This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/AS198376.roa File: AS198376.roa (raw, json) Hash identifier: SjxiwmyALV60SDazAZFkBAGDezkyMvDVF/7F4F9G1Sg= Subject key identifier: 6E:92:AD:22:AF:56:86:D2:18:E1:75:22:32:50:91:A4:CB:AF:EF:06 Certificate issuer: /CN=7051b4c2f7ae9ef80b53000b32ab8f5d2f2f415b Certificate serial: 22B27107DE27C7DB65E28AAEE5DACCF251696C2E Authority key identifier: 70:51:B4:C2:F7:AE:9E:F8:0B:53:00:0B:32:AB:8F:5D:2F:2F:41:5B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cFG0wveunvgLUwALMquPXS8vQVs.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/AS198376.roa Signing time: Wed 17 Dec 2025 16:55:32 +0000 ROA not before: Wed 17 Dec 2025 16:50:32 +0000 ROA not after: Wed 16 Dec 2026 16:55:32 +0000 asID: 198376 IP address blocks: 84.54.0.0/23 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/7051B4C2F7AE9EF80B53000B32AB8F5D2F2F415B.crl rsync://rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/7051B4C2F7AE9EF80B53000B32AB8F5D2F2F415B.mft rsync://rpki.ripe.net/repository/DEFAULT/cFG0wveunvgLUwALMquPXS8vQVs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 24 Jan 2026 10:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:b2:71:07:de:27:c7:db:65:e2:8a:ae:e5:da:cc:f2:51:69:6c:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7051b4c2f7ae9ef80b53000b32ab8f5d2f2f415b Validity Not Before: Dec 17 16:50:32 2025 GMT Not After : Dec 16 16:55:32 2026 GMT Subject: CN=6E92AD22AF5686D218E17522325091A4CBAFEF06 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:72:94:5e:79:fb:6b:92:02:2a:44:7d:a9:87: 65:a1:d4:84:ca:aa:f7:c9:fc:e2:93:91:ff:ae:e8: bf:9f:e9:9a:72:f9:69:44:b6:3f:4b:63:fb:9b:81: 13:6c:f5:84:14:46:dc:43:30:fc:ab:b2:b9:45:cb: c8:6c:00:10:f9:e2:8a:7f:ee:57:d9:a2:dd:9d:f8: 7f:59:55:42:ac:09:92:ae:20:9f:fe:14:96:ce:34: cb:d1:b7:83:c4:8a:a1:17:30:d8:24:03:46:cd:73: ba:dc:27:7f:7a:36:9b:44:10:b6:c5:aa:1b:fc:6d: 69:af:f5:13:20:5d:8b:4d:09:3c:83:4d:c4:0e:80: 98:9d:56:57:d6:23:f6:f9:7a:35:28:5e:0b:2a:b2: 62:73:d9:31:64:f8:eb:54:c0:4f:3d:0c:a0:d8:28: 53:20:11:e8:13:cb:e1:ff:15:ba:8f:e0:a7:13:79: ac:17:05:bb:dc:4d:b7:89:18:a5:d5:31:2a:c3:5c: bd:37:67:5e:79:b7:6e:ee:58:27:44:32:35:43:d2: 58:7f:97:fe:51:7d:e4:f2:c7:ac:f4:34:99:0d:e9: b6:fa:1b:c6:78:4e:56:27:e1:10:c7:f0:b7:82:01: 79:6e:37:f8:46:bd:37:44:01:d1:e0:c6:63:c8:c2: 7c:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:92:AD:22:AF:56:86:D2:18:E1:75:22:32:50:91:A4:CB:AF:EF:06 X509v3 Authority Key Identifier: keyid:70:51:B4:C2:F7:AE:9E:F8:0B:53:00:0B:32:AB:8F:5D:2F:2F:41:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/7051B4C2F7AE9EF80B53000B32AB8F5D2F2F415B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cFG0wveunvgLUwALMquPXS8vQVs.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/AS198376.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 84.54.0.0/23 Signature Algorithm: sha256WithRSAEncryption 25:dd:0f:9b:de:e7:be:5e:0c:45:25:f1:b7:2e:95:c2:70:37: f5:ae:c9:bb:ff:c4:7c:bd:aa:d2:30:26:29:f9:43:d1:7a:56: a3:53:da:c9:92:68:b4:9b:50:d3:fe:2f:eb:e9:3e:ed:ef:83: ed:c4:33:d0:75:01:d9:e9:3a:5a:dd:c4:4b:3c:ef:a2:e7:6d: 16:6c:80:45:98:88:93:5c:a2:5a:de:95:12:1c:54:91:21:c9: 25:b6:79:c4:0f:55:a8:35:6f:d1:de:c3:69:19:cd:69:52:04: 90:67:02:a3:f2:da:92:b1:74:e6:72:b7:d4:0f:8f:dd:8a:83: 5c:00:b0:ba:e1:9b:ff:75:21:38:68:c9:0d:90:3c:88:32:a2: e7:8f:fb:f3:1f:ca:8c:05:2e:9c:b1:12:3f:0c:d7:0b:ad:bd: 28:0e:58:8f:a4:1a:1e:8b:0b:d5:0a:10:b5:8e:50:23:66:c3: 44:24:58:c0:1f:64:50:27:c0:78:7b:3d:6e:43:27:e4:c4:b2: 5b:37:b9:57:34:bd:26:a6:7a:c2:71:39:89:53:63:c1:81:52: 1f:61:78:8a:84:ba:d9:6a:37:3d:56:7f:d7:71:c5:64:2e:64: e5:ea:0e:d6:f8:5d:14:c7:01:15:72:fc:3a:4d:e8:62:a4:db: 9a:2a:ff:3c -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgIUIrJxB94nx9tl4oqu5drM8lFpbC4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzA1MWI0YzJmN2FlOWVmODBiNTMwMDBiMzJhYjhmNWQy ZjJmNDE1YjAeFw0yNTEyMTcxNjUwMzJaFw0yNjEyMTYxNjU1MzJaMDMxMTAvBgNV BAMTKDZFOTJBRDIyQUY1Njg2RDIxOEUxNzUyMjMyNTA5MUE0Q0JBRkVGMDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2cpReeftrkgIqRH2ph2Wh1ITK qvfJ/OKTkf+u6L+f6Zpy+WlEtj9LY/ubgRNs9YQURtxDMPyrsrlFy8hsABD54op/ 7lfZot2d+H9ZVUKsCZKuIJ/+FJbONMvRt4PEiqEXMNgkA0bNc7rcJ396NptEELbF qhv8bWmv9RMgXYtNCTyDTcQOgJidVlfWI/b5ejUoXgsqsmJz2TFk+OtUwE89DKDY KFMgEegTy+H/FbqP4KcTeawXBbvcTbeJGKXVMSrDXL03Z155t27uWCdEMjVD0lh/ l/5RfeTyx6z0NJkN6bb6G8Z4TlYn4RDH8LeCAXluN/hGvTdEAdHgxmPIwnytAgMB AAGjggIKMIICBjAdBgNVHQ4EFgQUbpKtIq9WhtIY4XUiMlCRpMuv7wYwHwYDVR0j BBgwFoAUcFG0wveunvgLUwALMquPXS8vQVswDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvOWM1Y2U5ZmEtOWE2Zi00ZTBjLTk4MDktN2E0Nzg4NzQ0 ODkzLzAvNzA1MUI0QzJGN0FFOUVGODBCNTMwMDBCMzJBQjhGNUQyRjJGNDE1Qi5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2NGRzB3dmV1bnZnTFV3QUxNcXVQWFM4 dlFWcy5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzljNWNlOWZhLTlhNmYt NGUwYy05ODA5LTdhNDc4ODc0NDg5My8wL0FTMTk4Mzc2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBVDYA MA0GCSqGSIb3DQEBCwUAA4IBAQAl3Q+b3ue+XgxFJfG3LpXCcDf1rsm7/8R8varS MCYp+UPRelajU9rJkmi0m1DT/i/r6T7t74PtxDPQdQHZ6Tpa3cRLPO+i520WbIBF mIiTXKJa3pUSHFSRIckltnnED1WoNW/R3sNpGc1pUgSQZwKj8tqSsXTmcrfUD4/d ioNcALC64Zv/dSE4aMkNkDyIMqLnj/vzH8qMBS6csRI/DNcLrb0oDliPpBoeiwvV ChC1jlAjZsNEJFjAH2RQJ8B4ez1uQyfkxLJbN7lXNL0mpnrCcTmJU2PBgVIfYXiK hLrZajc9Vn/XccVkLmTl6g7W+F0UxwEVcvw6TehipNuaKv88 -----END CERTIFICATE-----Generated at Fri Jan 23 19:20:50 2026 by rpki-client