This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS19437.roa File: AS19437.roa (raw, json) Hash identifier: UTOGmNqUX+Z5zPZKH2gqLO0/IY9s810ouhJ3dToSCtA= Subject key identifier: C7:0E:AA:27:79:69:DF:71:F2:8E:1E:8B:A0:A7:12:8D:E3:42:99:AA Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a Certificate serial: 0C4DF1FB76DDB8175FB2D856B666E8D64A609685 Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS19437.roa Signing time: Fri 05 Dec 2025 08:55:14 +0000 ROA not before: Fri 05 Dec 2025 08:50:14 +0000 ROA not after: Fri 04 Dec 2026 08:55:14 +0000 asID: 19437 IP address blocks: 181.215.139.0/24 maxlen: 24 191.96.38.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.mft rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 10:42:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:4d:f1:fb:76:dd:b8:17:5f:b2:d8:56:b6:66:e8:d6:4a:60:96:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a Validity Not Before: Dec 5 08:50:14 2025 GMT Not After : Dec 4 08:55:14 2026 GMT Subject: CN=C70EAA277969DF71F28E1E8BA0A7128DE34299AA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:ed:2e:3f:f5:f7:84:61:f5:21:b0:ec:ee:72: 86:c9:bd:f9:99:ae:b5:c4:c7:a0:4e:57:57:1b:5e: 37:27:1f:4e:61:35:bf:0d:2b:dc:c1:15:12:91:40: a3:ae:c7:37:8f:ad:79:93:3f:a6:71:58:7d:80:1d: 4b:94:f7:75:cf:a0:f4:4c:3c:ee:42:90:2f:b7:56: 58:e3:d0:05:16:24:34:83:4f:70:af:95:51:35:60: 9f:8d:bc:6a:67:86:7f:8d:58:41:61:d1:10:eb:4b: 1d:2e:0e:58:26:12:13:fb:9f:ff:a3:42:13:1d:a3: 54:6f:f9:f6:c4:a5:73:de:3a:ee:40:e6:f6:51:4a: 00:3e:75:5a:04:8a:12:52:ca:c2:93:af:a0:67:85: ef:56:66:9f:17:fd:87:a5:b2:90:b9:bb:46:a0:a1: e3:75:10:f5:09:12:b7:a9:fd:1f:2d:4d:d3:a4:51: f3:9d:0b:e3:12:f8:0f:5a:67:26:94:b6:3f:b2:8e: 74:ae:7a:69:e8:b0:93:87:19:84:7e:56:2b:0d:fb: 3d:ae:c2:e1:3f:0a:ca:19:ae:7f:f2:45:b1:1d:07: 80:c6:e9:2f:70:a8:83:15:0e:13:21:56:0a:d4:ef: 89:07:d2:91:12:62:18:1f:57:fa:4e:59:3b:b1:98: 4c:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:0E:AA:27:79:69:DF:71:F2:8E:1E:8B:A0:A7:12:8D:E3:42:99:AA X509v3 Authority Key Identifier: keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS19437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 181.215.139.0/24 191.96.38.0/24 Signature Algorithm: sha256WithRSAEncryption 62:d9:88:a9:c7:88:13:7b:6b:03:b2:15:b1:fd:41:5e:25:17: 15:ce:34:d7:f6:ae:71:8f:6c:38:3d:07:72:5c:58:77:ec:22: 56:3f:bb:6f:07:84:8b:a7:37:f3:79:f9:e2:6b:35:3a:f0:c5: be:c6:e2:49:01:e0:86:39:ec:e4:7b:72:dd:40:16:1e:61:46: 6a:c7:80:59:5f:bc:30:b0:82:8f:48:41:71:3b:24:29:61:6d: af:06:ec:c1:1a:dc:c9:79:c2:98:74:78:34:56:11:cf:5f:7d: 6c:ce:35:2b:04:e1:3b:13:71:bf:9a:e4:ee:a0:92:c4:51:6f: c8:b3:7f:ad:02:73:2b:69:c4:9b:29:17:61:6d:40:26:e0:d1: 94:6f:0a:78:12:cf:9c:d2:d5:d0:8a:b4:da:a6:4a:5c:9e:08: a0:55:e4:f5:97:19:24:cc:2c:c4:c3:c5:27:45:30:2a:40:52: 20:f0:bd:66:ad:3a:d4:a4:63:9d:ba:e8:63:69:7b:be:d7:2f: c2:ed:3c:a3:b2:ca:95:1a:6e:ac:c0:96:cf:c8:45:a2:98:f1: db:66:63:28:8b:ad:d6:94:fe:b9:db:df:c0:7c:d5:18:7f:63: 02:f6:d3:86:be:71:c8:43:20:78:af:e6:f4:7b:1a:fd:52:dc: cc:55:03:2c -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIUDE3x+3bduBdfsthWtmbo1kpgloUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjFiMWJiNDQ0NzcxOGYxNmIzZDM2Njc1ZDIwNWM0ZGVh NDFiYmEwYTAeFw0yNTEyMDUwODUwMTRaFw0yNjEyMDQwODU1MTRaMDMxMTAvBgNV BAMTKEM3MEVBQTI3Nzk2OURGNzFGMjhFMUU4QkEwQTcxMjhERTM0Mjk5QUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDU7S4/9feEYfUhsOzucobJvfmZ rrXEx6BOV1cbXjcnH05hNb8NK9zBFRKRQKOuxzePrXmTP6ZxWH2AHUuU93XPoPRM PO5CkC+3Vljj0AUWJDSDT3CvlVE1YJ+NvGpnhn+NWEFh0RDrSx0uDlgmEhP7n/+j QhMdo1Rv+fbEpXPeOu5A5vZRSgA+dVoEihJSysKTr6Bnhe9WZp8X/YelspC5u0ag oeN1EPUJErep/R8tTdOkUfOdC+MS+A9aZyaUtj+yjnSuemnosJOHGYR+VisN+z2u wuE/CsoZrn/yRbEdB4DG6S9wqIMVDhMhVgrU74kH0pESYhgfV/pOWTuxmEz1AgMB AAGjggIPMIICCzAdBgNVHQ4EFgQUxw6qJ3lp33Hyjh6LoKcSjeNCmaowHwYDVR0j BBgwFoAUYbG7REdxjxaz02Z10gXE3qQbugowDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNTM3NDU5ZTctMmE4My00M2QxLTlhYTEtNTg0MTdhYmFj NGI2LzEvNjFCMUJCNDQ0NzcxOEYxNkIzRDM2Njc1RDIwNUM0REVBNDFCQkEwQS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1liRzdSRWR4anhhejAyWjEwZ1hFM3FR YnVnby5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzUzNzQ1OWU3LTJhODMt NDNkMS05YWExLTU4NDE3YWJhYzRiNi8xL0FTMTk0Mzcucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwJQYIKwYBBQUHAQcBAf8EFjAUMBIEAgABMAwDBAC114sD BAC/YCYwDQYJKoZIhvcNAQELBQADggEBAGLZiKnHiBN7awOyFbH9QV4lFxXONNf2 rnGPbDg9B3JcWHfsIlY/u28HhIunN/N5+eJrNTrwxb7G4kkB4IY57OR7ct1AFh5h RmrHgFlfvDCwgo9IQXE7JClhba8G7MEa3Ml5wph0eDRWEc9ffWzONSsE4TsTcb+a 5O6gksRRb8izf60CcytpxJspF2FtQCbg0ZRvCngSz5zS1dCKtNqmSlyeCKBV5PWX GSTMLMTDxSdFMCpAUiDwvWatOtSkY5266GNpe77XL8LtPKOyypUabqzAls/IRaKY 8dtmYyiLrdaU/rnb38B81Rh/YwL204a+cchDIHiv5vR7Gv1S3MxVAyw= -----END CERTIFICATE-----Generated at Fri Dec 5 18:23:07 2025 by rpki-client