This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/AS25198.roa File: AS25198.roa (raw, json) Hash identifier: rJvO0oVNUSiUYxMibuu96PRty++rKW7eO3GuzSSjJAs= Subject key identifier: 37:4B:C2:A4:13:4F:E0:D7:90:E5:64:E9:F1:37:70:80:2F:77:BF:18 Certificate issuer: /CN=7051b4c2f7ae9ef80b53000b32ab8f5d2f2f415b Certificate serial: 2C3B708E75105FB2175AB361EFD9E6B79C02C08B Authority key identifier: 70:51:B4:C2:F7:AE:9E:F8:0B:53:00:0B:32:AB:8F:5D:2F:2F:41:5B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cFG0wveunvgLUwALMquPXS8vQVs.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/AS25198.roa Signing time: Sun 16 Nov 2025 11:12:13 +0000 ROA not before: Sun 16 Nov 2025 11:07:13 +0000 ROA not after: Sun 15 Nov 2026 11:12:13 +0000 asID: 25198 IP address blocks: 193.32.187.0/24 maxlen: 24 194.93.50.0/24 maxlen: 24 212.115.102.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/7051B4C2F7AE9EF80B53000B32AB8F5D2F2F415B.crl rsync://rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/7051B4C2F7AE9EF80B53000B32AB8F5D2F2F415B.mft rsync://rpki.ripe.net/repository/DEFAULT/cFG0wveunvgLUwALMquPXS8vQVs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:3b:70:8e:75:10:5f:b2:17:5a:b3:61:ef:d9:e6:b7:9c:02:c0:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7051b4c2f7ae9ef80b53000b32ab8f5d2f2f415b Validity Not Before: Nov 16 11:07:13 2025 GMT Not After : Nov 15 11:12:13 2026 GMT Subject: CN=374BC2A4134FE0D790E564E9F13770802F77BF18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:6f:57:0a:3a:7d:45:e0:32:06:c5:5c:84:9f: 48:b3:3f:67:5e:6d:2d:b3:dd:6b:17:ac:3a:1d:8d: 80:6a:4f:90:13:a9:1b:bf:dd:ae:f6:7c:00:bd:80: 67:87:97:60:a1:36:51:9b:33:ed:8c:91:08:d4:6b: c8:fe:ae:e0:f9:ac:17:a6:b5:57:a3:8e:32:b1:33: 70:52:ba:b2:b3:ae:53:69:11:3a:41:07:5b:d2:5b: 7b:8f:fd:e8:69:c7:4d:de:74:64:4f:00:13:7f:e4: 64:72:b3:b8:82:39:51:7a:ce:02:e8:fe:a8:89:ea: 22:cb:47:9c:19:72:a0:c7:da:b4:07:70:76:47:0c: f0:c2:88:a6:94:b3:a8:dd:8f:62:b7:db:1a:af:91: 7a:d5:9a:12:54:b6:01:d0:e5:7f:13:a2:94:42:fb: f6:31:10:66:7f:8d:12:c3:f2:03:d5:26:24:e0:e1: 2c:07:a2:3e:d8:9d:81:a5:50:3e:02:11:a4:52:12: d8:a6:c5:72:39:cf:0f:2b:2c:18:52:73:59:34:ae: 35:2c:6d:a1:f5:3d:d0:3f:c5:27:f0:c5:97:6b:c3: ed:10:ff:45:c5:33:c8:dc:9a:c7:13:0b:78:fa:66: 69:bc:d5:df:90:f3:f9:ea:6a:8b:7e:50:f2:a3:77: 60:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:4B:C2:A4:13:4F:E0:D7:90:E5:64:E9:F1:37:70:80:2F:77:BF:18 X509v3 Authority Key Identifier: keyid:70:51:B4:C2:F7:AE:9E:F8:0B:53:00:0B:32:AB:8F:5D:2F:2F:41:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/7051B4C2F7AE9EF80B53000B32AB8F5D2F2F415B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cFG0wveunvgLUwALMquPXS8vQVs.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/AS25198.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.32.187.0/24 194.93.50.0/24 212.115.102.0/24 Signature Algorithm: sha256WithRSAEncryption 2c:5b:19:4d:d1:7b:8d:b3:b3:40:21:61:cb:5c:51:6e:6a:bc: 5d:53:0a:1c:12:5f:cf:42:99:dc:64:8e:8a:fd:ae:3f:c0:11: 74:3c:43:75:d0:3b:db:f2:d7:ba:e7:ce:b1:5a:b4:52:21:b5: a1:22:d5:8e:d3:84:45:fb:83:f1:c4:ed:f8:b8:76:02:62:96: de:06:96:73:c4:5e:48:60:a0:cb:36:78:a2:74:7e:b2:30:9d: 08:7d:69:0e:2f:5b:12:5f:b2:d0:d2:23:d0:c2:cd:46:e8:47: c1:00:b0:5a:d8:e2:ae:28:66:0e:b7:9d:dc:0a:d8:7a:b6:dd: cf:ed:87:c5:95:f3:95:95:4a:62:03:4c:49:b8:32:66:c6:b7: cd:f0:9b:29:ed:c1:be:6d:dd:62:7d:b6:86:84:0d:37:52:25: 39:e0:3f:65:42:97:4b:ab:31:17:f6:b7:45:16:61:44:5f:81: be:46:bf:56:ef:af:fa:f4:29:56:98:8a:d0:e8:fa:60:c2:26: fa:28:87:00:ef:e1:69:63:98:df:73:58:d8:c6:30:d6:9c:81: b3:87:b4:42:a7:c8:98:a2:a4:e5:15:df:5a:ca:2a:62:c6:12: 37:cf:7f:87:87:8b:90:6c:dc:87:93:24:7b:28:81:fd:f5:be: 40:cf:4c:92 -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgIULDtwjnUQX7IXWrNh79nmt5wCwIswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzA1MWI0YzJmN2FlOWVmODBiNTMwMDBiMzJhYjhmNWQy ZjJmNDE1YjAeFw0yNTExMTYxMTA3MTNaFw0yNjExMTUxMTEyMTNaMDMxMTAvBgNV BAMTKDM3NEJDMkE0MTM0RkUwRDc5MEU1NjRFOUYxMzc3MDgwMkY3N0JGMTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3b1cKOn1F4DIGxVyEn0izP2de bS2z3WsXrDodjYBqT5ATqRu/3a72fAC9gGeHl2ChNlGbM+2MkQjUa8j+ruD5rBem tVejjjKxM3BSurKzrlNpETpBB1vSW3uP/ehpx03edGRPABN/5GRys7iCOVF6zgLo /qiJ6iLLR5wZcqDH2rQHcHZHDPDCiKaUs6jdj2K32xqvkXrVmhJUtgHQ5X8TopRC +/YxEGZ/jRLD8gPVJiTg4SwHoj7YnYGlUD4CEaRSEtimxXI5zw8rLBhSc1k0rjUs baH1PdA/xSfwxZdrw+0Q/0XFM8jcmscTC3j6Zmm81d+Q8/nqaot+UPKjd2ChAgMB AAGjggIVMIICETAdBgNVHQ4EFgQUN0vCpBNP4NeQ5WTp8TdwgC93vxgwHwYDVR0j BBgwFoAUcFG0wveunvgLUwALMquPXS8vQVswDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvOWM1Y2U5ZmEtOWE2Zi00ZTBjLTk4MDktN2E0Nzg4NzQ0 ODkzLzAvNzA1MUI0QzJGN0FFOUVGODBCNTMwMDBCMzJBQjhGNUQyRjJGNDE1Qi5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2NGRzB3dmV1bnZnTFV3QUxNcXVQWFM4 dlFWcy5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzljNWNlOWZhLTlhNmYt NGUwYy05ODA5LTdhNDc4ODc0NDg5My8wL0FTMjUxOTgucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwKwYIKwYBBQUHAQcBAf8EHDAaMBgEAgABMBIDBADBILsD BADCXTIDBADUc2YwDQYJKoZIhvcNAQELBQADggEBACxbGU3Re42zs0AhYctcUW5q vF1TChwSX89Cmdxkjor9rj/AEXQ8Q3XQO9vy17rnzrFatFIhtaEi1Y7ThEX7g/HE 7fi4dgJilt4GlnPEXkhgoMs2eKJ0frIwnQh9aQ4vWxJfstDSI9DCzUboR8EAsFrY 4q4oZg63ndwK2Hq23c/th8WV85WVSmIDTEm4MmbGt83wmyntwb5t3WJ9toaEDTdS JTngP2VCl0urMRf2t0UWYURfgb5Gv1bvr/r0KVaYitDo+mDCJvoohwDv4WljmN9z WNjGMNacgbOHtEKnyJiipOUV31rKKmLGEjfPf4eHi5Bs3IeTJHsogf31vkDPTJI= -----END CERTIFICATE-----Generated at Sat Dec 6 14:37:06 2025 by rpki-client