This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS13213.roa File: AS13213.roa (raw, json) Hash identifier: +PGrh/z+IcNZn6GYzHLtnOZkvMfsc4+wWfeI5sbsIjU= Subject key identifier: 47:9B:EE:DB:47:FD:E8:8D:C0:01:EE:4C:12:7E:D3:3F:D7:88:91:B5 Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a Certificate serial: 7A5A0FFA09350F0D6E289567A1BBE5A019896C81 Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS13213.roa Signing time: Mon 08 Dec 2025 18:47:09 +0000 ROA not before: Mon 08 Dec 2025 18:42:09 +0000 ROA not after: Mon 07 Dec 2026 18:47:09 +0000 asID: 13213 IP address blocks: 2.58.29.0/24 maxlen: 24 5.181.133.0/24 maxlen: 24 45.81.2.0/24 maxlen: 24 45.89.251.0/24 maxlen: 24 45.137.31.0/24 maxlen: 24 45.139.181.0/24 maxlen: 24 109.106.2.0/24 maxlen: 24 130.185.125.0/24 maxlen: 24 179.61.167.0/24 maxlen: 24 179.61.175.0/24 maxlen: 24 179.61.178.0/24 maxlen: 24 179.61.179.0/24 maxlen: 24 179.61.218.0/24 maxlen: 24 179.61.233.0/24 maxlen: 24 181.41.204.0/24 maxlen: 24 181.41.208.0/24 maxlen: 24 181.214.60.0/24 maxlen: 24 181.214.61.0/24 maxlen: 24 181.214.64.0/24 maxlen: 24 181.214.65.0/24 maxlen: 24 181.214.66.0/24 maxlen: 24 181.214.67.0/24 maxlen: 24 181.214.68.0/24 maxlen: 24 181.214.69.0/24 maxlen: 24 181.214.86.0/24 maxlen: 24 181.214.103.0/24 maxlen: 24 181.214.109.0/24 maxlen: 24 181.214.114.0/24 maxlen: 24 181.214.116.0/24 maxlen: 24 181.214.126.0/24 maxlen: 24 181.214.200.0/24 maxlen: 24 181.214.202.0/24 maxlen: 24 181.214.203.0/24 maxlen: 24 181.214.225.0/24 maxlen: 24 181.215.19.0/24 maxlen: 24 181.215.80.0/24 maxlen: 24 181.215.81.0/24 maxlen: 24 181.215.82.0/24 maxlen: 24 181.215.83.0/24 maxlen: 24 181.215.85.0/24 maxlen: 24 181.215.86.0/24 maxlen: 24 181.215.96.0/24 maxlen: 24 181.215.98.0/24 maxlen: 24 181.215.100.0/24 maxlen: 24 181.215.103.0/24 maxlen: 24 181.215.105.0/24 maxlen: 24 181.215.106.0/24 maxlen: 24 181.215.117.0/24 maxlen: 24 181.215.118.0/24 maxlen: 24 181.215.126.0/24 maxlen: 24 181.215.129.0/24 maxlen: 24 181.215.131.0/24 maxlen: 24 181.215.150.0/24 maxlen: 24 181.215.155.0/24 maxlen: 24 181.215.158.0/24 maxlen: 24 181.215.217.0/24 maxlen: 24 185.34.43.0/24 maxlen: 24 185.142.24.0/24 maxlen: 24 185.143.229.0/24 maxlen: 24 185.151.59.0/24 maxlen: 24 185.158.100.0/24 maxlen: 24 185.158.101.0/24 maxlen: 24 185.158.102.0/24 maxlen: 24 185.158.103.0/24 maxlen: 24 185.158.134.0/24 maxlen: 24 191.96.35.0/24 maxlen: 24 191.96.46.0/24 maxlen: 24 191.96.160.0/24 maxlen: 24 191.96.161.0/24 maxlen: 24 191.96.162.0/24 maxlen: 24 191.96.163.0/24 maxlen: 24 191.96.239.0/24 maxlen: 24 191.101.4.0/24 maxlen: 24 191.101.5.0/24 maxlen: 24 191.101.10.0/24 maxlen: 24 191.101.43.0/24 maxlen: 24 191.101.99.0/24 maxlen: 24 191.101.119.0/24 maxlen: 24 191.101.159.0/24 maxlen: 24 191.101.167.0/24 maxlen: 24 191.101.225.0/24 maxlen: 24 191.101.255.0/24 maxlen: 24 213.109.171.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.mft rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Dec 2025 23:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:5a:0f:fa:09:35:0f:0d:6e:28:95:67:a1:bb:e5:a0:19:89:6c:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a Validity Not Before: Dec 8 18:42:09 2025 GMT Not After : Dec 7 18:47:09 2026 GMT Subject: CN=479BEEDB47FDE88DC001EE4C127ED33FD78891B5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:3b:2a:ba:7c:2d:91:51:21:a9:9a:e9:f2:9d: 0c:03:dc:3c:d8:63:9e:97:89:db:1b:09:57:a5:24: 70:34:86:e9:22:78:a1:93:24:0f:df:3d:51:08:6f: 93:40:bf:51:2f:d9:44:8b:12:a5:c9:21:af:3f:1f: a6:cc:40:eb:ae:3d:24:57:46:11:43:fa:20:12:fe: 60:97:e2:e2:a8:02:0e:72:6a:43:34:46:41:f2:0a: 61:d8:42:3a:9f:6a:cc:8a:4f:5d:ea:9b:21:b9:84: 75:cf:59:7d:75:be:d1:bb:cf:34:52:e3:ef:7c:da: a6:ff:d8:c8:95:b1:30:e7:d1:e8:28:5d:dc:5d:d6: c0:9b:18:6e:6e:9a:7c:11:26:89:ad:02:8c:ff:e7: c6:6c:c2:b7:61:dd:c0:ff:45:55:20:b6:0a:81:1e: e7:35:21:97:7b:20:8e:bd:92:95:95:81:89:2d:86: dd:7e:96:7a:e6:2e:f5:90:35:21:2a:5e:ab:3b:9f: 59:dc:79:11:18:7f:98:ae:34:8b:cb:bc:99:6e:a5: db:97:93:a2:9c:c5:6b:4f:87:ca:96:b1:72:f5:8b: 1c:ad:d7:21:79:e4:57:76:36:a9:31:5d:9b:df:de: 64:0a:93:3c:d1:9a:dc:78:f9:1b:b6:25:b6:79:a5: 0d:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:9B:EE:DB:47:FD:E8:8D:C0:01:EE:4C:12:7E:D3:3F:D7:88:91:B5 X509v3 Authority Key Identifier: keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS13213.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 2.58.29.0/24 5.181.133.0/24 45.81.2.0/24 45.89.251.0/24 45.137.31.0/24 45.139.181.0/24 109.106.2.0/24 130.185.125.0/24 179.61.167.0/24 179.61.175.0/24 179.61.178.0/23 179.61.218.0/24 179.61.233.0/24 181.41.204.0/24 181.41.208.0/24 181.214.60.0/23 181.214.64.0-181.214.69.255 181.214.86.0/24 181.214.103.0/24 181.214.109.0/24 181.214.114.0/24 181.214.116.0/24 181.214.126.0/24 181.214.200.0/24 181.214.202.0/23 181.214.225.0/24 181.215.19.0/24 181.215.80.0/22 181.215.85.0-181.215.86.255 181.215.96.0/24 181.215.98.0/24 181.215.100.0/24 181.215.103.0/24 181.215.105.0-181.215.106.255 181.215.117.0-181.215.118.255 181.215.126.0/24 181.215.129.0/24 181.215.131.0/24 181.215.150.0/24 181.215.155.0/24 181.215.158.0/24 181.215.217.0/24 185.34.43.0/24 185.142.24.0/24 185.143.229.0/24 185.151.59.0/24 185.158.100.0/22 185.158.134.0/24 191.96.35.0/24 191.96.46.0/24 191.96.160.0/22 191.96.239.0/24 191.101.4.0/23 191.101.10.0/24 191.101.43.0/24 191.101.99.0/24 191.101.119.0/24 191.101.159.0/24 191.101.167.0/24 191.101.225.0/24 191.101.255.0/24 213.109.171.0/24 Signature Algorithm: sha256WithRSAEncryption 60:4c:da:eb:fc:a8:af:75:39:56:81:dd:b7:6a:34:4c:f4:2e: 22:2d:15:12:7c:08:0c:9c:14:95:21:5e:f7:1b:44:48:a4:65: 9c:21:16:c1:06:12:57:b1:bc:db:51:2c:db:cb:79:5e:3f:60: 51:1f:c3:ce:09:62:29:4e:89:b3:ff:94:56:15:e6:d7:7a:c7: 67:ef:7a:48:24:5b:b3:7d:42:60:7b:54:2e:ee:7d:33:30:22: 02:1e:c4:5e:b1:5f:87:9a:a5:09:4e:84:2b:b4:34:e8:5b:4f: 07:e2:de:e9:25:59:c3:3a:fd:9a:78:96:c2:24:00:b1:07:e7: 09:9c:10:f3:db:e2:ba:d7:93:19:18:91:3c:57:97:6f:fa:eb: d5:d5:36:5b:a0:aa:21:ec:92:7a:88:eb:02:ae:f1:09:db:02: f5:c6:3c:5b:c1:c9:d5:dc:22:1f:b8:ad:b0:e9:86:b9:cc:c9: 0e:b1:92:22:90:ee:af:32:5f:49:d3:11:6c:58:b1:e9:ee:17: 0d:3f:4c:e7:80:11:ea:98:85:a7:7b:bb:43:d5:24:cc:62:32: 0b:fe:a7:aa:c5:31:9a:03:01:af:f6:63:58:7e:59:ce:e1:c6: 19:2c:f1:c6:52:82:c3:b4:a0:70:2e:45:33:1e:7d:5e:19:2a: 4b:45:f6:e6 -----BEGIN CERTIFICATE----- MIIGlzCCBX+gAwIBAgIUeloP+gk1Dw1uKJVnobvloBmJbIEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjFiMWJiNDQ0NzcxOGYxNmIzZDM2Njc1ZDIwNWM0ZGVh NDFiYmEwYTAeFw0yNTEyMDgxODQyMDlaFw0yNjEyMDcxODQ3MDlaMDMxMTAvBgNV BAMTKDQ3OUJFRURCNDdGREU4OERDMDAxRUU0QzEyN0VEMzNGRDc4ODkxQjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZOyq6fC2RUSGpmunynQwD3DzY Y56XidsbCVelJHA0hukieKGTJA/fPVEIb5NAv1Ev2USLEqXJIa8/H6bMQOuuPSRX RhFD+iAS/mCX4uKoAg5yakM0RkHyCmHYQjqfasyKT13qmyG5hHXPWX11vtG7zzRS 4+982qb/2MiVsTDn0egoXdxd1sCbGG5umnwRJomtAoz/58Zswrdh3cD/RVUgtgqB Huc1IZd7II69kpWVgYktht1+lnrmLvWQNSEqXqs7n1nceREYf5iuNIvLvJlupduX k6KcxWtPh8qWsXL1ixyt1yF55Fd2NqkxXZvf3mQKkzzRmtx4+Ru2JbZ5pQ0nAgMB AAGjggOhMIIDnTAdBgNVHQ4EFgQUR5vu20f96I3AAe5MEn7TP9eIkbUwHwYDVR0j BBgwFoAUYbG7REdxjxaz02Z10gXE3qQbugowDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNTM3NDU5ZTctMmE4My00M2QxLTlhYTEtNTg0MTdhYmFj NGI2LzEvNjFCMUJCNDQ0NzcxOEYxNkIzRDM2Njc1RDIwNUM0REVBNDFCQkEwQS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1liRzdSRWR4anhhejAyWjEwZ1hFM3FR YnVnby5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzUzNzQ1OWU3LTJhODMt NDNkMS05YWExLTU4NDE3YWJhYzRiNi8xL0FTMTMyMTMucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwggG1BggrBgEFBQcBBwEB/wSCAaQwggGgMIIBnAQCAAEw ggGUAwQAAjodAwQABbWFAwQALVECAwQALVn7AwQALYkfAwQALYu1AwQAbWoCAwQA grl9AwQAsz2nAwQAsz2vAwQBsz2yAwQAsz3aAwQAsz3pAwQAtSnMAwQAtSnQAwQB tdY8MAwDBAa11kADBAG11kQDBAC11lYDBAC11mcDBAC11m0DBAC11nIDBAC11nQD BAC11n4DBAC11sgDBAG11soDBAC11uEDBAC11xMDBAK111AwDAMEALXXVQMEALXX VgMEALXXYAMEALXXYgMEALXXZAMEALXXZzAMAwQAtddpAwQAtddqMAwDBAC113UD BAC113YDBAC1134DBAC114EDBAC114MDBAC115YDBAC115sDBAC1154DBAC119kD BAC5IisDBAC5jhgDBAC5j+UDBAC5lzsDBAK5nmQDBAC5noYDBAC/YCMDBAC/YC4D BAK/YKADBAC/YO8DBAG/ZQQDBAC/ZQoDBAC/ZSsDBAC/ZWMDBAC/ZXcDBAC/ZZ8D BAC/ZacDBAC/ZeEDBAC/Zf8DBADVbaswDQYJKoZIhvcNAQELBQADggEBAGBM2uv8 qK91OVaB3bdqNEz0LiItFRJ8CAycFJUhXvcbREikZZwhFsEGElexvNtRLNvLeV4/ YFEfw84JYilOibP/lFYV5td6x2fvekgkW7N9QmB7VC7ufTMwIgIexF6xX4eapQlO hCu0NOhbTwfi3uklWcM6/Zp4lsIkALEH5wmcEPPb4rrXkxkYkTxXl2/669XVNlug qiHsknqI6wKu8QnbAvXGPFvBydXcIh+4rbDphrnMyQ6xkiKQ7q8yX0nTEWxYsenu Fw0/TOeAEeqYhad7u0PVJMxiMgv+p6rFMZoDAa/2Y1h+Wc7hxhks8cZSgsO0oHAu RTMefV4ZKktF9uY= -----END CERTIFICATE-----Generated at Fri Dec 12 06:37:44 2025 by rpki-client