This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS135402.roa File: AS135402.roa (raw, json) Hash identifier: fb4dao9nynclwkfiFjsHyeEyQHArR6C/RaQ6yWJqYfo= Subject key identifier: 68:24:B0:99:01:5A:04:4B:F4:E5:D9:67:57:01:70:E0:0B:4E:A0:08 Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f Certificate serial: 7F65841E9BA5EA916519C945FFF962AA2239F297 Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS135402.roa Signing time: Mon 12 Jan 2026 11:45:14 +0000 ROA not before: Mon 12 Jan 2026 11:40:13 +0000 ROA not after: Mon 11 Jan 2027 11:45:13 +0000 asID: 135402 IP address blocks: 46.203.175.0/24 maxlen: 24 92.113.212.0/24 maxlen: 24 95.134.21.0/24 maxlen: 24 95.134.101.0/24 maxlen: 24 178.92.145.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 03:44:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:65:84:1e:9b:a5:ea:91:65:19:c9:45:ff:f9:62:aa:22:39:f2:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f Validity Not Before: Jan 12 11:40:13 2026 GMT Not After : Jan 11 11:45:13 2027 GMT Subject: CN=6824B099015A044BF4E5D967570170E00B4EA008 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:49:6a:91:66:95:b8:16:0d:1f:ca:ec:61:94: 5d:ac:ac:d5:b5:e7:65:60:ee:65:15:48:ed:4e:e9: 16:b2:e4:c1:6f:0b:10:1d:e6:8d:6f:2a:74:f6:03: e3:60:61:d3:fe:c2:b6:9d:2f:48:f6:82:f9:9b:54: a0:1c:b5:52:be:5a:b8:91:2c:2b:f9:6f:bd:d2:d3: a5:7e:36:8f:77:d5:7a:c3:47:ec:a9:ef:dc:f9:54: 34:be:01:78:49:1a:e1:0e:55:43:9c:26:c1:c1:e2: 80:c0:2a:0d:12:9b:2e:18:6c:55:66:3d:70:17:7c: b1:40:d6:64:ca:49:53:b3:6a:c8:16:b6:4a:1c:c8: a2:99:74:a2:f6:87:35:10:b5:1b:a6:c1:64:1b:08: 68:10:9d:35:81:c6:c2:69:88:2c:42:e3:65:85:31: 78:79:f6:38:c6:1c:52:ed:79:f2:52:b7:32:b9:6c: 9e:3a:3a:fb:9a:90:1a:a4:c9:b4:41:12:3f:ff:e3: 6d:7e:d5:d2:86:85:97:6d:3f:4c:20:f1:50:fc:cc: bb:bd:02:68:21:6d:cd:e9:64:4e:4e:49:d7:11:ad: 4b:5e:0a:34:17:b5:da:18:10:61:a0:c5:9a:11:2e: 2a:1a:5a:8b:5c:43:67:1f:99:02:58:03:b0:48:aa: 67:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:24:B0:99:01:5A:04:4B:F4:E5:D9:67:57:01:70:E0:0B:4E:A0:08 X509v3 Authority Key Identifier: keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS135402.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 46.203.175.0/24 92.113.212.0/24 95.134.21.0/24 95.134.101.0/24 178.92.145.0/24 Signature Algorithm: sha256WithRSAEncryption 18:35:6f:94:08:a9:55:36:2b:94:8b:f1:41:1d:46:9d:ed:95: 57:15:37:0b:ed:8f:7e:44:99:07:5f:bd:3e:de:6c:dc:05:f3: d8:9b:84:08:73:3c:51:e7:2a:d7:e5:ce:28:f4:c4:2c:f5:38: 65:b3:28:2c:71:80:dc:ef:c4:b7:68:ed:92:26:24:3b:28:db: a7:bb:94:f8:75:93:f7:c7:8a:6d:95:cd:9b:3d:b0:30:ae:e2: 9f:be:c1:01:12:2e:96:b6:a2:4b:7c:2f:19:79:f9:dd:aa:d9: 66:74:46:7f:58:56:a1:58:62:76:33:e9:67:81:aa:d3:a4:22: 5b:c0:86:67:94:52:0a:b5:af:10:67:c3:f6:4b:b6:e8:db:4c: 9a:a8:4d:9b:1c:fd:2e:3b:0d:53:c8:ee:96:8a:79:78:13:31: 09:8d:fc:cf:82:84:0d:93:8f:41:a2:1e:51:02:bb:26:ef:0c: f8:7e:5d:a6:a5:9f:71:13:42:8b:22:cb:dc:81:63:dd:14:77: 5b:28:b0:25:97:94:cb:fd:2f:d6:fd:14:3e:a9:b3:d9:61:45: 05:ad:98:80:76:c9:60:31:b4:d3:36:ad:30:62:db:77:08:7e: 23:9c:ba:13:1a:53:a5:be:fb:a5:2a:42:d5:8f:60:8a:28:12: d2:26:37:bb -----BEGIN CERTIFICATE----- MIIFGDCCBACgAwIBAgIUf2WEHpul6pFlGclF//liqiI58pcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOWJkODEzMzkxZTRhZjJhZTMxMDNjMTg5MWIyMjcyZDRk NWMxM2I1ZjAeFw0yNjAxMTIxMTQwMTNaFw0yNzAxMTExMTQ1MTNaMDMxMTAvBgNV BAMTKDY4MjRCMDk5MDE1QTA0NEJGNEU1RDk2NzU3MDE3MEUwMEI0RUEwMDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4SWqRZpW4Fg0fyuxhlF2srNW1 52Vg7mUVSO1O6Ray5MFvCxAd5o1vKnT2A+NgYdP+wradL0j2gvmbVKActVK+WriR LCv5b73S06V+No931XrDR+yp79z5VDS+AXhJGuEOVUOcJsHB4oDAKg0Smy4YbFVm PXAXfLFA1mTKSVOzasgWtkocyKKZdKL2hzUQtRumwWQbCGgQnTWBxsJpiCxC42WF MXh59jjGHFLtefJStzK5bJ46OvuakBqkybRBEj//421+1dKGhZdtP0wg8VD8zLu9 Amghbc3pZE5OSdcRrUteCjQXtdoYEGGgxZoRLioaWotcQ2cfmQJYA7BIqme1AgMB AAGjggIiMIICHjAdBgNVHQ4EFgQUaCSwmQFaBEv05dlnVwFw4AtOoAgwHwYDVR0j BBgwFoAUm9gTOR5K8q4xA8GJGyJy1NXBO18wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYzQ3OGY2ZjUtNDQ5YS00ODI3LTk5ZDUtYmY2YjkzYThm NmI0LzAvOUJEODEzMzkxRTRBRjJBRTMxMDNDMTg5MUIyMjcyRDRENUMxM0I1Ri5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL205Z1RPUjVLOHE0eEE4R0pHeUp5MU5Y Qk8xOC5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2M0NzhmNmY1LTQ0OWEt NDgyNy05OWQ1LWJmNmI5M2E4ZjZiNC8wL0FTMTM1NDAyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMDcGCCsGAQUFBwEHAQH/BCgwJjAkBAIAATAeAwQALsuv AwQAXHHUAwQAX4YVAwQAX4ZlAwQAslyRMA0GCSqGSIb3DQEBCwUAA4IBAQAYNW+U CKlVNiuUi/FBHUad7ZVXFTcL7Y9+RJkHX70+3mzcBfPYm4QIczxR5yrX5c4o9MQs 9ThlsygscYDc78S3aO2SJiQ7KNunu5T4dZP3x4ptlc2bPbAwruKfvsEBEi6WtqJL fC8ZefndqtlmdEZ/WFahWGJ2M+lngarTpCJbwIZnlFIKta8QZ8P2S7bo20yaqE2b HP0uOw1TyO6Winl4EzEJjfzPgoQNk49Boh5RArsm7wz4fl2mpZ9xE0KLIsvcgWPd FHdbKLAll5TL/S/W/RQ+qbPZYUUFrZiAdslgMbTTNq0wYtt3CH4jnLoTGlOlvvul KkLVj2CKKBLSJje7 -----END CERTIFICATE-----Generated at Sun Jan 25 21:09:24 2026 by rpki-client