff:ffff:ffff:ffff 2a14:7580:e100::/40 2a14:7580:fa00::/40 2a14:7580:ff00::/44 2a14:7580:ff30::/44 2a14:7580:ff90::/44 2a14:7580:ffef::/48 2a14:7581:fe6::/48 2a14:7581:ff0::/48 2a14:7581:ff2::/48 2a14:7581:ff7::/48 2a14:7581:ffa::/48 2a14:7581:ffc::/48 2a14:7581:e000::/36 2a14:7582::/32 2a14:7583:4000::/35 2a14:7584:1000::/36 2a14:7584:6000::/36 2a14:7584:8000::/36 2a14:7584:a000::-2a14:7584:cfff:ffff:ffff:ffff:ffff:ffff 2a14:7585::-2a14:7587:ffff:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 9f:7c:e4:73:9a:6a:2d:ab:0d:97:5b:e8:71:1f:02:7d:ad:25: af:e3:59:34:50:05:bc:b9:04:bb:25:2c:bb:56:5c:d8:03:f3: 56:d1:3f:ac:67:86:51:57:59:0e:bd:02:06:45:d1:ad:14:ed: 9d:16:64:1f:06:a0:00:35:43:14:41:fe:e4:2d:d8:b7:21:2e: f2:fe:ba:9b:04:f7:61:d4:92:09:9e:cf:ea:1a:7b:a6:b6:11: 21:88:55:05:7c:46:cc:f1:1e:ed:f2:ae:8e:0d:a3:6c:aa:55: ac:47:02:c0:0e:2a:f2:e7:49:2c:85:4e:13:78:d8:2c:62:d7: 2c:00:bb:6c:a8:67:f8:34:d4:ec:f9:92:01:20:69:bf:eb:2d: f2:01:2a:d6:ce:76:7c:e4:2e:dd:a7:6f:fb:6d:cb:20:e7:81: b5:c5:30:54:dd:f3:d0:fe:a7:41:42:c9:b6:e5:f2:31:c0:2f: 8b:2e:77:f3:d4:86:62:4f:c3:2f:59:39:a0:3c:c9:3a:8d:a8: fc:b3:57:b2:3c:72:fc:32:1d:a4:1c:be:ce:6b:ea:08:83:01: fe:54:f8:e6:e2:af:a5:11:d5:29:16:4b:d6:db:57:47:be:34: 16:39:f5:4d:82:21:46:1c:41:d1:02:35:a6:22:91:64:1b:52: 0c:ac:87:5b -----BEGIN CERTIFICATE----- MIIF8DCCBNigAwIBAgIUWyeCbjIgBh1mM+DI3f+cmcrzCg8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYTgzZDQ4NjUyZjNiMmRmNzRmNmJmOWJhYThhOWMxNzRj Y2ZkMzc3MjAeFw0yNjAxMTAwMTUxMTlaFw0yNzAxMDkwMTU2MTlaMDMxMTAvBgNV BAMTKDUxMTRENEY2NEI5REJEQUQyNEI2MjU0MEE3RjREQkNCNUU2NzA2QzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCZu9JzJiDlzVhTQd/73gPsbRrZ Hj6Ct/DJhjLZBykKPng6dBBxaCwFdDbrru3RS65CmGRWUYbZ3nQml3QR0H9xhh07 b/StQgtUc0Y9zs3xIhS+IolNCyUI8zoMGCqFGA/wFTsYL09nEmkWm3IKtrOJW3EL CekKIBAyd+6awooHnfqXkIQXwu4nHBhM6t3S45E5vl9RbuNDUaByWYfrKt9xaQc1 4Uffvv0K+/kCddYVSZ359umUWM+U/oUm2a2pXa1HgfUn9GzPVtulsaYVKdYJ1Uwt j7B6SK5jEH7VMob6hrTg04eNPNjKwSYtkyTiVm6tH+tSfxaiZrnX07BxCoovAgMB AAGjggL6MIIC9jAdBgNVHQ4EFgQUURTU9kudva0ktiVAp/Tby15nBsUwHwYDVR0j BBgwFoAUqD1IZS87LfdPa/m6qKnBdMz9N3IwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvODkyNzBmNmMtYTNmZS00Mjk5LWIwNzktMzA5ZWQ5N2Yz ODI0LzAvQTgzRDQ4NjUyRjNCMkRGNzRGNkJGOUJBQThBOUMxNzRDQ0ZEMzc3Mi5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3FEMUlaUzg3TGZkUGFfbTZxS25CZE16 OU4zSS5jZXIwdgYIKwYBBQUHAQsEajBoMGYGCCsGAQUFBzALhlpyc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5Lzg5MjcwZjZjLWEzZmUt NDI5OS1iMDc5LTMwOWVkOTdmMzgyNC8wL0FTMC5yb2EwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjCCARIGCCsGAQUFBwEHAQH/BIIBATCB/jAMBAIAATAGAwQAwZYo MIHtBAIAAjCB5gMHBCoUdYAAUAMGBCoUdYBQAwYEKhR1gJAwEAMGBCoUdYCwAwYE KhR1gMADBgAqFHWA4QMGACoUdYD6AwcEKhR1gP8AAwcEKhR1gP8wAwcEKhR1gP+Q AwcAKhR1gP/vAwcAKhR1gQ/mAwcAKhR1gQ/wAwcAKhR1gQ/yAwcAKhR1gQ/3AwcA KhR1gQ/6AwcAKhR1gQ/8AwYEKhR1geADBQAqFHWCAwYFKhR1g0ADBgQqFHWEEAMG BCoUdYRgAwYEKhR1hIAwEAMGBSoUdYSgAwYEKhR1hMAwDgMFACoUdYUDBQMqFHWA MA0GCSqGSIb3DQEBCwUAA4IBAQCffORzmmotqw2XW+hxHwJ9rSWv41k0UAW8uQS7 JSy7VlzYA/NW0T+sZ4ZRV1kOvQIGRdGtFO2dFmQfBqAANUMUQf7kLdi3IS7y/rqb BPdh1JIJns/qGnumthEhiFUFfEbM8R7t8q6ODaNsqlWsRwLADiry50kshU4TeNgs YtcsALtsqGf4NNTs+ZIBIGm/6y3yASrWznZ85C7dp2/7bcsg54G1xTBU3fPQ/qdB Qsm25fIxwC+LLnfz1IZiT8MvWTmgPMk6jaj8s1eyPHL8Mh2kHL7Oa+oIgwH+VPjm 4q+lEdUpFkvW21dHvjQWOfVNgiFGHEHRAjWmIpFkG1IMrIdb -----END CERTIFICATE-----Generated at Sun Jan 25 12:11:12 2026 by rpki-client