This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS58212.roa File: AS58212.roa (raw, json) Hash identifier: H2xkRAxX0/c0qcTRsQ2EgSkaLzv0IEzi7HP/uMGTNFY= Subject key identifier: 26:C1:CD:44:53:00:2F:1B:71:17:9B:C0:26:1C:E8:A1:BA:85:AF:91 Certificate issuer: /CN=c2302af143c15daad50042d8455e689d0828eca9 Certificate serial: 0F4B2F2C4ECAF1B6C3130AFEA8AB8B1C79A8890D Authority key identifier: C2:30:2A:F1:43:C1:5D:AA:D5:00:42:D8:45:5E:68:9D:08:28:EC:A9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS58212.roa Signing time: Tue 02 Dec 2025 00:00:11 +0000 ROA not before: Mon 01 Dec 2025 23:55:11 +0000 ROA not after: Tue 01 Dec 2026 00:00:11 +0000 asID: 58212 IP address blocks: 141.11.68.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/C2302AF143C15DAAD50042D8455E689D0828ECA9.crl rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/C2302AF143C15DAAD50042D8455E689D0828ECA9.mft rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 05 Dec 2025 20:43:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:4b:2f:2c:4e:ca:f1:b6:c3:13:0a:fe:a8:ab:8b:1c:79:a8:89:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c2302af143c15daad50042d8455e689d0828eca9 Validity Not Before: Dec 1 23:55:11 2025 GMT Not After : Dec 1 00:00:11 2026 GMT Subject: CN=26C1CD4453002F1B71179BC0261CE8A1BA85AF91 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:20:57:44:91:4c:77:88:35:1e:30:bb:c7:26: c7:da:6c:65:de:1b:ce:5e:70:2a:31:cb:be:04:9e: 28:77:c6:5e:57:90:5f:0c:9a:bd:1d:ca:83:e6:6f: 97:e3:c2:8c:de:e8:0c:f3:77:52:bd:fc:a8:8d:4d: c3:af:9d:16:b1:b4:97:42:97:29:eb:f9:50:73:9b: fa:9f:f0:44:04:7b:45:0a:58:60:2c:6f:03:68:4f: bd:a3:08:6f:c1:2c:c1:1d:f2:14:9f:55:da:d1:fd: ea:f3:5f:fa:8d:6e:49:4e:b5:9a:5e:88:0e:c5:df: b6:c3:3d:6c:87:33:ed:a5:5a:6e:1b:77:d9:51:d1: 22:e2:33:df:44:c7:87:ad:3c:6e:4f:4f:5e:83:2e: f8:61:60:eb:3a:d9:f6:98:aa:b3:9f:7a:88:58:7c: b1:54:d3:69:3c:a4:47:35:36:8d:7f:2c:b7:f0:e7: ce:04:41:e6:b0:4e:ab:f0:d8:59:98:2b:bc:61:1c: 6b:8d:8e:df:a0:cd:6e:4d:94:82:e0:8d:a7:0b:ff: 93:a7:29:65:57:63:77:8d:ac:d3:9c:a0:1d:50:9c: f5:da:8f:36:7f:20:ec:01:57:6a:c7:42:7a:70:ae: 3e:c6:94:1c:b1:59:6e:fb:84:d9:8a:12:14:9c:fe: 78:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:C1:CD:44:53:00:2F:1B:71:17:9B:C0:26:1C:E8:A1:BA:85:AF:91 X509v3 Authority Key Identifier: keyid:C2:30:2A:F1:43:C1:5D:AA:D5:00:42:D8:45:5E:68:9D:08:28:EC:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/C2302AF143C15DAAD50042D8455E689D0828ECA9.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS58212.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 141.11.68.0/24 Signature Algorithm: sha256WithRSAEncryption 57:3a:11:ee:23:e8:6d:5d:62:6b:e9:77:2a:db:4a:1f:b0:86: 20:f4:e1:53:2d:75:33:4a:ed:61:46:3d:8f:5e:05:1a:95:8a: 11:93:d9:52:a9:d0:1f:9f:1c:d6:71:34:8b:f1:75:1c:f5:d9: bf:2e:40:2f:79:f4:77:e2:ec:4b:41:31:21:07:d1:35:d4:86: 2c:39:70:52:7f:05:7a:71:c8:85:1d:90:7c:ea:9e:e0:8a:e5: c3:aa:4e:df:88:92:f8:da:ef:0f:5f:8f:2c:81:13:44:51:e6: a0:8d:2a:57:d6:ab:a2:1a:6b:7b:5c:b8:90:ed:e3:b8:50:7a: c1:d9:24:76:89:26:f2:17:2b:d6:cf:a8:33:52:0f:34:8f:84: 6e:a0:b2:78:06:e4:ec:e5:82:a8:d1:a4:70:d6:01:7d:6b:7f: 80:48:06:99:ad:0b:38:56:81:a2:35:86:1e:8e:b7:9d:c1:23: 0e:bb:7c:be:f1:e8:6d:12:08:cc:c0:89:59:ab:8e:a4:d3:c3: 2a:3e:f0:0e:95:be:54:90:06:80:c6:ba:1f:47:5e:c5:2d:7e: 22:71:f2:17:4b:56:ef:92:10:b3:88:5e:80:0f:fe:52:95:04: 4b:fd:22:80:c8:d2:ab:84:8e:ed:94:40:c4:0d:9f:aa:39:74: be:93:5b:02 -----BEGIN CERTIFICATE----- MIIE/zCCA+egAwIBAgIUD0svLE7K8bbDEwr+qKuLHHmoiQ0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYzIzMDJhZjE0M2MxNWRhYWQ1MDA0MmQ4NDU1ZTY4OWQw ODI4ZWNhOTAeFw0yNTEyMDEyMzU1MTFaFw0yNjEyMDEwMDAwMTFaMDMxMTAvBgNV BAMTKDI2QzFDRDQ0NTMwMDJGMUI3MTE3OUJDMDI2MUNFOEExQkE4NUFGOTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCoIFdEkUx3iDUeMLvHJsfabGXe G85ecCoxy74Enih3xl5XkF8Mmr0dyoPmb5fjwoze6Azzd1K9/KiNTcOvnRaxtJdC lynr+VBzm/qf8EQEe0UKWGAsbwNoT72jCG/BLMEd8hSfVdrR/erzX/qNbklOtZpe iA7F37bDPWyHM+2lWm4bd9lR0SLiM99Ex4etPG5PT16DLvhhYOs62faYqrOfeohY fLFU02k8pEc1No1/LLfw584EQeawTqvw2FmYK7xhHGuNjt+gzW5NlILgjacL/5On KWVXY3eNrNOcoB1QnPXajzZ/IOwBV2rHQnpwrj7GlByxWW77hNmKEhSc/nivAgMB AAGjggIJMIICBTAdBgNVHQ4EFgQUJsHNRFMALxtxF5vAJhzoobqFr5EwHwYDVR0j BBgwFoAUwjAq8UPBXarVAELYRV5onQgo7KkwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYTkzY2I1NWMtOTU3MS00NGM4LTkwZTEtOTY1YjkyNzY5 ZTRlLzAvQzIzMDJBRjE0M0MxNURBQUQ1MDA0MkQ4NDU1RTY4OUQwODI4RUNBOS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3dqQXE4VVBCWGFyVkFFTFlSVjVvblFn bzdLay5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2E5M2NiNTVjLTk1NzEt NDRjOC05MGUxLTk2NWI5Mjc2OWU0ZS8wL0FTNTgyMTIucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACNC0Qw DQYJKoZIhvcNAQELBQADggEBAFc6Ee4j6G1dYmvpdyrbSh+whiD04VMtdTNK7WFG PY9eBRqVihGT2VKp0B+fHNZxNIvxdRz12b8uQC959Hfi7EtBMSEH0TXUhiw5cFJ/ BXpxyIUdkHzqnuCK5cOqTt+Ikvja7w9fjyyBE0RR5qCNKlfWq6Iaa3tcuJDt47hQ esHZJHaJJvIXK9bPqDNSDzSPhG6gsngG5OzlgqjRpHDWAX1rf4BIBpmtCzhWgaI1 hh6Ot53BIw67fL7x6G0SCMzAiVmrjqTTwyo+8A6VvlSQBoDGuh9HXsUtfiJx8hdL Vu+SELOIXoAP/lKVBEv9IoDI0quEju2UQMQNn6o5dL6TWwI= -----END CERTIFICATE-----Generated at Fri Dec 5 07:04:23 2025 by rpki-client