This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c409d7b2-ee64-49f1-ad81-8e4a107d62e0/0/AS834.roa File: AS834.roa (raw, json) Hash identifier: jVLYlZrucdZ11/VTErHZFvvWMiocPBYqIK3ao/ubKzw= Subject key identifier: 16:A6:CF:16:53:4F:01:21:A3:93:C4:0C:4D:B2:58:C9:09:CF:05:29 Certificate issuer: /CN=88c14ec02adbf083138eddd47871176ddeb93d9d Certificate serial: 7E494FC4AADEF5062873B0991487B8E170007963 Authority key identifier: 88:C1:4E:C0:2A:DB:F0:83:13:8E:DD:D4:78:71:17:6D:DE:B9:3D:9D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iMFOwCrb8IMTjt3UeHEXbd65PZ0.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c409d7b2-ee64-49f1-ad81-8e4a107d62e0/0/AS834.roa Signing time: Sat 24 Jan 2026 07:27:49 +0000 ROA not before: Sat 24 Jan 2026 07:22:49 +0000 ROA not after: Sat 23 Jan 2027 07:27:49 +0000 asID: 834 IP address blocks: 143.20.19.0/24 maxlen: 24 143.20.63.0/24 maxlen: 24 143.20.103.0/24 maxlen: 24 143.20.116.0/24 maxlen: 24 143.20.128.0/24 maxlen: 24 143.20.131.0/24 maxlen: 24 143.20.215.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c409d7b2-ee64-49f1-ad81-8e4a107d62e0/0/88C14EC02ADBF083138EDDD47871176DDEB93D9D.crl rsync://rsync.paas.rpki.ripe.net/repository/c409d7b2-ee64-49f1-ad81-8e4a107d62e0/0/88C14EC02ADBF083138EDDD47871176DDEB93D9D.mft rsync://rpki.ripe.net/repository/DEFAULT/iMFOwCrb8IMTjt3UeHEXbd65PZ0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:49:4f:c4:aa:de:f5:06:28:73:b0:99:14:87:b8:e1:70:00:79:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=88c14ec02adbf083138eddd47871176ddeb93d9d Validity Not Before: Jan 24 07:22:49 2026 GMT Not After : Jan 23 07:27:49 2027 GMT Subject: CN=16A6CF16534F0121A393C40C4DB258C909CF0529 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:fd:96:f9:b7:40:a6:53:51:1f:96:aa:9e:8d: 3d:63:5d:91:2c:61:cd:a6:3d:43:74:c1:b9:c4:27: af:97:1e:6e:28:6d:07:42:b7:9f:7e:7c:ab:c8:57: b9:21:d6:ef:45:76:f9:59:e2:45:a2:6a:a4:19:43: 4a:b4:5c:f3:d0:31:2a:83:f3:61:65:65:3e:bd:c6: db:10:55:c6:e9:cd:e4:12:9e:6e:e5:14:61:1f:de: e8:e7:85:e0:ee:a2:88:eb:83:dd:b3:a3:12:86:55: 5d:02:e5:0a:65:fd:1d:82:f1:77:e9:42:02:35:2f: f8:91:5f:7f:56:e0:60:b2:49:86:c0:b5:fb:23:3c: 86:4c:4f:23:9c:da:94:e9:5d:21:cb:f1:c8:cd:08: ac:83:6e:08:e4:06:f6:db:d9:e8:ac:2a:94:f8:a0: c4:5b:73:15:f7:8b:b9:0d:16:d3:6d:ae:e4:ce:2c: 77:ef:ae:5d:f6:b2:bf:d6:f0:cb:c1:cc:73:76:57: 11:d7:6a:e4:8f:5b:aa:a4:91:08:2b:54:1f:ef:99: a2:78:4b:da:17:16:d6:03:68:11:f7:87:3c:cc:75: dd:ad:a5:88:08:dc:a0:25:76:1c:ba:bd:69:35:e3: c5:0d:32:11:34:fa:35:4c:4d:09:a8:6f:db:8f:7e: 48:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:A6:CF:16:53:4F:01:21:A3:93:C4:0C:4D:B2:58:C9:09:CF:05:29 X509v3 Authority Key Identifier: keyid:88:C1:4E:C0:2A:DB:F0:83:13:8E:DD:D4:78:71:17:6D:DE:B9:3D:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/c409d7b2-ee64-49f1-ad81-8e4a107d62e0/0/88C14EC02ADBF083138EDDD47871176DDEB93D9D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iMFOwCrb8IMTjt3UeHEXbd65PZ0.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c409d7b2-ee64-49f1-ad81-8e4a107d62e0/0/AS834.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 143.20.19.0/24 143.20.63.0/24 143.20.103.0/24 143.20.116.0/24 143.20.128.0/24 143.20.131.0/24 143.20.215.0/24 Signature Algorithm: sha256WithRSAEncryption ae:a1:6c:f2:1f:9e:42:57:a3:3e:45:51:73:23:ae:00:66:b0: 1c:b5:4d:04:6c:50:62:c7:1a:5a:d5:dc:4d:a7:cb:a5:25:fc: 1e:fd:19:e8:f1:6d:ef:b5:4b:5b:39:8b:b0:e6:78:24:fd:b1: 11:3e:a0:cb:97:98:73:6d:b8:71:14:9e:15:94:ec:72:d8:7f: 16:b4:f2:1f:4b:e8:98:a9:65:16:f7:47:0d:b9:82:3f:aa:2f: 03:b2:36:c6:70:23:38:87:f6:61:8d:36:51:54:fd:fe:45:33: c4:6d:d6:da:8d:fb:83:50:fc:d8:03:64:e8:a9:a1:20:34:34: 1c:0e:aa:9b:74:2e:9e:18:66:63:b0:3e:67:e8:ef:b8:6f:4e: 05:cb:5d:64:0b:f7:d7:51:50:8e:bb:a4:70:03:1c:f4:8b:29: f9:62:88:1c:52:a6:f6:56:ae:3b:58:82:62:40:27:ba:af:47: 4a:fa:c3:fc:a8:44:97:d8:da:fd:c1:11:d5:ed:9a:4b:f4:e9: 87:93:35:ed:28:a5:8e:bf:d2:9c:ee:e9:b5:1e:09:a2:f4:ab: 45:a3:64:d7:ce:b1:78:d8:ea:61:1e:8c:33:82:74:1f:cd:ad: 78:92:a4:98:64:3e:fd:0e:54:ca:e7:8b:f5:3e:a9:30:fd:54: 89:be:7a:1d -----BEGIN CERTIFICATE----- MIIFITCCBAmgAwIBAgIUfklPxKre9QYoc7CZFIe44XAAeWMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODhjMTRlYzAyYWRiZjA4MzEzOGVkZGQ0Nzg3MTE3NmRk ZWI5M2Q5ZDAeFw0yNjAxMjQwNzIyNDlaFw0yNzAxMjMwNzI3NDlaMDMxMTAvBgNV BAMTKDE2QTZDRjE2NTM0RjAxMjFBMzkzQzQwQzREQjI1OEM5MDlDRjA1MjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCV/Zb5t0CmU1EflqqejT1jXZEs Yc2mPUN0wbnEJ6+XHm4obQdCt59+fKvIV7kh1u9FdvlZ4kWiaqQZQ0q0XPPQMSqD 82FlZT69xtsQVcbpzeQSnm7lFGEf3ujnheDuoojrg92zoxKGVV0C5Qpl/R2C8Xfp QgI1L/iRX39W4GCySYbAtfsjPIZMTyOc2pTpXSHL8cjNCKyDbgjkBvbb2eisKpT4 oMRbcxX3i7kNFtNtruTOLHfvrl32sr/W8MvBzHN2VxHXauSPW6qkkQgrVB/vmaJ4 S9oXFtYDaBH3hzzMdd2tpYgI3KAldhy6vWk148UNMhE0+jVMTQmob9uPfkihAgMB AAGjggIrMIICJzAdBgNVHQ4EFgQUFqbPFlNPASGjk8QMTbJYyQnPBSkwHwYDVR0j BBgwFoAUiMFOwCrb8IMTjt3UeHEXbd65PZ0wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYzQwOWQ3YjItZWU2NC00OWYxLWFkODEtOGU0YTEwN2Q2 MmUwLzAvODhDMTRFQzAyQURCRjA4MzEzOEVEREQ0Nzg3MTE3NkRERUI5M0Q5RC5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2lNRk93Q3JiOElNVGp0M1VlSEVYYmQ2 NVBaMC5jZXIweAYIKwYBBQUHAQsEbDBqMGgGCCsGAQUFBzALhlxyc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2M0MDlkN2IyLWVlNjQt NDlmMS1hZDgxLThlNGExMDdkNjJlMC8wL0FTODM0LnJvYTAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEMGCCsGAQUFBwEHAQH/BDQwMjAwBAIAATAqAwQAjxQTAwQA jxQ/AwQAjxRnAwQAjxR0AwQAjxSAAwQAjxSDAwQAjxTXMA0GCSqGSIb3DQEBCwUA A4IBAQCuoWzyH55CV6M+RVFzI64AZrActU0EbFBixxpa1dxNp8ulJfwe/Rno8W3v tUtbOYuw5ngk/bERPqDLl5hzbbhxFJ4VlOxy2H8WtPIfS+iYqWUW90cNuYI/qi8D sjbGcCM4h/ZhjTZRVP3+RTPEbdbajfuDUPzYA2ToqaEgNDQcDqqbdC6eGGZjsD5n 6O+4b04Fy11kC/fXUVCOu6RwAxz0iyn5YogcUqb2Vq47WIJiQCe6r0dK+sP8qESX 2Nr9wRHV7ZpL9OmHkzXtKKWOv9Kc7um1Hgmi9KtFo2TXzrF42OphHowzgnQfza14 kqSYZD79DlTK54v1Pqkw/VSJvnod -----END CERTIFICATE-----Generated at Sun Jan 25 08:52:32 2026 by rpki-client