This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/AS53667.roa File: AS53667.roa (raw, json) Hash identifier: iUkNeXo02nbgkh4+/yDwHiEyNqzGmWmmvuqKGMHnDzM= Subject key identifier: CE:58:C4:E2:43:29:E4:72:FB:82:1A:E5:9F:78:F5:AA:66:B1:82:36 Certificate issuer: /CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772 Certificate serial: 32C1E488BB0AC291D99451343A2D7C41F9718448 Authority key identifier: A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/AS53667.roa Signing time: Tue 09 Dec 2025 01:19:10 +0000 ROA not before: Tue 09 Dec 2025 01:14:10 +0000 ROA not after: Tue 08 Dec 2026 01:19:10 +0000 asID: 53667 IP address blocks: 2a14:7580:e400::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 18 Dec 2025 10:00:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:c1:e4:88:bb:0a:c2:91:d9:94:51:34:3a:2d:7c:41:f9:71:84:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772 Validity Not Before: Dec 9 01:14:10 2025 GMT Not After : Dec 8 01:19:10 2026 GMT Subject: CN=CE58C4E24329E472FB821AE59F78F5AA66B18236 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:88:cb:51:ea:41:d8:3f:5f:5e:8f:1b:06:93: dc:b2:6e:3e:a9:dd:0d:5c:9e:77:b2:78:ab:f6:fe: 64:6d:a0:42:2a:13:33:2e:13:cf:b6:d9:1f:7d:a3: b4:ed:64:d9:21:0b:e4:42:56:f3:f7:c1:bc:f4:3e: da:29:36:f0:11:b9:c6:bf:d6:6f:90:dc:60:80:f7: 1b:7f:06:a0:95:27:da:8d:a2:bb:ae:0a:c7:93:e1: 22:a0:5f:8b:13:95:eb:8c:41:98:56:96:b5:3b:6f: e5:30:2f:23:64:37:7e:32:2d:6b:37:fe:de:fc:e5: 18:fa:02:8a:e0:74:00:43:34:a6:e5:34:9a:c5:c2: f8:7d:fb:99:c2:3f:17:17:a2:33:f4:8c:b9:10:5a: 00:fb:3f:80:31:00:4f:30:c5:27:61:bd:72:9b:af: 17:b9:2e:6f:6b:d4:be:03:c4:91:2f:50:96:a1:ee: 86:fa:89:34:60:ed:54:66:45:5a:c2:f1:85:ab:8b: 61:eb:59:f7:6a:21:88:18:5e:2c:80:fd:ce:30:84: ff:7b:ff:0e:14:fb:f1:99:e7:f1:b4:56:6e:d9:74: 49:00:eb:57:49:06:38:34:ca:48:b6:24:63:b3:e4: f4:8e:d2:6d:ce:f9:07:4f:2d:34:55:15:b3:25:27: 5b:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:58:C4:E2:43:29:E4:72:FB:82:1A:E5:9F:78:F5:AA:66:B1:82:36 X509v3 Authority Key Identifier: keyid:A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/AS53667.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7580:e400::/40 Signature Algorithm: sha256WithRSAEncryption 92:77:3b:a7:11:50:2b:b1:a5:9e:59:72:c6:42:20:ef:f1:27: d6:f1:89:f1:e1:97:b2:38:3b:1e:23:95:a5:45:58:78:86:00: 6a:d7:c9:fa:9a:99:3d:e6:dd:af:ca:63:a4:f9:51:bd:39:a6: 8e:b5:6d:60:fb:cc:80:be:34:e4:00:7e:ef:f0:08:51:75:87: 11:48:09:0c:6e:ab:1a:68:d9:60:ec:89:aa:0d:73:34:63:e6: bd:3b:b3:b9:a0:13:f6:11:77:b0:74:b0:d3:0e:a6:eb:6d:10: 3b:74:46:32:e6:4f:3d:35:25:e0:e7:2c:63:8d:eb:49:b2:3b: 67:70:12:7a:a6:2c:fc:3e:74:f3:a1:ec:6c:87:92:5b:15:66: 5a:44:cf:eb:ce:0c:ae:8f:ad:94:3b:f1:8d:6f:32:5e:b4:84: ee:aa:a4:ac:13:c9:f8:ec:95:fa:0e:6b:87:41:72:3e:96:17: 94:15:b7:a3:a2:92:cc:81:7c:dc:7a:ab:43:e8:48:30:04:98: f3:4b:51:06:53:5e:e3:83:1f:c8:b9:b6:56:f2:54:34:c3:46: 5a:19:b0:ec:4e:45:e2:8e:07:a3:4d:39:a8:5a:01:cb:87:f4: 16:7a:6c:91:d0:a4:44:a8:67:e3:51:eb:ae:ba:f2:a2:69:61: f1:d0:d0:45 -----BEGIN CERTIFICATE----- MIIFATCCA+mgAwIBAgIUMsHkiLsKwpHZlFE0Oi18QflxhEgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYTgzZDQ4NjUyZjNiMmRmNzRmNmJmOWJhYThhOWMxNzRj Y2ZkMzc3MjAeFw0yNTEyMDkwMTE0MTBaFw0yNjEyMDgwMTE5MTBaMDMxMTAvBgNV BAMTKENFNThDNEUyNDMyOUU0NzJGQjgyMUFFNTlGNzhGNUFBNjZCMTgyMzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtiMtR6kHYP19ejxsGk9yybj6p 3Q1cnneyeKv2/mRtoEIqEzMuE8+22R99o7TtZNkhC+RCVvP3wbz0PtopNvARuca/ 1m+Q3GCA9xt/BqCVJ9qNoruuCseT4SKgX4sTleuMQZhWlrU7b+UwLyNkN34yLWs3 /t785Rj6AorgdABDNKblNJrFwvh9+5nCPxcXojP0jLkQWgD7P4AxAE8wxSdhvXKb rxe5Lm9r1L4DxJEvUJah7ob6iTRg7VRmRVrC8YWri2HrWfdqIYgYXiyA/c4whP97 /w4U+/GZ5/G0Vm7ZdEkA61dJBjg0yki2JGOz5PSO0m3O+QdPLTRVFbMlJ1vtAgMB AAGjggILMIICBzAdBgNVHQ4EFgQUzljE4kMp5HL7ghrln3j1qmaxgjYwHwYDVR0j BBgwFoAUqD1IZS87LfdPa/m6qKnBdMz9N3IwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvODkyNzBmNmMtYTNmZS00Mjk5LWIwNzktMzA5ZWQ5N2Yz ODI0LzAvQTgzRDQ4NjUyRjNCMkRGNzRGNkJGOUJBQThBOUMxNzRDQ0ZEMzc3Mi5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3FEMUlaUzg3TGZkUGFfbTZxS25CZE16 OU4zSS5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5Lzg5MjcwZjZjLWEzZmUt NDI5OS1iMDc5LTMwOWVkOTdmMzgyNC8wL0FTNTM2Njcucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgAqFHWA 5DANBgkqhkiG9w0BAQsFAAOCAQEAknc7pxFQK7GlnllyxkIg7/En1vGJ8eGXsjg7 HiOVpUVYeIYAatfJ+pqZPebdr8pjpPlRvTmmjrVtYPvMgL405AB+7/AIUXWHEUgJ DG6rGmjZYOyJqg1zNGPmvTuzuaAT9hF3sHSw0w6m620QO3RGMuZPPTUl4OcsY43r SbI7Z3ASeqYs/D5086HsbIeSWxVmWkTP684Mro+tlDvxjW8yXrSE7qqkrBPJ+OyV +g5rh0FyPpYXlBW3o6KSzIF83HqrQ+hIMASY80tRBlNe44MfyLm2VvJUNMNGWhmw 7E5F4o4Ho005qFoBy4f0FnpskdCkRKhn41Hrrrryomlh8dDQRQ== -----END CERTIFICATE-----Generated at Wed Dec 17 16:47:42 2025 by rpki-client