This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS25198.roa File: AS25198.roa (raw, json) Hash identifier: bK83DsjDzJKnT1SFmj9g+B11GmI9GF6zVAOjc5s4Hww= Subject key identifier: 02:0B:0D:81:32:95:66:B9:F2:C0:C5:22:97:28:AE:F3:DB:95:DA:62 Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f Certificate serial: 7D69F94F52B01AFAE6F19515ED503F09A80F76DF Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS25198.roa Signing time: Fri 12 Dec 2025 13:46:15 +0000 ROA not before: Fri 12 Dec 2025 13:41:15 +0000 ROA not after: Fri 11 Dec 2026 13:46:15 +0000 asID: 25198 IP address blocks: 46.203.72.0/24 maxlen: 24 46.203.135.0/24 maxlen: 24 46.203.180.0/24 maxlen: 24 91.124.237.0/24 maxlen: 24 92.112.106.0/24 maxlen: 24 92.113.208.0/24 maxlen: 24 95.135.25.0/24 maxlen: 24 95.135.58.0/24 maxlen: 24 95.135.164.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 16:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:69:f9:4f:52:b0:1a:fa:e6:f1:95:15:ed:50:3f:09:a8:0f:76:df Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f Validity Not Before: Dec 12 13:41:15 2025 GMT Not After : Dec 11 13:46:15 2026 GMT Subject: CN=020B0D81329566B9F2C0C5229728AEF3DB95DA62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:92:58:9c:ff:91:66:6f:12:02:a8:6d:8f:0d: 93:c9:0f:77:0f:f7:d6:a9:5a:56:8a:b2:28:31:f2: 05:af:43:10:e9:40:d9:1e:ee:7f:71:72:e6:c8:c9: c8:7d:f2:cf:ef:3a:38:7e:fb:4c:97:37:b3:d4:93: a7:64:3a:e7:4e:13:12:47:70:e4:11:ef:2a:96:3e: 0f:fa:6c:f7:1b:c9:78:4a:77:b7:33:ce:9a:c1:31: a4:73:f8:7f:d7:96:0a:be:8b:05:d2:55:4e:2f:82: 76:13:e0:26:41:dc:09:45:51:a1:c3:bf:39:c9:bf: 86:5f:84:95:29:c6:c6:30:13:ae:f3:58:87:84:42: 01:f5:36:b8:7a:48:69:d2:5c:64:b5:61:7e:d3:2d: 54:0a:09:b1:22:31:ad:4a:79:c2:07:89:23:bf:b0: 46:30:8c:a4:a3:2f:8a:7b:2f:14:e2:a4:c7:1f:34: de:f0:06:9f:c3:08:26:a7:eb:a5:07:74:d0:da:34: c3:60:47:3b:af:00:d3:ea:24:19:70:ad:b9:8c:dd: cf:62:3e:c2:92:2d:87:90:ec:85:39:75:23:50:bf: ce:56:ad:39:55:d4:8a:b1:53:d6:01:e6:26:c9:4f: 63:88:e9:fc:63:be:20:44:2f:a1:91:12:f2:ee:28: 37:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:0B:0D:81:32:95:66:B9:F2:C0:C5:22:97:28:AE:F3:DB:95:DA:62 X509v3 Authority Key Identifier: keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS25198.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 46.203.72.0/24 46.203.135.0/24 46.203.180.0/24 91.124.237.0/24 92.112.106.0/24 92.113.208.0/24 95.135.25.0/24 95.135.58.0/24 95.135.164.0/24 Signature Algorithm: sha256WithRSAEncryption 88:84:9d:0d:43:73:af:c5:57:36:1d:05:da:01:e7:51:f8:b4: e0:5f:c0:15:67:25:39:09:9a:38:8c:27:c6:5c:ec:f0:29:02: a7:e5:03:41:f5:88:c5:e2:e4:4f:33:95:a6:37:0e:1b:51:13: 41:43:12:50:e3:89:ee:17:6a:cb:b9:c5:f2:fe:ba:97:ea:c7: 95:e0:cc:f9:b5:be:f5:4e:05:77:7b:63:7c:7b:a2:2b:d4:fd: 45:d1:98:68:04:99:0d:e5:07:05:e8:5d:20:8d:e7:85:a3:6a: c7:83:4e:99:b7:10:25:1d:4c:93:00:36:ee:d0:18:89:9f:ab: 37:44:e3:f2:84:ff:b4:62:11:2f:b2:18:fc:06:47:c5:ed:71: 1d:60:4f:75:8d:3d:20:d9:08:b4:7a:92:6d:11:d6:08:2d:9b: 73:42:af:ef:64:60:5c:f6:4e:82:8f:7f:42:15:8f:76:3d:6d: c6:c6:38:c8:b2:21:99:a4:0b:f8:f4:22:36:1b:eb:71:05:c0: e3:e3:af:08:26:69:fe:12:3c:58:e0:4c:ed:eb:8a:b6:83:92: 52:8f:ca:67:ff:43:69:0a:04:b7:8e:d3:a5:e9:4f:b1:8c:9a: 44:a0:c7:0c:93:c6:9a:7c:f2:47:ef:36:c8:b3:cc:f5:a1:6d: a7:ee:ca:6a -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUfWn5T1KwGvrm8ZUV7VA/CagPdt8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOWJkODEzMzkxZTRhZjJhZTMxMDNjMTg5MWIyMjcyZDRk NWMxM2I1ZjAeFw0yNTEyMTIxMzQxMTVaFw0yNjEyMTExMzQ2MTVaMDMxMTAvBgNV BAMTKDAyMEIwRDgxMzI5NTY2QjlGMkMwQzUyMjk3MjhBRUYzREI5NURBNjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwklic/5FmbxICqG2PDZPJD3cP 99apWlaKsigx8gWvQxDpQNke7n9xcubIych98s/vOjh++0yXN7PUk6dkOudOExJH cOQR7yqWPg/6bPcbyXhKd7czzprBMaRz+H/Xlgq+iwXSVU4vgnYT4CZB3AlFUaHD vznJv4ZfhJUpxsYwE67zWIeEQgH1Nrh6SGnSXGS1YX7TLVQKCbEiMa1KecIHiSO/ sEYwjKSjL4p7LxTipMcfNN7wBp/DCCan66UHdNDaNMNgRzuvANPqJBlwrbmM3c9i PsKSLYeQ7IU5dSNQv85WrTlV1IqxU9YB5ibJT2OI6fxjviBEL6GREvLuKDdBAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUAgsNgTKVZrnywMUilyiu89uV2mIwHwYDVR0j BBgwFoAUm9gTOR5K8q4xA8GJGyJy1NXBO18wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYzQ3OGY2ZjUtNDQ5YS00ODI3LTk5ZDUtYmY2YjkzYThm NmI0LzAvOUJEODEzMzkxRTRBRjJBRTMxMDNDMTg5MUIyMjcyRDRENUMxM0I1Ri5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL205Z1RPUjVLOHE0eEE4R0pHeUp5MU5Y Qk8xOC5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2M0NzhmNmY1LTQ0OWEt NDgyNy05OWQ1LWJmNmI5M2E4ZjZiNC8wL0FTMjUxOTgucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwTwYIKwYBBQUHAQcBAf8EQDA+MDwEAgABMDYDBAAuy0gD BAAuy4cDBAAuy7QDBABbfO0DBABccGoDBABccdADBABfhxkDBABfhzoDBABfh6Qw DQYJKoZIhvcNAQELBQADggEBAIiEnQ1Dc6/FVzYdBdoB51H4tOBfwBVnJTkJmjiM J8Zc7PApAqflA0H1iMXi5E8zlaY3DhtRE0FDElDjie4Xasu5xfL+upfqx5XgzPm1 vvVOBXd7Y3x7oivU/UXRmGgEmQ3lBwXoXSCN54WjaseDTpm3ECUdTJMANu7QGImf qzdE4/KE/7RiES+yGPwGR8XtcR1gT3WNPSDZCLR6km0R1ggtm3NCr+9kYFz2ToKP f0IVj3Y9bcbGOMiyIZmkC/j0IjYb63EFwOPjrwgmaf4SPFjgTO3riraDklKPymf/ Q2kKBLeO06XpT7GMmkSgxwyTxpp88kfvNsizzPWhbafuymo= -----END CERTIFICATE-----Generated at Fri Dec 19 21:22:22 2025 by rpki-client