This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS48925.roa File: AS48925.roa (raw, json) Hash identifier: rYUUitkgRLf/rS+TwFcjRH53Nk76tHnsGMjDR8p1py8= Subject key identifier: 49:A4:51:CB:AE:07:99:D7:64:3D:5B:BA:06:D7:E0:4C:6E:60:0C:03 Certificate issuer: /CN=c2302af143c15daad50042d8455e689d0828eca9 Certificate serial: 098D8035264A67DC8783B1B58FE48BE1F216B781 Authority key identifier: C2:30:2A:F1:43:C1:5D:AA:D5:00:42:D8:45:5E:68:9D:08:28:EC:A9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS48925.roa Signing time: Sun 21 Dec 2025 17:13:58 +0000 ROA not before: Sun 21 Dec 2025 17:08:58 +0000 ROA not after: Sun 20 Dec 2026 17:13:58 +0000 asID: 48925 IP address blocks: 141.11.59.0/24 maxlen: 24 141.11.104.0/24 maxlen: 24 141.11.117.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/C2302AF143C15DAAD50042D8455E689D0828ECA9.crl rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/C2302AF143C15DAAD50042D8455E689D0828ECA9.mft rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 09:01:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:8d:80:35:26:4a:67:dc:87:83:b1:b5:8f:e4:8b:e1:f2:16:b7:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c2302af143c15daad50042d8455e689d0828eca9 Validity Not Before: Dec 21 17:08:58 2025 GMT Not After : Dec 20 17:13:58 2026 GMT Subject: CN=49A451CBAE0799D7643D5BBA06D7E04C6E600C03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:2c:3d:97:66:e8:1f:11:74:89:8c:9d:ef:4a: a9:1b:f5:1b:57:bb:d0:cf:b3:d1:55:a7:73:97:69: 16:2f:f3:c1:88:4c:bd:cc:99:be:01:7b:88:eb:10: c3:0e:22:be:db:bc:b0:e2:ee:e1:16:c4:bf:c0:4e: 35:f5:7b:0e:24:d2:4c:89:8f:59:7e:ee:63:e3:55: 91:7b:29:f6:50:c8:e5:51:4f:b0:28:ef:a9:20:66: 32:22:86:86:1c:ff:42:22:4d:f9:37:56:1d:8a:ac: f7:02:fe:b0:16:3d:77:23:7c:37:51:0f:27:35:2f: f3:7a:72:60:8d:e5:3c:14:f0:5b:a4:ba:0a:13:be: 7d:fa:bd:da:51:66:54:d6:f8:9c:18:98:74:aa:8d: a7:ba:c7:e0:e3:ef:59:46:68:fb:bb:48:d8:38:c2: 19:05:4a:55:72:16:89:67:b1:a4:97:d7:9e:b9:d7: 6b:8e:15:cd:1c:70:1a:73:8d:c4:b4:66:9d:f4:11: 1e:e0:21:01:54:d0:fc:55:34:79:b9:04:7c:b4:eb: d8:e6:7a:b4:d9:2a:34:c6:93:4a:9e:b5:f4:7b:93: 5f:27:28:77:38:83:c3:2e:03:8a:67:5d:1d:52:11: 96:c0:a9:97:07:f3:37:92:13:48:a4:12:aa:ab:87: 3b:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:A4:51:CB:AE:07:99:D7:64:3D:5B:BA:06:D7:E0:4C:6E:60:0C:03 X509v3 Authority Key Identifier: keyid:C2:30:2A:F1:43:C1:5D:AA:D5:00:42:D8:45:5E:68:9D:08:28:EC:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/C2302AF143C15DAAD50042D8455E689D0828ECA9.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS48925.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 141.11.59.0/24 141.11.104.0/24 141.11.117.0/24 Signature Algorithm: sha256WithRSAEncryption d0:77:fa:12:82:7d:30:38:ee:5a:30:bf:7f:58:56:67:53:db: 32:fe:57:7b:ec:62:b0:1c:1c:71:0f:2f:ef:46:ee:c1:50:f8: f6:de:54:7b:cf:44:4c:8c:de:14:e2:32:36:9c:d2:8a:a9:06: 86:f8:44:24:83:8c:71:e0:5b:f6:c9:d9:7e:c7:bf:9d:7d:2f: 04:48:1a:fc:d8:97:b1:4a:26:12:d8:7c:fc:aa:94:55:50:a9: 70:a9:c4:fa:0a:ee:4b:9e:1f:41:47:03:0d:37:63:8d:db:04: 54:6f:7c:3a:1c:d9:72:0b:c5:00:c2:05:5b:86:ff:c0:be:42: c3:a9:21:90:29:1a:5a:f0:d7:71:ed:39:a0:47:a0:d0:6a:a0: e1:8a:ca:e3:ba:e1:fc:03:19:78:47:9e:2a:3e:9f:a6:52:22: 6e:b6:40:10:7e:2f:bc:92:23:ff:6a:10:23:0e:c4:64:8f:c1: 35:8a:bc:c5:b1:00:41:c3:a2:30:a8:d0:ac:9f:66:d1:ae:3f: fe:6d:fe:72:10:01:39:84:6f:98:34:9c:7e:c3:72:8a:fb:fd: 66:c1:52:00:45:27:0d:5d:1f:d9:ca:8c:0e:46:6c:5d:8e:8f: 0d:8d:98:66:01:2a:18:1f:04:8f:28:0a:1f:33:d6:f3:97:8d: d7:2b:c3:55 -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgIUCY2ANSZKZ9yHg7G1j+SL4fIWt4EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYzIzMDJhZjE0M2MxNWRhYWQ1MDA0MmQ4NDU1ZTY4OWQw ODI4ZWNhOTAeFw0yNTEyMjExNzA4NThaFw0yNjEyMjAxNzEzNThaMDMxMTAvBgNV BAMTKDQ5QTQ1MUNCQUUwNzk5RDc2NDNENUJCQTA2RDdFMDRDNkU2MDBDMDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6LD2XZugfEXSJjJ3vSqkb9RtX u9DPs9FVp3OXaRYv88GITL3Mmb4Be4jrEMMOIr7bvLDi7uEWxL/ATjX1ew4k0kyJ j1l+7mPjVZF7KfZQyOVRT7Ao76kgZjIihoYc/0IiTfk3Vh2KrPcC/rAWPXcjfDdR Dyc1L/N6cmCN5TwU8FukugoTvn36vdpRZlTW+JwYmHSqjae6x+Dj71lGaPu7SNg4 whkFSlVyFolnsaSX156512uOFc0ccBpzjcS0Zp30ER7gIQFU0PxVNHm5BHy069jm erTZKjTGk0qetfR7k18nKHc4g8MuA4pnXR1SEZbAqZcH8zeSE0ikEqqrhztLAgMB AAGjggIVMIICETAdBgNVHQ4EFgQUSaRRy64HmddkPVu6BtfgTG5gDAMwHwYDVR0j BBgwFoAUwjAq8UPBXarVAELYRV5onQgo7KkwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYTkzY2I1NWMtOTU3MS00NGM4LTkwZTEtOTY1YjkyNzY5 ZTRlLzAvQzIzMDJBRjE0M0MxNURBQUQ1MDA0MkQ4NDU1RTY4OUQwODI4RUNBOS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3dqQXE4VVBCWGFyVkFFTFlSVjVvblFn bzdLay5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2E5M2NiNTVjLTk1NzEt NDRjOC05MGUxLTk2NWI5Mjc2OWU0ZS8wL0FTNDg5MjUucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwKwYIKwYBBQUHAQcBAf8EHDAaMBgEAgABMBIDBACNCzsD BACNC2gDBACNC3UwDQYJKoZIhvcNAQELBQADggEBANB3+hKCfTA47lowv39YVmdT 2zL+V3vsYrAcHHEPL+9G7sFQ+PbeVHvPREyM3hTiMjac0oqpBob4RCSDjHHgW/bJ 2X7Hv519LwRIGvzYl7FKJhLYfPyqlFVQqXCpxPoK7kueH0FHAw03Y43bBFRvfDoc 2XILxQDCBVuG/8C+QsOpIZApGlrw13HtOaBHoNBqoOGKyuO64fwDGXhHnio+n6ZS Im62QBB+L7ySI/9qECMOxGSPwTWKvMWxAEHDojCo0KyfZtGuP/5t/nIQATmEb5g0 nH7Dcor7/WbBUgBFJw1dH9nKjA5GbF2Ojw2NmGYBKhgfBI8oCh8z1vOXjdcrw1U= -----END CERTIFICATE-----Generated at Mon Jan 19 18:06:02 2026 by rpki-client