This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS212384.roa File: AS212384.roa (raw, json) Hash identifier: 5FmLzuth0YYteyV6Itc2fqfZ6NF+AsgnSdGVzlXM9vY= Subject key identifier: 20:3A:02:1C:5E:DD:12:F2:FE:24:A3:C5:E7:AC:A3:E7:30:AC:A7:6A Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a Certificate serial: 2092216D29D4C143740724FECA43DD31B1A0870E Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS212384.roa Signing time: Thu 11 Dec 2025 12:16:14 +0000 ROA not before: Thu 11 Dec 2025 12:11:14 +0000 ROA not after: Thu 10 Dec 2026 12:16:14 +0000 asID: 212384 IP address blocks: 85.209.179.0/24 maxlen: 24 181.214.63.0/24 maxlen: 24 181.214.169.0/24 maxlen: 24 181.214.241.0/24 maxlen: 24 181.215.29.0/24 maxlen: 24 181.215.144.0/24 maxlen: 24 185.139.239.0/24 maxlen: 24 185.170.42.0/24 maxlen: 24 191.96.211.0/24 maxlen: 24 191.101.122.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.mft rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 18 Dec 2025 19:00:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:92:21:6d:29:d4:c1:43:74:07:24:fe:ca:43:dd:31:b1:a0:87:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a Validity Not Before: Dec 11 12:11:14 2025 GMT Not After : Dec 10 12:16:14 2026 GMT Subject: CN=203A021C5EDD12F2FE24A3C5E7ACA3E730ACA76A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:41:9b:7e:f5:dc:9b:92:32:b0:87:b9:55:0e: 7d:03:b5:3d:07:1a:10:b3:32:6d:d2:88:03:0b:d9: 7c:2f:61:92:b0:ee:44:4f:85:be:69:b0:85:53:f4: 0f:74:ca:06:e1:8b:77:9d:92:d9:8a:6c:77:e6:99: 51:15:01:f9:c9:c6:77:a3:82:98:4c:3c:85:c8:0a: 72:52:3d:37:99:f2:5a:23:ce:6d:c7:72:9b:c2:3a: 19:92:cf:8f:32:e8:69:b2:08:3e:8a:b8:71:05:b1: 31:46:a3:7f:21:b4:6a:6e:f2:03:63:34:8e:20:22: ff:a8:09:e8:f9:b1:23:81:b5:91:0c:a6:13:bb:57: a2:b7:c5:bb:11:23:4a:38:8f:08:60:fc:f0:c3:62: db:14:57:0e:4c:7a:b5:2c:23:21:a9:d0:6f:72:05: c3:78:e2:48:99:09:f1:57:09:24:2f:c1:cb:36:fd: 1d:af:0e:d1:48:13:52:73:e2:7b:80:84:14:ad:8c: 3f:46:55:18:42:4b:88:ee:9b:2b:57:f1:c9:4a:1b: fd:ee:3d:04:9b:56:8d:c7:19:1a:13:e7:04:74:2a: 40:09:dc:85:62:ac:74:7a:ec:41:e2:75:b9:31:02: f7:a1:e6:f9:ac:44:10:d3:b6:62:d6:f2:d7:6d:52: 9d:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:3A:02:1C:5E:DD:12:F2:FE:24:A3:C5:E7:AC:A3:E7:30:AC:A7:6A X509v3 Authority Key Identifier: keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS212384.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 85.209.179.0/24 181.214.63.0/24 181.214.169.0/24 181.214.241.0/24 181.215.29.0/24 181.215.144.0/24 185.139.239.0/24 185.170.42.0/24 191.96.211.0/24 191.101.122.0/24 Signature Algorithm: sha256WithRSAEncryption 80:31:69:a3:7d:8f:27:c0:31:c3:ce:98:5c:71:6a:a8:f2:76: 53:35:d7:90:79:05:b6:5c:e9:62:bb:e6:c1:43:89:d6:13:b9: 98:ef:15:6c:ad:d1:a7:c5:04:36:d8:26:0b:27:c5:ed:9a:2a: 97:00:b1:dc:98:08:62:1a:87:f9:15:f0:6b:a1:34:2c:4b:b9: 68:5d:0f:b8:f2:ac:ab:ef:71:45:af:08:71:d8:aa:87:e3:21: 77:97:22:e9:9c:a1:76:f9:34:a7:d2:44:bb:d2:40:9c:ba:0e: ad:00:bb:42:d1:64:63:0f:9f:09:a0:fc:65:36:3d:4a:38:f8: 75:5f:35:27:95:86:69:6c:ce:e9:9a:ca:08:c0:8e:07:c7:49: ff:a7:62:43:8f:d3:21:15:08:92:0b:28:7c:b2:d8:b8:94:4d: 39:f3:2e:93:bd:b6:b3:ae:0b:62:77:73:9f:1a:40:b2:91:f8: 30:7e:99:80:8e:d8:b2:92:c1:1f:b8:6a:2f:04:ec:3e:99:6d: 90:aa:c4:7f:dd:ac:7d:41:6a:1d:39:6d:fb:30:52:b9:09:02: f7:f3:36:b7:fa:76:d8:c5:54:6a:89:46:b0:13:e5:d4:78:f9: d4:b7:a3:24:90:12:a3:59:4f:04:53:a5:c5:3f:87:a4:37:8f: 14:89:cf:4d -----BEGIN CERTIFICATE----- MIIFNjCCBB6gAwIBAgIUIJIhbSnUwUN0ByT+ykPdMbGghw4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjFiMWJiNDQ0NzcxOGYxNmIzZDM2Njc1ZDIwNWM0ZGVh NDFiYmEwYTAeFw0yNTEyMTExMjExMTRaFw0yNjEyMTAxMjE2MTRaMDMxMTAvBgNV BAMTKDIwM0EwMjFDNUVERDEyRjJGRTI0QTNDNUU3QUNBM0U3MzBBQ0E3NkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIQZt+9dybkjKwh7lVDn0DtT0H GhCzMm3SiAML2XwvYZKw7kRPhb5psIVT9A90ygbhi3edktmKbHfmmVEVAfnJxnej gphMPIXICnJSPTeZ8lojzm3HcpvCOhmSz48y6GmyCD6KuHEFsTFGo38htGpu8gNj NI4gIv+oCej5sSOBtZEMphO7V6K3xbsRI0o4jwhg/PDDYtsUVw5MerUsIyGp0G9y BcN44kiZCfFXCSQvwcs2/R2vDtFIE1Jz4nuAhBStjD9GVRhCS4jumytX8clKG/3u PQSbVo3HGRoT5wR0KkAJ3IVirHR67EHidbkxAveh5vmsRBDTtmLW8tdtUp0vAgMB AAGjggJAMIICPDAdBgNVHQ4EFgQUIDoCHF7dEvL+JKPF56yj5zCsp2owHwYDVR0j BBgwFoAUYbG7REdxjxaz02Z10gXE3qQbugowDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNTM3NDU5ZTctMmE4My00M2QxLTlhYTEtNTg0MTdhYmFj NGI2LzEvNjFCMUJCNDQ0NzcxOEYxNkIzRDM2Njc1RDIwNUM0REVBNDFCQkEwQS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1liRzdSRWR4anhhejAyWjEwZ1hFM3FR YnVnby5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzUzNzQ1OWU3LTJhODMt NDNkMS05YWExLTU4NDE3YWJhYzRiNi8xL0FTMjEyMzg0LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMFUGCCsGAQUFBwEHAQH/BEYwRDBCBAIAATA8AwQAVdGz AwQAtdY/AwQAtdapAwQAtdbxAwQAtdcdAwQAtdeQAwQAuYvvAwQAuaoqAwQAv2DT AwQAv2V6MA0GCSqGSIb3DQEBCwUAA4IBAQCAMWmjfY8nwDHDzphccWqo8nZTNdeQ eQW2XOliu+bBQ4nWE7mY7xVsrdGnxQQ22CYLJ8XtmiqXALHcmAhiGof5FfBroTQs S7loXQ+48qyr73FFrwhx2KqH4yF3lyLpnKF2+TSn0kS70kCcug6tALtC0WRjD58J oPxlNj1KOPh1XzUnlYZpbM7pmsoIwI4Hx0n/p2JDj9MhFQiSCyh8sti4lE058y6T vbazrgtid3OfGkCykfgwfpmAjtiyksEfuGovBOw+mW2QqsR/3ax9QWodOW37MFK5 CQL38za3+nbYxVRqiUawE+XUePnUt6MkkBKjWU8EU6XFP4ekN48Uic9N -----END CERTIFICATE-----Generated at Thu Dec 18 05:50:02 2025 by rpki-client