This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS200223.roa File: AS200223.roa (raw, json) Hash identifier: /rv0A72G+4RPHC7/wH9qdQVVAsBJnYb84zb0Kkq/Jog= Subject key identifier: 15:77:57:8B:83:A5:DB:DC:BA:84:FB:A5:67:2C:20:DE:CC:7D:7B:5F Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a Certificate serial: 75E840EC2D6AF09F81C6F6C44556E9683ECD1C32 Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS200223.roa Signing time: Wed 03 Dec 2025 08:55:12 +0000 ROA not before: Wed 03 Dec 2025 08:50:12 +0000 ROA not after: Wed 02 Dec 2026 08:55:12 +0000 asID: 200223 IP address blocks: 5.181.134.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.mft rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 10:42:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:e8:40:ec:2d:6a:f0:9f:81:c6:f6:c4:45:56:e9:68:3e:cd:1c:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a Validity Not Before: Dec 3 08:50:12 2025 GMT Not After : Dec 2 08:55:12 2026 GMT Subject: CN=1577578B83A5DBDCBA84FBA5672C20DECC7D7B5F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:94:c8:0f:63:13:67:02:b9:7f:45:c3:e1:d6: 0f:95:6e:e9:b9:89:fc:ad:6c:c7:22:6d:92:79:c9: ab:84:07:36:88:10:76:fe:1b:04:9a:48:2b:87:32: 2f:3a:40:4b:c8:dc:3d:62:9c:e3:85:59:b3:46:08: cd:59:77:99:a3:82:22:e3:cc:fb:f4:94:f0:af:ef: 5e:37:fa:c0:65:2b:53:fd:f5:2d:d5:28:cc:94:ef: 49:97:12:fd:20:c0:d1:2e:ba:d8:65:48:bc:73:b1: 13:fb:4a:89:77:ab:1b:32:30:2c:53:56:94:54:1d: a0:78:0e:d9:78:1b:c5:36:63:77:ff:2d:8f:6e:5e: 61:30:06:b2:a7:12:25:73:03:74:56:58:ad:66:60: 62:19:f7:8d:41:c5:3c:24:f9:e2:a2:7b:89:1a:aa: 50:4a:a9:31:a4:13:64:a0:06:63:30:c2:26:59:89: 6d:65:fb:1a:6f:d7:59:97:57:e9:bd:5a:cc:29:d7: 58:2c:7d:35:54:9f:1b:bb:a4:78:9c:56:6c:21:e4: 05:f9:36:ba:8b:33:be:c6:c1:50:b7:79:58:92:9f: 37:52:27:b7:72:55:ae:61:47:63:02:67:e4:18:0b: a5:b2:97:aa:d9:1b:f9:40:01:6b:d8:49:99:f4:93: b7:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:77:57:8B:83:A5:DB:DC:BA:84:FB:A5:67:2C:20:DE:CC:7D:7B:5F X509v3 Authority Key Identifier: keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS200223.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.181.134.0/24 Signature Algorithm: sha256WithRSAEncryption 91:23:6f:88:c0:57:c4:27:fd:6b:48:93:7e:5b:7f:b1:28:ac: a1:22:51:65:b3:69:7a:f8:c0:ff:5d:83:dd:75:35:d9:d0:94: cb:a0:ca:fa:f6:80:45:f6:9e:90:7f:ee:91:81:dc:da:e0:39: 85:d0:77:54:51:ea:5a:92:b4:a9:f1:85:ee:73:66:3b:39:a9: bf:36:a2:cc:e1:da:b2:a1:5c:62:e0:e6:54:39:01:0c:40:1e: b7:7f:28:c9:a0:01:3c:71:36:6e:4d:54:80:81:87:e6:2a:a3: 1e:77:79:44:3b:97:70:e1:f0:a0:e2:59:47:5c:94:5e:02:49: 5b:5a:30:1c:f8:83:84:68:86:99:3a:33:97:30:77:22:1b:37: cc:fb:bb:0f:33:17:cf:b0:3a:cc:46:4d:5b:98:2b:ec:17:77: 03:31:a1:1e:b0:1b:fc:57:65:9e:bc:df:da:e0:2c:6f:45:ac: 8c:47:0a:3e:d5:6c:c2:78:77:c7:51:e2:da:c8:03:e7:fa:f9: 93:3f:d8:53:f4:b1:62:29:9f:99:a0:72:d3:57:16:83:b6:f0: 06:c8:27:48:d4:1f:8b:b2:68:58:1f:c3:79:d5:22:92:2f:36: c4:34:f7:16:ee:dd:ee:98:b4:74:e3:ee:40:97:53:af:64:97: d3:c9:74:86 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgIUdehA7C1q8J+BxvbERVbpaD7NHDIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjFiMWJiNDQ0NzcxOGYxNmIzZDM2Njc1ZDIwNWM0ZGVh NDFiYmEwYTAeFw0yNTEyMDMwODUwMTJaFw0yNjEyMDIwODU1MTJaMDMxMTAvBgNV BAMTKDE1Nzc1NzhCODNBNURCRENCQTg0RkJBNTY3MkMyMERFQ0M3RDdCNUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPlMgPYxNnArl/RcPh1g+Vbum5 ifytbMcibZJ5yauEBzaIEHb+GwSaSCuHMi86QEvI3D1inOOFWbNGCM1Zd5mjgiLj zPv0lPCv7143+sBlK1P99S3VKMyU70mXEv0gwNEuuthlSLxzsRP7Sol3qxsyMCxT VpRUHaB4Dtl4G8U2Y3f/LY9uXmEwBrKnEiVzA3RWWK1mYGIZ941BxTwk+eKie4ka qlBKqTGkE2SgBmMwwiZZiW1l+xpv11mXV+m9Wswp11gsfTVUnxu7pHicVmwh5AX5 NrqLM77GwVC3eViSnzdSJ7dyVa5hR2MCZ+QYC6Wyl6rZG/lAAWvYSZn0k7d9AgMB AAGjggIKMIICBjAdBgNVHQ4EFgQUFXdXi4Ol29y6hPulZywg3sx9e18wHwYDVR0j BBgwFoAUYbG7REdxjxaz02Z10gXE3qQbugowDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNTM3NDU5ZTctMmE4My00M2QxLTlhYTEtNTg0MTdhYmFj NGI2LzEvNjFCMUJCNDQ0NzcxOEYxNkIzRDM2Njc1RDIwNUM0REVBNDFCQkEwQS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1liRzdSRWR4anhhejAyWjEwZ1hFM3FR YnVnby5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzUzNzQ1OWU3LTJhODMt NDNkMS05YWExLTU4NDE3YWJhYzRiNi8xL0FTMjAwMjIzLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQABbWG MA0GCSqGSIb3DQEBCwUAA4IBAQCRI2+IwFfEJ/1rSJN+W3+xKKyhIlFls2l6+MD/ XYPddTXZ0JTLoMr69oBF9p6Qf+6Rgdza4DmF0HdUUepakrSp8YXuc2Y7Oam/NqLM 4dqyoVxi4OZUOQEMQB63fyjJoAE8cTZuTVSAgYfmKqMed3lEO5dw4fCg4llHXJRe AklbWjAc+IOEaIaZOjOXMHciGzfM+7sPMxfPsDrMRk1bmCvsF3cDMaEesBv8V2We vN/a4CxvRayMRwo+1WzCeHfHUeLayAPn+vmTP9hT9LFiKZ+ZoHLTVxaDtvAGyCdI 1B+LsmhYH8N51SKSLzbENPcW7t3umLR04+5Al1OvZJfTyXSG -----END CERTIFICATE-----Generated at Fri Dec 5 18:23:08 2025 by rpki-client