This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c409d7b2-ee64-49f1-ad81-8e4a107d62e0/0/AS401776.roa File: AS401776.roa (raw, json) Hash identifier: 4zNOLhLUfkPpXfnHJ2xSFjpaTCbni+enKHE5UNGXPAk= Subject key identifier: CE:DA:0F:FE:18:2E:67:A1:22:1A:E6:FF:09:63:91:BD:81:D7:DC:B2 Certificate issuer: /CN=88c14ec02adbf083138eddd47871176ddeb93d9d Certificate serial: 186CBBB18F62D925D78F9EFA382F45F213B91A58 Authority key identifier: 88:C1:4E:C0:2A:DB:F0:83:13:8E:DD:D4:78:71:17:6D:DE:B9:3D:9D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iMFOwCrb8IMTjt3UeHEXbd65PZ0.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c409d7b2-ee64-49f1-ad81-8e4a107d62e0/0/AS401776.roa Signing time: Fri 28 Nov 2025 05:19:28 +0000 ROA not before: Fri 28 Nov 2025 05:14:28 +0000 ROA not after: Fri 27 Nov 2026 05:19:28 +0000 asID: 401776 IP address blocks: 143.20.178.0/24 maxlen: 24 143.20.198.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c409d7b2-ee64-49f1-ad81-8e4a107d62e0/0/88C14EC02ADBF083138EDDD47871176DDEB93D9D.crl rsync://rsync.paas.rpki.ripe.net/repository/c409d7b2-ee64-49f1-ad81-8e4a107d62e0/0/88C14EC02ADBF083138EDDD47871176DDEB93D9D.mft rsync://rpki.ripe.net/repository/DEFAULT/iMFOwCrb8IMTjt3UeHEXbd65PZ0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:6c:bb:b1:8f:62:d9:25:d7:8f:9e:fa:38:2f:45:f2:13:b9:1a:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=88c14ec02adbf083138eddd47871176ddeb93d9d Validity Not Before: Nov 28 05:14:28 2025 GMT Not After : Nov 27 05:19:28 2026 GMT Subject: CN=CEDA0FFE182E67A1221AE6FF096391BD81D7DCB2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:3c:27:93:3b:fb:75:12:67:df:52:9d:1a:e6: a5:2d:78:a2:5d:30:8c:90:de:d4:77:d2:ca:0b:0e: d7:e8:bb:6a:4d:80:ed:cb:10:e8:70:08:9b:23:c2: 04:e0:84:93:54:7e:e0:66:24:08:f2:21:4d:f6:4b: 15:88:f9:d3:2b:54:cd:c6:d7:e7:de:f5:cb:a7:d6: f1:f3:c4:f2:4a:d7:16:60:30:27:9c:1e:8c:2a:3f: 03:c7:98:c1:9e:45:80:13:a1:55:ae:0b:f2:f5:f3: 63:c9:58:6a:fb:a7:45:43:ef:5b:0d:8d:42:b9:bd: 50:4e:ce:00:98:f3:36:af:e0:ed:f4:07:f9:e8:a1: 4d:b2:b7:fd:2b:18:67:42:dd:40:22:13:7a:bc:0b: 69:49:40:ab:4d:2d:d6:9d:eb:6c:4f:71:a5:ed:e6: a0:c1:96:c3:d5:9a:f5:7a:a5:6c:b2:bc:21:e5:c6: fb:e6:39:41:32:0a:5b:71:9b:a7:ee:ce:fd:cc:fb: 7c:06:d0:3a:c4:ec:a6:ed:0b:f5:a0:61:b4:bb:1f: 3b:bb:20:04:ed:90:b6:82:f2:dd:ea:e9:fc:2a:c8: 8e:68:4a:4a:6c:67:4b:4e:b7:7f:63:7d:37:57:a1: ce:87:af:a4:1a:ac:d0:7f:e4:e6:44:68:13:45:b0: 98:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:DA:0F:FE:18:2E:67:A1:22:1A:E6:FF:09:63:91:BD:81:D7:DC:B2 X509v3 Authority Key Identifier: keyid:88:C1:4E:C0:2A:DB:F0:83:13:8E:DD:D4:78:71:17:6D:DE:B9:3D:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/c409d7b2-ee64-49f1-ad81-8e4a107d62e0/0/88C14EC02ADBF083138EDDD47871176DDEB93D9D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iMFOwCrb8IMTjt3UeHEXbd65PZ0.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c409d7b2-ee64-49f1-ad81-8e4a107d62e0/0/AS401776.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 143.20.178.0/24 143.20.198.0/24 Signature Algorithm: sha256WithRSAEncryption 0a:bb:15:99:59:c2:cf:d2:a9:86:22:56:e1:6a:09:a4:a6:40: 27:75:55:6e:fd:60:7a:11:8f:75:2d:60:fe:4a:b3:f7:bd:2d: 6f:34:ed:1c:62:43:cf:19:50:20:77:3a:9a:59:c9:45:9c:c1: 5d:16:f7:df:25:7c:78:34:49:62:e4:1e:09:3f:37:2b:bb:b6: 1f:6e:ae:1c:54:6d:96:5b:77:d5:bd:32:d4:10:bb:8d:f1:67: fb:ff:6d:3f:78:a4:31:fc:fb:d4:05:89:c4:52:b1:3c:bc:c4: 0c:2e:36:49:1b:d4:01:e8:66:bd:ab:da:df:5f:09:c8:a9:2e: 7f:6a:17:97:19:c9:27:1f:47:74:7e:7c:d0:bb:18:d7:40:9d: 8a:8e:f4:61:6e:ee:ac:e3:64:50:72:c3:a1:71:db:eb:6b:d2: 76:8d:97:24:27:8c:a7:a0:0a:eb:ba:30:7c:6b:91:9f:e4:0b: 90:51:2f:f0:7d:b5:71:a8:8c:4c:53:25:19:88:40:64:95:8d: 2d:18:6a:5c:a4:3c:88:06:10:0c:63:4b:b2:e6:b6:f0:ea:4a: 72:66:1f:99:87:18:54:11:76:e3:18:45:79:3f:e3:d4:33:ce: 64:98:1d:d0:c2:dc:5a:9c:f1:67:7b:4f:04:19:74:31:65:4e: a4:af:d9:a2 -----BEGIN CERTIFICATE----- MIIFBjCCA+6gAwIBAgIUGGy7sY9i2SXXj576OC9F8hO5GlgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODhjMTRlYzAyYWRiZjA4MzEzOGVkZGQ0Nzg3MTE3NmRk ZWI5M2Q5ZDAeFw0yNTExMjgwNTE0MjhaFw0yNjExMjcwNTE5MjhaMDMxMTAvBgNV BAMTKENFREEwRkZFMTgyRTY3QTEyMjFBRTZGRjA5NjM5MUJEODFEN0RDQjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAPCeTO/t1EmffUp0a5qUteKJd MIyQ3tR30soLDtfou2pNgO3LEOhwCJsjwgTghJNUfuBmJAjyIU32SxWI+dMrVM3G 1+fe9cun1vHzxPJK1xZgMCecHowqPwPHmMGeRYAToVWuC/L182PJWGr7p0VD71sN jUK5vVBOzgCY8zav4O30B/nooU2yt/0rGGdC3UAiE3q8C2lJQKtNLdad62xPcaXt 5qDBlsPVmvV6pWyyvCHlxvvmOUEyCltxm6fuzv3M+3wG0DrE7KbtC/WgYbS7Hzu7 IATtkLaC8t3q6fwqyI5oSkpsZ0tOt39jfTdXoc6Hr6QarNB/5OZEaBNFsJjFAgMB AAGjggIQMIICDDAdBgNVHQ4EFgQUztoP/hguZ6EiGub/CWORvYHX3LIwHwYDVR0j BBgwFoAUiMFOwCrb8IMTjt3UeHEXbd65PZ0wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYzQwOWQ3YjItZWU2NC00OWYxLWFkODEtOGU0YTEwN2Q2 MmUwLzAvODhDMTRFQzAyQURCRjA4MzEzOEVEREQ0Nzg3MTE3NkRERUI5M0Q5RC5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2lNRk93Q3JiOElNVGp0M1VlSEVYYmQ2 NVBaMC5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2M0MDlkN2IyLWVlNjQt NDlmMS1hZDgxLThlNGExMDdkNjJlMC8wL0FTNDAxNzc2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAjxSy AwQAjxTGMA0GCSqGSIb3DQEBCwUAA4IBAQAKuxWZWcLP0qmGIlbhagmkpkAndVVu /WB6EY91LWD+SrP3vS1vNO0cYkPPGVAgdzqaWclFnMFdFvffJXx4NEli5B4JPzcr u7Yfbq4cVG2WW3fVvTLUELuN8Wf7/20/eKQx/PvUBYnEUrE8vMQMLjZJG9QB6Ga9 q9rfXwnIqS5/aheXGcknH0d0fnzQuxjXQJ2KjvRhbu6s42RQcsOhcdvra9J2jZck J4ynoArrujB8a5Gf5AuQUS/wfbVxqIxMUyUZiEBklY0tGGpcpDyIBhAMY0uy5rbw 6kpyZh+ZhxhUEXbjGEV5P+PUM85kmB3QwtxanPFne08EGXQxZU6kr9mi -----END CERTIFICATE-----Generated at Sat Dec 6 13:36:07 2025 by rpki-client