This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/AS834.roa File: AS834.roa (raw, json) Hash identifier: R3segbYp4ZBsjrxQ23/tdQw3TDQM52YmkvKpV8XafT4= Subject key identifier: 6E:CD:5E:9B:7A:3D:58:BF:A2:B8:BA:AD:26:D6:C1:0D:D3:22:84:06 Certificate issuer: /CN=7051b4c2f7ae9ef80b53000b32ab8f5d2f2f415b Certificate serial: 4017E01D948D54DCE12379D8714F5702212A86AC Authority key identifier: 70:51:B4:C2:F7:AE:9E:F8:0B:53:00:0B:32:AB:8F:5D:2F:2F:41:5B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cFG0wveunvgLUwALMquPXS8vQVs.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/AS834.roa Signing time: Mon 01 Dec 2025 00:17:05 +0000 ROA not before: Mon 01 Dec 2025 00:12:05 +0000 ROA not after: Mon 30 Nov 2026 00:17:05 +0000 asID: 834 IP address blocks: 188.119.70.0/24 maxlen: 24 193.187.111.0/24 maxlen: 24 194.93.51.0/24 maxlen: 24 212.115.103.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/7051B4C2F7AE9EF80B53000B32AB8F5D2F2F415B.crl rsync://rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/7051B4C2F7AE9EF80B53000B32AB8F5D2F2F415B.mft rsync://rpki.ripe.net/repository/DEFAULT/cFG0wveunvgLUwALMquPXS8vQVs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 01:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:17:e0:1d:94:8d:54:dc:e1:23:79:d8:71:4f:57:02:21:2a:86:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7051b4c2f7ae9ef80b53000b32ab8f5d2f2f415b Validity Not Before: Dec 1 00:12:05 2025 GMT Not After : Nov 30 00:17:05 2026 GMT Subject: CN=6ECD5E9B7A3D58BFA2B8BAAD26D6C10DD3228406 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:4a:3d:e1:ac:98:c6:90:e3:cd:04:5b:33:21: f4:5a:d3:21:d1:f8:48:e9:5f:e7:3b:fa:5c:52:f6: 5c:21:33:4d:d8:b7:ab:76:76:fe:88:a6:e0:22:44: e3:b7:c3:a4:48:9e:fe:b5:79:45:7f:e6:44:aa:bd: c1:07:fc:c9:6d:ae:4f:53:e3:de:c6:ba:32:a6:6a: 7e:e1:6f:24:60:62:94:09:92:cf:33:6e:33:90:9e: 8b:33:82:79:30:ec:13:47:36:37:24:f8:99:b3:94: 1e:03:0e:65:ae:05:21:6e:57:70:7d:49:72:a1:b0: 32:46:0b:70:25:43:20:4e:06:e1:43:ce:7f:9c:58: 1f:17:44:ed:b2:35:98:4b:bb:4b:f0:cf:7e:58:b0: 42:09:6b:8d:75:59:07:5a:65:a0:59:a7:68:36:0b: bf:b7:52:3d:bc:53:72:99:bf:5d:ef:72:be:e1:d1: 35:a4:9a:be:fb:42:85:ea:76:60:fa:a2:d6:e0:94: b0:97:96:30:e9:1f:bc:3a:b5:c6:ec:28:f4:bc:9b: b3:45:ca:4c:4e:7c:95:ee:d3:69:0e:fc:5d:d5:d3: 6c:92:78:fd:30:1c:3c:83:71:f9:50:a5:40:d7:25: 44:24:2c:ae:27:0f:24:75:b2:3f:fc:03:b3:b9:97: e1:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:CD:5E:9B:7A:3D:58:BF:A2:B8:BA:AD:26:D6:C1:0D:D3:22:84:06 X509v3 Authority Key Identifier: keyid:70:51:B4:C2:F7:AE:9E:F8:0B:53:00:0B:32:AB:8F:5D:2F:2F:41:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/7051B4C2F7AE9EF80B53000B32AB8F5D2F2F415B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cFG0wveunvgLUwALMquPXS8vQVs.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/AS834.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 188.119.70.0/24 193.187.111.0/24 194.93.51.0/24 212.115.103.0/24 Signature Algorithm: sha256WithRSAEncryption 72:da:10:64:f2:09:a6:df:a7:aa:cc:cf:b3:a4:25:6b:93:cf: 8d:df:a9:46:6f:30:4d:87:d7:ca:f7:6e:8c:fc:fc:9b:32:72: 0e:ea:16:f0:32:80:c7:e4:c1:e6:99:75:fe:f1:2f:63:02:69: 97:23:35:c4:e7:9d:4f:7b:43:13:bd:96:0a:93:0e:f1:14:f6: 9c:a9:c4:69:b2:ed:d1:07:9f:85:2a:44:95:e6:d7:fd:6a:a1: e1:46:25:c9:6c:62:ce:a9:4a:ea:1c:ad:47:6a:08:a6:84:5c: 06:8e:7e:21:6b:e5:14:f8:c6:6f:96:e2:cf:a0:d8:5e:28:44: 33:bc:0e:ee:b6:42:6f:be:a0:a5:6f:0d:70:41:7d:01:23:f6: bb:5f:12:62:e6:50:ad:86:68:4f:44:f5:d9:e8:ef:47:22:0e: 9a:53:1a:45:84:c8:a0:09:07:f6:be:04:4b:e5:58:16:1d:b7: a7:71:97:ac:8c:c7:8c:a7:ee:39:ab:9a:9e:7b:bf:c2:ab:fc: a0:97:0f:f8:0f:5d:b4:b2:1c:55:8c:3c:32:bb:d6:a4:ff:1b: dc:86:58:e6:4b:ad:74:66:59:4a:1e:71:7c:7b:19:5d:79:35: fc:f5:8e:11:48:8e:6f:db:ae:60:13:d8:41:d7:c3:cb:11:6b: 63:6a:1c:66 -----BEGIN CERTIFICATE----- MIIFDzCCA/egAwIBAgIUQBfgHZSNVNzhI3nYcU9XAiEqhqwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzA1MWI0YzJmN2FlOWVmODBiNTMwMDBiMzJhYjhmNWQy ZjJmNDE1YjAeFw0yNTEyMDEwMDEyMDVaFw0yNjExMzAwMDE3MDVaMDMxMTAvBgNV BAMTKDZFQ0Q1RTlCN0EzRDU4QkZBMkI4QkFBRDI2RDZDMTBERDMyMjg0MDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCSSj3hrJjGkOPNBFszIfRa0yHR +EjpX+c7+lxS9lwhM03Yt6t2dv6IpuAiROO3w6RInv61eUV/5kSqvcEH/Mltrk9T 497GujKman7hbyRgYpQJks8zbjOQnoszgnkw7BNHNjck+JmzlB4DDmWuBSFuV3B9 SXKhsDJGC3AlQyBOBuFDzn+cWB8XRO2yNZhLu0vwz35YsEIJa411WQdaZaBZp2g2 C7+3Uj28U3KZv13vcr7h0TWkmr77QoXqdmD6otbglLCXljDpH7w6tcbsKPS8m7NF ykxOfJXu02kO/F3V02ySeP0wHDyDcflQpUDXJUQkLK4nDyR1sj/8A7O5l+EBAgMB AAGjggIZMIICFTAdBgNVHQ4EFgQUbs1em3o9WL+iuLqtJtbBDdMihAYwHwYDVR0j BBgwFoAUcFG0wveunvgLUwALMquPXS8vQVswDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvOWM1Y2U5ZmEtOWE2Zi00ZTBjLTk4MDktN2E0Nzg4NzQ0 ODkzLzAvNzA1MUI0QzJGN0FFOUVGODBCNTMwMDBCMzJBQjhGNUQyRjJGNDE1Qi5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2NGRzB3dmV1bnZnTFV3QUxNcXVQWFM4 dlFWcy5jZXIweAYIKwYBBQUHAQsEbDBqMGgGCCsGAQUFBzALhlxyc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzljNWNlOWZhLTlhNmYt NGUwYy05ODA5LTdhNDc4ODc0NDg5My8wL0FTODM0LnJvYTAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDEGCCsGAQUFBwEHAQH/BCIwIDAeBAIAATAYAwQAvHdGAwQA wbtvAwQAwl0zAwQA1HNnMA0GCSqGSIb3DQEBCwUAA4IBAQBy2hBk8gmm36eqzM+z pCVrk8+N36lGbzBNh9fK926M/PybMnIO6hbwMoDH5MHmmXX+8S9jAmmXIzXE551P e0MTvZYKkw7xFPacqcRpsu3RB5+FKkSV5tf9aqHhRiXJbGLOqUrqHK1HagimhFwG jn4ha+UU+MZvluLPoNheKEQzvA7utkJvvqClbw1wQX0BI/a7XxJi5lCthmhPRPXZ 6O9HIg6aUxpFhMigCQf2vgRL5VgWHbencZesjMeMp+45q5qee7/Cq/yglw/4D120 shxVjDwyu9ak/xvchljmS610ZllKHnF8exldeTX89Y4RSI5v265gE9hB18PLEWtj ahxm -----END CERTIFICATE-----Generated at Fri Dec 5 10:47:34 2025 by rpki-client