This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS5065.roa File: AS5065.roa (raw, json) Hash identifier: CGXt0Y8EUbsgxO88a/Xirl04gB/bjAkkmy5Y93q5UTE= Subject key identifier: 8F:5A:FA:04:A1:AB:76:1C:1F:CC:E1:34:50:12:9F:61:CB:4E:51:52 Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc Certificate serial: 6661DAEDB54B80DAF947DA9E0F552074FD2FFEC7 Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS5065.roa Signing time: Fri 12 Dec 2025 08:07:18 +0000 ROA not before: Fri 12 Dec 2025 08:02:18 +0000 ROA not after: Fri 11 Dec 2026 08:07:18 +0000 asID: 5065 IP address blocks: 96.62.69.0/24 maxlen: 24 96.62.72.0/24 maxlen: 24 96.62.75.0/24 maxlen: 24 96.62.76.0/24 maxlen: 24 96.62.78.0/24 maxlen: 24 96.62.84.0/24 maxlen: 24 96.62.89.0/24 maxlen: 24 96.62.131.0/24 maxlen: 24 148.135.153.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.mft rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 18 Dec 2025 09:00:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:61:da:ed:b5:4b:80:da:f9:47:da:9e:0f:55:20:74:fd:2f:fe:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc Validity Not Before: Dec 12 08:02:18 2025 GMT Not After : Dec 11 08:07:18 2026 GMT Subject: CN=8F5AFA04A1AB761C1FCCE13450129F61CB4E5152 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:e6:34:12:3d:eb:70:5b:d7:a8:1c:2a:51:80: 85:fe:58:4f:7f:0b:16:48:9a:1c:39:d9:cb:54:a2: 97:05:9d:a8:9d:19:5d:f2:17:18:d6:05:c7:47:ae: 12:ab:0a:0b:77:de:aa:81:62:74:1f:aa:07:fa:07: c9:f0:62:26:11:ee:60:6f:ce:dc:fd:28:6c:50:8f: bb:97:8b:15:b4:af:97:fe:b6:8a:f9:22:13:ef:61: e4:18:a3:7b:e0:a9:b1:7f:6c:1f:96:fc:7b:9f:b7: 4a:9a:f5:a8:1f:a9:42:c8:7b:9d:de:03:bc:91:49: 2a:ce:42:ca:31:28:1e:3f:55:4b:4e:a7:c9:6d:e6: 7f:11:e5:7e:52:7c:01:cd:c8:a9:58:bb:a0:d3:02: b5:dd:bd:d6:e8:b0:95:6f:08:e3:58:84:72:c1:28: e7:be:73:59:e5:c0:45:58:8c:e2:7f:71:59:58:a4: f7:b3:84:dd:3f:57:79:e9:de:eb:d1:bc:6f:32:f5: 11:6a:5e:c0:ed:5d:06:a2:58:95:4a:f4:65:3f:ff: a2:61:c5:a9:41:e6:6a:a1:a7:dc:0a:34:9f:d0:64: 05:6a:9b:96:40:f1:45:59:0f:9a:89:8c:38:85:7f: fe:e4:69:79:0e:b5:cb:ef:8b:95:ab:b0:fa:b2:38: bd:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:5A:FA:04:A1:AB:76:1C:1F:CC:E1:34:50:12:9F:61:CB:4E:51:52 X509v3 Authority Key Identifier: keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS5065.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.62.69.0/24 96.62.72.0/24 96.62.75.0-96.62.76.255 96.62.78.0/24 96.62.84.0/24 96.62.89.0/24 96.62.131.0/24 148.135.153.0/24 Signature Algorithm: sha256WithRSAEncryption 80:e6:fd:2a:ba:30:71:a8:3e:2f:19:21:56:db:05:9f:9c:a5: fc:73:d8:0f:48:bf:49:98:ce:71:66:d2:83:3f:4c:05:91:c7: a9:b3:3f:3c:25:f5:3c:5a:2f:4c:7b:f0:97:af:ee:d8:50:33: 3a:c8:55:79:ce:b5:27:f6:cc:c0:81:f4:d4:d6:e1:eb:ce:e4: c0:72:04:5c:ab:b4:24:1d:7c:2a:82:3c:51:0d:7b:10:f5:1c: f1:5f:8d:ac:35:40:a0:15:e9:c2:29:24:58:3e:f5:dd:e2:5e: ca:ad:c8:73:8d:de:d2:7a:56:a2:52:4a:53:4d:f3:6f:58:24: 82:b2:2d:26:f8:b3:d9:79:99:65:c6:cd:64:db:f5:60:b9:92: 12:c7:56:77:45:bb:1c:ff:96:9a:b9:50:18:e0:17:2f:d6:e3: 34:a4:36:a4:00:08:4b:67:5a:14:f7:af:9f:e0:6e:20:2f:95: 99:b3:50:91:26:41:b5:46:d0:53:63:b9:8e:ed:5d:c9:bd:b8: 3e:3c:5f:92:0c:6f:b9:32:76:ff:13:54:4b:6a:aa:df:f2:c4: ce:c3:d3:de:16:47:18:68:27:37:63:56:36:f0:17:ce:3b:ba: 79:42:05:2f:09:9b:3c:c3:5a:12:88:34:d5:9a:20:5d:21:ca: 47:95:e0:7c -----BEGIN CERTIFICATE----- MIIFMDCCBBigAwIBAgIUZmHa7bVLgNr5R9qeD1UgdP0v/scwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNGZjMzM2YmY5ZjNkZTVjZTQxNDE0YmQxOTcxOTQ1ZjRi MjQ2YmZjYzAeFw0yNTEyMTIwODAyMThaFw0yNjEyMTEwODA3MThaMDMxMTAvBgNV BAMTKDhGNUFGQTA0QTFBQjc2MUMxRkNDRTEzNDUwMTI5RjYxQ0I0RTUxNTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDA5jQSPetwW9eoHCpRgIX+WE9/ CxZImhw52ctUopcFnaidGV3yFxjWBcdHrhKrCgt33qqBYnQfqgf6B8nwYiYR7mBv ztz9KGxQj7uXixW0r5f+tor5IhPvYeQYo3vgqbF/bB+W/Huft0qa9agfqULIe53e A7yRSSrOQsoxKB4/VUtOp8lt5n8R5X5SfAHNyKlYu6DTArXdvdbosJVvCONYhHLB KOe+c1nlwEVYjOJ/cVlYpPezhN0/V3np3uvRvG8y9RFqXsDtXQaiWJVK9GU//6Jh xalB5mqhp9wKNJ/QZAVqm5ZA8UVZD5qJjDiFf/7kaXkOtcvvi5WrsPqyOL3XAgMB AAGjggI6MIICNjAdBgNVHQ4EFgQUj1r6BKGrdhwfzOE0UBKfYctOUVIwHwYDVR0j BBgwFoAUT8M2v5895c5BQUvRlxlF9LJGv8wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMDliZTNhYWUtYWVhMS00MWRjLWIxYjktOTVhYzU5MTgy NDRkLzAvNEZDMzM2QkY5RjNERTVDRTQxNDE0QkQxOTcxOTQ1RjRCMjQ2QkZDQy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1Q4TTJ2NTg5NWM1QlFVdlJseGxGOUxK R3Y4dy5jZXIweQYIKwYBBQUHAQsEbTBrMGkGCCsGAQUFBzALhl1yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzA5YmUzYWFlLWFlYTEt NDFkYy1iMWI5LTk1YWM1OTE4MjQ0ZC8wL0FTNTA2NS5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjBRBggrBgEFBQcBBwEB/wRCMEAwPgQCAAEwOAMEAGA+RQME AGA+SDAMAwQAYD5LAwQAYD5MAwQAYD5OAwQAYD5UAwQAYD5ZAwQAYD6DAwQAlIeZ MA0GCSqGSIb3DQEBCwUAA4IBAQCA5v0qujBxqD4vGSFW2wWfnKX8c9gPSL9JmM5x ZtKDP0wFkcepsz88JfU8Wi9Me/CXr+7YUDM6yFV5zrUn9szAgfTU1uHrzuTAcgRc q7QkHXwqgjxRDXsQ9RzxX42sNUCgFenCKSRYPvXd4l7Krchzjd7SelaiUkpTTfNv WCSCsi0m+LPZeZllxs1k2/VguZISx1Z3Rbsc/5aauVAY4Bcv1uM0pDakAAhLZ1oU 96+f4G4gL5WZs1CRJkG1RtBTY7mO7V3Jvbg+PF+SDG+5Mnb/E1RLaqrf8sTOw9Pe FkcYaCc3Y1Y28BfOO7p5QgUvCZs8w1oSiDTVmiBdIcpHleB8 -----END CERTIFICATE-----Generated at Wed Dec 17 15:26:21 2025 by rpki-client