This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS5650.roa File: AS5650.roa (raw, json) Hash identifier: ltuPcBKGEyUG6FwPt7ySmdpklJno7Gpfe/pliI1HAw4= Subject key identifier: DD:F9:40:EC:06:D9:69:AC:07:52:03:E8:9B:3B:F9:53:6E:BA:44:3D Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f Certificate serial: 1CFADDC41762EB68A49D497B5E45F2D70F4E4B59 Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS5650.roa Signing time: Wed 07 Jan 2026 00:05:01 +0000 ROA not before: Wed 07 Jan 2026 00:00:01 +0000 ROA not after: Wed 06 Jan 2027 00:05:01 +0000 asID: 5650 IP address blocks: 46.203.160.0/24 maxlen: 24 46.203.164.0/24 maxlen: 24 92.112.32.0/24 maxlen: 24 92.112.33.0/24 maxlen: 24 92.112.34.0/24 maxlen: 24 92.112.35.0/24 maxlen: 24 92.112.157.0/24 maxlen: 24 92.113.215.0/24 maxlen: 24 95.134.120.0/24 maxlen: 24 95.135.38.0/24 maxlen: 24 95.135.85.0/24 maxlen: 24 95.135.127.0/24 maxlen: 24 95.135.138.0/24 maxlen: 24 95.135.180.0/24 maxlen: 24 95.135.219.0/24 maxlen: 24 178.92.220.0/24 maxlen: 24 178.95.190.0/24 maxlen: 24 178.95.191.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:fa:dd:c4:17:62:eb:68:a4:9d:49:7b:5e:45:f2:d7:0f:4e:4b:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f Validity Not Before: Jan 7 00:00:01 2026 GMT Not After : Jan 6 00:05:01 2027 GMT Subject: CN=DDF940EC06D969AC075203E89B3BF9536EBA443D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:d0:fa:a6:1b:83:35:c5:81:76:cb:40:3b:57: 8d:88:95:1c:73:45:77:61:7f:1a:65:ae:35:b3:7c: 5c:f1:1f:67:73:66:fa:a5:94:f2:b9:21:9a:22:8e: 94:2d:c4:11:0a:1e:3b:6a:12:1a:ec:c1:71:94:d7: 3c:55:d2:15:ec:c0:a7:f2:bb:96:73:11:9b:8e:5b: f4:9b:e1:b8:c7:25:65:7d:e3:41:b9:a4:3f:a8:ed: 8f:53:f6:fa:1e:b7:fe:13:53:97:e2:ca:c6:7c:86: 21:08:c7:e3:d6:2e:fa:a9:3b:be:73:61:3b:1b:5b: 66:54:82:d9:0c:6b:4c:34:d4:1b:e5:6a:bb:ab:9e: a0:d5:4b:ca:9a:da:5d:5c:1c:f3:25:07:6a:3f:1d: 81:de:9a:b7:64:22:10:1e:6e:57:09:8c:ad:e0:a1: 78:50:80:ee:a8:3a:a8:b0:af:49:64:79:ca:d6:6f: 56:34:51:29:1c:7d:7f:f1:2c:26:db:eb:91:78:82: a3:c5:39:49:de:de:fe:77:7d:e8:e2:2b:bc:a3:30: b9:00:fc:d7:c8:fd:a2:e1:e0:0c:98:2e:eb:6f:5f: 74:be:2a:f0:9e:36:ff:8d:9c:9c:2b:58:19:6c:c2: ad:62:88:bd:f7:55:70:19:0c:1c:83:1e:12:40:bf: 8c:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:F9:40:EC:06:D9:69:AC:07:52:03:E8:9B:3B:F9:53:6E:BA:44:3D X509v3 Authority Key Identifier: keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS5650.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 46.203.160.0/24 46.203.164.0/24 92.112.32.0/22 92.112.157.0/24 92.113.215.0/24 95.134.120.0/24 95.135.38.0/24 95.135.85.0/24 95.135.127.0/24 95.135.138.0/24 95.135.180.0/24 95.135.219.0/24 178.92.220.0/24 178.95.190.0/23 Signature Algorithm: sha256WithRSAEncryption 58:9b:f9:c1:84:e0:f7:42:1d:c1:e4:a1:f5:87:62:bd:13:1b: af:6f:05:e3:87:d5:2d:f3:5e:60:1b:4c:9a:e3:f9:be:f2:07: ed:c6:12:e7:f3:06:af:e1:58:14:bc:c3:a2:c2:1c:c8:97:04: 6c:bf:f9:e4:58:d6:55:ba:10:24:55:a3:da:d5:de:76:6c:5e: 74:51:2a:f0:bd:2c:98:e9:86:7e:44:78:e9:2d:04:a8:35:af: b7:e8:53:34:e2:36:68:e3:d9:82:e3:44:24:2f:2e:84:cb:79: c2:50:29:e9:b4:e4:d5:31:4e:cf:11:ea:af:f2:61:56:c1:8b: 7e:ad:f0:de:a8:2e:e5:2f:e6:30:a7:a6:db:31:31:df:b8:c7: 9e:a1:50:df:c5:7a:1e:12:e6:7d:e5:59:09:63:b9:cb:18:94: f3:0e:dd:a0:62:6c:f4:0f:cd:ba:c0:fe:c6:57:61:c6:fa:e2: 4c:f6:65:a2:9e:23:86:79:ef:42:7b:13:48:55:a4:90:47:76: ce:15:bf:d4:15:5a:00:27:1c:3f:fe:80:44:27:a1:e0:bb:02: 3e:8c:ac:ed:d4:75:ae:1f:78:ec:19:4e:c8:a0:19:38:76:3e: 3d:eb:51:19:32:b5:1d:19:6f:ca:51:7a:60:1b:b6:b2:2f:32: 36:bb:90:72 -----BEGIN CERTIFICATE----- MIIFTDCCBDSgAwIBAgIUHPrdxBdi62iknUl7XkXy1w9OS1kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOWJkODEzMzkxZTRhZjJhZTMxMDNjMTg5MWIyMjcyZDRk NWMxM2I1ZjAeFw0yNjAxMDcwMDAwMDFaFw0yNzAxMDYwMDA1MDFaMDMxMTAvBgNV BAMTKERERjk0MEVDMDZEOTY5QUMwNzUyMDNFODlCM0JGOTUzNkVCQTQ0M0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDo0PqmG4M1xYF2y0A7V42IlRxz RXdhfxplrjWzfFzxH2dzZvqllPK5IZoijpQtxBEKHjtqEhrswXGU1zxV0hXswKfy u5ZzEZuOW/Sb4bjHJWV940G5pD+o7Y9T9voet/4TU5fiysZ8hiEIx+PWLvqpO75z YTsbW2ZUgtkMa0w01BvlarurnqDVS8qa2l1cHPMlB2o/HYHemrdkIhAeblcJjK3g oXhQgO6oOqiwr0lkecrWb1Y0USkcfX/xLCbb65F4gqPFOUne3v53fejiK7yjMLkA /NfI/aLh4AyYLutvX3S+KvCeNv+NnJwrWBlswq1iiL33VXAZDByDHhJAv4y3AgMB AAGjggJWMIICUjAdBgNVHQ4EFgQU3flA7AbZaawHUgPomzv5U266RD0wHwYDVR0j BBgwFoAUm9gTOR5K8q4xA8GJGyJy1NXBO18wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYzQ3OGY2ZjUtNDQ5YS00ODI3LTk5ZDUtYmY2YjkzYThm NmI0LzAvOUJEODEzMzkxRTRBRjJBRTMxMDNDMTg5MUIyMjcyRDRENUMxM0I1Ri5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL205Z1RPUjVLOHE0eEE4R0pHeUp5MU5Y Qk8xOC5jZXIweQYIKwYBBQUHAQsEbTBrMGkGCCsGAQUFBzALhl1yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2M0NzhmNmY1LTQ0OWEt NDgyNy05OWQ1LWJmNmI5M2E4ZjZiNC8wL0FTNTY1MC5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjBtBggrBgEFBQcBBwEB/wReMFwwWgQCAAEwVAMEAC7LoAME AC7LpAMEAlxwIAMEAFxwnQMEAFxx1wMEAF+GeAMEAF+HJgMEAF+HVQMEAF+HfwME AF+HigMEAF+HtAMEAF+H2wMEALJc3AMEAbJfvjANBgkqhkiG9w0BAQsFAAOCAQEA WJv5wYTg90IdweSh9YdivRMbr28F44fVLfNeYBtMmuP5vvIH7cYS5/MGr+FYFLzD osIcyJcEbL/55FjWVboQJFWj2tXedmxedFEq8L0smOmGfkR46S0EqDWvt+hTNOI2 aOPZguNEJC8uhMt5wlAp6bTk1TFOzxHqr/JhVsGLfq3w3qgu5S/mMKem2zEx37jH nqFQ38V6HhLmfeVZCWO5yxiU8w7doGJs9A/NusD+xldhxvriTPZlop4jhnnvQnsT SFWkkEd2zhW/1BVaACccP/6ARCeh4LsCPoys7dR1rh947BlOyKAZOHY+PetRGTK1 HRlvylF6YBu2si8yNruQcg== -----END CERTIFICATE-----Generated at Mon Jan 26 06:04:50 2026 by rpki-client