This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/AS48678.roa File: AS48678.roa (raw, json) Hash identifier: 8R8FLFliJH1BizJkz8xypUE5kDT/rSPu7WtxcNLY0yQ= Subject key identifier: 3B:C6:14:FD:14:84:76:4B:66:11:D6:E8:22:01:62:EE:BC:1D:97:FE Certificate issuer: /CN=7051b4c2f7ae9ef80b53000b32ab8f5d2f2f415b Certificate serial: 10413DDB8E0D883708D38353BD3BEB6B986EBA50 Authority key identifier: 70:51:B4:C2:F7:AE:9E:F8:0B:53:00:0B:32:AB:8F:5D:2F:2F:41:5B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cFG0wveunvgLUwALMquPXS8vQVs.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/AS48678.roa Signing time: Thu 15 Jan 2026 19:59:12 +0000 ROA not before: Thu 15 Jan 2026 19:54:12 +0000 ROA not after: Thu 14 Jan 2027 19:59:12 +0000 asID: 48678 IP address blocks: 5.133.101.0/24 maxlen: 24 31.40.197.0/24 maxlen: 24 31.40.199.0/24 maxlen: 24 31.40.205.0/24 maxlen: 24 31.40.207.0/24 maxlen: 24 85.235.72.0/24 maxlen: 24 85.235.73.0/24 maxlen: 24 85.235.74.0/24 maxlen: 24 141.98.48.0/24 maxlen: 24 141.98.112.0/24 maxlen: 24 141.98.113.0/24 maxlen: 24 141.98.114.0/24 maxlen: 24 141.98.115.0/24 maxlen: 24 176.96.128.0/24 maxlen: 24 176.96.130.0/24 maxlen: 24 193.111.79.0/24 maxlen: 24 217.18.208.0/24 maxlen: 24 217.18.209.0/24 maxlen: 24 217.18.211.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/7051B4C2F7AE9EF80B53000B32AB8F5D2F2F415B.crl rsync://rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/7051B4C2F7AE9EF80B53000B32AB8F5D2F2F415B.mft rsync://rpki.ripe.net/repository/DEFAULT/cFG0wveunvgLUwALMquPXS8vQVs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 04:21:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:41:3d:db:8e:0d:88:37:08:d3:83:53:bd:3b:eb:6b:98:6e:ba:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7051b4c2f7ae9ef80b53000b32ab8f5d2f2f415b Validity Not Before: Jan 15 19:54:12 2026 GMT Not After : Jan 14 19:59:12 2027 GMT Subject: CN=3BC614FD1484764B6611D6E8220162EEBC1D97FE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:7e:d9:f4:49:e3:fc:30:10:8b:8a:89:f9:d0: 56:31:00:5d:c0:9a:a7:7f:1e:b4:cb:d1:b2:9e:24: 8e:86:0e:db:6c:60:e7:05:1d:73:48:c3:90:ba:3d: 04:e2:ec:1a:28:dc:ea:bd:10:16:9e:96:2b:90:1b: d8:57:34:1b:96:ec:e3:f3:de:62:87:2c:80:37:24: b3:ff:77:56:76:07:7e:9e:4b:ca:92:08:59:16:1e: ce:6c:23:73:00:2e:1b:42:d8:17:06:11:a4:87:24: 57:75:69:7c:2f:8f:a6:42:50:8c:41:8c:4e:34:d7: b9:5b:ee:bc:8d:e4:dd:8f:35:cc:02:31:81:96:a0: ec:a2:18:76:65:36:e8:dd:83:b4:4d:9f:90:1b:dd: aa:e9:9c:80:87:3c:13:32:15:60:87:12:9c:57:a1: 28:36:a8:87:be:e1:80:df:ed:51:84:25:f0:8c:d4: 93:17:38:0c:d8:14:6b:0d:39:b4:70:55:1c:68:e4: 63:61:0a:3d:6f:10:4d:f3:d1:9b:2d:42:08:2c:dd: 4e:95:2c:4c:85:a9:41:27:7a:0c:3d:65:14:1b:63: 3b:8f:55:db:6c:a5:eb:c9:45:6e:40:57:55:d8:9b: 66:e0:ed:ac:23:5d:51:d1:53:90:88:bb:f9:3f:28: 84:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:C6:14:FD:14:84:76:4B:66:11:D6:E8:22:01:62:EE:BC:1D:97:FE X509v3 Authority Key Identifier: keyid:70:51:B4:C2:F7:AE:9E:F8:0B:53:00:0B:32:AB:8F:5D:2F:2F:41:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/7051B4C2F7AE9EF80B53000B32AB8F5D2F2F415B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cFG0wveunvgLUwALMquPXS8vQVs.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/AS48678.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.133.101.0/24 31.40.197.0/24 31.40.199.0/24 31.40.205.0/24 31.40.207.0/24 85.235.72.0-85.235.74.255 141.98.48.0/24 141.98.112.0/22 176.96.128.0/24 176.96.130.0/24 193.111.79.0/24 217.18.208.0/23 217.18.211.0/24 Signature Algorithm: sha256WithRSAEncryption 82:39:e0:67:34:9d:0e:33:bf:1a:ee:29:64:b1:1e:ee:3c:06: eb:6f:e3:99:df:e5:97:17:75:0b:0b:d8:a7:3c:36:27:9b:56: 63:d7:f4:ea:ac:31:35:ac:05:eb:08:b4:d8:16:d2:12:34:74: a5:e5:35:cf:f7:85:bf:20:d8:e3:7c:ac:9b:76:07:0c:92:c5: 4c:f8:64:3c:8e:f1:a6:f0:90:37:8f:be:ae:c1:b3:4c:63:54: ad:23:4a:a9:e1:37:82:17:53:03:2a:53:c3:dd:c9:03:1a:88: 00:a1:3b:87:58:4c:d8:9e:23:b8:89:a4:ee:61:6d:86:9c:8f: cd:64:da:05:41:57:27:c2:45:fe:b6:ee:98:b8:1d:70:d6:cc: 03:f3:89:9e:e0:4d:f9:d6:50:44:c9:32:80:cb:0f:5d:70:fc: 7c:f9:70:0f:08:e9:cb:ef:38:63:cb:0e:51:37:94:92:99:b2: b5:06:e5:71:3a:43:64:ab:96:84:7c:ff:d9:62:89:a5:27:f0: 38:50:12:f4:90:66:d1:46:af:74:02:d4:b2:a0:ca:78:01:aa: cd:8e:b2:88:7a:27:68:9a:6a:60:d1:c9:18:ce:7e:bc:5f:29: 65:f1:41:95:95:83:96:a4:67:62:81:f8:63:67:d7:0f:ff:7b: 09:17:28:4a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgIUEEE9244NiDcI04NTvTvra5huulAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzA1MWI0YzJmN2FlOWVmODBiNTMwMDBiMzJhYjhmNWQy ZjJmNDE1YjAeFw0yNjAxMTUxOTU0MTJaFw0yNzAxMTQxOTU5MTJaMDMxMTAvBgNV BAMTKDNCQzYxNEZEMTQ4NDc2NEI2NjExRDZFODIyMDE2MkVFQkMxRDk3RkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtftn0SeP8MBCLion50FYxAF3A mqd/HrTL0bKeJI6GDttsYOcFHXNIw5C6PQTi7Boo3Oq9EBaeliuQG9hXNBuW7OPz 3mKHLIA3JLP/d1Z2B36eS8qSCFkWHs5sI3MALhtC2BcGEaSHJFd1aXwvj6ZCUIxB jE4017lb7ryN5N2PNcwCMYGWoOyiGHZlNujdg7RNn5Ab3arpnICHPBMyFWCHEpxX oSg2qIe+4YDf7VGEJfCM1JMXOAzYFGsNObRwVRxo5GNhCj1vEE3z0ZstQggs3U6V LEyFqUEnegw9ZRQbYzuPVdtspevJRW5AV1XYm2bg7awjXVHRU5CIu/k/KITbAgMB AAGjggJZMIICVTAdBgNVHQ4EFgQUO8YU/RSEdktmEdboIgFi7rwdl/4wHwYDVR0j BBgwFoAUcFG0wveunvgLUwALMquPXS8vQVswDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvOWM1Y2U5ZmEtOWE2Zi00ZTBjLTk4MDktN2E0Nzg4NzQ0 ODkzLzAvNzA1MUI0QzJGN0FFOUVGODBCNTMwMDBCMzJBQjhGNUQyRjJGNDE1Qi5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2NGRzB3dmV1bnZnTFV3QUxNcXVQWFM4 dlFWcy5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzljNWNlOWZhLTlhNmYt NGUwYy05ODA5LTdhNDc4ODc0NDg5My8wL0FTNDg2Nzgucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwbwYIKwYBBQUHAQcBAf8EYDBeMFwEAgABMFYDBAAFhWUD BAAfKMUDBAAfKMcDBAAfKM0DBAAfKM8wDAMEA1XrSAMEAFXrSgMEAI1iMAMEAo1i cAMEALBggAMEALBgggMEAMFvTwMEAdkS0AMEANkS0zANBgkqhkiG9w0BAQsFAAOC AQEAgjngZzSdDjO/Gu4pZLEe7jwG62/jmd/llxd1CwvYpzw2J5tWY9f06qwxNawF 6wi02BbSEjR0peU1z/eFvyDY43ysm3YHDJLFTPhkPI7xpvCQN4++rsGzTGNUrSNK qeE3ghdTAypTw93JAxqIAKE7h1hM2J4juImk7mFthpyPzWTaBUFXJ8JF/rbumLgd cNbMA/OJnuBN+dZQRMkygMsPXXD8fPlwDwjpy+84Y8sOUTeUkpmytQblcTpDZKuW hHz/2WKJpSfwOFAS9JBm0UavdALUsqDKeAGqzY6yiHonaJpqYNHJGM5+vF8pZfFB lZWDlqRnYoH4Y2fXD/97CRcoSg== -----END CERTIFICATE-----Generated at Sun Jan 25 22:18:16 2026 by rpki-client