This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/AS834.roa File: AS834.roa (raw, json) Hash identifier: WJMiABjxWuPSS3Y9J7ZMKLzDDsEDDjo4+72u6C4OXfU= Subject key identifier: 9E:15:68:28:45:91:18:2D:89:85:C1:44:59:35:8D:0A:97:4F:40:DB Certificate issuer: /CN=7051b4c2f7ae9ef80b53000b32ab8f5d2f2f415b Certificate serial: 1BE8592CC450A1ACB5FD0FF1A50DEE71395960F2 Authority key identifier: 70:51:B4:C2:F7:AE:9E:F8:0B:53:00:0B:32:AB:8F:5D:2F:2F:41:5B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cFG0wveunvgLUwALMquPXS8vQVs.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/AS834.roa Signing time: Fri 05 Dec 2025 12:15:10 +0000 ROA not before: Fri 05 Dec 2025 12:10:10 +0000 ROA not after: Fri 04 Dec 2026 12:15:10 +0000 asID: 834 IP address blocks: 188.119.70.0/24 maxlen: 24 193.187.111.0/24 maxlen: 24 194.93.51.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/7051B4C2F7AE9EF80B53000B32AB8F5D2F2F415B.crl rsync://rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/7051B4C2F7AE9EF80B53000B32AB8F5D2F2F415B.mft rsync://rpki.ripe.net/repository/DEFAULT/cFG0wveunvgLUwALMquPXS8vQVs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 10:13:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:e8:59:2c:c4:50:a1:ac:b5:fd:0f:f1:a5:0d:ee:71:39:59:60:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7051b4c2f7ae9ef80b53000b32ab8f5d2f2f415b Validity Not Before: Dec 5 12:10:10 2025 GMT Not After : Dec 4 12:15:10 2026 GMT Subject: CN=9E1568284591182D8985C14459358D0A974F40DB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:f8:83:1c:a0:60:3a:8b:b1:ce:4c:ff:8b:cf: 74:b2:8f:0b:92:c9:5d:00:d1:98:25:e8:3b:d4:9f: 5b:ff:b0:c8:6d:d8:c9:95:60:fd:98:89:5d:4a:a2: 1c:e0:8b:c5:dc:e3:96:3f:c6:fd:7c:84:13:66:fe: 16:34:65:57:d8:76:70:c2:3b:17:6f:5c:11:ff:e4: ad:db:da:db:d7:9f:35:ab:68:6c:6b:39:93:0a:a8: e1:2b:6a:1a:78:02:de:f2:59:2a:18:a1:38:c0:fe: f6:c0:24:06:df:37:9e:15:12:a3:2f:fc:e5:e2:50: 2d:7f:f9:e8:dc:f4:c6:6b:9a:82:0d:1c:13:22:cc: 63:86:84:9f:18:ab:c2:73:06:9e:90:b6:67:1a:95: e5:cd:b6:38:e3:02:a4:f0:09:38:a6:ff:08:cf:f1: 80:34:c3:b3:84:04:75:a3:44:00:d5:00:6a:58:13: f7:ec:d4:42:09:fa:eb:1c:cf:77:a5:47:1d:f5:02: af:b1:5a:5c:8c:06:24:2f:bc:10:5a:1b:b6:cd:e6: e0:6d:08:c3:8f:c8:dd:8d:a1:e7:2d:af:a7:30:22: a6:ce:1c:1b:c9:74:86:63:da:9a:1c:c5:b4:7d:e8: 93:f6:a3:ba:12:99:20:b1:b3:89:12:37:48:a5:fc: 1f:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:15:68:28:45:91:18:2D:89:85:C1:44:59:35:8D:0A:97:4F:40:DB X509v3 Authority Key Identifier: keyid:70:51:B4:C2:F7:AE:9E:F8:0B:53:00:0B:32:AB:8F:5D:2F:2F:41:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/7051B4C2F7AE9EF80B53000B32AB8F5D2F2F415B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cFG0wveunvgLUwALMquPXS8vQVs.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/AS834.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 188.119.70.0/24 193.187.111.0/24 194.93.51.0/24 Signature Algorithm: sha256WithRSAEncryption 1c:2c:09:f7:ae:71:05:61:35:54:c0:0d:c9:fd:b9:ec:b3:eb: a1:58:82:e4:81:9d:2e:02:34:eb:a9:45:18:b5:4b:41:6f:0f: dc:0a:a8:78:e8:48:f8:1d:1f:d9:47:58:b1:03:bf:17:9d:fa: 10:f8:32:b4:7c:c6:e6:b5:a7:b1:33:40:3e:16:41:67:cd:f3: d5:19:ca:03:55:2a:a4:b3:53:1d:d6:94:60:fd:65:75:96:9f: 98:55:ce:b8:db:72:6d:33:b8:e9:ab:3a:4e:bf:97:7c:b9:0b: 15:c2:fd:80:23:fe:12:11:6b:83:5b:0e:cd:77:6c:9b:7c:2d: 51:f3:98:81:5c:08:df:82:5e:bb:7c:93:bd:99:29:18:69:a2: 36:64:df:7b:7d:52:a2:c3:b2:33:84:68:ca:9c:74:82:cc:e2: 8d:25:b8:86:5d:a0:c9:77:54:fb:8b:09:6c:be:a4:b9:e8:29: c0:39:2d:f2:50:8a:11:98:02:c3:56:9c:f6:20:00:61:95:15: 78:c6:e0:de:88:a9:06:0c:3f:85:e9:2b:b8:7a:5c:41:40:47: cf:d7:a4:91:d9:42:69:1c:25:a5:de:75:ad:ca:06:1b:db:4a: ea:6b:83:f6:63:47:92:52:4b:88:2a:da:c8:f2:e4:2d:0c:5c: b3:3b:33:45 -----BEGIN CERTIFICATE----- MIIFCTCCA/GgAwIBAgIUG+hZLMRQoay1/Q/xpQ3ucTlZYPIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzA1MWI0YzJmN2FlOWVmODBiNTMwMDBiMzJhYjhmNWQy ZjJmNDE1YjAeFw0yNTEyMDUxMjEwMTBaFw0yNjEyMDQxMjE1MTBaMDMxMTAvBgNV BAMTKDlFMTU2ODI4NDU5MTE4MkQ4OTg1QzE0NDU5MzU4RDBBOTc0RjQwREIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCT+IMcoGA6i7HOTP+Lz3SyjwuS yV0A0Zgl6DvUn1v/sMht2MmVYP2YiV1Kohzgi8Xc45Y/xv18hBNm/hY0ZVfYdnDC OxdvXBH/5K3b2tvXnzWraGxrOZMKqOErahp4At7yWSoYoTjA/vbAJAbfN54VEqMv /OXiUC1/+ejc9MZrmoINHBMizGOGhJ8Yq8JzBp6QtmcaleXNtjjjAqTwCTim/wjP 8YA0w7OEBHWjRADVAGpYE/fs1EIJ+uscz3elRx31Aq+xWlyMBiQvvBBaG7bN5uBt CMOPyN2Noectr6cwIqbOHBvJdIZj2pocxbR96JP2o7oSmSCxs4kSN0il/B8zAgMB AAGjggITMIICDzAdBgNVHQ4EFgQUnhVoKEWRGC2JhcFEWTWNCpdPQNswHwYDVR0j BBgwFoAUcFG0wveunvgLUwALMquPXS8vQVswDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvOWM1Y2U5ZmEtOWE2Zi00ZTBjLTk4MDktN2E0Nzg4NzQ0 ODkzLzAvNzA1MUI0QzJGN0FFOUVGODBCNTMwMDBCMzJBQjhGNUQyRjJGNDE1Qi5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2NGRzB3dmV1bnZnTFV3QUxNcXVQWFM4 dlFWcy5jZXIweAYIKwYBBQUHAQsEbDBqMGgGCCsGAQUFBzALhlxyc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzljNWNlOWZhLTlhNmYt NGUwYy05ODA5LTdhNDc4ODc0NDg5My8wL0FTODM0LnJvYTAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQAvHdGAwQA wbtvAwQAwl0zMA0GCSqGSIb3DQEBCwUAA4IBAQAcLAn3rnEFYTVUwA3J/bnss+uh WILkgZ0uAjTrqUUYtUtBbw/cCqh46Ej4HR/ZR1ixA78XnfoQ+DK0fMbmtaexM0A+ FkFnzfPVGcoDVSqks1Md1pRg/WV1lp+YVc6423JtM7jpqzpOv5d8uQsVwv2AI/4S EWuDWw7Nd2ybfC1R85iBXAjfgl67fJO9mSkYaaI2ZN97fVKiw7IzhGjKnHSCzOKN JbiGXaDJd1T7iwlsvqS56CnAOS3yUIoRmALDVpz2IABhlRV4xuDeiKkGDD+F6Su4 elxBQEfP16SR2UJpHCWl3nWtygYb20rqa4P2Y0eSUkuIKtrI8uQtDFyzOzNF -----END CERTIFICATE-----Generated at Sun Dec 7 01:18:45 2025 by rpki-client