This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS20860.roa File: AS20860.roa (raw, json) Hash identifier: jEVwMOOxX0OKAoK5zAzkfSgtkhEQoZPgH8mfO0ghjCY= Subject key identifier: F5:43:04:E9:A4:09:64:E1:4F:45:A5:A0:BF:B0:B6:7B:1B:86:C0:10 Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a Certificate serial: 6ED8A4E40007B147F63CA11668F446F7EB5764F4 Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS20860.roa Signing time: Thu 13 Nov 2025 00:02:15 +0000 ROA not before: Wed 12 Nov 2025 23:57:15 +0000 ROA not after: Thu 12 Nov 2026 00:02:15 +0000 asID: 20860 IP address blocks: 179.61.169.0/24 maxlen: 24 181.214.140.0/24 maxlen: 24 191.96.208.0/24 maxlen: 24 194.53.143.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.mft rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 05 Dec 2025 21:09:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:d8:a4:e4:00:07:b1:47:f6:3c:a1:16:68:f4:46:f7:eb:57:64:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a Validity Not Before: Nov 12 23:57:15 2025 GMT Not After : Nov 12 00:02:15 2026 GMT Subject: CN=F54304E9A40964E14F45A5A0BFB0B67B1B86C010 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:73:d8:10:b6:43:fc:bc:bc:48:72:d3:b3:da: 65:1e:95:7e:83:75:9c:60:7c:c4:ce:1a:06:40:62: f6:1b:04:de:a8:3c:ff:d1:ef:5d:31:a8:0c:72:1b: f3:64:04:58:93:23:88:b0:eb:8e:f5:f2:f1:58:69: 6e:dc:97:c6:b1:1d:33:df:ef:06:d5:87:6f:61:fc: 10:65:83:8e:a3:80:91:f5:92:81:e5:59:dc:f6:1f: c2:b4:24:da:00:39:ba:93:cf:fe:b8:f9:73:ba:b9: 1c:db:95:02:b8:5f:6e:3a:2c:e0:fc:62:95:bb:b5: fe:cc:64:e1:7c:35:87:95:37:58:64:b3:e0:41:c1: f3:47:c0:68:75:1d:87:48:9d:1e:40:a5:72:50:49: ea:df:97:f4:f5:bf:e3:d8:06:5e:2e:3c:e2:9e:ca: 91:3f:64:4d:a0:8b:ca:89:1a:3b:5b:98:16:45:3e: 26:f6:31:97:94:31:f5:3c:b7:64:e4:c1:f0:30:16: c5:80:79:b0:e1:47:7e:ca:75:4a:9d:e2:56:b0:7e: 61:db:8c:f7:a4:0f:4c:56:f2:16:32:31:70:f6:dd: 1b:8a:72:49:a9:5b:2a:50:3a:f3:ab:ca:9f:11:5e: f3:81:e0:f9:b1:70:bc:9d:63:3e:62:d1:7d:cc:41: 2f:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:43:04:E9:A4:09:64:E1:4F:45:A5:A0:BF:B0:B6:7B:1B:86:C0:10 X509v3 Authority Key Identifier: keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS20860.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 179.61.169.0/24 181.214.140.0/24 191.96.208.0/24 194.53.143.0/24 Signature Algorithm: sha256WithRSAEncryption 2d:66:b0:3c:e2:ab:a9:81:7f:37:ed:cf:bb:3c:d2:dd:bb:ea: a5:f3:0c:d0:38:d4:ca:09:fe:2f:0e:1a:62:34:4e:83:61:2e: b4:22:75:d9:51:fd:5c:61:4a:e2:5f:dd:2c:dd:7b:e9:c6:0f: 34:c7:91:16:2d:91:f0:fb:26:11:34:53:aa:08:24:5d:f9:d4: 3b:e4:02:4d:03:fe:40:ce:fe:3a:e9:bf:51:5f:87:f0:d1:24: 93:97:d1:8b:ed:1d:a6:d5:56:4e:11:a6:ae:5b:90:af:c9:6e: f6:7a:e5:d1:45:2a:32:75:6d:7b:4e:d8:c9:a9:37:6a:af:74: 2e:e5:4d:d1:1f:b7:01:89:85:ca:09:06:d5:be:65:75:48:01: ab:e2:b5:f9:31:1a:23:b6:5e:0a:3e:bf:ec:f7:03:ce:03:9b: 73:be:7b:6a:f0:62:2d:b2:5b:d4:9d:0a:b4:6b:7a:43:07:f7: e1:04:40:45:61:ea:3b:bb:2e:e3:2a:24:cb:f4:dc:4d:dc:b9: 38:5c:d9:14:16:31:3f:ee:5e:df:97:40:7f:cd:2e:fc:32:1c: 38:6f:0d:6b:44:90:95:63:ad:d3:1e:93:66:d6:41:89:00:b6: 6d:41:0c:c8:36:3c:c7:37:84:f4:20:92:fe:90:33:a5:bc:aa: c0:a1:f2:28 -----BEGIN CERTIFICATE----- MIIFETCCA/mgAwIBAgIUbtik5AAHsUf2PKEWaPRG9+tXZPQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjFiMWJiNDQ0NzcxOGYxNmIzZDM2Njc1ZDIwNWM0ZGVh NDFiYmEwYTAeFw0yNTExMTIyMzU3MTVaFw0yNjExMTIwMDAyMTVaMDMxMTAvBgNV BAMTKEY1NDMwNEU5QTQwOTY0RTE0RjQ1QTVBMEJGQjBCNjdCMUI4NkMwMTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqc9gQtkP8vLxIctOz2mUelX6D dZxgfMTOGgZAYvYbBN6oPP/R710xqAxyG/NkBFiTI4iw64718vFYaW7cl8axHTPf 7wbVh29h/BBlg46jgJH1koHlWdz2H8K0JNoAObqTz/64+XO6uRzblQK4X246LOD8 YpW7tf7MZOF8NYeVN1hks+BBwfNHwGh1HYdInR5ApXJQSerfl/T1v+PYBl4uPOKe ypE/ZE2gi8qJGjtbmBZFPib2MZeUMfU8t2TkwfAwFsWAebDhR37KdUqd4lawfmHb jPekD0xW8hYyMXD23RuKckmpWypQOvOryp8RXvOB4PmxcLydYz5i0X3MQS8vAgMB AAGjggIbMIICFzAdBgNVHQ4EFgQU9UME6aQJZOFPRaWgv7C2exuGwBAwHwYDVR0j BBgwFoAUYbG7REdxjxaz02Z10gXE3qQbugowDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNTM3NDU5ZTctMmE4My00M2QxLTlhYTEtNTg0MTdhYmFj NGI2LzEvNjFCMUJCNDQ0NzcxOEYxNkIzRDM2Njc1RDIwNUM0REVBNDFCQkEwQS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1liRzdSRWR4anhhejAyWjEwZ1hFM3FR YnVnby5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzUzNzQ1OWU3LTJhODMt NDNkMS05YWExLTU4NDE3YWJhYzRiNi8xL0FTMjA4NjAucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwMQYIKwYBBQUHAQcBAf8EIjAgMB4EAgABMBgDBACzPakD BAC11owDBAC/YNADBADCNY8wDQYJKoZIhvcNAQELBQADggEBAC1msDziq6mBfzft z7s80t276qXzDNA41MoJ/i8OGmI0ToNhLrQiddlR/VxhSuJf3Szde+nGDzTHkRYt kfD7JhE0U6oIJF351DvkAk0D/kDO/jrpv1Ffh/DRJJOX0YvtHabVVk4Rpq5bkK/J bvZ65dFFKjJ1bXtO2MmpN2qvdC7lTdEftwGJhcoJBtW+ZXVIAavitfkxGiO2Xgo+ v+z3A84Dm3O+e2rwYi2yW9SdCrRrekMH9+EEQEVh6ju7LuMqJMv03E3cuThc2RQW MT/uXt+XQH/NLvwyHDhvDWtEkJVjrdMek2bWQYkAtm1BDMg2PMc3hPQgkv6QM6W8 qsCh8ig= -----END CERTIFICATE-----Generated at Fri Dec 5 07:05:32 2025 by rpki-client