This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c409d7b2-ee64-49f1-ad81-8e4a107d62e0/0/AS205886.roa File: AS205886.roa (raw, json) Hash identifier: WeW87OyHIUe5ZR0h06WU4HTYsLF8TowrGjJcOBZvvOU= Subject key identifier: 1F:E6:18:AB:A2:61:41:16:E0:32:0A:D7:C6:63:91:54:64:CA:52:0C Certificate issuer: /CN=88c14ec02adbf083138eddd47871176ddeb93d9d Certificate serial: 62827D276CD009FA37DF0D67CC8C6868082332F5 Authority key identifier: 88:C1:4E:C0:2A:DB:F0:83:13:8E:DD:D4:78:71:17:6D:DE:B9:3D:9D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iMFOwCrb8IMTjt3UeHEXbd65PZ0.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c409d7b2-ee64-49f1-ad81-8e4a107d62e0/0/AS205886.roa Signing time: Sat 15 Nov 2025 08:43:24 +0000 ROA not before: Sat 15 Nov 2025 08:38:24 +0000 ROA not after: Sat 14 Nov 2026 08:43:24 +0000 asID: 205886 IP address blocks: 143.20.8.0/24 maxlen: 24 143.20.74.0/24 maxlen: 24 143.20.179.0/24 maxlen: 24 143.20.205.0/24 maxlen: 24 143.20.206.0/24 maxlen: 24 143.20.221.0/24 maxlen: 24 143.20.223.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c409d7b2-ee64-49f1-ad81-8e4a107d62e0/0/88C14EC02ADBF083138EDDD47871176DDEB93D9D.crl rsync://rsync.paas.rpki.ripe.net/repository/c409d7b2-ee64-49f1-ad81-8e4a107d62e0/0/88C14EC02ADBF083138EDDD47871176DDEB93D9D.mft rsync://rpki.ripe.net/repository/DEFAULT/iMFOwCrb8IMTjt3UeHEXbd65PZ0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:82:7d:27:6c:d0:09:fa:37:df:0d:67:cc:8c:68:68:08:23:32:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=88c14ec02adbf083138eddd47871176ddeb93d9d Validity Not Before: Nov 15 08:38:24 2025 GMT Not After : Nov 14 08:43:24 2026 GMT Subject: CN=1FE618ABA2614116E0320AD7C663915464CA520C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:c2:47:40:5a:ba:f1:fe:3b:65:10:7c:65:be: 6e:68:e7:07:6c:a5:f0:0e:2e:86:31:49:c8:15:26: 2d:c0:6d:64:95:c3:e2:11:39:cb:a1:4f:75:90:6a: 26:a7:90:26:6b:47:69:80:14:88:5f:f3:1c:7e:d1: cd:d4:37:38:e9:15:fd:ea:b9:a7:32:85:bb:39:c6: 6b:5e:fd:d3:e7:3c:66:c2:a1:f0:cc:e7:9d:04:0a: 85:f3:8b:e6:0f:45:7f:97:09:1f:4b:08:15:5c:ca: b9:40:7b:7c:ab:56:d1:29:d5:2c:73:af:3c:8c:76: ef:91:a0:ac:c6:6d:7f:6c:75:61:1c:be:a9:00:48: 8a:27:c4:1b:da:79:63:7b:81:6b:ae:44:0f:30:2e: 7d:5d:ac:f1:9e:8d:aa:5f:f7:04:b2:10:95:b6:fb: 61:68:3a:f2:4b:b3:6f:0e:4b:fc:51:1f:31:69:0e: 7d:f1:f9:6e:1a:43:e2:a7:fa:18:c4:74:a7:9e:00: ef:0c:8b:93:6d:2c:41:18:54:77:30:e3:33:fd:43: 57:ba:93:92:7e:2f:57:8e:2c:d9:ea:17:2d:98:8c: 44:a6:52:6c:ec:0b:6d:e4:d0:41:ec:44:61:28:83: cf:db:46:8c:22:e8:7c:06:eb:a3:97:87:2b:0c:1e: 1a:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:E6:18:AB:A2:61:41:16:E0:32:0A:D7:C6:63:91:54:64:CA:52:0C X509v3 Authority Key Identifier: keyid:88:C1:4E:C0:2A:DB:F0:83:13:8E:DD:D4:78:71:17:6D:DE:B9:3D:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/c409d7b2-ee64-49f1-ad81-8e4a107d62e0/0/88C14EC02ADBF083138EDDD47871176DDEB93D9D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iMFOwCrb8IMTjt3UeHEXbd65PZ0.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c409d7b2-ee64-49f1-ad81-8e4a107d62e0/0/AS205886.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 143.20.8.0/24 143.20.74.0/24 143.20.179.0/24 143.20.205.0-143.20.206.255 143.20.221.0/24 143.20.223.0/24 Signature Algorithm: sha256WithRSAEncryption 77:fa:1c:a6:c6:d2:58:73:db:74:f0:43:8c:f0:2f:3e:db:4b: 89:d3:d2:2f:15:b1:4e:49:f9:16:2b:a1:3a:6b:b6:cc:38:a3: ed:d9:84:55:f7:5f:31:e3:fe:80:74:a1:17:51:93:33:a4:08: 84:43:66:60:ad:67:5a:34:fb:cd:0d:20:5f:48:0b:6a:76:f0: 76:77:e3:ed:58:12:da:05:f0:f2:50:c6:75:99:9c:59:e1:24: 3a:d8:34:c3:ab:68:99:c5:bd:db:74:17:30:e6:11:05:e8:76: b6:39:1e:35:e6:f7:ab:57:0d:c6:a5:e4:12:72:06:75:1e:53: 4d:f6:78:e7:48:8b:1c:c4:4e:46:be:4a:db:74:96:43:d7:96: de:56:05:84:3c:2a:43:a3:d1:26:86:0f:be:56:de:d0:d6:ed: c8:de:d3:b5:62:07:ec:4a:75:85:5d:c1:4a:41:98:c8:98:b4: c9:28:79:8d:17:8c:b6:94:3c:d7:0c:ed:9b:14:86:32:2d:a2: ee:b8:38:07:7f:18:75:5f:54:77:d4:79:22:32:d4:36:89:5d: 84:b8:c9:cc:6c:fa:ba:f1:2a:43:96:96:11:51:71:f4:3d:8a: 1a:6c:eb:80:8c:3b:4e:15:e6:22:9a:a8:ac:d4:20:1b:5c:fc: a2:65:10:d1 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUYoJ9J2zQCfo33w1nzIxoaAgjMvUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODhjMTRlYzAyYWRiZjA4MzEzOGVkZGQ0Nzg3MTE3NmRk ZWI5M2Q5ZDAeFw0yNTExMTUwODM4MjRaFw0yNjExMTQwODQzMjRaMDMxMTAvBgNV BAMTKDFGRTYxOEFCQTI2MTQxMTZFMDMyMEFEN0M2NjM5MTU0NjRDQTUyMEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCywkdAWrrx/jtlEHxlvm5o5wds pfAOLoYxScgVJi3AbWSVw+IROcuhT3WQaiankCZrR2mAFIhf8xx+0c3UNzjpFf3q uacyhbs5xmte/dPnPGbCofDM550ECoXzi+YPRX+XCR9LCBVcyrlAe3yrVtEp1Sxz rzyMdu+RoKzGbX9sdWEcvqkASIonxBvaeWN7gWuuRA8wLn1drPGejapf9wSyEJW2 +2FoOvJLs28OS/xRHzFpDn3x+W4aQ+Kn+hjEdKeeAO8Mi5NtLEEYVHcw4zP9Q1e6 k5J+L1eOLNnqFy2YjESmUmzsC23k0EHsRGEog8/bRowi6HwG66OXhysMHhoLAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUH+YYq6JhQRbgMgrXxmORVGTKUgwwHwYDVR0j BBgwFoAUiMFOwCrb8IMTjt3UeHEXbd65PZ0wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYzQwOWQ3YjItZWU2NC00OWYxLWFkODEtOGU0YTEwN2Q2 MmUwLzAvODhDMTRFQzAyQURCRjA4MzEzOEVEREQ0Nzg3MTE3NkRERUI5M0Q5RC5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2lNRk93Q3JiOElNVGp0M1VlSEVYYmQ2 NVBaMC5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2M0MDlkN2IyLWVlNjQt NDlmMS1hZDgxLThlNGExMDdkNjJlMC8wL0FTMjA1ODg2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMEUGCCsGAQUFBwEHAQH/BDYwNDAyBAIAATAsAwQAjxQI AwQAjxRKAwQAjxSzMAwDBACPFM0DBACPFM4DBACPFN0DBACPFN8wDQYJKoZIhvcN AQELBQADggEBAHf6HKbG0lhz23TwQ4zwLz7bS4nT0i8VsU5J+RYroTprtsw4o+3Z hFX3XzHj/oB0oRdRkzOkCIRDZmCtZ1o0+80NIF9IC2p28HZ34+1YEtoF8PJQxnWZ nFnhJDrYNMOraJnFvdt0FzDmEQXodrY5HjXm96tXDcal5BJyBnUeU032eOdIixzE Tka+Stt0lkPXlt5WBYQ8KkOj0SaGD75W3tDW7cje07ViB+xKdYVdwUpBmMiYtMko eY0XjLaUPNcM7ZsUhjItou64OAd/GHVfVHfUeSIy1DaJXYS4ycxs+rrxKkOWlhFR cfQ9ihps64CMO04V5iKaqKzUIBtc/KJlENE= -----END CERTIFICATE-----Generated at Sat Dec 6 10:54:03 2025 by rpki-client