This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS214083.roa File: AS214083.roa (raw, json) Hash identifier: 0OcKnGFthX2iErFckhhDwNphUPt13isvenum2+55Klg= Subject key identifier: 9F:58:9F:66:FD:5A:BF:DF:E5:71:6D:F9:E7:46:08:A2:33:9B:99:F7 Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc Certificate serial: 31C10133504586A62ABC73C9EB881829B9324749 Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS214083.roa Signing time: Wed 12 Nov 2025 00:06:18 +0000 ROA not before: Wed 12 Nov 2025 00:01:18 +0000 ROA not after: Wed 11 Nov 2026 00:06:18 +0000 asID: 214083 IP address blocks: 146.103.22.0/24 maxlen: 24 Validation: Failed, certificate revoked on Mon 01 Dec 2025 00:05:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:c1:01:33:50:45:86:a6:2a:bc:73:c9:eb:88:18:29:b9:32:47:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc Validity Not Before: Nov 12 00:01:18 2025 GMT Not After : Nov 11 00:06:18 2026 GMT Subject: CN=9F589F66FD5ABFDFE5716DF9E74608A2339B99F7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:9d:77:56:e4:13:d0:8d:aa:e8:65:dd:be:41: ec:10:11:a6:f9:53:c1:d6:63:40:a1:02:e5:b8:ca: d3:2c:ca:18:42:a2:b9:49:cd:2a:b1:a0:44:1f:0d: 6e:68:50:4d:29:32:96:c1:95:48:7d:03:0d:ff:c1: 13:2c:02:fd:dc:51:39:13:30:a3:06:41:4c:40:a4: 54:58:1a:5e:43:df:ff:0e:ca:07:a3:67:22:5a:57: fa:c8:2e:2b:65:66:c8:ab:f0:e2:fb:f5:6e:ba:22: bb:96:91:eb:44:0e:a5:c4:86:ee:1f:d3:6f:2c:21: 83:c6:6b:6c:e1:77:93:32:cd:71:45:a8:59:6a:a6: af:2f:d5:11:42:c8:31:25:32:34:04:1c:31:97:15: 47:9c:3f:1f:4b:ca:75:c5:3b:4b:54:47:7b:f3:05: a6:d0:ff:ad:54:98:9a:b4:6b:22:f4:ac:b5:d3:a4: 72:6e:9a:c4:07:b4:68:c6:ad:f9:4b:26:64:b3:e0: a5:a8:22:11:76:b1:d6:16:83:38:a0:32:37:1b:20: f4:c1:dc:be:69:e1:23:fb:e6:3c:0e:9e:49:fe:ef: 0e:98:3d:e5:e0:a2:19:b8:93:9c:a5:f3:57:dc:22: 99:45:57:9c:b5:5d:8b:30:7e:4d:8a:29:60:bd:3c: e4:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:58:9F:66:FD:5A:BF:DF:E5:71:6D:F9:E7:46:08:A2:33:9B:99:F7 X509v3 Authority Key Identifier: keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS214083.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 146.103.22.0/24 Signature Algorithm: sha256WithRSAEncryption 46:a6:2e:1d:6e:8f:85:f8:15:7b:e6:f8:00:2c:34:ec:15:a7: bc:1e:d6:09:5e:a8:1b:5d:00:d9:b9:5d:cc:e6:34:75:f9:4c: 16:be:ab:5a:c1:5e:85:d1:49:99:34:28:67:5b:45:2a:dd:bf: 21:ba:9e:0a:20:57:0a:2c:3f:46:a2:6b:05:07:74:c4:99:a7: 9e:58:44:da:9c:87:df:6e:6e:8b:8f:39:52:9c:9b:a5:46:cd: 30:00:5b:7c:c7:06:99:d5:d0:a0:03:95:9a:27:b4:fe:fb:59: 3d:eb:54:31:ba:a0:83:40:04:62:2f:d8:cd:00:7a:eb:b4:c1: 5a:1f:db:cc:0f:25:af:e9:35:36:79:7f:5b:f7:74:46:8f:7a: 74:a2:db:e7:48:2a:c2:74:ab:90:1a:35:88:93:a7:83:ba:08: 81:bb:8c:46:b7:f5:e5:44:b6:66:70:f1:98:b4:f1:95:0e:51: fe:08:97:5d:3a:cc:bd:83:4b:01:1b:e2:1a:d4:14:b4:0e:65: 82:5f:b2:93:5f:9c:8f:ca:ea:6d:6f:32:3d:5c:b7:0c:b0:4c: 78:5c:d9:5f:38:4c:13:5e:93:09:f3:27:21:72:01:71:6d:39: 9d:a1:2a:2e:3d:2f:1b:df:d4:d6:16:31:68:c3:fc:c1:a7:bf: 78:b6:01:66 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgIUMcEBM1BFhqYqvHPJ64gYKbkyR0kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNGZjMzM2YmY5ZjNkZTVjZTQxNDE0YmQxOTcxOTQ1ZjRi MjQ2YmZjYzAeFw0yNTExMTIwMDAxMThaFw0yNjExMTEwMDA2MThaMDMxMTAvBgNV BAMTKDlGNTg5RjY2RkQ1QUJGREZFNTcxNkRGOUU3NDYwOEEyMzM5Qjk5RjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCRnXdW5BPQjaroZd2+QewQEab5 U8HWY0ChAuW4ytMsyhhCorlJzSqxoEQfDW5oUE0pMpbBlUh9Aw3/wRMsAv3cUTkT MKMGQUxApFRYGl5D3/8OygejZyJaV/rILitlZsir8OL79W66IruWketEDqXEhu4f 028sIYPGa2zhd5MyzXFFqFlqpq8v1RFCyDElMjQEHDGXFUecPx9LynXFO0tUR3vz BabQ/61UmJq0ayL0rLXTpHJumsQHtGjGrflLJmSz4KWoIhF2sdYWgzigMjcbIPTB 3L5p4SP75jwOnkn+7w6YPeXgohm4k5yl81fcIplFV5y1XYswfk2KKWC9PORjAgMB AAGjggIKMIICBjAdBgNVHQ4EFgQUn1ifZv1av9/lcW3550YIojObmfcwHwYDVR0j BBgwFoAUT8M2v5895c5BQUvRlxlF9LJGv8wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMDliZTNhYWUtYWVhMS00MWRjLWIxYjktOTVhYzU5MTgy NDRkLzAvNEZDMzM2QkY5RjNERTVDRTQxNDE0QkQxOTcxOTQ1RjRCMjQ2QkZDQy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1Q4TTJ2NTg5NWM1QlFVdlJseGxGOUxK R3Y4dy5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzA5YmUzYWFlLWFlYTEt NDFkYy1iMWI5LTk1YWM1OTE4MjQ0ZC8wL0FTMjE0MDgzLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAkmcW MA0GCSqGSIb3DQEBCwUAA4IBAQBGpi4dbo+F+BV75vgALDTsFae8HtYJXqgbXQDZ uV3M5jR1+UwWvqtawV6F0UmZNChnW0Uq3b8hup4KIFcKLD9GomsFB3TEmaeeWETa nIffbm6LjzlSnJulRs0wAFt8xwaZ1dCgA5WaJ7T++1k961QxuqCDQARiL9jNAHrr tMFaH9vMDyWv6TU2eX9b93RGj3p0otvnSCrCdKuQGjWIk6eDugiBu4xGt/XlRLZm cPGYtPGVDlH+CJddOsy9g0sBG+Ia1BS0DmWCX7KTX5yPyuptbzI9XLcMsEx4XNlf OEwTXpMJ8ychcgFxbTmdoSouPS8b39TWFjFow/zBp794tgFm -----END CERTIFICATE-----Generated at Sun Dec 7 11:10:07 2025 by rpki-client