This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS5065.roa File: AS5065.roa (raw, json) Hash identifier: 0MGdUybxZEu47o19K8tmWdiuuqdZ8kOQk1t7ns4plmk= Subject key identifier: F3:0D:9C:02:75:54:6A:52:37:E9:F3:0B:73:44:74:47:3F:98:B9:E2 Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f Certificate serial: 5F9DCBC5175A8BE54FD0683974BF4D9F65DE534E Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS5065.roa Signing time: Fri 14 Nov 2025 13:49:48 +0000 ROA not before: Fri 14 Nov 2025 13:44:48 +0000 ROA not after: Fri 13 Nov 2026 13:49:48 +0000 asID: 5065 IP address blocks: 91.124.124.0/23 maxlen: 24 91.124.136.0/23 maxlen: 24 91.124.142.0/23 maxlen: 24 91.124.150.0/23 maxlen: 24 91.124.202.0/23 maxlen: 24 91.124.210.0/23 maxlen: 24 92.112.158.0/24 maxlen: 24 95.135.52.0/23 maxlen: 24 95.135.56.0/23 maxlen: 24 95.135.74.0/23 maxlen: 24 95.135.86.0/23 maxlen: 24 95.135.92.0/23 maxlen: 24 95.135.94.0/23 maxlen: 24 95.135.106.0/23 maxlen: 24 95.135.108.0/24 maxlen: 24 95.135.118.0/24 maxlen: 24 95.135.246.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 06:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:9d:cb:c5:17:5a:8b:e5:4f:d0:68:39:74:bf:4d:9f:65:de:53:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f Validity Not Before: Nov 14 13:44:48 2025 GMT Not After : Nov 13 13:49:48 2026 GMT Subject: CN=F30D9C0275546A5237E9F30B734474473F98B9E2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:46:79:92:5f:48:85:1c:8c:11:51:7b:ba:d8: c7:7c:47:89:dc:ac:ec:1e:92:aa:2d:1a:06:b3:85: 03:78:5f:4c:2f:9a:2d:ad:49:49:a6:a7:18:31:75: 82:56:9f:81:5f:40:52:09:f5:4a:25:07:81:4b:c8: c6:85:dc:8f:73:0d:00:83:41:f7:9d:ac:4e:76:13: 89:3b:f5:3b:16:b2:99:d8:e4:7d:3d:60:73:e4:9f: cf:db:75:d9:60:25:92:6e:c9:bd:86:62:ed:b8:02: fc:73:8a:41:21:b8:53:4a:6d:2f:d0:fc:fd:e3:b4: 37:cd:dd:65:14:ff:5e:0c:c2:f0:4b:a2:7d:9b:fc: 7f:d4:44:36:27:55:d9:0e:76:5a:9a:26:5a:d8:e7: 71:eb:b5:34:bf:a5:09:6b:a5:64:36:18:fc:54:97: f6:24:3e:8f:c3:39:cc:e5:c2:9d:cb:ad:07:5a:a6: 85:55:fc:78:27:a6:0c:49:db:0e:a9:b7:c2:71:95: 31:17:97:98:c9:12:ac:86:99:5b:2d:a6:d8:c8:b4: d0:61:44:42:b2:62:68:df:1e:e0:aa:28:0d:81:81: 76:d8:b3:6c:45:ad:61:a9:25:d7:6d:5d:94:51:8d: d5:fe:5c:5b:a6:25:44:97:32:75:b0:49:c7:f5:42: 95:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:0D:9C:02:75:54:6A:52:37:E9:F3:0B:73:44:74:47:3F:98:B9:E2 X509v3 Authority Key Identifier: keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS5065.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.124.124.0/23 91.124.136.0/23 91.124.142.0/23 91.124.150.0/23 91.124.202.0/23 91.124.210.0/23 92.112.158.0/24 95.135.52.0/23 95.135.56.0/23 95.135.74.0/23 95.135.86.0/23 95.135.92.0/22 95.135.106.0-95.135.108.255 95.135.118.0/24 95.135.246.0/24 Signature Algorithm: sha256WithRSAEncryption 6d:f3:a6:19:e6:54:ac:e7:55:af:0b:b9:58:d9:1a:6f:3b:d4: cc:32:98:78:2b:55:74:39:3b:b3:40:34:bd:29:8d:49:b1:47: 85:63:41:a6:da:b0:57:a2:70:9b:17:ed:1d:6f:3a:4b:68:a3: 29:67:c2:05:f8:80:ec:29:c8:6a:97:e3:43:9f:21:cd:09:1a: 2f:5a:9d:28:5f:cb:cb:bb:bb:4e:0d:ad:52:63:cf:7b:64:ba: b8:49:d8:4f:cf:16:74:95:48:0b:a2:63:f7:19:e5:47:1e:61: e0:ef:61:dd:25:60:91:a4:03:7e:bf:9a:01:68:d2:2c:0b:63: a2:9f:26:99:db:10:96:84:16:11:84:88:b5:be:82:0a:e9:e4: 28:b5:95:01:b1:11:88:2c:c1:dd:f9:d2:29:37:ec:ef:0f:65: 82:c7:8e:66:d3:94:21:c8:a0:c9:9c:e3:85:42:1f:4d:55:10: 99:2c:15:ec:bc:8d:8e:7f:c1:f8:53:b0:6d:16:bb:d8:7a:31: 4d:27:dc:ab:4c:84:ba:77:7d:0b:af:91:21:7b:7b:b2:7e:6a: c4:15:c0:99:08:fb:8e:2a:d4:b2:8f:c7:9a:cc:1a:a0:a7:8b: bd:0f:b8:65:96:fa:40:cc:70:69:b3:47:06:49:d5:c1:c2:ef: 94:03:ff:0f -----BEGIN CERTIFICATE----- MIIFWjCCBEKgAwIBAgIUX53LxRdai+VP0Gg5dL9Nn2XeU04wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOWJkODEzMzkxZTRhZjJhZTMxMDNjMTg5MWIyMjcyZDRk NWMxM2I1ZjAeFw0yNTExMTQxMzQ0NDhaFw0yNjExMTMxMzQ5NDhaMDMxMTAvBgNV BAMTKEYzMEQ5QzAyNzU1NDZBNTIzN0U5RjMwQjczNDQ3NDQ3M0Y5OEI5RTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4RnmSX0iFHIwRUXu62Md8R4nc rOwekqotGgazhQN4X0wvmi2tSUmmpxgxdYJWn4FfQFIJ9UolB4FLyMaF3I9zDQCD QfedrE52E4k79TsWspnY5H09YHPkn8/bddlgJZJuyb2GYu24AvxzikEhuFNKbS/Q /P3jtDfN3WUU/14MwvBLon2b/H/URDYnVdkOdlqaJlrY53HrtTS/pQlrpWQ2GPxU l/YkPo/DOczlwp3LrQdapoVV/HgnpgxJ2w6pt8JxlTEXl5jJEqyGmVstptjItNBh REKyYmjfHuCqKA2BgXbYs2xFrWGpJddtXZRRjdX+XFumJUSXMnWwScf1QpURAgMB AAGjggJkMIICYDAdBgNVHQ4EFgQU8w2cAnVUalI36fMLc0R0Rz+YueIwHwYDVR0j BBgwFoAUm9gTOR5K8q4xA8GJGyJy1NXBO18wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYzQ3OGY2ZjUtNDQ5YS00ODI3LTk5ZDUtYmY2YjkzYThm NmI0LzAvOUJEODEzMzkxRTRBRjJBRTMxMDNDMTg5MUIyMjcyRDRENUMxM0I1Ri5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL205Z1RPUjVLOHE0eEE4R0pHeUp5MU5Y Qk8xOC5jZXIweQYIKwYBBQUHAQsEbTBrMGkGCCsGAQUFBzALhl1yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2M0NzhmNmY1LTQ0OWEt NDgyNy05OWQ1LWJmNmI5M2E4ZjZiNC8wL0FTNTA2NS5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjB7BggrBgEFBQcBBwEB/wRsMGowaAQCAAEwYgMEAVt8fAME AVt8iAMEAVt8jgMEAVt8lgMEAVt8ygMEAVt80gMEAFxwngMEAV+HNAMEAV+HOAME AV+HSgMEAV+HVgMEAl+HXDAMAwQBX4dqAwQAX4dsAwQAX4d2AwQAX4f2MA0GCSqG SIb3DQEBCwUAA4IBAQBt86YZ5lSs51WvC7lY2RpvO9TMMph4K1V0OTuzQDS9KY1J sUeFY0Gm2rBXonCbF+0dbzpLaKMpZ8IF+IDsKchql+NDnyHNCRovWp0oX8vLu7tO Da1SY897ZLq4SdhPzxZ0lUgLomP3GeVHHmHg72HdJWCRpAN+v5oBaNIsC2OinyaZ 2xCWhBYRhIi1voIK6eQotZUBsRGILMHd+dIpN+zvD2WCx45m05QhyKDJnOOFQh9N VRCZLBXsvI2Of8H4U7BtFrvYejFNJ9yrTIS6d30Lr5Ehe3uyfmrEFcCZCPuOKtSy j8eazBqgp4u9D7hllvpAzHBps0cGSdXBwu+UA/8P -----END CERTIFICATE-----Generated at Sat Dec 6 17:15:49 2025 by rpki-client