This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/22db7555-9aa4-4983-9316-73809dd354bc/0/AS215607.roa File: AS215607.roa (raw, json) Hash identifier: zz/4pZ29ma+j9IGHrOCXiUO6WajVwOT0F+zsKOMnWJ0= Subject key identifier: BE:AA:03:79:C3:59:4E:AF:D6:83:35:A8:D0:32:F8:7E:62:32:EB:DC Certificate issuer: /CN=3feccb17be51ee59ec74d64eed917e221ee28a1b Certificate serial: 63B63D990823CA953EE02641C7512FE6215F4056 Authority key identifier: 3F:EC:CB:17:BE:51:EE:59:EC:74:D6:4E:ED:91:7E:22:1E:E2:8A:1B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P-zLF75R7lnsdNZO7ZF-Ih7iihs.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/22db7555-9aa4-4983-9316-73809dd354bc/0/AS215607.roa Signing time: Fri 19 Dec 2025 05:20:07 +0000 ROA not before: Fri 19 Dec 2025 05:15:07 +0000 ROA not after: Fri 18 Dec 2026 05:20:07 +0000 asID: 215607 IP address blocks: 212.60.151.0/24 maxlen: 24 212.60.153.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/22db7555-9aa4-4983-9316-73809dd354bc/0/3FECCB17BE51EE59EC74D64EED917E221EE28A1B.crl rsync://rsync.paas.rpki.ripe.net/repository/22db7555-9aa4-4983-9316-73809dd354bc/0/3FECCB17BE51EE59EC74D64EED917E221EE28A1B.mft rsync://rpki.ripe.net/repository/DEFAULT/P-zLF75R7lnsdNZO7ZF-Ih7iihs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 13:06:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:b6:3d:99:08:23:ca:95:3e:e0:26:41:c7:51:2f:e6:21:5f:40:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3feccb17be51ee59ec74d64eed917e221ee28a1b Validity Not Before: Dec 19 05:15:07 2025 GMT Not After : Dec 18 05:20:07 2026 GMT Subject: CN=BEAA0379C3594EAFD68335A8D032F87E6232EBDC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:c7:0d:39:d2:30:ea:69:0a:3f:c9:ff:d1:00: 33:51:f3:e4:d7:7a:be:59:c6:84:51:5d:88:43:b1: bf:3f:b1:a6:f0:b2:bb:f2:14:51:28:57:09:66:7f: fd:65:5c:23:1c:44:d2:dc:8a:20:14:42:5a:ef:e2: d5:15:91:4b:46:da:75:0c:38:f7:86:b0:83:14:4b: 64:90:66:73:cd:9c:f7:50:86:5d:68:51:9d:82:6d: c5:dc:20:21:92:f1:3a:06:58:99:5c:b1:39:40:e3: fe:c8:ae:b0:46:49:12:d7:90:3f:c1:9c:8f:98:79: 6d:4f:53:e3:0e:67:2a:7e:a0:82:4d:97:00:8c:8c: 27:5f:f0:b5:0e:60:79:9c:a1:83:65:c0:1a:79:f9: e1:8e:a7:83:9f:db:d7:33:e1:50:76:6a:53:1a:3d: 44:2b:98:11:95:40:7d:ce:a3:8e:aa:c6:34:7c:1e: 65:43:72:a0:da:ce:d5:a0:0d:b8:12:b7:9f:00:26: 19:46:04:b5:bb:60:2e:1c:33:dc:ad:61:b2:79:a0: 14:4c:f2:34:f8:df:ca:6f:f5:0c:0f:18:9b:1e:d0: 5f:c3:52:53:50:3c:a8:b5:bb:f4:a0:b0:66:ac:4b: 62:08:75:76:6c:03:69:0f:e4:8f:4b:44:6d:14:bf: ed:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:AA:03:79:C3:59:4E:AF:D6:83:35:A8:D0:32:F8:7E:62:32:EB:DC X509v3 Authority Key Identifier: keyid:3F:EC:CB:17:BE:51:EE:59:EC:74:D6:4E:ED:91:7E:22:1E:E2:8A:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/22db7555-9aa4-4983-9316-73809dd354bc/0/3FECCB17BE51EE59EC74D64EED917E221EE28A1B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P-zLF75R7lnsdNZO7ZF-Ih7iihs.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/22db7555-9aa4-4983-9316-73809dd354bc/0/AS215607.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 212.60.151.0/24 212.60.153.0/24 Signature Algorithm: sha256WithRSAEncryption 25:b4:24:d3:dc:db:a3:96:96:4d:86:6f:33:1e:1f:f9:66:c6: e4:64:12:29:5d:8c:76:e2:6f:d8:24:ed:2a:2a:f2:7a:89:0b: 79:f4:b6:cb:25:0e:4e:50:91:30:50:0d:31:ee:a8:60:74:6b: 46:01:1a:f0:04:e9:ac:91:0d:ff:24:15:7f:f8:74:09:dd:eb: c0:bf:19:0f:89:ab:01:97:a3:6a:ec:ff:27:b5:f7:e5:42:39: 0f:05:ea:75:2f:c8:fe:5f:cd:48:96:56:fa:8c:cb:ac:7c:9c: ba:06:91:2c:5a:e3:98:14:ac:84:03:97:c3:51:0e:96:33:49: 18:81:c7:c1:c6:22:b0:39:98:bd:2e:e6:f1:ea:a7:19:92:f6: 13:e1:7c:ef:67:db:dd:0e:62:67:88:b2:34:29:06:d3:83:c4: 2f:c0:2b:84:d4:2f:26:fd:e9:bc:18:e7:ce:2b:3e:85:11:41: 53:8c:c4:02:5a:d0:77:c1:5b:be:86:85:b3:d7:85:6c:64:2a: 2d:bf:c8:27:26:ab:b2:eb:e2:cb:7a:e5:20:31:c5:89:1c:e8: 83:ba:a4:31:e9:46:4f:33:19:2e:4a:e5:d2:44:80:18:f4:41: 95:c2:91:e7:17:e9:38:c2:fd:1c:d2:e0:6a:2b:98:09:01:04: 35:ab:57:82 -----BEGIN CERTIFICATE----- MIIFBjCCA+6gAwIBAgIUY7Y9mQgjypU+4CZBx1Ev5iFfQFYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM2ZlY2NiMTdiZTUxZWU1OWVjNzRkNjRlZWQ5MTdlMjIx ZWUyOGExYjAeFw0yNTEyMTkwNTE1MDdaFw0yNjEyMTgwNTIwMDdaMDMxMTAvBgNV BAMTKEJFQUEwMzc5QzM1OTRFQUZENjgzMzVBOEQwMzJGODdFNjIzMkVCREMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsxw050jDqaQo/yf/RADNR8+TX er5ZxoRRXYhDsb8/sabwsrvyFFEoVwlmf/1lXCMcRNLciiAUQlrv4tUVkUtG2nUM OPeGsIMUS2SQZnPNnPdQhl1oUZ2CbcXcICGS8ToGWJlcsTlA4/7IrrBGSRLXkD/B nI+YeW1PU+MOZyp+oIJNlwCMjCdf8LUOYHmcoYNlwBp5+eGOp4Of29cz4VB2alMa PUQrmBGVQH3Oo46qxjR8HmVDcqDaztWgDbgSt58AJhlGBLW7YC4cM9ytYbJ5oBRM 8jT438pv9QwPGJse0F/DUlNQPKi1u/SgsGasS2IIdXZsA2kP5I9LRG0Uv+3LAgMB AAGjggIQMIICDDAdBgNVHQ4EFgQUvqoDecNZTq/WgzWo0DL4fmIy69wwHwYDVR0j BBgwFoAUP+zLF75R7lnsdNZO7ZF+Ih7iihswDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjJkYjc1NTUtOWFhNC00OTgzLTkzMTYtNzM4MDlkZDM1 NGJjLzAvM0ZFQ0NCMTdCRTUxRUU1OUVDNzRENjRFRUQ5MTdFMjIxRUUyOEExQi5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1AtekxGNzVSN2xuc2ROWk83WkYtSWg3 aWlocy5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzIyZGI3NTU1LTlhYTQt NDk4My05MzE2LTczODA5ZGQzNTRiYy8wL0FTMjE1NjA3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQA1DyX AwQA1DyZMA0GCSqGSIb3DQEBCwUAA4IBAQAltCTT3NujlpZNhm8zHh/5ZsbkZBIp XYx24m/YJO0qKvJ6iQt59LbLJQ5OUJEwUA0x7qhgdGtGARrwBOmskQ3/JBV/+HQJ 3evAvxkPiasBl6Nq7P8ntfflQjkPBep1L8j+X81Illb6jMusfJy6BpEsWuOYFKyE A5fDUQ6WM0kYgcfBxiKwOZi9Lubx6qcZkvYT4XzvZ9vdDmJniLI0KQbTg8QvwCuE 1C8m/em8GOfOKz6FEUFTjMQCWtB3wVu+hoWz14VsZCotv8gnJquy6+LLeuUgMcWJ HOiDuqQx6UZPMxkuSuXSRIAY9EGVwpHnF+k4wv0c0uBqK5gJAQQ1q1eC -----END CERTIFICATE-----Generated at Fri Dec 19 18:43:47 2025 by rpki-client