This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c409d7b2-ee64-49f1-ad81-8e4a107d62e0/0/AS59432.roa File: AS59432.roa (raw, json) Hash identifier: c65TDT/76fMKcb+4D8scdieDnPMTnYB07GXE0qrXlE4= Subject key identifier: B1:2F:17:E6:26:38:12:88:24:5A:77:66:F3:55:FF:91:6D:5D:4F:D7 Certificate issuer: /CN=88c14ec02adbf083138eddd47871176ddeb93d9d Certificate serial: 034B9A5449BA819C29FBB5DEF9D7D3AB6D0D067A Authority key identifier: 88:C1:4E:C0:2A:DB:F0:83:13:8E:DD:D4:78:71:17:6D:DE:B9:3D:9D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iMFOwCrb8IMTjt3UeHEXbd65PZ0.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c409d7b2-ee64-49f1-ad81-8e4a107d62e0/0/AS59432.roa Signing time: Thu 27 Nov 2025 11:26:36 +0000 ROA not before: Thu 27 Nov 2025 11:21:36 +0000 ROA not after: Thu 26 Nov 2026 11:26:36 +0000 asID: 59432 IP address blocks: 143.20.34.0/24 maxlen: 24 143.20.105.0/24 maxlen: 24 143.20.151.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c409d7b2-ee64-49f1-ad81-8e4a107d62e0/0/88C14EC02ADBF083138EDDD47871176DDEB93D9D.crl rsync://rsync.paas.rpki.ripe.net/repository/c409d7b2-ee64-49f1-ad81-8e4a107d62e0/0/88C14EC02ADBF083138EDDD47871176DDEB93D9D.mft rsync://rpki.ripe.net/repository/DEFAULT/iMFOwCrb8IMTjt3UeHEXbd65PZ0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:4b:9a:54:49:ba:81:9c:29:fb:b5:de:f9:d7:d3:ab:6d:0d:06:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=88c14ec02adbf083138eddd47871176ddeb93d9d Validity Not Before: Nov 27 11:21:36 2025 GMT Not After : Nov 26 11:26:36 2026 GMT Subject: CN=B12F17E626381288245A7766F355FF916D5D4FD7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:25:06:a7:af:ea:4a:27:41:7b:05:fe:08:99: 20:12:6f:16:14:3a:1e:b3:d0:8c:dd:4b:93:c0:df: 60:4c:04:d6:8a:7a:43:1a:dc:27:2f:2b:fa:87:1e: b2:45:c6:8e:e0:c2:75:6f:7b:64:b9:57:0c:df:98: b3:8c:db:f8:d2:9c:da:a6:ff:8c:ea:74:32:7e:2f: d6:c3:12:9e:8f:10:32:b7:8a:4d:60:cf:0a:02:7d: 64:66:b4:79:e8:63:04:5f:31:9f:a4:9d:52:73:db: d3:e2:e6:1b:9b:d2:96:08:26:d4:f9:bd:ce:08:56: 8c:7d:b4:3e:76:ff:30:5f:12:26:31:e9:7e:1a:ac: 70:d9:17:37:ae:4c:c8:39:98:13:e0:9b:13:92:f7: bb:1b:82:dd:59:66:1d:68:e4:ba:42:03:b3:d9:d4: 0f:ab:0b:df:bd:82:ff:9e:db:06:50:92:6f:c2:41: 9f:04:07:61:b6:3e:e7:16:20:a2:45:43:58:fc:96: 3e:7c:40:4b:94:20:dc:bd:cf:60:1a:07:e3:58:fe: 4c:fb:42:43:a5:ec:c5:82:c4:62:ea:8c:ff:11:d8: 05:55:0f:af:13:db:45:72:40:42:ec:c0:19:0a:78: ac:04:60:f1:b9:12:57:69:dd:45:f8:b5:29:29:00: 6b:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:2F:17:E6:26:38:12:88:24:5A:77:66:F3:55:FF:91:6D:5D:4F:D7 X509v3 Authority Key Identifier: keyid:88:C1:4E:C0:2A:DB:F0:83:13:8E:DD:D4:78:71:17:6D:DE:B9:3D:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/c409d7b2-ee64-49f1-ad81-8e4a107d62e0/0/88C14EC02ADBF083138EDDD47871176DDEB93D9D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iMFOwCrb8IMTjt3UeHEXbd65PZ0.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c409d7b2-ee64-49f1-ad81-8e4a107d62e0/0/AS59432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 143.20.34.0/24 143.20.105.0/24 143.20.151.0/24 Signature Algorithm: sha256WithRSAEncryption bf:4c:66:40:b6:dd:cc:b2:c9:3f:09:0f:71:8b:ab:79:d2:9e: 36:ae:77:89:13:3c:06:2b:2f:13:68:69:8e:09:30:40:aa:7e: 41:77:54:7f:80:ab:90:b7:df:64:30:a4:78:67:6a:02:63:43: 1f:eb:3a:74:ae:53:d9:1e:4d:51:bc:fd:a9:64:d9:5d:98:60: 66:ee:eb:bd:80:95:f9:71:5b:84:46:d5:cf:cc:8d:d3:7f:aa: 8f:76:10:dd:19:b4:be:f3:d2:a9:58:a9:8b:18:e7:2a:d4:3a: 6d:b5:4c:64:11:78:e2:25:89:7a:aa:86:25:ae:75:60:50:65: 03:85:e6:ce:b0:99:17:9b:7e:e4:bc:a5:76:d8:f3:78:41:1b: ad:77:01:e4:c8:c6:a4:68:d5:10:76:f2:7a:a5:ca:9b:23:de: ff:07:7e:dd:d4:f7:fc:a5:92:ea:2b:65:ff:a7:ba:de:85:04: 37:71:45:64:59:fe:e7:8b:89:d6:56:7b:ae:86:29:08:df:1b: a9:1a:97:7f:eb:e1:69:59:10:71:84:74:42:17:c6:3a:b1:e8: 21:12:3e:7c:5a:8a:db:1e:b7:b8:37:99:45:7e:03:bd:22:b5: 45:ba:f1:76:28:4c:2a:bf:21:df:d0:7e:b9:d9:60:ab:25:ed: a6:ee:cd:ab -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgIUA0uaVEm6gZwp+7Xe+dfTq20NBnowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODhjMTRlYzAyYWRiZjA4MzEzOGVkZGQ0Nzg3MTE3NmRk ZWI5M2Q5ZDAeFw0yNTExMjcxMTIxMzZaFw0yNjExMjYxMTI2MzZaMDMxMTAvBgNV BAMTKEIxMkYxN0U2MjYzODEyODgyNDVBNzc2NkYzNTVGRjkxNkQ1RDRGRDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8JQanr+pKJ0F7Bf4ImSASbxYU Oh6z0IzdS5PA32BMBNaKekMa3CcvK/qHHrJFxo7gwnVve2S5VwzfmLOM2/jSnNqm /4zqdDJ+L9bDEp6PEDK3ik1gzwoCfWRmtHnoYwRfMZ+knVJz29Pi5hub0pYIJtT5 vc4IVox9tD52/zBfEiYx6X4arHDZFzeuTMg5mBPgmxOS97sbgt1ZZh1o5LpCA7PZ 1A+rC9+9gv+e2wZQkm/CQZ8EB2G2PucWIKJFQ1j8lj58QEuUINy9z2AaB+NY/kz7 QkOl7MWCxGLqjP8R2AVVD68T20VyQELswBkKeKwEYPG5Eldp3UX4tSkpAGtbAgMB AAGjggIVMIICETAdBgNVHQ4EFgQUsS8X5iY4EogkWndm81X/kW1dT9cwHwYDVR0j BBgwFoAUiMFOwCrb8IMTjt3UeHEXbd65PZ0wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYzQwOWQ3YjItZWU2NC00OWYxLWFkODEtOGU0YTEwN2Q2 MmUwLzAvODhDMTRFQzAyQURCRjA4MzEzOEVEREQ0Nzg3MTE3NkRERUI5M0Q5RC5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2lNRk93Q3JiOElNVGp0M1VlSEVYYmQ2 NVBaMC5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2M0MDlkN2IyLWVlNjQt NDlmMS1hZDgxLThlNGExMDdkNjJlMC8wL0FTNTk0MzIucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwKwYIKwYBBQUHAQcBAf8EHDAaMBgEAgABMBIDBACPFCID BACPFGkDBACPFJcwDQYJKoZIhvcNAQELBQADggEBAL9MZkC23cyyyT8JD3GLq3nS njaud4kTPAYrLxNoaY4JMECqfkF3VH+Aq5C332QwpHhnagJjQx/rOnSuU9keTVG8 /alk2V2YYGbu672AlflxW4RG1c/MjdN/qo92EN0ZtL7z0qlYqYsY5yrUOm21TGQR eOIliXqqhiWudWBQZQOF5s6wmRebfuS8pXbY83hBG613AeTIxqRo1RB28nqlypsj 3v8Hft3U9/ylkuorZf+nut6FBDdxRWRZ/ueLidZWe66GKQjfG6kal3/r4WlZEHGE dEIXxjqx6CESPnxaitset7g3mUV+A70itUW68XYoTCq/Id/QfrnZYKsl7abuzas= -----END CERTIFICATE-----Generated at Sat Dec 6 13:37:36 2025 by rpki-client