This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c409d7b2-ee64-49f1-ad81-8e4a107d62e0/0/AS137235.roa File: AS137235.roa (raw, json) Hash identifier: /5zjmZUa3RMDesdzMaB9h/Y6rRpsxtPfaf80oNYcHFs= Subject key identifier: 3A:D6:37:99:AC:F4:EC:E9:96:CD:2B:CB:79:27:20:FE:09:26:26:70 Certificate issuer: /CN=88c14ec02adbf083138eddd47871176ddeb93d9d Certificate serial: 2910A350A785AADE49ADA0947AF520CB12DC733C Authority key identifier: 88:C1:4E:C0:2A:DB:F0:83:13:8E:DD:D4:78:71:17:6D:DE:B9:3D:9D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iMFOwCrb8IMTjt3UeHEXbd65PZ0.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c409d7b2-ee64-49f1-ad81-8e4a107d62e0/0/AS137235.roa Signing time: Mon 24 Nov 2025 03:23:42 +0000 ROA not before: Mon 24 Nov 2025 03:18:42 +0000 ROA not after: Mon 23 Nov 2026 03:23:42 +0000 asID: 137235 IP address blocks: 143.20.70.0/24 maxlen: 24 143.20.89.0/24 maxlen: 24 143.20.98.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c409d7b2-ee64-49f1-ad81-8e4a107d62e0/0/88C14EC02ADBF083138EDDD47871176DDEB93D9D.crl rsync://rsync.paas.rpki.ripe.net/repository/c409d7b2-ee64-49f1-ad81-8e4a107d62e0/0/88C14EC02ADBF083138EDDD47871176DDEB93D9D.mft rsync://rpki.ripe.net/repository/DEFAULT/iMFOwCrb8IMTjt3UeHEXbd65PZ0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 11:00:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:10:a3:50:a7:85:aa:de:49:ad:a0:94:7a:f5:20:cb:12:dc:73:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=88c14ec02adbf083138eddd47871176ddeb93d9d Validity Not Before: Nov 24 03:18:42 2025 GMT Not After : Nov 23 03:23:42 2026 GMT Subject: CN=3AD63799ACF4ECE996CD2BCB792720FE09262670 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:92:66:49:bc:a5:fb:75:a1:0b:79:ef:e0:d3: 12:28:14:65:6b:20:44:63:49:35:0a:50:52:c7:ea: 0c:a5:f1:ea:db:ca:41:e2:8a:9a:f8:f5:51:e8:0d: 8d:ee:ed:e8:79:99:6c:43:8d:4a:36:62:df:d0:36: cb:d5:d6:9a:cc:ba:3f:a1:90:91:a4:1f:91:23:d7: c6:35:8a:77:2e:4b:c6:b1:a7:da:69:be:2a:95:15: 55:23:c8:be:f6:24:25:72:c5:ca:96:bd:43:a6:24: b7:53:c3:95:69:8b:34:97:2d:dd:77:13:cf:71:db: 4c:4c:ad:0c:83:b2:17:8f:97:ff:7a:9c:c6:bd:44: 1d:ba:d6:9f:4b:f5:43:4d:02:cd:b5:23:39:3d:55: 9c:53:33:d9:a2:32:95:1f:8a:8a:68:43:13:c7:71: 85:37:8c:a7:e9:07:cc:75:33:55:02:27:c8:c7:48: 75:66:5f:8d:75:06:ef:ac:f7:4d:3e:7c:83:25:59: a4:19:25:5f:e3:ac:4f:5a:47:c6:f4:37:20:c6:da: a7:c8:0d:13:ae:99:bb:d8:be:d2:ab:8c:29:e9:1a: 07:b9:03:fd:50:d5:c2:35:3e:c2:4f:f4:c7:31:a5: fd:5a:23:cd:38:51:2d:9e:68:6e:36:71:68:aa:eb: b8:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:D6:37:99:AC:F4:EC:E9:96:CD:2B:CB:79:27:20:FE:09:26:26:70 X509v3 Authority Key Identifier: keyid:88:C1:4E:C0:2A:DB:F0:83:13:8E:DD:D4:78:71:17:6D:DE:B9:3D:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/c409d7b2-ee64-49f1-ad81-8e4a107d62e0/0/88C14EC02ADBF083138EDDD47871176DDEB93D9D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iMFOwCrb8IMTjt3UeHEXbd65PZ0.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c409d7b2-ee64-49f1-ad81-8e4a107d62e0/0/AS137235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 143.20.70.0/24 143.20.89.0/24 143.20.98.0/24 Signature Algorithm: sha256WithRSAEncryption 09:ab:c6:ec:fd:5f:77:b7:07:63:1e:0c:15:bd:5a:59:1d:ab: 1f:9e:20:1f:1c:d2:02:e1:ee:75:00:89:e7:32:98:84:bb:54: 5b:a6:30:6e:6c:8a:b0:fc:28:f8:1c:b2:b6:5d:5e:10:b8:ad: a1:91:8f:59:c3:e6:cb:e9:0e:4c:04:9f:4d:1f:b1:4d:1f:e1: 23:48:d2:6c:07:25:43:92:da:c7:c3:e5:6c:d5:4a:e8:04:d5: eb:30:e4:99:2c:79:81:86:2c:36:e5:97:f7:da:db:70:26:a3: fe:74:80:a8:cc:c6:27:24:40:4b:ca:28:ea:7f:86:be:a7:5f: e4:99:5d:3a:47:06:27:b3:56:24:2a:c2:8c:9e:7d:15:f3:c4: b1:e6:5c:ae:a4:c0:2b:a4:ba:2c:f5:a6:7e:13:ac:6c:86:2f: 0f:78:70:02:9a:f4:82:8a:81:41:93:29:06:73:84:46:3c:4c: 57:34:3f:f9:91:22:b3:01:71:a5:83:6d:b0:44:c9:5c:27:d8: dd:72:90:24:c4:52:a8:ee:c4:53:d2:e7:57:25:3a:50:9b:9c: f1:1b:24:c5:c8:62:6f:07:48:b3:f4:83:c7:19:3c:b8:8a:9e: 5a:15:5a:24:02:19:e7:96:a6:c6:c8:5e:98:30:d5:85:c4:c5: 5d:6e:cd:e2 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgIUKRCjUKeFqt5JraCUevUgyxLcczwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODhjMTRlYzAyYWRiZjA4MzEzOGVkZGQ0Nzg3MTE3NmRk ZWI5M2Q5ZDAeFw0yNTExMjQwMzE4NDJaFw0yNjExMjMwMzIzNDJaMDMxMTAvBgNV BAMTKDNBRDYzNzk5QUNGNEVDRTk5NkNEMkJDQjc5MjcyMEZFMDkyNjI2NzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDqkmZJvKX7daELee/g0xIoFGVr IERjSTUKUFLH6gyl8erbykHiipr49VHoDY3u7eh5mWxDjUo2Yt/QNsvV1prMuj+h kJGkH5Ej18Y1incuS8axp9ppviqVFVUjyL72JCVyxcqWvUOmJLdTw5VpizSXLd13 E89x20xMrQyDshePl/96nMa9RB261p9L9UNNAs21Izk9VZxTM9miMpUfiopoQxPH cYU3jKfpB8x1M1UCJ8jHSHVmX411Bu+s900+fIMlWaQZJV/jrE9aR8b0NyDG2qfI DROumbvYvtKrjCnpGge5A/1Q1cI1PsJP9Mcxpf1aI804US2eaG42cWiq67jRAgMB AAGjggIWMIICEjAdBgNVHQ4EFgQUOtY3maz07OmWzSvLeScg/gkmJnAwHwYDVR0j BBgwFoAUiMFOwCrb8IMTjt3UeHEXbd65PZ0wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYzQwOWQ3YjItZWU2NC00OWYxLWFkODEtOGU0YTEwN2Q2 MmUwLzAvODhDMTRFQzAyQURCRjA4MzEzOEVEREQ0Nzg3MTE3NkRERUI5M0Q5RC5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2lNRk93Q3JiOElNVGp0M1VlSEVYYmQ2 NVBaMC5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2M0MDlkN2IyLWVlNjQt NDlmMS1hZDgxLThlNGExMDdkNjJlMC8wL0FTMTM3MjM1LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQAjxRG AwQAjxRZAwQAjxRiMA0GCSqGSIb3DQEBCwUAA4IBAQAJq8bs/V93twdjHgwVvVpZ HasfniAfHNIC4e51AInnMpiEu1RbpjBubIqw/Cj4HLK2XV4QuK2hkY9Zw+bL6Q5M BJ9NH7FNH+EjSNJsByVDktrHw+Vs1UroBNXrMOSZLHmBhiw25Zf32ttwJqP+dICo zMYnJEBLyijqf4a+p1/kmV06RwYns1YkKsKMnn0V88Sx5lyupMArpLos9aZ+E6xs hi8PeHACmvSCioFBkykGc4RGPExXND/5kSKzAXGlg22wRMlcJ9jdcpAkxFKo7sRT 0udXJTpQm5zxGyTFyGJvB0iz9IPHGTy4ip5aFVokAhnnlqbGyF6YMNWFxMVdbs3i -----END CERTIFICATE-----Generated at Fri Dec 5 17:05:57 2025 by rpki-client