This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS14618.roa File: AS14618.roa (raw, json) Hash identifier: yeF59TZ6f7e1Kb/3zJAlYCz+P4qWhj62QhzQfzRlu0A= Subject key identifier: 68:83:B2:7A:5D:BD:BF:99:C2:69:B1:92:E4:FF:65:2C:AD:84:F0:A5 Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a Certificate serial: 2BDF8BB403E3A02CD4F7CDE9CBECAECAEFDC9834 Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS14618.roa Signing time: Thu 01 Jan 2026 00:04:39 +0000 ROA not before: Wed 31 Dec 2025 23:59:39 +0000 ROA not after: Thu 31 Dec 2026 00:04:39 +0000 asID: 14618 IP address blocks: 181.214.94.0/24 maxlen: 24 181.214.110.0/24 maxlen: 24 181.215.206.0/23 maxlen: 24 185.137.13.0/24 maxlen: 24 191.96.204.0/24 maxlen: 24 191.101.111.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.mft rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 09 Jan 2026 11:57:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:df:8b:b4:03:e3:a0:2c:d4:f7:cd:e9:cb:ec:ae:ca:ef:dc:98:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a Validity Not Before: Dec 31 23:59:39 2025 GMT Not After : Dec 31 00:04:39 2026 GMT Subject: CN=6883B27A5DBDBF99C269B192E4FF652CAD84F0A5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:ed:4c:a1:4f:1d:f7:23:a6:f4:27:f9:6c:e8: 7c:2c:38:dd:78:7c:21:d2:69:89:b3:05:ef:7a:34: 79:41:2e:87:06:e7:65:be:98:6c:84:51:c3:3f:f0: d8:c6:8a:9e:21:1a:3e:82:9d:92:e0:84:ac:48:e4: a5:6c:78:ce:e2:4a:e7:36:2d:30:6e:00:bd:1e:00: 0b:1d:89:c8:12:29:06:4e:d8:89:6b:2d:cb:62:98: 57:c8:aa:38:3a:2a:0a:3b:24:64:02:6a:2b:fc:06: a1:75:14:be:b0:27:81:69:38:e5:4c:1f:70:ac:5c: a4:36:2c:10:03:92:e7:3c:15:9f:34:65:cc:0b:58: 0e:76:a0:33:0d:43:d9:df:af:0e:8b:c4:ca:ba:84: 19:57:66:8e:df:13:ce:c3:1c:99:57:c6:f9:05:31: 2a:77:63:0c:e5:fa:b6:a5:33:ec:a9:a8:16:b0:df: 12:42:b3:72:2f:81:cd:f4:72:c2:fa:30:57:ed:4a: 22:41:f1:ac:bc:b5:9c:89:a0:0d:bd:14:fa:f6:50: 37:70:19:91:79:5c:0d:e4:fe:ae:df:46:2c:aa:89: 9e:67:9d:96:a1:7c:23:61:0a:7e:b2:ba:3c:88:58: 82:23:9f:5c:cf:0d:f5:72:76:03:6f:d0:10:bd:35: 7e:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:83:B2:7A:5D:BD:BF:99:C2:69:B1:92:E4:FF:65:2C:AD:84:F0:A5 X509v3 Authority Key Identifier: keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS14618.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 181.214.94.0/24 181.214.110.0/24 181.215.206.0/23 185.137.13.0/24 191.96.204.0/24 191.101.111.0/24 Signature Algorithm: sha256WithRSAEncryption 90:a3:22:37:2a:22:07:aa:49:4a:27:19:dd:58:72:b5:ed:a0: a5:60:97:e7:fb:66:bf:65:4a:bb:28:88:19:44:d0:55:50:be: e6:3b:e8:6e:aa:e7:f2:50:00:ab:9b:8c:f5:b3:3b:cd:47:05: 94:5e:0f:74:c7:2a:3d:a5:c9:5a:ad:23:ab:72:43:ad:ad:5d: db:07:e7:5e:df:28:86:32:a7:47:b7:88:bd:28:b3:9e:95:ce: 1d:82:d0:12:20:a2:9e:07:c5:e2:db:18:40:41:1e:b8:63:e5: f0:7b:db:23:b4:a3:79:b5:5f:fb:e8:d0:6b:fb:46:10:9e:2f: 5d:c5:2a:f3:4d:f9:a0:df:89:73:c7:c4:42:85:96:89:67:03: 91:fb:d9:62:68:dc:3e:98:8a:2a:87:68:8b:db:58:04:41:75: 9b:74:98:a1:54:1b:42:0f:e7:3d:af:24:d0:df:dd:cd:f1:3d: 49:8e:91:d6:df:2a:e2:5b:a0:bb:3d:4e:c8:83:68:8e:08:97: e2:6b:a9:69:79:e6:6f:30:fe:6a:ac:1b:23:52:c1:3a:bb:44: 1c:0e:43:79:8e:a3:fb:00:3a:7f:a7:78:c5:79:11:3f:07:44: ad:ec:d7:a5:23:9c:36:ba:64:ee:38:6c:13:8a:14:a2:7b:36: 45:6d:45:d6 -----BEGIN CERTIFICATE----- MIIFHTCCBAWgAwIBAgIUK9+LtAPjoCzU983py+yuyu/cmDQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjFiMWJiNDQ0NzcxOGYxNmIzZDM2Njc1ZDIwNWM0ZGVh NDFiYmEwYTAeFw0yNTEyMzEyMzU5MzlaFw0yNjEyMzEwMDA0MzlaMDMxMTAvBgNV BAMTKDY4ODNCMjdBNURCREJGOTlDMjY5QjE5MkU0RkY2NTJDQUQ4NEYwQTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCQ7UyhTx33I6b0J/ls6HwsON14 fCHSaYmzBe96NHlBLocG52W+mGyEUcM/8NjGip4hGj6CnZLghKxI5KVseM7iSuc2 LTBuAL0eAAsdicgSKQZO2IlrLctimFfIqjg6Kgo7JGQCaiv8BqF1FL6wJ4FpOOVM H3CsXKQ2LBADkuc8FZ80ZcwLWA52oDMNQ9nfrw6LxMq6hBlXZo7fE87DHJlXxvkF MSp3Ywzl+ralM+ypqBaw3xJCs3Ivgc30csL6MFftSiJB8ay8tZyJoA29FPr2UDdw GZF5XA3k/q7fRiyqiZ5nnZahfCNhCn6yujyIWIIjn1zPDfVydgNv0BC9NX6bAgMB AAGjggInMIICIzAdBgNVHQ4EFgQUaIOyel29v5nCabGS5P9lLK2E8KUwHwYDVR0j BBgwFoAUYbG7REdxjxaz02Z10gXE3qQbugowDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNTM3NDU5ZTctMmE4My00M2QxLTlhYTEtNTg0MTdhYmFj NGI2LzEvNjFCMUJCNDQ0NzcxOEYxNkIzRDM2Njc1RDIwNUM0REVBNDFCQkEwQS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1liRzdSRWR4anhhejAyWjEwZ1hFM3FR YnVnby5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzUzNzQ1OWU3LTJhODMt NDNkMS05YWExLTU4NDE3YWJhYzRiNi8xL0FTMTQ2MTgucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwPQYIKwYBBQUHAQcBAf8ELjAsMCoEAgABMCQDBAC11l4D BAC11m4DBAG1184DBAC5iQ0DBAC/YMwDBAC/ZW8wDQYJKoZIhvcNAQELBQADggEB AJCjIjcqIgeqSUonGd1YcrXtoKVgl+f7Zr9lSrsoiBlE0FVQvuY76G6q5/JQAKub jPWzO81HBZReD3THKj2lyVqtI6tyQ62tXdsH517fKIYyp0e3iL0os56Vzh2C0BIg op4HxeLbGEBBHrhj5fB72yO0o3m1X/vo0Gv7RhCeL13FKvNN+aDfiXPHxEKFloln A5H72WJo3D6YiiqHaIvbWARBdZt0mKFUG0IP5z2vJNDf3c3xPUmOkdbfKuJboLs9 TsiDaI4Il+JrqWl55m8w/mqsGyNSwTq7RBwOQ3mOo/sAOn+neMV5ET8HRK3s16Uj nDa6ZO44bBOKFKJ7NkVtRdY= -----END CERTIFICATE-----Generated at Fri Jan 9 00:52:24 2026 by rpki-client