This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS40676.roa File: AS40676.roa (raw, json) Hash identifier: R+/BLgAU2HFt6WIN8hldTmhvFwPUVXLVgGeZYS2wS2w= Subject key identifier: 6E:69:22:FA:0B:47:3A:C1:AA:2D:4A:36:20:D0:C2:C8:43:91:21:14 Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f Certificate serial: 640FE9A8528C0AEE5A1CE7192FFE93552F1C8AF1 Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS40676.roa Signing time: Sat 17 Jan 2026 09:19:18 +0000 ROA not before: Sat 17 Jan 2026 09:14:18 +0000 ROA not after: Sat 16 Jan 2027 09:19:18 +0000 asID: 40676 IP address blocks: 46.202.224.0/24 maxlen: 24 46.203.55.0/24 maxlen: 24 91.124.135.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 09:04:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:0f:e9:a8:52:8c:0a:ee:5a:1c:e7:19:2f:fe:93:55:2f:1c:8a:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f Validity Not Before: Jan 17 09:14:18 2026 GMT Not After : Jan 16 09:19:18 2027 GMT Subject: CN=6E6922FA0B473AC1AA2D4A3620D0C2C843912114 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:37:85:db:ad:ce:06:15:c5:97:ed:d2:f6:99: e4:c1:9d:23:dd:1a:cb:38:31:71:c8:3e:2d:94:c1: 29:02:b7:1f:e6:3d:e7:75:40:1b:2a:8d:53:93:2b: d5:2c:77:77:b8:f8:a9:44:e9:63:f7:c2:ea:95:bf: 14:5f:09:39:32:ae:cf:51:b2:52:29:37:1a:5e:d6: 0d:a8:4c:f6:89:d3:8a:8b:12:2b:fc:93:02:cc:7b: 7c:dc:d1:1b:c9:8c:4d:1e:36:7f:75:0e:3b:c3:a1: bc:27:a6:99:55:63:b6:07:5c:b7:29:55:83:5e:27: 45:b2:05:ff:c6:f8:cf:e2:4d:79:19:f2:3a:d3:de: 4d:38:64:04:16:70:31:7d:d3:83:06:a3:d4:04:c0: 1c:a6:06:61:c9:f2:e4:6f:74:c2:b2:25:78:18:e0: 32:b8:03:2a:5e:f5:53:b3:af:23:f9:da:2e:d9:6c: cd:a0:f1:56:36:b8:4d:7c:3b:e5:c3:83:04:03:5a: da:89:ca:88:d6:19:81:d1:02:bf:91:07:26:3a:54: 11:f7:c4:22:ff:4e:4c:d6:c4:bc:0c:d6:7e:d1:8e: b1:1f:6a:95:91:7a:2a:70:28:ac:31:ff:cb:d8:68: 84:36:ac:52:aa:9b:da:62:97:72:03:47:39:c9:e6: b0:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:69:22:FA:0B:47:3A:C1:AA:2D:4A:36:20:D0:C2:C8:43:91:21:14 X509v3 Authority Key Identifier: keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS40676.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 46.202.224.0/24 46.203.55.0/24 91.124.135.0/24 Signature Algorithm: sha256WithRSAEncryption a5:55:7f:5d:d4:e1:dc:88:8f:52:7b:aa:08:3e:35:16:aa:93: 96:18:f3:93:55:59:b5:e7:45:41:88:4f:00:04:5a:03:15:16: d0:2c:ec:c8:5a:9e:1b:aa:6a:ec:7a:4b:5e:45:8e:80:af:22: 0b:4a:db:aa:12:40:b2:06:65:ad:24:bd:b0:93:46:4a:d4:52: 51:ab:7f:3f:c9:78:6e:66:40:c7:9f:c6:fd:98:06:59:52:5c: f9:78:89:9f:8b:83:1f:1d:22:89:d2:9f:ce:bc:8b:18:23:3f: 71:4d:1a:95:fc:0a:28:38:79:42:7e:2d:ae:ee:b3:fd:76:93: b8:e6:35:a4:e0:d9:e8:99:91:03:42:72:e2:4f:87:31:f4:0c: 62:80:04:69:1f:85:0e:d4:ec:6d:b2:3c:53:4c:79:42:c5:64: d1:e7:c8:68:91:01:f9:99:6f:93:e8:51:cb:b8:14:31:61:85: 88:d6:1b:d4:e4:89:d0:12:b7:6d:c8:2d:ea:fc:d9:5d:7e:3d: 0f:93:ac:8f:80:9f:19:ee:79:75:9f:dd:38:f9:6b:f0:bc:1f: a8:fe:28:60:d6:97:75:6d:40:e0:b4:cd:08:6a:88:38:c4:73: 8d:40:3c:e6:c1:b3:61:dd:98:5d:8b:31:1f:12:4a:9c:b7:35: 09:37:e9:38 -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgIUZA/pqFKMCu5aHOcZL/6TVS8civEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOWJkODEzMzkxZTRhZjJhZTMxMDNjMTg5MWIyMjcyZDRk NWMxM2I1ZjAeFw0yNjAxMTcwOTE0MThaFw0yNzAxMTYwOTE5MThaMDMxMTAvBgNV BAMTKDZFNjkyMkZBMEI0NzNBQzFBQTJENEEzNjIwRDBDMkM4NDM5MTIxMTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDkN4Xbrc4GFcWX7dL2meTBnSPd Gss4MXHIPi2UwSkCtx/mPed1QBsqjVOTK9Usd3e4+KlE6WP3wuqVvxRfCTkyrs9R slIpNxpe1g2oTPaJ04qLEiv8kwLMe3zc0RvJjE0eNn91DjvDobwnpplVY7YHXLcp VYNeJ0WyBf/G+M/iTXkZ8jrT3k04ZAQWcDF904MGo9QEwBymBmHJ8uRvdMKyJXgY 4DK4Aype9VOzryP52i7ZbM2g8VY2uE18O+XDgwQDWtqJyojWGYHRAr+RByY6VBH3 xCL/TkzWxLwM1n7RjrEfapWReipwKKwx/8vYaIQ2rFKqm9pil3IDRznJ5rCRAgMB AAGjggIVMIICETAdBgNVHQ4EFgQUbmki+gtHOsGqLUo2INDCyEORIRQwHwYDVR0j BBgwFoAUm9gTOR5K8q4xA8GJGyJy1NXBO18wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYzQ3OGY2ZjUtNDQ5YS00ODI3LTk5ZDUtYmY2YjkzYThm NmI0LzAvOUJEODEzMzkxRTRBRjJBRTMxMDNDMTg5MUIyMjcyRDRENUMxM0I1Ri5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL205Z1RPUjVLOHE0eEE4R0pHeUp5MU5Y Qk8xOC5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2M0NzhmNmY1LTQ0OWEt NDgyNy05OWQ1LWJmNmI5M2E4ZjZiNC8wL0FTNDA2NzYucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwKwYIKwYBBQUHAQcBAf8EHDAaMBgEAgABMBIDBAAuyuAD BAAuyzcDBABbfIcwDQYJKoZIhvcNAQELBQADggEBAKVVf13U4dyIj1J7qgg+NRaq k5YY85NVWbXnRUGITwAEWgMVFtAs7Mhanhuqaux6S15FjoCvIgtK26oSQLIGZa0k vbCTRkrUUlGrfz/JeG5mQMefxv2YBllSXPl4iZ+Lgx8dIonSn868ixgjP3FNGpX8 Cig4eUJ+La7us/12k7jmNaTg2eiZkQNCcuJPhzH0DGKABGkfhQ7U7G2yPFNMeULF ZNHnyGiRAfmZb5PoUcu4FDFhhYjWG9TkidASt23ILer82V1+PQ+TrI+AnxnueXWf 3Tj5a/C8H6j+KGDWl3VtQOC0zQhqiDjEc41APObBs2HdmF2LMR8SSpy3NQk36Tg= -----END CERTIFICATE-----Generated at Sun Jan 25 04:00:02 2026 by rpki-client