This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/AS206540.roa File: AS206540.roa (raw, json) Hash identifier: t8E2C42iE5o2dMZLrGr5sigeNGx9PYvBVafPCU5pm+w= Subject key identifier: 15:78:50:C4:52:BB:32:13:99:37:32:FE:B6:5D:28:F4:01:2F:8D:88 Certificate issuer: /CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772 Certificate serial: 6B11072B0B779800F7FEFBEBD97430E70BEBB4B9 Authority key identifier: A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/AS206540.roa Signing time: Sat 24 Jan 2026 11:45:40 +0000 ROA not before: Sat 24 Jan 2026 11:40:40 +0000 ROA not after: Sat 23 Jan 2027 11:45:40 +0000 asID: 206540 IP address blocks: 2a14:7580:ffb0::/44 maxlen: 48 2a14:7580:ffc0::/44 maxlen: 48 2a14:7583:ff60::/44 maxlen: 48 2a14:7583:ff70::/44 maxlen: 48 2a14:7583:ff80::/44 maxlen: 44 2a14:7583:ff90::/44 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 01:36:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:11:07:2b:0b:77:98:00:f7:fe:fb:eb:d9:74:30:e7:0b:eb:b4:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772 Validity Not Before: Jan 24 11:40:40 2026 GMT Not After : Jan 23 11:45:40 2027 GMT Subject: CN=157850C452BB3213993732FEB65D28F4012F8D88 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:36:81:93:5f:88:a9:81:79:0e:ef:0a:cc:e4: 58:45:7b:95:2e:2f:4d:f8:e6:40:ca:c4:46:6e:35: 2a:b6:bc:21:dd:88:43:ee:2a:e4:cb:bd:dd:0c:84: 32:c5:58:2f:ae:e8:5f:0b:53:46:bb:3a:9c:ba:9e: 49:d0:7e:7b:5f:a2:43:18:5a:0b:cd:ed:6d:29:23: ec:28:6b:25:0c:47:42:8c:4b:8b:d3:8c:63:fb:f8: 38:a8:a9:55:12:c1:60:ac:1c:24:9a:9c:7a:98:77: c3:cb:00:0a:60:43:2e:95:7b:b6:fe:f6:0b:38:fd: c3:70:9d:ff:dd:f4:f3:c2:fb:f2:77:59:e0:24:bd: 22:01:fb:93:7c:af:a7:73:c7:c2:c7:ae:b0:77:35: 4a:03:31:a8:ab:6e:92:1f:8e:72:88:a1:c4:f8:35: 29:d8:e3:97:76:b1:2b:d7:70:9f:c3:2c:21:df:c3: 33:d0:9b:21:79:a0:36:7c:bd:df:bd:92:fa:8c:8b: da:c1:a8:ea:4d:12:8f:99:da:5a:76:5b:d1:3f:58: 75:57:23:2a:f5:f2:df:26:2c:c1:a6:41:cf:1f:70: f7:12:97:7d:50:69:13:7a:e5:53:43:99:cb:80:85: e3:af:57:53:f4:c7:91:37:8c:16:2f:9d:db:0a:fe: 8b:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:78:50:C4:52:BB:32:13:99:37:32:FE:B6:5D:28:F4:01:2F:8D:88 X509v3 Authority Key Identifier: keyid:A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/AS206540.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7580:ffb0::-2a14:7580:ffcf:ffff:ffff:ffff:ffff:ffff 2a14:7583:ff60::-2a14:7583:ff9f:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 91:fb:cb:c2:a9:aa:1c:09:04:5f:7c:41:a5:59:f7:92:e7:5a: 61:62:ce:97:28:ae:d1:6e:0e:55:62:85:30:ac:a1:d7:da:02: ef:27:65:f9:94:77:cd:f2:93:f1:a3:ab:f1:e9:38:f7:ee:f5: dd:ce:3c:91:d6:77:cd:78:c3:b7:ea:7a:12:46:2f:00:f6:aa: f2:8c:7b:3c:77:c7:1b:58:ca:81:4a:cd:75:71:be:4b:54:f4: 1a:8e:96:fe:99:8c:88:2d:e8:01:13:1a:0c:b1:9f:45:57:fe: 81:a0:73:d3:b6:7d:ca:c7:93:51:d3:83:d9:a8:26:48:45:26: 52:54:52:df:de:a8:00:ea:5b:ea:53:f1:bd:fd:a0:e3:c7:d3: 16:30:40:38:54:c8:4c:56:5a:f9:bd:3f:56:6f:aa:a2:98:7d: 56:1c:0b:53:3e:7c:ff:90:1f:10:53:34:0f:cf:c1:82:5f:e4: 2e:87:a5:71:cf:f5:b2:9d:18:f3:fb:e0:cb:7d:03:58:87:a3: 80:a1:82:5d:cd:fc:d2:b1:7f:65:4d:40:e4:66:f1:b0:f1:9a: d7:33:f2:78:cb:33:5b:7d:55:7c:e1:aa:89:53:94:fc:f9:4a: 6b:99:7a:a4:98:c9:15:24:53:9a:1f:17:af:49:27:86:a2:b2: ce:0f:f8:6f -----BEGIN CERTIFICATE----- MIIFIjCCBAqgAwIBAgIUaxEHKwt3mAD3/vvr2XQw5wvrtLkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYTgzZDQ4NjUyZjNiMmRmNzRmNmJmOWJhYThhOWMxNzRj Y2ZkMzc3MjAeFw0yNjAxMjQxMTQwNDBaFw0yNzAxMjMxMTQ1NDBaMDMxMTAvBgNV BAMTKDE1Nzg1MEM0NTJCQjMyMTM5OTM3MzJGRUI2NUQyOEY0MDEyRjhEODgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCTNoGTX4ipgXkO7wrM5FhFe5Uu L0345kDKxEZuNSq2vCHdiEPuKuTLvd0MhDLFWC+u6F8LU0a7Opy6nknQfntfokMY WgvN7W0pI+woayUMR0KMS4vTjGP7+DioqVUSwWCsHCSanHqYd8PLAApgQy6Ve7b+ 9gs4/cNwnf/d9PPC+/J3WeAkvSIB+5N8r6dzx8LHrrB3NUoDMairbpIfjnKIocT4 NSnY45d2sSvXcJ/DLCHfwzPQmyF5oDZ8vd+9kvqMi9rBqOpNEo+Z2lp2W9E/WHVX Iyr18t8mLMGmQc8fcPcSl31QaRN65VNDmcuAheOvV1P0x5E3jBYvndsK/otrAgMB AAGjggIsMIICKDAdBgNVHQ4EFgQUFXhQxFK7MhOZNzL+tl0o9AEvjYgwHwYDVR0j BBgwFoAUqD1IZS87LfdPa/m6qKnBdMz9N3IwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvODkyNzBmNmMtYTNmZS00Mjk5LWIwNzktMzA5ZWQ5N2Yz ODI0LzAvQTgzRDQ4NjUyRjNCMkRGNzRGNkJGOUJBQThBOUMxNzRDQ0ZEMzc3Mi5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3FEMUlaUzg3TGZkUGFfbTZxS25CZE16 OU4zSS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5Lzg5MjcwZjZjLWEzZmUt NDI5OS1iMDc5LTMwOWVkOTdmMzgyNC8wL0FTMjA2NTQwLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMEEGCCsGAQUFBwEHAQH/BDIwMDAuBAIAAjAoMBIDBwQq FHWA/7ADBwQqFHWA/8AwEgMHBSoUdYP/YAMHBSoUdYP/gDANBgkqhkiG9w0BAQsF AAOCAQEAkfvLwqmqHAkEX3xBpVn3kudaYWLOlyiu0W4OVWKFMKyh19oC7ydl+ZR3 zfKT8aOr8ek49+713c48kdZ3zXjDt+p6EkYvAPaq8ox7PHfHG1jKgUrNdXG+S1T0 Go6W/pmMiC3oARMaDLGfRVf+gaBz07Z9yseTUdOD2agmSEUmUlRS396oAOpb6lPx vf2g48fTFjBAOFTITFZa+b0/Vm+qoph9VhwLUz58/5AfEFM0D8/Bgl/kLoelcc/1 sp0Y8/vgy30DWIejgKGCXc380rF/ZU1A5GbxsPGa1zPyeMszW31VfOGqiVOU/PlK a5l6pJjJFSRTmh8Xr0knhqKyzg/4bw== -----END CERTIFICATE-----Generated at Sun Jan 25 12:11:03 2026 by rpki-client