This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS54252.roa File: AS54252.roa (raw, json) Hash identifier: DMa8ZVwfewCKI3SM06r5rZDlPJ/fMJ0VA+ekQYHTNdM= Subject key identifier: 50:18:01:49:4C:EA:29:EF:BD:57:2A:12:41:EC:CF:B7:3B:CC:55:4E Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc Certificate serial: 12C41384C54E20E7CD55F57F29CC503559A7FBE2 Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS54252.roa Signing time: Sun 23 Nov 2025 23:59:23 +0000 ROA not before: Sun 23 Nov 2025 23:54:23 +0000 ROA not after: Sun 22 Nov 2026 23:59:23 +0000 asID: 54252 IP address blocks: 96.62.217.0/24 maxlen: 24 143.14.188.0/24 maxlen: 24 147.79.2.0/24 maxlen: 24 150.241.136.0/24 maxlen: 24 155.117.81.0/24 maxlen: 24 162.141.116.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.mft rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 08 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:c4:13:84:c5:4e:20:e7:cd:55:f5:7f:29:cc:50:35:59:a7:fb:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc Validity Not Before: Nov 23 23:54:23 2025 GMT Not After : Nov 22 23:59:23 2026 GMT Subject: CN=501801494CEA29EFBD572A1241ECCFB73BCC554E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:34:e8:51:0e:90:ef:7d:ed:ed:b9:68:7b:a5: ad:37:05:ff:60:55:28:ee:39:92:3a:a0:b5:06:d4: b6:88:5a:9e:92:70:da:99:86:8b:6f:36:3a:1f:2b: 30:55:38:a6:6f:fa:2f:ce:ed:2e:5b:79:bd:e2:75: 06:14:9e:3a:48:ab:d7:fa:0c:73:4e:61:ef:c5:85: ae:fd:89:42:20:94:91:fc:81:a9:9e:5d:e3:e1:f1: ec:dc:fa:f6:32:3f:55:06:c8:58:87:a7:49:ac:bf: 60:40:90:e1:1e:a9:c3:8b:33:17:95:2d:af:53:b2: 93:4c:65:9c:a6:34:02:be:32:a0:bc:13:6b:bb:32: 7c:bc:80:e9:b1:e3:2f:1a:cb:3c:fd:48:00:4b:72: 2d:36:12:2a:38:3a:65:fc:9c:75:ec:7c:52:50:54: 76:b3:76:03:ae:ae:a7:07:18:16:e6:78:00:01:af: 57:11:26:79:ea:e3:42:5b:80:5b:11:42:66:c6:70: b3:ce:7d:e3:94:73:cd:8d:11:42:8c:2a:51:d4:cb: 0c:74:20:9c:29:6a:a2:55:db:cc:69:04:f1:1e:8c: bc:83:40:dc:05:ec:ac:18:62:f4:8c:35:2b:ea:87: ed:27:15:ec:84:fe:58:90:f8:91:6d:07:cc:3f:6b: 46:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:18:01:49:4C:EA:29:EF:BD:57:2A:12:41:EC:CF:B7:3B:CC:55:4E X509v3 Authority Key Identifier: keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS54252.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.62.217.0/24 143.14.188.0/24 147.79.2.0/24 150.241.136.0/24 155.117.81.0/24 162.141.116.0/24 Signature Algorithm: sha256WithRSAEncryption 7d:03:99:01:c4:64:22:28:01:6e:c7:14:7f:4f:7d:87:d1:42: 29:82:32:60:ca:c8:c8:14:97:c2:29:a5:9a:25:ea:f7:af:c9: e3:81:56:83:8a:2b:50:02:85:fd:88:2b:70:8d:d1:fa:17:45: 3c:d4:6b:35:fa:be:b8:79:9d:71:91:07:e3:d3:79:a5:2a:c5: 8f:25:91:64:90:91:53:38:7b:f4:38:40:95:c6:62:72:f7:b0: 53:05:e6:d1:be:41:da:55:54:e4:c4:e3:4a:e6:5e:81:d5:4b: 1f:6b:f5:f9:07:03:d8:9c:57:69:b7:6e:84:c4:3e:5e:93:9a: f3:5c:f3:e6:d0:c5:c7:f4:b5:36:18:c7:ea:5a:36:33:e9:ec: b9:ac:1f:3a:5a:6d:97:54:32:51:9d:43:66:fb:66:fa:1e:d9: dd:5e:24:e8:a4:0c:32:65:ba:69:99:3a:d2:e6:df:58:c0:61: b9:f3:89:8f:22:4a:81:c9:f2:60:5e:0a:c5:74:77:54:71:c9: 42:7e:ea:4b:1f:01:83:b8:e7:e3:ee:3b:e1:c9:da:e8:78:b2: 0c:10:b5:a8:94:60:ca:6a:06:83:fc:58:79:98:26:62:a4:10: c1:92:39:3f:09:3f:f4:b2:49:c6:0a:c1:e1:2e:11:c6:f3:dd: 5c:af:53:79 -----BEGIN CERTIFICATE----- MIIFHTCCBAWgAwIBAgIUEsQThMVOIOfNVfV/KcxQNVmn++IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNGZjMzM2YmY5ZjNkZTVjZTQxNDE0YmQxOTcxOTQ1ZjRi MjQ2YmZjYzAeFw0yNTExMjMyMzU0MjNaFw0yNjExMjIyMzU5MjNaMDMxMTAvBgNV BAMTKDUwMTgwMTQ5NENFQTI5RUZCRDU3MkExMjQxRUNDRkI3M0JDQzU1NEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCiNOhRDpDvfe3tuWh7pa03Bf9g VSjuOZI6oLUG1LaIWp6ScNqZhotvNjofKzBVOKZv+i/O7S5beb3idQYUnjpIq9f6 DHNOYe/Fha79iUIglJH8gameXePh8ezc+vYyP1UGyFiHp0msv2BAkOEeqcOLMxeV La9TspNMZZymNAK+MqC8E2u7Mny8gOmx4y8ayzz9SABLci02Eio4OmX8nHXsfFJQ VHazdgOurqcHGBbmeAABr1cRJnnq40JbgFsRQmbGcLPOfeOUc82NEUKMKlHUywx0 IJwpaqJV28xpBPEejLyDQNwF7KwYYvSMNSvqh+0nFeyE/liQ+JFtB8w/a0ZDAgMB AAGjggInMIICIzAdBgNVHQ4EFgQUUBgBSUzqKe+9VyoSQezPtzvMVU4wHwYDVR0j BBgwFoAUT8M2v5895c5BQUvRlxlF9LJGv8wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMDliZTNhYWUtYWVhMS00MWRjLWIxYjktOTVhYzU5MTgy NDRkLzAvNEZDMzM2QkY5RjNERTVDRTQxNDE0QkQxOTcxOTQ1RjRCMjQ2QkZDQy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1Q4TTJ2NTg5NWM1QlFVdlJseGxGOUxK R3Y4dy5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzA5YmUzYWFlLWFlYTEt NDFkYy1iMWI5LTk1YWM1OTE4MjQ0ZC8wL0FTNTQyNTIucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwPQYIKwYBBQUHAQcBAf8ELjAsMCoEAgABMCQDBABgPtkD BACPDrwDBACTTwIDBACW8YgDBACbdVEDBACijXQwDQYJKoZIhvcNAQELBQADggEB AH0DmQHEZCIoAW7HFH9PfYfRQimCMmDKyMgUl8IppZol6vevyeOBVoOKK1AChf2I K3CN0foXRTzUazX6vrh5nXGRB+PTeaUqxY8lkWSQkVM4e/Q4QJXGYnL3sFMF5tG+ QdpVVOTE40rmXoHVSx9r9fkHA9icV2m3boTEPl6TmvNc8+bQxcf0tTYYx+paNjPp 7LmsHzpabZdUMlGdQ2b7Zvoe2d1eJOikDDJlummZOtLm31jAYbnziY8iSoHJ8mBe CsV0d1RxyUJ+6ksfAYO45+PuO+HJ2uh4sgwQtaiUYMpqBoP8WHmYJmKkEMGSOT8J P/SyScYKweEuEcbz3VyvU3k= -----END CERTIFICATE-----Generated at Sun Dec 7 11:09:26 2025 by rpki-client