This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS214432.roa File: AS214432.roa (raw, json) Hash identifier: Wv4YTJiaux7Lt0ew2fpiTC2dy098bQpkTC09RzxWclg= Subject key identifier: 4E:11:25:53:55:24:C0:7A:C2:B2:5C:96:0F:63:70:58:DB:DC:08:B7 Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a Certificate serial: 76C625964D16F8083B2C722936582C34486DCFDC Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS214432.roa Signing time: Tue 30 Dec 2025 08:02:21 +0000 ROA not before: Tue 30 Dec 2025 07:57:21 +0000 ROA not after: Tue 29 Dec 2026 08:02:21 +0000 asID: 214432 IP address blocks: 5.182.110.0/24 maxlen: 24 92.242.184.0/24 maxlen: 24 92.242.186.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.mft rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 03:48:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:c6:25:96:4d:16:f8:08:3b:2c:72:29:36:58:2c:34:48:6d:cf:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a Validity Not Before: Dec 30 07:57:21 2025 GMT Not After : Dec 29 08:02:21 2026 GMT Subject: CN=4E1125535524C07AC2B25C960F637058DBDC08B7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:1f:b0:88:db:41:8a:28:7d:32:43:47:47:fc: e4:07:3d:ee:45:a8:ad:93:b3:3c:1b:24:37:25:4f: ab:e9:ce:f2:80:06:5b:b4:8f:91:11:fe:8e:97:d4: 95:b3:96:5d:f3:5f:d1:14:c8:8c:3c:a0:85:bb:a1: a3:21:f0:f0:9f:d2:79:84:e4:e0:bf:ac:0a:14:19: 59:73:82:a7:68:cc:73:47:0b:54:32:26:b7:24:c3: c1:84:02:7b:df:59:f7:58:b9:a4:e5:78:7d:3c:e2: 45:1b:ac:67:36:66:ed:4f:55:0e:43:42:9e:24:5c: ff:b9:ea:43:52:be:33:16:e6:4e:99:0f:87:fe:d0: 01:86:d8:77:e9:57:f5:cb:5c:fb:e3:94:54:a7:02: 8e:e8:a8:2c:22:03:40:a1:bc:02:b8:5b:56:6d:5a: b1:04:7a:91:41:7f:9b:7c:10:e7:6d:26:64:2a:87: 6a:8a:03:59:26:7d:78:18:ca:67:93:a5:50:fc:20: 2e:df:6e:18:b4:03:28:72:5b:d3:f6:a0:06:3d:23: ce:a1:20:8f:97:64:83:89:1a:90:da:c2:8f:15:e8: 5d:6a:36:90:b5:8e:4b:90:a7:58:fd:21:b4:80:64: 1a:09:27:2b:5b:8e:49:e4:0c:82:16:3c:d1:37:2d: 65:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:11:25:53:55:24:C0:7A:C2:B2:5C:96:0F:63:70:58:DB:DC:08:B7 X509v3 Authority Key Identifier: keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS214432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.182.110.0/24 92.242.184.0/24 92.242.186.0/24 Signature Algorithm: sha256WithRSAEncryption 1c:ae:85:a7:2b:05:f9:8e:e7:d7:c4:84:82:99:b6:79:51:39: 31:95:30:ef:8e:f1:57:d2:bb:a2:e2:17:cc:6d:ef:3b:bd:87: 02:ed:ec:38:3f:c9:03:e7:3e:2a:6f:80:aa:aa:04:05:44:cf: 0a:b9:60:be:64:c7:a2:53:76:fe:c0:60:f4:ab:00:91:4a:d0: 97:f4:5f:5c:2e:22:ff:e4:c4:a2:36:7e:df:7f:aa:b8:49:d2: 1a:2e:54:26:d8:0a:02:fe:f8:fc:e5:d3:e4:75:70:c0:21:1d: c8:35:96:5b:1e:62:67:a1:63:ea:a0:d3:3a:ae:cf:e2:82:f1: d9:a6:67:bb:9c:74:29:3d:2a:fc:fe:d0:e4:b3:46:51:d2:df: c0:48:93:16:8e:ea:71:7e:3d:76:d3:e0:be:f9:64:2c:66:fd: b5:36:72:98:f9:db:92:d0:44:71:c0:f7:4a:15:26:10:23:86: b2:33:36:b1:bc:c4:5e:b4:18:cd:0d:0f:b7:da:d5:b8:40:b2: a3:96:9a:27:8d:1c:96:f4:0d:04:09:8c:12:80:93:cb:df:66: 5e:ee:76:1b:65:e0:fd:af:03:da:b1:3b:49:40:75:e9:8b:d4: 1e:91:84:00:ca:c3:56:5e:8e:fe:01:94:d7:3d:0c:59:ac:64: 95:e9:85:58 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgIUdsYllk0W+Ag7LHIpNlgsNEhtz9wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjFiMWJiNDQ0NzcxOGYxNmIzZDM2Njc1ZDIwNWM0ZGVh NDFiYmEwYTAeFw0yNTEyMzAwNzU3MjFaFw0yNjEyMjkwODAyMjFaMDMxMTAvBgNV BAMTKDRFMTEyNTUzNTUyNEMwN0FDMkIyNUM5NjBGNjM3MDU4REJEQzA4QjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCfH7CI20GKKH0yQ0dH/OQHPe5F qK2TszwbJDclT6vpzvKABlu0j5ER/o6X1JWzll3zX9EUyIw8oIW7oaMh8PCf0nmE 5OC/rAoUGVlzgqdozHNHC1QyJrckw8GEAnvfWfdYuaTleH084kUbrGc2Zu1PVQ5D Qp4kXP+56kNSvjMW5k6ZD4f+0AGG2HfpV/XLXPvjlFSnAo7oqCwiA0ChvAK4W1Zt WrEEepFBf5t8EOdtJmQqh2qKA1kmfXgYymeTpVD8IC7fbhi0AyhyW9P2oAY9I86h II+XZIOJGpDawo8V6F1qNpC1jkuQp1j9IbSAZBoJJytbjknkDIIWPNE3LWWbAgMB AAGjggIWMIICEjAdBgNVHQ4EFgQUThElU1UkwHrCslyWD2NwWNvcCLcwHwYDVR0j BBgwFoAUYbG7REdxjxaz02Z10gXE3qQbugowDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNTM3NDU5ZTctMmE4My00M2QxLTlhYTEtNTg0MTdhYmFj NGI2LzEvNjFCMUJCNDQ0NzcxOEYxNkIzRDM2Njc1RDIwNUM0REVBNDFCQkEwQS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1liRzdSRWR4anhhejAyWjEwZ1hFM3FR YnVnby5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzUzNzQ1OWU3LTJhODMt NDNkMS05YWExLTU4NDE3YWJhYzRiNi8xL0FTMjE0NDMyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQABbZu AwQAXPK4AwQAXPK6MA0GCSqGSIb3DQEBCwUAA4IBAQAcroWnKwX5jufXxISCmbZ5 UTkxlTDvjvFX0rui4hfMbe87vYcC7ew4P8kD5z4qb4CqqgQFRM8KuWC+ZMeiU3b+ wGD0qwCRStCX9F9cLiL/5MSiNn7ff6q4SdIaLlQm2AoC/vj85dPkdXDAIR3INZZb HmJnoWPqoNM6rs/igvHZpme7nHQpPSr8/tDks0ZR0t/ASJMWjupxfj120+C++WQs Zv21NnKY+duS0ERxwPdKFSYQI4ayMzaxvMRetBjNDQ+32tW4QLKjlponjRyW9A0E CYwSgJPL32Ze7nYbZeD9rwPasTtJQHXpi9QekYQAysNWXo7+AZTXPQxZrGSV6YVY -----END CERTIFICATE-----Generated at Sun Jan 25 14:06:02 2026 by rpki-client