This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c409d7b2-ee64-49f1-ad81-8e4a107d62e0/0/AS208483.roa File: AS208483.roa (raw, json) Hash identifier: 03XfQsFWrVNtGP6M+jiR3LQqWecbAU28CsjSsRyGV48= Subject key identifier: FE:C8:1D:2B:AF:D8:17:36:A5:84:D3:C5:56:D7:BD:0B:B9:DE:24:34 Certificate issuer: /CN=88c14ec02adbf083138eddd47871176ddeb93d9d Certificate serial: 20113AF0D822B2501887B2962C59EE80BF3B1B77 Authority key identifier: 88:C1:4E:C0:2A:DB:F0:83:13:8E:DD:D4:78:71:17:6D:DE:B9:3D:9D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iMFOwCrb8IMTjt3UeHEXbd65PZ0.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c409d7b2-ee64-49f1-ad81-8e4a107d62e0/0/AS208483.roa Signing time: Mon 01 Dec 2025 00:15:22 +0000 ROA not before: Mon 01 Dec 2025 00:10:22 +0000 ROA not after: Mon 30 Nov 2026 00:15:22 +0000 asID: 208483 IP address blocks: 143.20.20.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c409d7b2-ee64-49f1-ad81-8e4a107d62e0/0/88C14EC02ADBF083138EDDD47871176DDEB93D9D.crl rsync://rsync.paas.rpki.ripe.net/repository/c409d7b2-ee64-49f1-ad81-8e4a107d62e0/0/88C14EC02ADBF083138EDDD47871176DDEB93D9D.mft rsync://rpki.ripe.net/repository/DEFAULT/iMFOwCrb8IMTjt3UeHEXbd65PZ0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 10:26:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:11:3a:f0:d8:22:b2:50:18:87:b2:96:2c:59:ee:80:bf:3b:1b:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=88c14ec02adbf083138eddd47871176ddeb93d9d Validity Not Before: Dec 1 00:10:22 2025 GMT Not After : Nov 30 00:15:22 2026 GMT Subject: CN=FEC81D2BAFD81736A584D3C556D7BD0BB9DE2434 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:29:54:e9:01:f9:fd:28:70:d7:aa:b2:54:b2: 77:f8:9d:f1:73:35:18:50:6a:4d:02:97:3b:68:fa: cc:4c:86:a2:f4:04:da:0d:33:31:95:4c:ee:53:8a: d3:d1:31:ff:49:0d:ce:2f:30:e2:e1:e2:58:28:97: 0b:ce:c7:53:0b:69:a4:25:a7:a1:67:63:36:a8:e0: eb:66:19:84:54:2d:e8:04:7c:08:95:a1:e9:57:e1: ae:95:93:ca:10:04:db:4b:c8:c7:d4:8f:5c:fd:fc: 30:aa:76:8d:81:e2:d1:9b:5a:fe:60:2f:72:5e:86: e2:78:b1:d2:af:d0:eb:56:77:ec:fd:5a:37:b3:71: b9:c3:46:d7:32:42:10:cc:f0:42:0c:a5:1d:01:f3: cc:41:77:ed:76:66:e5:e4:9c:10:cf:e2:f0:a0:45: 8a:e7:e0:69:25:ac:00:00:d2:23:40:da:55:32:77: 4f:16:31:53:83:1e:64:7b:69:e3:f1:c0:59:68:ef: ba:9c:f6:9f:c3:b8:5f:66:bc:64:80:c4:56:8b:99: 25:6d:0b:be:a6:93:01:55:14:df:71:30:12:7a:84: 2d:b5:0f:79:61:93:21:93:23:51:88:da:b3:86:66: 48:33:94:a6:ad:e6:45:c6:8e:34:52:18:12:fb:d2: c7:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:C8:1D:2B:AF:D8:17:36:A5:84:D3:C5:56:D7:BD:0B:B9:DE:24:34 X509v3 Authority Key Identifier: keyid:88:C1:4E:C0:2A:DB:F0:83:13:8E:DD:D4:78:71:17:6D:DE:B9:3D:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/c409d7b2-ee64-49f1-ad81-8e4a107d62e0/0/88C14EC02ADBF083138EDDD47871176DDEB93D9D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iMFOwCrb8IMTjt3UeHEXbd65PZ0.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c409d7b2-ee64-49f1-ad81-8e4a107d62e0/0/AS208483.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 143.20.20.0/24 Signature Algorithm: sha256WithRSAEncryption 61:ae:81:d2:7e:cf:ae:67:78:ee:f6:5a:d3:8d:da:a8:d9:c9: 29:36:1d:c6:4a:65:52:bb:41:34:87:28:85:34:7e:71:67:4a: 25:7e:d9:bd:8d:8e:ea:79:a0:01:7e:89:ea:3f:fa:27:76:ac: 70:76:8b:b5:7a:58:01:54:29:05:98:44:1b:f3:23:9d:d3:18: 2a:fc:1b:61:33:ad:7b:e5:eb:00:d4:35:e0:c1:dc:6a:a6:5f: 6f:83:80:57:b9:48:83:5b:42:52:06:1a:de:14:19:77:46:21: 13:c7:c8:45:78:5f:7a:59:78:cd:18:3b:39:0f:0a:97:68:f7: 4f:eb:49:6e:10:5f:25:a0:2f:c8:30:a5:fc:db:6d:c7:0c:85: b5:6a:5e:b5:99:f1:5e:62:96:f8:97:34:5b:9c:90:5d:c6:17: c3:41:5a:fd:78:ec:74:05:94:dd:64:16:d9:7e:d4:51:80:6e: 59:de:fc:c4:39:53:28:2c:9d:4e:a7:72:74:3b:ac:6a:30:52: 5f:64:b9:11:6f:76:ef:2d:83:aa:15:2c:7e:5a:3f:95:7b:40: 4e:aa:a1:ab:cb:9f:5d:a1:43:da:37:b8:29:c7:74:fb:d3:af: b2:ed:c0:74:72:16:d4:20:4e:32:30:df:53:44:b8:3b:76:9f: e7:5d:25:a4 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgIUIBE68NgislAYh7KWLFnugL87G3cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODhjMTRlYzAyYWRiZjA4MzEzOGVkZGQ0Nzg3MTE3NmRk ZWI5M2Q5ZDAeFw0yNTEyMDEwMDEwMjJaFw0yNjExMzAwMDE1MjJaMDMxMTAvBgNV BAMTKEZFQzgxRDJCQUZEODE3MzZBNTg0RDNDNTU2RDdCRDBCQjlERTI0MzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDeKVTpAfn9KHDXqrJUsnf4nfFz NRhQak0Clzto+sxMhqL0BNoNMzGVTO5TitPRMf9JDc4vMOLh4lgolwvOx1MLaaQl p6FnYzao4OtmGYRULegEfAiVoelX4a6Vk8oQBNtLyMfUj1z9/DCqdo2B4tGbWv5g L3JehuJ4sdKv0OtWd+z9WjezcbnDRtcyQhDM8EIMpR0B88xBd+12ZuXknBDP4vCg RYrn4GklrAAA0iNA2lUyd08WMVODHmR7aePxwFlo77qc9p/DuF9mvGSAxFaLmSVt C76mkwFVFN9xMBJ6hC21D3lhkyGTI1GI2rOGZkgzlKat5kXGjjRSGBL70se/AgMB AAGjggIKMIICBjAdBgNVHQ4EFgQU/sgdK6/YFzalhNPFVte9C7neJDQwHwYDVR0j BBgwFoAUiMFOwCrb8IMTjt3UeHEXbd65PZ0wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYzQwOWQ3YjItZWU2NC00OWYxLWFkODEtOGU0YTEwN2Q2 MmUwLzAvODhDMTRFQzAyQURCRjA4MzEzOEVEREQ0Nzg3MTE3NkRERUI5M0Q5RC5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2lNRk93Q3JiOElNVGp0M1VlSEVYYmQ2 NVBaMC5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2M0MDlkN2IyLWVlNjQt NDlmMS1hZDgxLThlNGExMDdkNjJlMC8wL0FTMjA4NDgzLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAjxQU MA0GCSqGSIb3DQEBCwUAA4IBAQBhroHSfs+uZ3ju9lrTjdqo2ckpNh3GSmVSu0E0 hyiFNH5xZ0olftm9jY7qeaABfonqP/ondqxwdou1elgBVCkFmEQb8yOd0xgq/Bth M6175esA1DXgwdxqpl9vg4BXuUiDW0JSBhreFBl3RiETx8hFeF96WXjNGDs5DwqX aPdP60luEF8loC/IMKX8223HDIW1al61mfFeYpb4lzRbnJBdxhfDQVr9eOx0BZTd ZBbZftRRgG5Z3vzEOVMoLJ1Op3J0O6xqMFJfZLkRb3bvLYOqFSx+Wj+Ve0BOqqGr y59doUPaN7gpx3T706+y7cB0chbUIE4yMN9TRLg7dp/nXSWk -----END CERTIFICATE-----Generated at Sat Dec 6 16:41:07 2025 by rpki-client