This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/AS197450.roa File: AS197450.roa (raw, json) Hash identifier: QtMmQoRlik/Ow52tmOVWzLQALr+kkXnQUyXOy9g1DnE= Subject key identifier: EE:6A:AF:CA:6A:4E:F7:59:BF:F2:1C:48:21:4E:EB:E9:7A:23:E5:F7 Certificate issuer: /CN=7051b4c2f7ae9ef80b53000b32ab8f5d2f2f415b Certificate serial: 69BE21C55C5CDF29095D64C46C9CA07C9DB08A83 Authority key identifier: 70:51:B4:C2:F7:AE:9E:F8:0B:53:00:0B:32:AB:8F:5D:2F:2F:41:5B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cFG0wveunvgLUwALMquPXS8vQVs.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/AS197450.roa Signing time: Fri 12 Dec 2025 15:26:54 +0000 ROA not before: Fri 12 Dec 2025 15:21:54 +0000 ROA not after: Fri 11 Dec 2026 15:26:54 +0000 asID: 197450 IP address blocks: 141.98.50.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/7051B4C2F7AE9EF80B53000B32AB8F5D2F2F415B.crl rsync://rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/7051B4C2F7AE9EF80B53000B32AB8F5D2F2F415B.mft rsync://rpki.ripe.net/repository/DEFAULT/cFG0wveunvgLUwALMquPXS8vQVs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 18 Dec 2025 17:48:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:be:21:c5:5c:5c:df:29:09:5d:64:c4:6c:9c:a0:7c:9d:b0:8a:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7051b4c2f7ae9ef80b53000b32ab8f5d2f2f415b Validity Not Before: Dec 12 15:21:54 2025 GMT Not After : Dec 11 15:26:54 2026 GMT Subject: CN=EE6AAFCA6A4EF759BFF21C48214EEBE97A23E5F7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:cb:f5:31:60:8c:71:0a:fb:71:6f:72:27:e1: 4b:bd:7d:d0:15:19:0a:91:c2:b0:20:2a:c3:cd:ea: 28:fc:38:3a:9c:1b:54:4e:ba:49:25:19:c2:db:5d: 07:08:05:87:47:87:ba:bb:4c:99:9b:db:94:4d:80: 0f:6a:6f:80:62:fd:dc:3c:a2:e6:88:ff:e0:29:08: 04:9a:8b:40:d2:b5:f5:bf:30:4e:d2:e2:d8:b1:b0: a2:9a:2a:dd:a3:49:34:da:eb:44:d2:f2:e5:b5:de: b3:89:94:e7:e6:d3:c4:74:d9:88:75:8d:6f:6b:50: 14:48:11:6b:31:dd:88:e5:91:0a:a7:c9:bb:93:02: 70:6a:95:e0:cc:63:b1:e6:d0:e8:ae:50:9c:b5:a9: 84:d8:cb:75:f6:1e:47:40:99:ba:c2:f9:4c:6f:05: e4:85:b2:ba:9f:e6:0c:e4:90:0e:f3:36:de:a4:eb: b3:17:a5:7b:97:b9:57:f3:ab:96:71:f4:75:94:7f: c7:74:be:b4:6f:da:8e:2c:72:89:71:11:f9:ca:14: 25:31:8e:e5:c6:40:21:e7:f3:fd:13:16:34:74:10: 4d:5a:92:54:3f:e5:1b:8c:99:4f:81:6d:2d:00:2a: e7:1d:b7:ae:20:41:5c:f6:09:bf:ae:d9:ef:ba:b0: ca:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:6A:AF:CA:6A:4E:F7:59:BF:F2:1C:48:21:4E:EB:E9:7A:23:E5:F7 X509v3 Authority Key Identifier: keyid:70:51:B4:C2:F7:AE:9E:F8:0B:53:00:0B:32:AB:8F:5D:2F:2F:41:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/7051B4C2F7AE9EF80B53000B32AB8F5D2F2F415B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cFG0wveunvgLUwALMquPXS8vQVs.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/AS197450.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 141.98.50.0/24 Signature Algorithm: sha256WithRSAEncryption 37:9f:f2:67:1a:91:8d:59:bc:35:6b:36:c9:55:53:c9:1f:fa: 52:1f:97:48:3d:ad:1f:fe:12:af:98:91:d4:a4:14:8d:b3:fc: f1:95:0d:29:c6:33:30:30:04:a5:93:ad:02:9a:c9:0d:22:f8: 06:17:4d:9e:3d:57:ee:24:a1:71:c0:1f:de:de:dd:ec:d8:78: 74:33:42:f3:f7:bf:a1:e9:34:83:7a:f9:06:e1:21:34:a6:d0: 36:38:4c:99:c7:41:a4:b4:a1:e0:58:3b:08:8d:1d:47:4d:bf: 06:d8:a1:b3:d5:75:b0:c8:93:6d:e3:b9:44:85:a6:b5:25:f3: 19:06:19:90:49:1b:bb:3e:2e:37:6d:cc:76:cb:89:cf:4a:1b: 97:bb:4a:43:41:be:4f:e9:8d:63:a1:a9:7b:e2:73:e0:70:4e: b9:28:73:21:16:68:fb:d5:01:18:e4:68:44:cd:77:d7:d7:7b: df:11:5e:b7:f0:1d:ef:55:39:de:e6:c7:08:94:35:3c:46:1d: 8c:6e:f2:b1:f6:54:dd:66:dc:cf:c0:c9:99:dc:0e:00:4e:bd: 3d:0a:e9:17:e8:7c:b9:3d:37:5f:ac:a4:70:42:f7:57:1b:9e: a7:70:68:00:51:4e:25:79:b9:b0:df:ba:cc:f0:ff:04:dd:98: fc:3a:d7:f4 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgIUab4hxVxc3ykJXWTEbJygfJ2wioMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzA1MWI0YzJmN2FlOWVmODBiNTMwMDBiMzJhYjhmNWQy ZjJmNDE1YjAeFw0yNTEyMTIxNTIxNTRaFw0yNjEyMTExNTI2NTRaMDMxMTAvBgNV BAMTKEVFNkFBRkNBNkE0RUY3NTlCRkYyMUM0ODIxNEVFQkU5N0EyM0U1RjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTy/UxYIxxCvtxb3In4Uu9fdAV GQqRwrAgKsPN6ij8ODqcG1ROukklGcLbXQcIBYdHh7q7TJmb25RNgA9qb4Bi/dw8 ouaI/+ApCASai0DStfW/ME7S4tixsKKaKt2jSTTa60TS8uW13rOJlOfm08R02Yh1 jW9rUBRIEWsx3YjlkQqnybuTAnBqleDMY7Hm0OiuUJy1qYTYy3X2HkdAmbrC+Uxv BeSFsrqf5gzkkA7zNt6k67MXpXuXuVfzq5Zx9HWUf8d0vrRv2o4scolxEfnKFCUx juXGQCHn8/0TFjR0EE1aklQ/5RuMmU+BbS0AKucdt64gQVz2Cb+u2e+6sMqJAgMB AAGjggIKMIICBjAdBgNVHQ4EFgQU7mqvympO91m/8hxIIU7r6Xoj5fcwHwYDVR0j BBgwFoAUcFG0wveunvgLUwALMquPXS8vQVswDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvOWM1Y2U5ZmEtOWE2Zi00ZTBjLTk4MDktN2E0Nzg4NzQ0 ODkzLzAvNzA1MUI0QzJGN0FFOUVGODBCNTMwMDBCMzJBQjhGNUQyRjJGNDE1Qi5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2NGRzB3dmV1bnZnTFV3QUxNcXVQWFM4 dlFWcy5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzljNWNlOWZhLTlhNmYt NGUwYy05ODA5LTdhNDc4ODc0NDg5My8wL0FTMTk3NDUwLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAjWIy MA0GCSqGSIb3DQEBCwUAA4IBAQA3n/JnGpGNWbw1azbJVVPJH/pSH5dIPa0f/hKv mJHUpBSNs/zxlQ0pxjMwMASlk60CmskNIvgGF02ePVfuJKFxwB/e3t3s2Hh0M0Lz 97+h6TSDevkG4SE0ptA2OEyZx0GktKHgWDsIjR1HTb8G2KGz1XWwyJNt47lEhaa1 JfMZBhmQSRu7Pi43bcx2y4nPShuXu0pDQb5P6Y1joal74nPgcE65KHMhFmj71QEY 5GhEzXfX13vfEV638B3vVTne5scIlDU8Rh2MbvKx9lTdZtzPwMmZ3A4ATr09CukX 6Hy5PTdfrKRwQvdXG56ncGgAUU4lebmw37rM8P8E3Zj8Otf0 -----END CERTIFICATE-----Generated at Wed Dec 17 20:51:48 2025 by rpki-client