This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c409d7b2-ee64-49f1-ad81-8e4a107d62e0/0/AS400618.roa File: AS400618.roa (raw, json) Hash identifier: Y67UU2GivRGLvVgSfpHqnrLEXTvY+gM50qlqXFSGKuI= Subject key identifier: 35:EA:2C:A4:85:A6:A0:BF:9B:94:D1:E3:E1:91:FE:F6:CE:19:D4:7E Certificate issuer: /CN=88c14ec02adbf083138eddd47871176ddeb93d9d Certificate serial: 502621D80DA98778D07282C16917BDBEDE94ED34 Authority key identifier: 88:C1:4E:C0:2A:DB:F0:83:13:8E:DD:D4:78:71:17:6D:DE:B9:3D:9D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iMFOwCrb8IMTjt3UeHEXbd65PZ0.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c409d7b2-ee64-49f1-ad81-8e4a107d62e0/0/AS400618.roa Signing time: Sun 16 Nov 2025 05:51:53 +0000 ROA not before: Sun 16 Nov 2025 05:46:53 +0000 ROA not after: Sun 15 Nov 2026 05:51:53 +0000 asID: 400618 IP address blocks: 143.20.47.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c409d7b2-ee64-49f1-ad81-8e4a107d62e0/0/88C14EC02ADBF083138EDDD47871176DDEB93D9D.crl rsync://rsync.paas.rpki.ripe.net/repository/c409d7b2-ee64-49f1-ad81-8e4a107d62e0/0/88C14EC02ADBF083138EDDD47871176DDEB93D9D.mft rsync://rpki.ripe.net/repository/DEFAULT/iMFOwCrb8IMTjt3UeHEXbd65PZ0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 11:00:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:26:21:d8:0d:a9:87:78:d0:72:82:c1:69:17:bd:be:de:94:ed:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=88c14ec02adbf083138eddd47871176ddeb93d9d Validity Not Before: Nov 16 05:46:53 2025 GMT Not After : Nov 15 05:51:53 2026 GMT Subject: CN=35EA2CA485A6A0BF9B94D1E3E191FEF6CE19D47E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:7a:60:37:20:2b:95:92:ba:1a:92:74:3d:c3: 96:a8:62:0a:56:58:97:7b:a9:d1:b5:18:26:b4:63: 70:8e:dc:f4:10:4b:c3:3e:19:11:56:e8:2f:f6:f8: 84:49:27:76:75:cf:ba:f2:92:9c:6d:03:bc:c9:cb: 61:c2:a2:3f:00:5f:a7:db:68:7c:fc:b8:ae:32:23: 92:a6:05:b1:97:a2:b9:e9:85:02:3e:79:76:27:46: 3e:e2:e1:d6:d9:e4:87:8a:19:cb:33:b4:61:ef:69: cb:f1:d4:b1:9c:20:9d:d4:c3:4a:6a:08:31:d7:b4: cb:96:f9:0c:87:4d:4d:1d:11:e1:17:e2:b2:a1:3f: 0a:62:15:0b:bf:eb:25:3f:de:b5:bd:ac:d1:e2:8b: 80:63:b9:3d:cb:0b:be:00:17:bb:99:73:d7:88:88: a3:2f:0e:a6:5a:c5:70:cf:40:fa:e7:64:65:1b:7d: 26:45:06:df:ee:6f:25:b3:dd:16:01:6e:24:68:2d: cd:e9:a5:79:a6:00:c6:5e:50:d6:9b:19:1a:15:7d: 35:be:4c:b9:ad:6a:55:4e:bd:86:34:7b:51:e1:a9: 8b:b3:d1:24:36:5f:06:fb:97:2f:b7:ca:78:22:0c: c7:e8:d2:04:f8:97:bf:13:02:59:af:64:1b:04:16: fd:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:EA:2C:A4:85:A6:A0:BF:9B:94:D1:E3:E1:91:FE:F6:CE:19:D4:7E X509v3 Authority Key Identifier: keyid:88:C1:4E:C0:2A:DB:F0:83:13:8E:DD:D4:78:71:17:6D:DE:B9:3D:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/c409d7b2-ee64-49f1-ad81-8e4a107d62e0/0/88C14EC02ADBF083138EDDD47871176DDEB93D9D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iMFOwCrb8IMTjt3UeHEXbd65PZ0.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c409d7b2-ee64-49f1-ad81-8e4a107d62e0/0/AS400618.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 143.20.47.0/24 Signature Algorithm: sha256WithRSAEncryption 3e:a2:4e:bc:3c:f9:ec:fa:13:59:d4:32:69:60:8d:c3:85:39: 2a:e8:46:53:db:16:60:88:70:ff:3c:31:fa:11:8f:da:f4:ea: 79:e1:28:71:31:7f:59:04:b4:29:8e:f9:1f:df:a2:7c:7c:81: d4:db:d1:9e:43:1e:90:a1:1a:02:df:ab:4a:ef:9f:60:06:c4: a9:0f:75:32:d9:ca:d5:fa:cd:de:38:c6:81:2a:2d:49:3b:be: e2:0a:2f:53:d9:b3:c7:cb:34:3e:13:1d:73:27:60:f5:fb:d1: 6e:2a:5c:ef:91:df:a6:02:28:55:d2:0d:c0:f7:e4:02:75:6e: b9:74:ba:61:cf:f0:9d:3c:bd:7a:47:32:07:19:6d:4a:4e:9f: 50:a8:19:f0:94:9e:ca:9b:d1:aa:99:c9:b6:8c:53:22:a6:e5: 6a:64:84:e2:90:60:b4:05:31:a0:b0:bf:f5:fd:03:b7:7d:9e: 72:bf:5c:ad:7b:09:5e:56:fa:78:d3:19:30:49:ae:27:13:60: c0:48:99:1d:8b:af:cf:5d:7e:bb:16:1d:eb:58:04:f4:86:2b: 0e:34:fb:c8:55:76:b9:13:3b:50:90:a7:aa:3c:18:b7:a1:a1: 7d:db:3e:3c:f8:ff:57:c6:59:79:75:81:8a:54:1c:83:4e:4d: ec:b3:4d:00 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgIUUCYh2A2ph3jQcoLBaRe9vt6U7TQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODhjMTRlYzAyYWRiZjA4MzEzOGVkZGQ0Nzg3MTE3NmRk ZWI5M2Q5ZDAeFw0yNTExMTYwNTQ2NTNaFw0yNjExMTUwNTUxNTNaMDMxMTAvBgNV BAMTKDM1RUEyQ0E0ODVBNkEwQkY5Qjk0RDFFM0UxOTFGRUY2Q0UxOUQ0N0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdemA3ICuVkroaknQ9w5aoYgpW WJd7qdG1GCa0Y3CO3PQQS8M+GRFW6C/2+IRJJ3Z1z7rykpxtA7zJy2HCoj8AX6fb aHz8uK4yI5KmBbGXornphQI+eXYnRj7i4dbZ5IeKGcsztGHvacvx1LGcIJ3Uw0pq CDHXtMuW+QyHTU0dEeEX4rKhPwpiFQu/6yU/3rW9rNHii4BjuT3LC74AF7uZc9eI iKMvDqZaxXDPQPrnZGUbfSZFBt/ubyWz3RYBbiRoLc3ppXmmAMZeUNabGRoVfTW+ TLmtalVOvYY0e1HhqYuz0SQ2Xwb7ly+3yngiDMfo0gT4l78TAlmvZBsEFv03AgMB AAGjggIKMIICBjAdBgNVHQ4EFgQUNeospIWmoL+blNHj4ZH+9s4Z1H4wHwYDVR0j BBgwFoAUiMFOwCrb8IMTjt3UeHEXbd65PZ0wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYzQwOWQ3YjItZWU2NC00OWYxLWFkODEtOGU0YTEwN2Q2 MmUwLzAvODhDMTRFQzAyQURCRjA4MzEzOEVEREQ0Nzg3MTE3NkRERUI5M0Q5RC5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2lNRk93Q3JiOElNVGp0M1VlSEVYYmQ2 NVBaMC5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2M0MDlkN2IyLWVlNjQt NDlmMS1hZDgxLThlNGExMDdkNjJlMC8wL0FTNDAwNjE4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAjxQv MA0GCSqGSIb3DQEBCwUAA4IBAQA+ok68PPns+hNZ1DJpYI3DhTkq6EZT2xZgiHD/ PDH6EY/a9Op54ShxMX9ZBLQpjvkf36J8fIHU29GeQx6QoRoC36tK759gBsSpD3Uy 2crV+s3eOMaBKi1JO77iCi9T2bPHyzQ+Ex1zJ2D1+9FuKlzvkd+mAihV0g3A9+QC dW65dLphz/CdPL16RzIHGW1KTp9QqBnwlJ7Km9Gqmcm2jFMipuVqZITikGC0BTGg sL/1/QO3fZ5yv1ytewleVvp40xkwSa4nE2DASJkdi6/PXX67Fh3rWAT0hisONPvI VXa5EztQkKeqPBi3oaF92z48+P9Xxll5dYGKVByDTk3ss00A -----END CERTIFICATE-----Generated at Fri Dec 5 17:06:45 2025 by rpki-client