This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS212384.roa File: AS212384.roa (raw, json) Hash identifier: FTfGBT400IhkzZV6CXJyBwPWj3uocsVAEwJ+Y6qd7xw= Subject key identifier: B1:1D:26:F3:E8:F4:DA:8C:5E:38:DD:C7:C3:89:05:7C:74:3E:F0:76 Certificate issuer: /CN=c2302af143c15daad50042d8455e689d0828eca9 Certificate serial: 49E58F28E49E8B7CB17312BFD922E846C1FD542B Authority key identifier: C2:30:2A:F1:43:C1:5D:AA:D5:00:42:D8:45:5E:68:9D:08:28:EC:A9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS212384.roa Signing time: Thu 11 Dec 2025 12:16:10 +0000 ROA not before: Thu 11 Dec 2025 12:11:10 +0000 ROA not after: Thu 10 Dec 2026 12:16:10 +0000 asID: 212384 IP address blocks: 141.11.125.0/24 maxlen: 24 141.11.242.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/C2302AF143C15DAAD50042D8455E689D0828ECA9.crl rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/C2302AF143C15DAAD50042D8455E689D0828ECA9.mft rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 18 Dec 2025 19:00:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:e5:8f:28:e4:9e:8b:7c:b1:73:12:bf:d9:22:e8:46:c1:fd:54:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c2302af143c15daad50042d8455e689d0828eca9 Validity Not Before: Dec 11 12:11:10 2025 GMT Not After : Dec 10 12:16:10 2026 GMT Subject: CN=B11D26F3E8F4DA8C5E38DDC7C389057C743EF076 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:99:f5:b2:e7:0f:0c:10:22:e9:3b:73:87:3a: d2:0f:a8:5b:0b:96:5f:fd:8a:e8:e7:49:27:45:c9: 0d:69:3b:39:3c:fc:43:49:ee:72:35:09:9c:ca:09: 91:46:24:81:c9:8c:e5:ed:e6:5d:39:21:5a:aa:b3: 24:58:62:2e:2e:07:1b:91:69:ab:12:76:03:b8:a3: 02:dc:28:c6:35:bb:e1:6d:3b:be:0b:ed:ba:78:d6: 44:8d:5c:f5:0a:4f:0e:8e:65:33:7e:e7:c1:d1:1c: 76:d8:97:9d:89:e3:ca:54:6b:78:dd:45:7b:91:60: 0e:fa:0e:f6:99:2c:ce:b1:4e:b9:79:5f:0f:62:3c: ba:1f:25:14:0a:dd:2e:a2:ef:9b:74:f3:72:fa:e5: c2:8a:2c:6e:65:13:6d:99:3f:23:fb:95:f1:15:91: 1c:2a:2b:34:85:cf:f9:55:ea:10:c3:7c:e5:63:53: af:6a:1c:69:84:2d:0c:4a:90:50:ab:2e:ba:5e:9c: e1:a3:88:08:53:52:82:6d:08:d6:a2:41:3d:9a:85: 7e:0b:27:59:ae:d2:9d:5f:b9:2d:0f:34:eb:b3:05: 44:52:f1:7a:48:e1:12:8c:26:1e:a1:c1:e1:f5:e7: be:dd:5a:49:8a:46:11:35:37:ed:97:3e:f6:c4:7a: 05:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:1D:26:F3:E8:F4:DA:8C:5E:38:DD:C7:C3:89:05:7C:74:3E:F0:76 X509v3 Authority Key Identifier: keyid:C2:30:2A:F1:43:C1:5D:AA:D5:00:42:D8:45:5E:68:9D:08:28:EC:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/C2302AF143C15DAAD50042D8455E689D0828ECA9.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS212384.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 141.11.125.0/24 141.11.242.0/24 Signature Algorithm: sha256WithRSAEncryption bf:02:0e:d5:31:40:3b:8d:06:0a:d4:82:d7:fd:c0:ab:86:48: 76:d3:ec:c7:e4:6b:04:82:fa:48:ba:de:65:c1:79:3e:c9:21: 8c:ab:c5:3a:f3:55:64:db:ef:45:c3:47:38:f2:bc:24:3d:f2: 67:5c:42:4d:bf:ce:96:72:59:80:bb:3e:db:cd:35:02:5d:4c: 37:54:f8:de:c9:71:6a:6b:d3:b4:52:86:7b:d9:ae:5f:f8:9e: fc:05:d6:24:62:8e:bb:03:a1:b2:d8:e9:c0:d8:ae:82:d7:7b: 15:f4:fe:1b:40:d0:9a:da:df:6b:96:f4:e3:f0:48:32:4f:8c: 0e:76:20:92:f3:16:9c:34:e8:34:2a:59:6c:3f:9f:cb:5e:17: 10:d1:fa:d6:86:09:7c:a5:f8:b6:e4:93:ec:a0:c1:84:ce:84: 40:34:04:fc:0f:45:6e:34:27:ef:13:c3:69:b0:fb:00:28:47: a0:32:f6:af:95:0e:4c:6e:26:96:be:5f:5b:0b:2e:7b:a5:1c: 9b:95:b8:13:f4:18:c1:3f:36:da:5d:14:83:c8:9d:5b:16:34: 10:f6:49:f1:3d:1a:5e:b6:bb:98:90:93:cd:50:a9:54:66:2b: c1:89:0c:d0:95:06:b3:46:d3:e3:df:d7:fb:ba:36:0b:25:91: aa:b7:2d:69 -----BEGIN CERTIFICATE----- MIIFBjCCA+6gAwIBAgIUSeWPKOSei3yxcxK/2SLoRsH9VCswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYzIzMDJhZjE0M2MxNWRhYWQ1MDA0MmQ4NDU1ZTY4OWQw ODI4ZWNhOTAeFw0yNTEyMTExMjExMTBaFw0yNjEyMTAxMjE2MTBaMDMxMTAvBgNV BAMTKEIxMUQyNkYzRThGNERBOEM1RTM4RERDN0MzODkwNTdDNzQzRUYwNzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1mfWy5w8MECLpO3OHOtIPqFsL ll/9iujnSSdFyQ1pOzk8/ENJ7nI1CZzKCZFGJIHJjOXt5l05IVqqsyRYYi4uBxuR aasSdgO4owLcKMY1u+FtO74L7bp41kSNXPUKTw6OZTN+58HRHHbYl52J48pUa3jd RXuRYA76DvaZLM6xTrl5Xw9iPLofJRQK3S6i75t083L65cKKLG5lE22ZPyP7lfEV kRwqKzSFz/lV6hDDfOVjU69qHGmELQxKkFCrLrpenOGjiAhTUoJtCNaiQT2ahX4L J1mu0p1fuS0PNOuzBURS8XpI4RKMJh6hweH1577dWkmKRhE1N+2XPvbEegWFAgMB AAGjggIQMIICDDAdBgNVHQ4EFgQUsR0m8+j02oxeON3Hw4kFfHQ+8HYwHwYDVR0j BBgwFoAUwjAq8UPBXarVAELYRV5onQgo7KkwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYTkzY2I1NWMtOTU3MS00NGM4LTkwZTEtOTY1YjkyNzY5 ZTRlLzAvQzIzMDJBRjE0M0MxNURBQUQ1MDA0MkQ4NDU1RTY4OUQwODI4RUNBOS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3dqQXE4VVBCWGFyVkFFTFlSVjVvblFn bzdLay5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2E5M2NiNTVjLTk1NzEt NDRjOC05MGUxLTk2NWI5Mjc2OWU0ZS8wL0FTMjEyMzg0LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAjQt9 AwQAjQvyMA0GCSqGSIb3DQEBCwUAA4IBAQC/Ag7VMUA7jQYK1ILX/cCrhkh20+zH 5GsEgvpIut5lwXk+ySGMq8U681Vk2+9Fw0c48rwkPfJnXEJNv86WclmAuz7bzTUC XUw3VPjeyXFqa9O0UoZ72a5f+J78BdYkYo67A6Gy2OnA2K6C13sV9P4bQNCa2t9r lvTj8EgyT4wOdiCS8xacNOg0KllsP5/LXhcQ0frWhgl8pfi25JPsoMGEzoRANAT8 D0VuNCfvE8NpsPsAKEegMvavlQ5MbiaWvl9bCy57pRyblbgT9BjBPzbaXRSDyJ1b FjQQ9knxPRpetruYkJPNUKlUZivBiQzQlQazRtPj39f7ujYLJZGqty1p -----END CERTIFICATE-----Generated at Thu Dec 18 05:49:40 2025 by rpki-client