This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/AS200193.roa File: AS200193.roa (raw, json) Hash identifier: b88vQJnqOXTCx0GYbwogKmHAHWz+aIgalPM4iQu0JH8= Subject key identifier: 0C:38:16:5F:C8:7B:9A:50:DC:42:52:5B:5D:87:1B:AA:33:5C:2D:E6 Certificate issuer: /CN=7051b4c2f7ae9ef80b53000b32ab8f5d2f2f415b Certificate serial: 59E42DCDCCF4FC4FFA47E27AB2E12E023284FDB6 Authority key identifier: 70:51:B4:C2:F7:AE:9E:F8:0B:53:00:0B:32:AB:8F:5D:2F:2F:41:5B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cFG0wveunvgLUwALMquPXS8vQVs.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/AS200193.roa Signing time: Tue 20 Jan 2026 20:20:20 +0000 ROA not before: Tue 20 Jan 2026 20:15:20 +0000 ROA not after: Tue 19 Jan 2027 20:20:20 +0000 asID: 200193 IP address blocks: 5.133.100.0/24 maxlen: 24 92.249.60.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/7051B4C2F7AE9EF80B53000B32AB8F5D2F2F415B.crl rsync://rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/7051B4C2F7AE9EF80B53000B32AB8F5D2F2F415B.mft rsync://rpki.ripe.net/repository/DEFAULT/cFG0wveunvgLUwALMquPXS8vQVs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 03 Feb 2026 14:23:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:e4:2d:cd:cc:f4:fc:4f:fa:47:e2:7a:b2:e1:2e:02:32:84:fd:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7051b4c2f7ae9ef80b53000b32ab8f5d2f2f415b Validity Not Before: Jan 20 20:15:20 2026 GMT Not After : Jan 19 20:20:20 2027 GMT Subject: CN=0C38165FC87B9A50DC42525B5D871BAA335C2DE6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:88:16:44:67:d5:f3:6a:38:8d:6b:9d:50:d6:4b: 8b:62:51:0f:3a:6a:9c:70:2e:ce:0e:27:36:16:ab: 1f:d1:bc:50:2f:97:5a:40:de:07:61:30:52:d1:c6: 64:47:39:64:10:1a:1f:e3:84:dd:52:b7:95:bd:12: f6:e7:c9:89:3f:bd:85:5e:f8:84:aa:ae:7d:af:11: bb:ac:e4:66:08:5e:84:22:f9:53:3f:b0:f3:93:59: f5:21:06:a8:24:75:8e:da:ce:29:cd:b1:e4:0d:80: 8c:0e:37:e4:3c:73:12:08:f8:68:91:eb:77:29:76: cd:ec:3f:89:e1:6b:88:b5:06:32:cb:cc:03:78:83: 4d:ea:ad:55:bf:31:2a:0f:f0:34:4d:df:a2:eb:b0: 7e:2c:e5:1e:ef:05:e5:0e:77:63:98:7c:c8:6a:c1: 94:cf:7d:10:10:7b:27:f1:07:e9:73:2f:45:31:21: 14:85:71:67:ea:3f:f9:b3:ff:76:ac:2c:e4:7d:22: ef:d1:d8:ff:9b:57:eb:f7:58:73:59:6e:0a:6c:09: 23:11:8f:fa:cd:b1:42:3a:82:f1:af:41:25:25:3d: d6:66:16:54:d0:c0:d2:80:79:06:f1:fa:cd:c5:a3: b3:6b:0b:e7:c0:76:0e:9b:e5:aa:c2:a0:23:cf:1b: d2:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:38:16:5F:C8:7B:9A:50:DC:42:52:5B:5D:87:1B:AA:33:5C:2D:E6 X509v3 Authority Key Identifier: keyid:70:51:B4:C2:F7:AE:9E:F8:0B:53:00:0B:32:AB:8F:5D:2F:2F:41:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/7051B4C2F7AE9EF80B53000B32AB8F5D2F2F415B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cFG0wveunvgLUwALMquPXS8vQVs.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/AS200193.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.133.100.0/24 92.249.60.0/24 Signature Algorithm: sha256WithRSAEncryption 6e:0e:d9:af:12:34:f7:c3:b7:7e:fe:63:fa:66:86:95:f0:5f: 7b:36:be:d4:d6:d0:93:66:31:20:48:de:95:f5:08:bd:3a:b5: bc:d1:5a:7b:d6:c6:8c:e5:99:d6:61:bb:99:4e:5f:8c:ed:b7: 8c:28:71:0b:d8:27:6d:b1:59:81:2a:13:51:05:1c:16:6e:48: 86:85:fc:cc:02:b4:10:33:16:8a:ac:12:28:3b:20:52:a9:49: 0d:13:58:7d:3a:4a:4c:d5:a5:41:a2:1d:09:92:a6:4b:b9:8f: 2c:99:05:03:d1:f6:32:a3:de:f3:04:cf:02:7d:79:b9:dd:1e: 3b:6e:b7:b5:b8:ae:d2:1d:f4:b3:73:01:a2:06:85:9d:a4:76: a7:03:92:c7:4e:d8:4e:68:e0:04:05:65:da:c8:89:cd:c9:77: 67:a3:de:10:74:0f:a0:48:1a:a7:96:0c:35:c8:8b:bf:b4:ef: 4a:2d:75:3e:43:0c:96:0d:f7:fa:02:89:1f:65:53:84:1e:8b: d4:c2:a4:8a:34:a2:fa:c2:9f:fd:39:05:d3:34:81:bb:76:86: 87:da:df:c8:d3:be:7d:b6:4e:3c:4b:5a:51:89:55:2d:f7:64: 02:73:0b:b6:c7:d3:99:6d:b0:17:a1:45:8f:22:05:43:71:9d: 56:5f:0f:3c -----BEGIN CERTIFICATE----- MIIFBjCCA+6gAwIBAgIUWeQtzcz0/E/6R+J6suEuAjKE/bYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzA1MWI0YzJmN2FlOWVmODBiNTMwMDBiMzJhYjhmNWQy ZjJmNDE1YjAeFw0yNjAxMjAyMDE1MjBaFw0yNzAxMTkyMDIwMjBaMDMxMTAvBgNV BAMTKDBDMzgxNjVGQzg3QjlBNTBEQzQyNTI1QjVEODcxQkFBMzM1QzJERTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCIFkRn1fNqOI1rnVDWS4tiUQ86 apxwLs4OJzYWqx/RvFAvl1pA3gdhMFLRxmRHOWQQGh/jhN1St5W9EvbnyYk/vYVe +ISqrn2vEbus5GYIXoQi+VM/sPOTWfUhBqgkdY7azinNseQNgIwON+Q8cxII+GiR 63cpds3sP4nha4i1BjLLzAN4g03qrVW/MSoP8DRN36LrsH4s5R7vBeUOd2OYfMhq wZTPfRAQeyfxB+lzL0UxIRSFcWfqP/mz/3asLOR9Iu/R2P+bV+v3WHNZbgpsCSMR j/rNsUI6gvGvQSUlPdZmFlTQwNKAeQbx+s3Fo7NrC+fAdg6b5arCoCPPG9IvAgMB AAGjggIQMIICDDAdBgNVHQ4EFgQUDDgWX8h7mlDcQlJbXYcbqjNcLeYwHwYDVR0j BBgwFoAUcFG0wveunvgLUwALMquPXS8vQVswDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvOWM1Y2U5ZmEtOWE2Zi00ZTBjLTk4MDktN2E0Nzg4NzQ0 ODkzLzAvNzA1MUI0QzJGN0FFOUVGODBCNTMwMDBCMzJBQjhGNUQyRjJGNDE1Qi5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2NGRzB3dmV1bnZnTFV3QUxNcXVQWFM4 dlFWcy5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzljNWNlOWZhLTlhNmYt NGUwYy05ODA5LTdhNDc4ODc0NDg5My8wL0FTMjAwMTkzLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQABYVk AwQAXPk8MA0GCSqGSIb3DQEBCwUAA4IBAQBuDtmvEjT3w7d+/mP6ZoaV8F97Nr7U 1tCTZjEgSN6V9Qi9OrW80Vp71saM5ZnWYbuZTl+M7beMKHEL2CdtsVmBKhNRBRwW bkiGhfzMArQQMxaKrBIoOyBSqUkNE1h9OkpM1aVBoh0JkqZLuY8smQUD0fYyo97z BM8CfXm53R47bre1uK7SHfSzcwGiBoWdpHanA5LHTthOaOAEBWXayInNyXdno94Q dA+gSBqnlgw1yIu/tO9KLXU+QwyWDff6AokfZVOEHovUwqSKNKL6wp/9OQXTNIG7 doaH2t/I0759tk48S1pRiVUt92QCcwu2x9OZbbAXoUWPIgVDcZ1WXw88 -----END CERTIFICATE-----Generated at Mon Feb 2 17:40:15 2026 by rpki-client