This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS5650.roa File: AS5650.roa (raw, json) Hash identifier: qzp3PMgBXFIRfdUU73vie7IUMuXgB/qetwhV9Oe8sQM= Subject key identifier: CA:58:E2:66:EE:5E:BE:BB:D8:73:B2:7E:A8:F9:C5:A8:E6:11:52:03 Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f Certificate serial: 4450FFD8D3D294C4479294F6763E57614B06F74D Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS5650.roa Signing time: Wed 26 Nov 2025 00:03:21 +0000 ROA not before: Tue 25 Nov 2025 23:58:21 +0000 ROA not after: Wed 25 Nov 2026 00:03:21 +0000 asID: 5650 IP address blocks: 46.203.160.0/24 maxlen: 24 46.203.164.0/24 maxlen: 24 92.112.32.0/24 maxlen: 24 92.112.33.0/24 maxlen: 24 92.112.34.0/24 maxlen: 24 92.112.35.0/24 maxlen: 24 92.112.40.0/21 maxlen: 24 92.112.157.0/24 maxlen: 24 92.113.215.0/24 maxlen: 24 95.134.120.0/24 maxlen: 24 95.135.38.0/24 maxlen: 24 95.135.85.0/24 maxlen: 24 95.135.127.0/24 maxlen: 24 95.135.138.0/24 maxlen: 24 95.135.180.0/24 maxlen: 24 95.135.219.0/24 maxlen: 24 178.92.220.0/24 maxlen: 24 178.95.190.0/24 maxlen: 24 178.95.191.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 06:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:50:ff:d8:d3:d2:94:c4:47:92:94:f6:76:3e:57:61:4b:06:f7:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f Validity Not Before: Nov 25 23:58:21 2025 GMT Not After : Nov 25 00:03:21 2026 GMT Subject: CN=CA58E266EE5EBEBBD873B27EA8F9C5A8E6115203 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:af:c9:2c:b1:7e:91:a5:15:17:a5:ae:68:06: e5:cb:60:85:45:c5:d8:bf:4f:43:7e:27:01:5b:9c: ec:b5:90:c0:46:36:df:cc:df:cd:2e:56:5f:85:85: c5:41:f8:c6:5e:38:40:5e:c5:fc:10:c3:a4:93:8a: 79:89:a0:a2:5a:58:93:0d:f9:fe:ab:68:e0:5e:c6: 11:68:d3:ed:d2:28:c9:32:87:f1:a0:59:50:d4:0a: 78:08:90:c0:a7:85:33:33:30:3d:79:0a:9c:04:e5: 6a:10:67:84:29:2b:9b:56:14:25:e6:c6:4c:35:a1: 1b:c0:bd:18:08:2f:1f:8e:3e:75:fb:5a:a3:4a:5b: a3:36:44:78:08:72:31:ab:42:e0:20:51:d7:68:eb: 18:94:bb:75:9a:db:c0:3e:f2:3b:82:77:0b:0d:4a: b1:56:f7:04:d1:27:d5:43:44:92:13:ce:d5:2d:7e: e5:02:0e:f9:51:fe:95:31:13:c3:2a:5c:bb:9c:ef: 60:fa:be:a0:cb:62:38:ea:61:9f:03:9c:6c:ea:d3: 25:29:e5:7c:53:c1:4d:d3:b7:36:19:a3:8b:88:bb: 41:27:09:82:6a:fb:84:88:b5:28:58:c8:1d:17:1d: 45:f2:ef:62:2b:47:ed:f7:27:3f:f3:3b:be:8a:c6: 05:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:58:E2:66:EE:5E:BE:BB:D8:73:B2:7E:A8:F9:C5:A8:E6:11:52:03 X509v3 Authority Key Identifier: keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS5650.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 46.203.160.0/24 46.203.164.0/24 92.112.32.0/22 92.112.40.0/21 92.112.157.0/24 92.113.215.0/24 95.134.120.0/24 95.135.38.0/24 95.135.85.0/24 95.135.127.0/24 95.135.138.0/24 95.135.180.0/24 95.135.219.0/24 178.92.220.0/24 178.95.190.0/23 Signature Algorithm: sha256WithRSAEncryption 74:34:68:54:97:52:9c:5e:9a:b7:f1:a9:00:a5:4a:5c:fe:0e: 96:4f:31:ac:19:bb:81:61:6b:4b:39:07:f7:58:c8:0d:0e:42: 19:d6:cd:ef:0b:e3:df:f0:77:8f:c5:2a:b5:1d:df:d7:2d:b7: 3d:37:c3:9a:f2:a6:c6:ae:1d:d6:6f:5b:74:eb:b7:a0:8f:f1: bd:2d:ad:8e:93:d0:bf:1a:eb:b8:ba:e1:fc:0e:77:36:38:c0: a5:f5:06:01:c2:c8:f0:31:8c:f3:aa:84:e4:c0:5b:61:c0:e3: 4c:43:f4:02:54:39:5c:b4:bd:7a:48:bb:fa:dc:7b:0c:ce:3e: d7:31:b8:82:04:50:b4:66:fd:d2:c3:9c:d7:d0:db:57:f1:1e: 47:8a:cd:d6:78:2c:75:a6:4c:7e:59:d4:06:ac:4d:60:13:c4: 97:95:6f:e0:c4:dc:6b:8d:df:21:ad:9c:b0:52:01:3e:31:4a: fc:a2:34:b5:ea:1b:5f:f6:c8:3d:2d:00:91:6a:34:c2:32:77: 08:32:99:68:5d:f8:3a:2c:b8:0f:5c:83:46:d6:21:c6:89:46: bf:60:14:28:a3:1f:3e:f9:d6:19:4a:14:74:99:38:1e:44:7c: 70:e7:f8:32:aa:17:22:d6:e4:b2:93:fd:3e:08:6e:c3:f8:1b: b8:de:18:51 -----BEGIN CERTIFICATE----- MIIFUjCCBDqgAwIBAgIURFD/2NPSlMRHkpT2dj5XYUsG900wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOWJkODEzMzkxZTRhZjJhZTMxMDNjMTg5MWIyMjcyZDRk NWMxM2I1ZjAeFw0yNTExMjUyMzU4MjFaFw0yNjExMjUwMDAzMjFaMDMxMTAvBgNV BAMTKENBNThFMjY2RUU1RUJFQkJEODczQjI3RUE4RjlDNUE4RTYxMTUyMDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChr8kssX6RpRUXpa5oBuXLYIVF xdi/T0N+JwFbnOy1kMBGNt/M380uVl+FhcVB+MZeOEBexfwQw6STinmJoKJaWJMN +f6raOBexhFo0+3SKMkyh/GgWVDUCngIkMCnhTMzMD15CpwE5WoQZ4QpK5tWFCXm xkw1oRvAvRgILx+OPnX7WqNKW6M2RHgIcjGrQuAgUddo6xiUu3Wa28A+8juCdwsN SrFW9wTRJ9VDRJITztUtfuUCDvlR/pUxE8MqXLuc72D6vqDLYjjqYZ8DnGzq0yUp 5XxTwU3TtzYZo4uIu0EnCYJq+4SItShYyB0XHUXy72IrR+33Jz/zO76KxgVHAgMB AAGjggJcMIICWDAdBgNVHQ4EFgQUyljiZu5evrvYc7J+qPnFqOYRUgMwHwYDVR0j BBgwFoAUm9gTOR5K8q4xA8GJGyJy1NXBO18wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYzQ3OGY2ZjUtNDQ5YS00ODI3LTk5ZDUtYmY2YjkzYThm NmI0LzAvOUJEODEzMzkxRTRBRjJBRTMxMDNDMTg5MUIyMjcyRDRENUMxM0I1Ri5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL205Z1RPUjVLOHE0eEE4R0pHeUp5MU5Y Qk8xOC5jZXIweQYIKwYBBQUHAQsEbTBrMGkGCCsGAQUFBzALhl1yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2M0NzhmNmY1LTQ0OWEt NDgyNy05OWQ1LWJmNmI5M2E4ZjZiNC8wL0FTNTY1MC5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjBzBggrBgEFBQcBBwEB/wRkMGIwYAQCAAEwWgMEAC7LoAME AC7LpAMEAlxwIAMEA1xwKAMEAFxwnQMEAFxx1wMEAF+GeAMEAF+HJgMEAF+HVQME AF+HfwMEAF+HigMEAF+HtAMEAF+H2wMEALJc3AMEAbJfvjANBgkqhkiG9w0BAQsF AAOCAQEAdDRoVJdSnF6at/GpAKVKXP4Olk8xrBm7gWFrSzkH91jIDQ5CGdbN7wvj 3/B3j8UqtR3f1y23PTfDmvKmxq4d1m9bdOu3oI/xvS2tjpPQvxrruLrh/A53NjjA pfUGAcLI8DGM86qE5MBbYcDjTEP0AlQ5XLS9eki7+tx7DM4+1zG4ggRQtGb90sOc 19DbV/EeR4rN1ngsdaZMflnUBqxNYBPEl5Vv4MTca43fIa2csFIBPjFK/KI0teob X/bIPS0AkWo0wjJ3CDKZaF34Oiy4D1yDRtYhxolGv2AUKKMfPvnWGUoUdJk4HkR8 cOf4MqoXItbkspP9Pghuw/gbuN4YUQ== -----END CERTIFICATE-----Generated at Sat Dec 6 17:31:50 2025 by rpki-client