This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS834.roa File: AS834.roa (raw, json) Hash identifier: SRAMhozDCEMExFqmnK2Va7+JkbT8Y+8RB/t2Tshmf1w= Subject key identifier: 98:33:DD:43:36:4D:9B:FB:34:BE:1C:8E:BB:F9:3C:10:1F:FF:99:67 Certificate issuer: /CN=c2302af143c15daad50042d8455e689d0828eca9 Certificate serial: 6DC0CCD4E1C5181611A7B88FD634413C16D39754 Authority key identifier: C2:30:2A:F1:43:C1:5D:AA:D5:00:42:D8:45:5E:68:9D:08:28:EC:A9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS834.roa Signing time: Fri 05 Dec 2025 14:47:14 +0000 ROA not before: Fri 05 Dec 2025 14:42:14 +0000 ROA not after: Fri 04 Dec 2026 14:47:14 +0000 asID: 834 IP address blocks: 141.11.34.0/24 maxlen: 24 141.11.39.0/24 maxlen: 24 141.11.40.0/24 maxlen: 24 141.11.49.0/24 maxlen: 24 141.11.140.0/23 maxlen: 24 141.11.144.0/24 maxlen: 24 141.11.172.0/24 maxlen: 24 141.11.174.0/23 maxlen: 24 141.11.197.0/24 maxlen: 24 141.11.198.0/24 maxlen: 24 141.11.216.0/22 maxlen: 24 141.11.243.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/C2302AF143C15DAAD50042D8455E689D0828ECA9.crl rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/C2302AF143C15DAAD50042D8455E689D0828ECA9.mft rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:c0:cc:d4:e1:c5:18:16:11:a7:b8:8f:d6:34:41:3c:16:d3:97:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c2302af143c15daad50042d8455e689d0828eca9 Validity Not Before: Dec 5 14:42:14 2025 GMT Not After : Dec 4 14:47:14 2026 GMT Subject: CN=9833DD43364D9BFB34BE1C8EBBF93C101FFF9967 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:49:36:4d:45:04:e9:56:da:36:fe:ec:26:e4: c9:54:fc:fa:e1:9c:cc:fa:0a:3c:4b:a4:81:76:11: d1:9b:d0:8f:c4:42:7a:58:18:04:d6:55:8a:40:63: a2:b7:17:51:8b:21:35:52:22:52:fc:1f:75:72:9d: 3f:70:26:d5:a9:d1:26:f9:58:d5:42:a3:45:29:ad: dc:8f:36:68:d6:3d:2f:d3:5a:06:cc:43:5f:af:1d: 93:14:36:4d:41:98:8a:e3:6b:6a:22:42:b4:09:94: a6:e5:2c:76:09:d7:3e:59:2d:c4:aa:d7:c3:8f:c8: 8f:df:1e:58:6e:5d:ea:f3:8e:66:71:88:0e:5b:d1: cb:82:80:2e:9e:06:28:7d:37:74:6d:07:15:7c:7c: 05:da:50:9b:33:32:8a:44:b4:94:b4:0c:81:36:e9: 97:dd:8b:55:4b:09:53:1c:3a:fa:6e:01:74:6a:a2: 76:78:0f:63:64:73:a4:0a:19:6e:87:76:d5:2b:ce: 53:a0:37:f1:62:d8:58:10:d2:ad:7f:d0:32:66:89: 25:ed:b3:76:0a:f0:b7:b6:18:82:89:ea:08:cf:57: 83:bd:46:80:39:c8:4f:bb:1d:cf:4e:f9:c0:d6:30: 9d:5a:d5:7a:7b:2c:aa:6e:6b:2e:42:b2:18:2f:b8: e1:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:33:DD:43:36:4D:9B:FB:34:BE:1C:8E:BB:F9:3C:10:1F:FF:99:67 X509v3 Authority Key Identifier: keyid:C2:30:2A:F1:43:C1:5D:AA:D5:00:42:D8:45:5E:68:9D:08:28:EC:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/C2302AF143C15DAAD50042D8455E689D0828ECA9.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS834.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 141.11.34.0/24 141.11.39.0-141.11.40.255 141.11.49.0/24 141.11.140.0/23 141.11.144.0/24 141.11.172.0/24 141.11.174.0/23 141.11.197.0-141.11.198.255 141.11.216.0/22 141.11.243.0/24 Signature Algorithm: sha256WithRSAEncryption 46:12:3a:3f:6a:fe:60:3f:db:a5:01:5e:62:95:b8:9e:6d:46: 58:09:bd:50:18:8b:53:b8:84:27:d8:81:95:5f:27:a0:cd:f7: d1:1f:c8:64:22:6e:56:90:8d:74:8b:bb:42:08:e7:e9:57:4d: c3:eb:d7:98:9e:5f:ad:f3:22:29:67:da:82:ad:19:7e:e2:f5: 5d:4f:0f:0f:15:7b:59:3f:42:a7:7a:c3:10:1e:e0:26:e6:01: 32:6d:e7:2a:8a:8b:eb:c1:85:b1:10:b0:30:8d:1a:6f:42:cc: b2:d0:61:21:05:6b:23:58:28:1d:b1:01:bc:8e:4f:89:94:a3: ce:ab:39:1e:29:89:fd:c6:08:fd:48:d6:34:0d:18:d8:86:f6: e5:45:fe:2f:dc:5c:ed:65:53:b8:60:8a:5c:20:fc:1c:20:cc: 2d:df:b3:26:b5:ba:68:cf:74:51:81:ed:46:3c:2d:e3:4e:aa: 14:16:5e:5a:8d:4b:74:c0:39:8a:90:91:41:d4:e1:c1:c7:c5: 7b:aa:44:46:05:01:5c:63:f2:9d:44:ff:5f:44:e1:4b:56:b7: 32:6f:53:05:da:b9:6f:91:dd:ce:c0:d5:65:54:f7:70:3f:76: 2e:76:f2:7d:69:da:8a:ac:91:24:aa:b5:da:9b:20:39:21:3c: 3a:28:c7:40 -----BEGIN CERTIFICATE----- MIIFQzCCBCugAwIBAgIUbcDM1OHFGBYRp7iP1jRBPBbTl1QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYzIzMDJhZjE0M2MxNWRhYWQ1MDA0MmQ4NDU1ZTY4OWQw ODI4ZWNhOTAeFw0yNTEyMDUxNDQyMTRaFw0yNjEyMDQxNDQ3MTRaMDMxMTAvBgNV BAMTKDk4MzNERDQzMzY0RDlCRkIzNEJFMUM4RUJCRjkzQzEwMUZGRjk5NjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDSTZNRQTpVto2/uwm5MlU/Prh nMz6CjxLpIF2EdGb0I/EQnpYGATWVYpAY6K3F1GLITVSIlL8H3VynT9wJtWp0Sb5 WNVCo0UprdyPNmjWPS/TWgbMQ1+vHZMUNk1BmIrja2oiQrQJlKblLHYJ1z5ZLcSq 18OPyI/fHlhuXerzjmZxiA5b0cuCgC6eBih9N3RtBxV8fAXaUJszMopEtJS0DIE2 6Zfdi1VLCVMcOvpuAXRqonZ4D2Nkc6QKGW6HdtUrzlOgN/Fi2FgQ0q1/0DJmiSXt s3YK8Le2GIKJ6gjPV4O9RoA5yE+7Hc9O+cDWMJ1a1Xp7LKpuay5CshgvuOEtAgMB AAGjggJNMIICSTAdBgNVHQ4EFgQUmDPdQzZNm/s0vhyOu/k8EB//mWcwHwYDVR0j BBgwFoAUwjAq8UPBXarVAELYRV5onQgo7KkwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYTkzY2I1NWMtOTU3MS00NGM4LTkwZTEtOTY1YjkyNzY5 ZTRlLzAvQzIzMDJBRjE0M0MxNURBQUQ1MDA0MkQ4NDU1RTY4OUQwODI4RUNBOS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3dqQXE4VVBCWGFyVkFFTFlSVjVvblFn bzdLay5jZXIweAYIKwYBBQUHAQsEbDBqMGgGCCsGAQUFBzALhlxyc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2E5M2NiNTVjLTk1NzEt NDRjOC05MGUxLTk2NWI5Mjc2OWU0ZS8wL0FTODM0LnJvYTAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMGUGCCsGAQUFBwEHAQH/BFYwVDBSBAIAATBMAwQAjQsiMAwD BACNCycDBACNCygDBACNCzEDBAGNC4wDBACNC5ADBACNC6wDBAGNC64wDAMEAI0L xQMEAI0LxgMEAo0L2AMEAI0L8zANBgkqhkiG9w0BAQsFAAOCAQEARhI6P2r+YD/b pQFeYpW4nm1GWAm9UBiLU7iEJ9iBlV8noM330R/IZCJuVpCNdIu7Qgjn6VdNw+vX mJ5frfMiKWfagq0ZfuL1XU8PDxV7WT9Cp3rDEB7gJuYBMm3nKoqL68GFsRCwMI0a b0LMstBhIQVrI1goHbEBvI5PiZSjzqs5HimJ/cYI/UjWNA0Y2Ib25UX+L9xc7WVT uGCKXCD8HCDMLd+zJrW6aM90UYHtRjwt406qFBZeWo1LdMA5ipCRQdThwcfFe6pE RgUBXGPynUT/X0ThS1a3Mm9TBdq5b5HdzsDVZVT3cD92LnbyfWnaiqyRJKq12psg OSE8OijHQA== -----END CERTIFICATE-----Generated at Sat Dec 6 21:38:58 2025 by rpki-client