This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c409d7b2-ee64-49f1-ad81-8e4a107d62e0/0/AS834.roa File: AS834.roa (raw, json) Hash identifier: cy2BAWNHiCuHIvtHKldNs9k0pYGt65LEhSLhEfRtSRU= Subject key identifier: 1F:EC:B4:82:2D:39:CC:97:62:86:0D:09:29:E7:C7:95:9B:B0:91:1D Certificate issuer: /CN=88c14ec02adbf083138eddd47871176ddeb93d9d Certificate serial: 04BF04DE130270C7E9524C8FA21A70D106D552F4 Authority key identifier: 88:C1:4E:C0:2A:DB:F0:83:13:8E:DD:D4:78:71:17:6D:DE:B9:3D:9D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iMFOwCrb8IMTjt3UeHEXbd65PZ0.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c409d7b2-ee64-49f1-ad81-8e4a107d62e0/0/AS834.roa Signing time: Sat 20 Dec 2025 16:01:59 +0000 ROA not before: Sat 20 Dec 2025 15:56:59 +0000 ROA not after: Sat 19 Dec 2026 16:01:59 +0000 asID: 834 IP address blocks: 143.20.7.0/24 maxlen: 24 143.20.11.0/24 maxlen: 24 143.20.21.0/24 maxlen: 24 143.20.22.0/24 maxlen: 24 143.20.25.0/24 maxlen: 24 143.20.26.0/24 maxlen: 24 143.20.35.0/24 maxlen: 24 143.20.45.0/24 maxlen: 24 143.20.48.0/24 maxlen: 24 143.20.53.0/24 maxlen: 24 143.20.56.0/23 maxlen: 24 143.20.59.0/24 maxlen: 24 143.20.60.0/24 maxlen: 24 143.20.63.0/24 maxlen: 24 143.20.80.0/24 maxlen: 24 143.20.103.0/24 maxlen: 24 143.20.105.0/24 maxlen: 24 143.20.106.0/24 maxlen: 24 143.20.116.0/24 maxlen: 24 143.20.120.0/24 maxlen: 24 143.20.145.0/24 maxlen: 24 143.20.180.0/24 maxlen: 24 143.20.182.0/24 maxlen: 24 143.20.194.0/24 maxlen: 24 143.20.214.0/23 maxlen: 24 143.20.237.0/24 maxlen: 24 143.20.239.0/24 maxlen: 24 143.20.244.0/23 maxlen: 24 143.20.248.0/23 maxlen: 24 143.20.252.0/23 maxlen: 24 143.20.254.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c409d7b2-ee64-49f1-ad81-8e4a107d62e0/0/88C14EC02ADBF083138EDDD47871176DDEB93D9D.crl rsync://rsync.paas.rpki.ripe.net/repository/c409d7b2-ee64-49f1-ad81-8e4a107d62e0/0/88C14EC02ADBF083138EDDD47871176DDEB93D9D.mft rsync://rpki.ripe.net/repository/DEFAULT/iMFOwCrb8IMTjt3UeHEXbd65PZ0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 22:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:bf:04:de:13:02:70:c7:e9:52:4c:8f:a2:1a:70:d1:06:d5:52:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=88c14ec02adbf083138eddd47871176ddeb93d9d Validity Not Before: Dec 20 15:56:59 2025 GMT Not After : Dec 19 16:01:59 2026 GMT Subject: CN=1FECB4822D39CC9762860D0929E7C7959BB0911D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:e4:ee:1d:a4:8c:5b:e4:86:1f:42:29:00:fb: b5:a6:f0:97:4c:7f:2a:ec:e4:e4:fe:92:a4:e1:21: c7:fc:a7:00:28:df:a7:63:67:7a:28:fc:04:a7:c1: 61:65:24:b8:af:a8:82:7f:86:fb:6e:6d:00:16:a3: 7a:e1:ae:c9:74:f9:73:cf:7e:ab:38:e5:2b:b8:cc: 66:34:1a:90:a7:34:e1:95:35:53:67:66:8a:eb:25: e7:2c:58:f1:2b:49:17:26:d0:cc:c6:28:be:09:91: 0a:f5:59:72:3f:a9:6c:63:c7:95:cf:9d:fa:6d:ab: bc:4b:4a:dd:d2:54:7f:2a:f0:75:8a:7a:f0:e1:65: b7:0c:b0:42:58:8f:11:69:5b:18:0f:17:01:bf:7e: 06:a2:b9:ec:bd:83:16:03:40:af:18:67:31:f1:1d: 21:73:89:22:20:41:4a:61:c7:1e:ce:d9:2f:12:ac: 58:36:48:40:67:f0:c7:a2:94:e9:02:2f:cf:82:37: bd:fc:2a:44:83:69:9d:d8:17:26:59:13:2f:dd:04: 15:44:ee:b0:8a:12:07:48:e6:4f:a7:24:05:44:63: b3:30:93:01:62:c1:d4:6f:04:03:87:b1:a2:4c:37: 5a:ee:6a:05:d5:66:8c:8a:a0:61:7c:e4:8e:da:98: e9:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:EC:B4:82:2D:39:CC:97:62:86:0D:09:29:E7:C7:95:9B:B0:91:1D X509v3 Authority Key Identifier: keyid:88:C1:4E:C0:2A:DB:F0:83:13:8E:DD:D4:78:71:17:6D:DE:B9:3D:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/c409d7b2-ee64-49f1-ad81-8e4a107d62e0/0/88C14EC02ADBF083138EDDD47871176DDEB93D9D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iMFOwCrb8IMTjt3UeHEXbd65PZ0.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c409d7b2-ee64-49f1-ad81-8e4a107d62e0/0/AS834.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 143.20.7.0/24 143.20.11.0/24 143.20.21.0-143.20.22.255 143.20.25.0-143.20.26.255 143.20.35.0/24 143.20.45.0/24 143.20.48.0/24 143.20.53.0/24 143.20.56.0/23 143.20.59.0-143.20.60.255 143.20.63.0/24 143.20.80.0/24 143.20.103.0/24 143.20.105.0-143.20.106.255 143.20.116.0/24 143.20.120.0/24 143.20.145.0/24 143.20.180.0/24 143.20.182.0/24 143.20.194.0/24 143.20.214.0/23 143.20.237.0/24 143.20.239.0/24 143.20.244.0/23 143.20.248.0/23 143.20.252.0-143.20.254.255 Signature Algorithm: sha256WithRSAEncryption b9:51:11:85:e5:3d:63:70:e4:ab:62:98:12:ac:d5:2f:2c:77: c1:0f:a3:2d:aa:19:67:26:be:58:55:94:c0:4a:e4:70:ab:ba: cf:c0:41:8e:d5:35:e2:78:70:7b:c8:7d:3c:59:85:62:07:be: 17:36:b6:59:9f:a4:26:7f:34:f2:c1:e1:76:35:35:09:36:13: 79:f5:05:3e:b1:c3:ec:91:43:76:1d:19:b2:36:94:11:5a:4e: e4:9f:73:8c:a2:9f:ce:95:fa:dc:78:ce:3d:0e:da:38:ac:b9: e4:d5:52:39:94:e9:7e:76:75:8e:7c:6b:ad:16:d1:37:a6:fa: 53:66:82:a3:18:f9:f9:07:6c:f8:db:e2:93:8e:15:14:8d:c6: 18:57:c5:1c:67:ab:83:1d:a4:23:dd:92:46:7f:20:94:5e:c1: 1e:c3:a7:1d:88:ee:2f:a6:67:98:a0:cb:02:5e:32:67:93:b3: f2:fd:f2:81:6f:76:15:76:a3:9f:1a:70:f9:9b:a8:aa:c8:d2: e6:af:25:c1:ad:2d:33:c5:f5:5d:08:34:9b:84:7b:44:f0:ed: c7:bc:01:ed:e9:dd:0e:43:57:0c:e6:67:da:b1:15:b8:65:92: 9b:d9:e7:8b:16:32:ed:98:36:60:01:d2:89:04:e0:a3:1e:b4: ee:97:58:c5 -----BEGIN CERTIFICATE----- MIIFwDCCBKigAwIBAgIUBL8E3hMCcMfpUkyPohpw0QbVUvQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODhjMTRlYzAyYWRiZjA4MzEzOGVkZGQ0Nzg3MTE3NmRk ZWI5M2Q5ZDAeFw0yNTEyMjAxNTU2NTlaFw0yNjEyMTkxNjAxNTlaMDMxMTAvBgNV BAMTKDFGRUNCNDgyMkQzOUNDOTc2Mjg2MEQwOTI5RTdDNzk1OUJCMDkxMUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDI5O4dpIxb5IYfQikA+7Wm8JdM fyrs5OT+kqThIcf8pwAo36djZ3oo/ASnwWFlJLivqIJ/hvtubQAWo3rhrsl0+XPP fqs45Su4zGY0GpCnNOGVNVNnZorrJecsWPErSRcm0MzGKL4JkQr1WXI/qWxjx5XP nfptq7xLSt3SVH8q8HWKevDhZbcMsEJYjxFpWxgPFwG/fgaiuey9gxYDQK8YZzHx HSFziSIgQUphxx7O2S8SrFg2SEBn8MeilOkCL8+CN738KkSDaZ3YFyZZEy/dBBVE 7rCKEgdI5k+nJAVEY7MwkwFiwdRvBAOHsaJMN1ruagXVZoyKoGF85I7amOnFAgMB AAGjggLKMIICxjAdBgNVHQ4EFgQUH+y0gi05zJdihg0JKefHlZuwkR0wHwYDVR0j BBgwFoAUiMFOwCrb8IMTjt3UeHEXbd65PZ0wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYzQwOWQ3YjItZWU2NC00OWYxLWFkODEtOGU0YTEwN2Q2 MmUwLzAvODhDMTRFQzAyQURCRjA4MzEzOEVEREQ0Nzg3MTE3NkRERUI5M0Q5RC5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2lNRk93Q3JiOElNVGp0M1VlSEVYYmQ2 NVBaMC5jZXIweAYIKwYBBQUHAQsEbDBqMGgGCCsGAQUFBzALhlxyc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2M0MDlkN2IyLWVlNjQt NDlmMS1hZDgxLThlNGExMDdkNjJlMC8wL0FTODM0LnJvYTAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMIHhBggrBgEFBQcBBwEB/wSB0TCBzjCBywQCAAEwgcQDBACP FAcDBACPFAswDAMEAI8UFQMEAI8UFjAMAwQAjxQZAwQAjxQaAwQAjxQjAwQAjxQt AwQAjxQwAwQAjxQ1AwQBjxQ4MAwDBACPFDsDBACPFDwDBACPFD8DBACPFFADBACP FGcwDAMEAI8UaQMEAI8UagMEAI8UdAMEAI8UeAMEAI8UkQMEAI8UtAMEAI8UtgME AI8UwgMEAY8U1gMEAI8U7QMEAI8U7wMEAY8U9AMEAY8U+DAMAwQCjxT8AwQAjxT+ MA0GCSqGSIb3DQEBCwUAA4IBAQC5URGF5T1jcOSrYpgSrNUvLHfBD6MtqhlnJr5Y VZTASuRwq7rPwEGO1TXieHB7yH08WYViB74XNrZZn6QmfzTyweF2NTUJNhN59QU+ scPskUN2HRmyNpQRWk7kn3OMop/OlfrceM49Dto4rLnk1VI5lOl+dnWOfGutFtE3 pvpTZoKjGPn5B2z42+KTjhUUjcYYV8UcZ6uDHaQj3ZJGfyCUXsEew6cdiO4vpmeY oMsCXjJnk7Py/fKBb3YVdqOfGnD5m6iqyNLmryXBrS0zxfVdCDSbhHtE8O3HvAHt 6d0OQ1cM5mfasRW4ZZKb2eeLFjLtmDZgAdKJBOCjHrTul1jF -----END CERTIFICATE-----Generated at Mon Dec 22 07:17:23 2025 by rpki-client