This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/AS205886.roa File: AS205886.roa (raw, json) Hash identifier: aDWJoBB6fw55voj7shWLUrUgQ/3wYCDlVHJ35AFMDgQ= Subject key identifier: 91:DF:4E:D3:B6:43:52:21:95:B5:9F:06:9D:D9:D6:5D:5E:3E:13:4A Certificate issuer: /CN=7051b4c2f7ae9ef80b53000b32ab8f5d2f2f415b Certificate serial: 2E11B7DA6AA5CBC0C6B3214DAD07C1EF0A92C6F2 Authority key identifier: 70:51:B4:C2:F7:AE:9E:F8:0B:53:00:0B:32:AB:8F:5D:2F:2F:41:5B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cFG0wveunvgLUwALMquPXS8vQVs.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/AS205886.roa Signing time: Tue 18 Nov 2025 08:48:42 +0000 ROA not before: Tue 18 Nov 2025 08:43:42 +0000 ROA not after: Tue 17 Nov 2026 08:48:42 +0000 asID: 205886 IP address blocks: 193.32.186.0/24 maxlen: 24 194.93.50.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/7051B4C2F7AE9EF80B53000B32AB8F5D2F2F415B.crl rsync://rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/7051B4C2F7AE9EF80B53000B32AB8F5D2F2F415B.mft rsync://rpki.ripe.net/repository/DEFAULT/cFG0wveunvgLUwALMquPXS8vQVs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:11:b7:da:6a:a5:cb:c0:c6:b3:21:4d:ad:07:c1:ef:0a:92:c6:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7051b4c2f7ae9ef80b53000b32ab8f5d2f2f415b Validity Not Before: Nov 18 08:43:42 2025 GMT Not After : Nov 17 08:48:42 2026 GMT Subject: CN=91DF4ED3B643522195B59F069DD9D65D5E3E134A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:8b:4f:5a:ca:68:1a:6e:03:c7:ed:19:23:3e: b3:78:7e:42:7b:ba:6a:cf:c3:61:eb:b5:70:46:51: 2f:25:45:2a:06:63:ef:40:2e:ae:7b:b0:4a:c6:86: 18:4b:41:8c:dd:e8:7a:6b:a8:6d:d8:d0:16:db:53: 51:e4:87:2c:68:8e:5a:8d:07:ed:f0:10:1a:e1:62: 90:2a:1f:5e:75:1e:2f:7d:01:bf:24:87:b1:90:1e: 43:00:29:5b:e6:25:b4:48:f9:50:c1:c6:e2:fb:73: fc:64:b9:43:63:61:5a:01:9b:b1:ed:28:1e:60:95: 77:63:de:a9:fa:d2:34:c2:32:11:05:c0:5f:83:aa: 99:4d:27:a1:45:2d:0f:8e:77:3e:79:84:a2:0c:a6: 32:08:30:9c:a9:19:b5:3a:40:66:79:7b:b2:68:de: 7f:9a:bd:6a:21:02:f3:88:15:4a:9a:f3:d5:20:ed: c7:aa:1d:4c:cd:99:c6:5e:95:8f:b1:45:17:24:29: 0b:e2:dc:43:91:e6:ab:70:4a:8a:aa:3d:51:6f:49: a9:23:63:25:b3:56:b9:75:b4:e2:60:2e:48:b4:4d: 35:40:9f:83:ba:f9:1b:71:4f:66:4f:b6:d4:4a:0d: 70:42:66:3a:bd:b5:9a:11:39:07:d3:cf:ae:67:f0: e5:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:DF:4E:D3:B6:43:52:21:95:B5:9F:06:9D:D9:D6:5D:5E:3E:13:4A X509v3 Authority Key Identifier: keyid:70:51:B4:C2:F7:AE:9E:F8:0B:53:00:0B:32:AB:8F:5D:2F:2F:41:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/7051B4C2F7AE9EF80B53000B32AB8F5D2F2F415B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cFG0wveunvgLUwALMquPXS8vQVs.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/AS205886.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.32.186.0/24 194.93.50.0/24 Signature Algorithm: sha256WithRSAEncryption 9e:66:b5:0e:a5:82:e2:5d:b3:6a:0d:de:dd:a6:b3:56:2e:b7: 45:d2:04:d3:17:0b:79:e6:cc:a0:1b:92:6c:7b:8d:89:01:73: 80:c7:49:bf:e4:a4:6e:51:77:6b:8f:b3:95:c4:b5:b9:90:93: bf:6b:4c:31:b1:8e:25:22:e5:12:e5:10:c7:c1:5d:9c:37:8d: 30:53:65:9a:c8:b8:14:67:46:dc:d4:79:a3:30:77:0a:a9:3d: d2:df:75:01:89:f3:a4:bf:8f:96:7f:9e:9d:36:c3:98:ca:cb: 03:e0:1b:61:11:d2:32:f7:9d:25:ce:4a:e5:57:9d:2b:ae:dc: 2e:34:87:40:8a:0a:ba:9a:e4:ca:9d:ba:44:f8:5c:d8:fb:8d: 7f:de:2c:72:b6:b3:89:1d:55:c0:4b:f2:cf:4f:40:c9:8e:b4: ea:97:df:84:ad:d4:6b:36:d6:c4:78:43:d7:0e:c2:af:d5:14: 70:50:18:71:b2:db:ed:14:b4:33:70:1a:63:85:fe:d9:43:e9: c5:ef:f2:fd:96:cf:36:bb:ef:a3:e1:65:44:ed:98:a3:d1:6e: 60:96:f7:ec:7f:03:42:f1:fd:69:6f:4c:3d:51:4b:99:8d:0e: 61:a5:37:8e:80:5c:9a:f7:0e:b3:28:cc:73:27:d8:ff:a3:64: 79:eb:3e:90 -----BEGIN CERTIFICATE----- MIIFBjCCA+6gAwIBAgIULhG32mqly8DGsyFNrQfB7wqSxvIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzA1MWI0YzJmN2FlOWVmODBiNTMwMDBiMzJhYjhmNWQy ZjJmNDE1YjAeFw0yNTExMTgwODQzNDJaFw0yNjExMTcwODQ4NDJaMDMxMTAvBgNV BAMTKDkxREY0RUQzQjY0MzUyMjE5NUI1OUYwNjlERDlENjVENUUzRTEzNEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/i09aymgabgPH7RkjPrN4fkJ7 umrPw2HrtXBGUS8lRSoGY+9ALq57sErGhhhLQYzd6HprqG3Y0BbbU1HkhyxojlqN B+3wEBrhYpAqH151Hi99Ab8kh7GQHkMAKVvmJbRI+VDBxuL7c/xkuUNjYVoBm7Ht KB5glXdj3qn60jTCMhEFwF+DqplNJ6FFLQ+Odz55hKIMpjIIMJypGbU6QGZ5e7Jo 3n+avWohAvOIFUqa89Ug7ceqHUzNmcZelY+xRRckKQvi3EOR5qtwSoqqPVFvSakj YyWzVrl1tOJgLki0TTVAn4O6+RtxT2ZPttRKDXBCZjq9tZoROQfTz65n8OWTAgMB AAGjggIQMIICDDAdBgNVHQ4EFgQUkd9O07ZDUiGVtZ8GndnWXV4+E0owHwYDVR0j BBgwFoAUcFG0wveunvgLUwALMquPXS8vQVswDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvOWM1Y2U5ZmEtOWE2Zi00ZTBjLTk4MDktN2E0Nzg4NzQ0 ODkzLzAvNzA1MUI0QzJGN0FFOUVGODBCNTMwMDBCMzJBQjhGNUQyRjJGNDE1Qi5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2NGRzB3dmV1bnZnTFV3QUxNcXVQWFM4 dlFWcy5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzljNWNlOWZhLTlhNmYt NGUwYy05ODA5LTdhNDc4ODc0NDg5My8wL0FTMjA1ODg2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAwSC6 AwQAwl0yMA0GCSqGSIb3DQEBCwUAA4IBAQCeZrUOpYLiXbNqDd7dprNWLrdF0gTT Fwt55sygG5Jse42JAXOAx0m/5KRuUXdrj7OVxLW5kJO/a0wxsY4lIuUS5RDHwV2c N40wU2WayLgUZ0bc1HmjMHcKqT3S33UBifOkv4+Wf56dNsOYyssD4BthEdIy950l zkrlV50rrtwuNIdAigq6muTKnbpE+FzY+41/3ixytrOJHVXAS/LPT0DJjrTql9+E rdRrNtbEeEPXDsKv1RRwUBhxstvtFLQzcBpjhf7ZQ+nF7/L9ls82u++j4WVE7Zij 0W5glvfsfwNC8f1pb0w9UUuZjQ5hpTeOgFya9w6zKMxzJ9j/o2R56z6Q -----END CERTIFICATE-----Generated at Sat Dec 6 13:38:39 2025 by rpki-client