This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS834.roa File: AS834.roa (raw, json) Hash identifier: 7as+eHLMcQrI82dBYa06bnGHxkSyL5miNNQltLys4+E= Subject key identifier: 5F:D8:0A:89:5E:44:EE:F7:88:F9:AE:E2:FB:4F:E7:07:E0:F0:7D:8B Certificate issuer: /CN=c2302af143c15daad50042d8455e689d0828eca9 Certificate serial: 109B36A2DD8512E88B2129D3681F10316E50E5F5 Authority key identifier: C2:30:2A:F1:43:C1:5D:AA:D5:00:42:D8:45:5E:68:9D:08:28:EC:A9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS834.roa Signing time: Mon 15 Dec 2025 04:23:47 +0000 ROA not before: Mon 15 Dec 2025 04:18:47 +0000 ROA not after: Mon 14 Dec 2026 04:23:47 +0000 asID: 834 IP address blocks: 141.11.174.0/24 maxlen: 24 141.11.198.0/24 maxlen: 24 141.11.217.0/24 maxlen: 24 141.11.219.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/C2302AF143C15DAAD50042D8455E689D0828ECA9.crl rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/C2302AF143C15DAAD50042D8455E689D0828ECA9.mft rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 16 Dec 2025 06:15:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:9b:36:a2:dd:85:12:e8:8b:21:29:d3:68:1f:10:31:6e:50:e5:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c2302af143c15daad50042d8455e689d0828eca9 Validity Not Before: Dec 15 04:18:47 2025 GMT Not After : Dec 14 04:23:47 2026 GMT Subject: CN=5FD80A895E44EEF788F9AEE2FB4FE707E0F07D8B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:5d:33:55:52:16:a8:36:e8:2a:24:14:40:b7: 76:3e:54:58:0d:23:29:ee:f6:cd:cd:3c:96:e0:a9: 86:e9:a0:0b:7a:a3:12:d1:97:c3:05:69:bc:6b:13: 0a:0a:78:2c:8d:ee:cb:9a:cc:fb:a3:ec:11:c0:1a: 5f:15:33:f6:5a:03:ad:5b:e7:c7:9d:03:b0:42:8c: a5:8c:8a:5d:fa:e0:3c:cf:63:5c:fb:22:41:c1:81: ae:ae:9e:7c:63:8d:77:8b:53:27:ac:39:09:4e:38: fc:a6:b9:3a:fb:cd:9e:29:f0:2c:c5:66:54:7a:92: 31:3e:8d:d3:f4:e6:15:8f:0a:30:bc:b8:00:34:f7: cf:6b:92:06:e8:2d:e1:b1:6d:fa:60:19:a2:cf:42: aa:5d:75:06:c6:39:ad:67:ba:2c:38:95:8e:0e:11: 85:d8:95:e5:23:e6:e6:99:a9:fd:c9:08:6d:ee:41: 6b:60:a9:ce:da:a1:9e:6a:f5:34:4f:c0:89:09:e5: d1:56:45:76:2b:08:b7:12:4a:1d:b1:f0:dc:1a:3c: f1:3b:52:65:72:c7:07:32:90:6e:2e:65:ee:d1:e6: db:3e:70:70:d5:bf:0d:56:aa:6e:9c:3d:c5:4f:af: 1a:f3:9d:04:0f:93:b3:df:f4:d4:94:d7:09:4e:13: 8b:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:D8:0A:89:5E:44:EE:F7:88:F9:AE:E2:FB:4F:E7:07:E0:F0:7D:8B X509v3 Authority Key Identifier: keyid:C2:30:2A:F1:43:C1:5D:AA:D5:00:42:D8:45:5E:68:9D:08:28:EC:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/C2302AF143C15DAAD50042D8455E689D0828ECA9.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS834.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 141.11.174.0/24 141.11.198.0/24 141.11.217.0/24 141.11.219.0/24 Signature Algorithm: sha256WithRSAEncryption 32:1d:ef:61:63:12:ef:d5:65:8b:e6:be:36:03:96:16:66:9c: 53:22:e8:ed:08:74:31:94:29:4e:d1:37:93:c4:47:26:37:2f: d7:ee:3c:76:7e:0f:66:5b:69:77:6b:1e:7d:07:89:22:22:53: 35:cd:fe:be:8a:75:b8:84:dc:e2:6f:89:43:8c:d9:d0:9a:53: 81:30:f9:36:d9:5f:cb:e8:51:af:7a:78:2a:49:7b:20:02:47: dc:2b:7a:98:d2:93:9d:65:4e:9b:a7:d0:e0:3f:d5:9d:46:ce: d5:d0:9f:1b:f1:17:72:6c:e1:fd:07:17:b1:e2:19:5e:1f:c1: 0d:3c:0f:b0:f7:24:17:8f:45:90:06:fd:f2:3e:5d:02:34:a0: e5:60:50:60:34:77:49:1f:37:8f:ef:e0:5a:d8:7a:d0:55:42: 40:b2:f6:a1:07:ed:61:b0:cd:22:dc:6d:ef:9b:df:a6:46:bb: 6d:6f:64:9f:28:e9:f9:f7:e8:23:ce:4c:d9:a4:f5:79:83:40: df:2f:b3:ea:aa:6d:65:18:d0:9f:5a:0d:3a:c3:ef:dd:bb:08: c0:19:50:1d:96:e7:41:1a:7a:a6:b3:2a:f8:a5:45:8c:84:be: 74:43:4c:c6:cd:6e:43:e3:51:70:79:a8:eb:0a:c0:41:cf:6e: c9:b9:24:bf -----BEGIN CERTIFICATE----- MIIFDzCCA/egAwIBAgIUEJs2ot2FEuiLISnTaB8QMW5Q5fUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYzIzMDJhZjE0M2MxNWRhYWQ1MDA0MmQ4NDU1ZTY4OWQw ODI4ZWNhOTAeFw0yNTEyMTUwNDE4NDdaFw0yNjEyMTQwNDIzNDdaMDMxMTAvBgNV BAMTKDVGRDgwQTg5NUU0NEVFRjc4OEY5QUVFMkZCNEZFNzA3RTBGMDdEOEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDXTNVUhaoNugqJBRAt3Y+VFgN Iynu9s3NPJbgqYbpoAt6oxLRl8MFabxrEwoKeCyN7suazPuj7BHAGl8VM/ZaA61b 58edA7BCjKWMil364DzPY1z7IkHBga6unnxjjXeLUyesOQlOOPymuTr7zZ4p8CzF ZlR6kjE+jdP05hWPCjC8uAA0989rkgboLeGxbfpgGaLPQqpddQbGOa1nuiw4lY4O EYXYleUj5uaZqf3JCG3uQWtgqc7aoZ5q9TRPwIkJ5dFWRXYrCLcSSh2x8NwaPPE7 UmVyxwcykG4uZe7R5ts+cHDVvw1Wqm6cPcVPrxrznQQPk7Pf9NSU1wlOE4vPAgMB AAGjggIZMIICFTAdBgNVHQ4EFgQUX9gKiV5E7veI+a7i+0/nB+DwfYswHwYDVR0j BBgwFoAUwjAq8UPBXarVAELYRV5onQgo7KkwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYTkzY2I1NWMtOTU3MS00NGM4LTkwZTEtOTY1YjkyNzY5 ZTRlLzAvQzIzMDJBRjE0M0MxNURBQUQ1MDA0MkQ4NDU1RTY4OUQwODI4RUNBOS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3dqQXE4VVBCWGFyVkFFTFlSVjVvblFn bzdLay5jZXIweAYIKwYBBQUHAQsEbDBqMGgGCCsGAQUFBzALhlxyc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2E5M2NiNTVjLTk1NzEt NDRjOC05MGUxLTk2NWI5Mjc2OWU0ZS8wL0FTODM0LnJvYTAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDEGCCsGAQUFBwEHAQH/BCIwIDAeBAIAATAYAwQAjQuuAwQA jQvGAwQAjQvZAwQAjQvbMA0GCSqGSIb3DQEBCwUAA4IBAQAyHe9hYxLv1WWL5r42 A5YWZpxTIujtCHQxlClO0TeTxEcmNy/X7jx2fg9mW2l3ax59B4kiIlM1zf6+inW4 hNzib4lDjNnQmlOBMPk22V/L6FGvengqSXsgAkfcK3qY0pOdZU6bp9DgP9WdRs7V 0J8b8RdybOH9Bxex4hleH8ENPA+w9yQXj0WQBv3yPl0CNKDlYFBgNHdJHzeP7+Ba 2HrQVUJAsvahB+1hsM0i3G3vm9+mRrttb2SfKOn59+gjzkzZpPV5g0DfL7Pqqm1l GNCfWg06w+/duwjAGVAdludBGnqmsyr4pUWMhL50Q0zGzW5D41FweajrCsBBz27J uSS/ -----END CERTIFICATE-----Generated at Mon Dec 15 23:29:33 2025 by rpki-client