This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS32181.roa File: AS32181.roa (raw, json) Hash identifier: 6ek/anMSu03LHROCOfTnmgJuhXcxadI/wmSwb/P+I1c= Subject key identifier: 3E:AD:3D:54:51:C1:CA:84:F3:1B:E6:FE:3A:4B:2E:5B:F3:1B:E5:4C Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a Certificate serial: 2BDB087BD563BBB0289ABEC94AE7569DDEC22DAD Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS32181.roa Signing time: Thu 15 Jan 2026 14:25:58 +0000 ROA not before: Thu 15 Jan 2026 14:20:58 +0000 ROA not after: Thu 14 Jan 2027 14:25:58 +0000 asID: 32181 IP address blocks: 181.214.77.0/24 maxlen: 24 181.214.146.0/24 maxlen: 24 181.214.157.0/24 maxlen: 24 191.96.62.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.mft rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 14:51:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:db:08:7b:d5:63:bb:b0:28:9a:be:c9:4a:e7:56:9d:de:c2:2d:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a Validity Not Before: Jan 15 14:20:58 2026 GMT Not After : Jan 14 14:25:58 2027 GMT Subject: CN=3EAD3D5451C1CA84F31BE6FE3A4B2E5BF31BE54C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:fc:48:0c:03:85:9b:c3:51:c0:60:2d:40:56: 49:05:e6:19:82:e0:ac:0d:6d:cd:1c:5a:37:6f:32: 51:85:5c:aa:57:6f:4b:0f:6b:69:d1:9a:e2:94:c0: f3:61:ce:c8:00:db:40:5d:f1:82:22:73:64:31:46: 00:4a:db:e4:41:e1:44:dd:8b:82:d8:7c:11:40:72: fd:af:8f:43:34:3f:3c:23:8b:1d:a6:19:11:2e:50: ac:52:89:ec:bb:41:7b:be:c8:46:38:44:f9:2c:93: c8:6e:11:61:91:96:59:dd:23:b4:1e:b1:be:59:21: ef:3b:56:63:74:4b:c5:19:28:a4:6b:7a:49:42:c2: e3:f4:f5:bd:de:8e:f7:2b:d3:8c:16:1b:36:8b:1e: 15:db:3c:8c:d5:ab:9f:ca:13:93:5f:88:10:97:5a: 48:95:a3:e1:28:1d:99:bf:b9:21:71:c1:fd:ad:8a: 60:61:70:24:e4:73:e0:d3:7d:5b:92:b3:d9:cf:08: 5c:c7:7c:49:f8:06:03:1f:1a:82:5a:d0:2e:9c:21: 2e:a3:bb:f5:70:6f:4a:d7:3d:5c:9a:71:e6:8d:a7: 17:33:9c:10:e5:b1:fc:ff:08:3a:b8:13:53:e7:bc: 35:90:bf:99:cf:50:eb:79:b3:82:c8:c7:1d:b8:40: 08:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:AD:3D:54:51:C1:CA:84:F3:1B:E6:FE:3A:4B:2E:5B:F3:1B:E5:4C X509v3 Authority Key Identifier: keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS32181.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 181.214.77.0/24 181.214.146.0/24 181.214.157.0/24 191.96.62.0/24 Signature Algorithm: sha256WithRSAEncryption 22:41:cb:61:52:18:ed:af:01:f8:c2:36:67:38:aa:3c:c4:82: af:de:af:fb:bd:b3:79:4c:c3:c0:79:ef:45:f7:14:00:f4:4b: 8c:34:ce:af:76:99:1a:8d:f8:bd:8a:8f:af:53:08:d9:dc:2a: ed:e3:ce:ca:67:4b:83:8f:e7:fa:e6:b9:76:09:86:7d:01:75: 15:9b:6a:e3:0f:20:f2:88:69:12:60:fc:27:e8:16:64:ba:89: 7f:47:2a:3f:f8:6c:c8:77:84:d8:dd:ba:c9:2e:b9:25:e5:08: f0:01:14:9e:66:7e:bc:1b:c7:5d:83:80:5b:8b:d0:8c:a5:4a: 0e:28:e1:d4:f7:fc:af:d6:05:f2:be:35:35:20:60:02:66:a5: 03:13:bd:08:88:67:d6:f4:c4:52:ff:d2:a8:f7:64:53:79:78: 8d:c5:91:05:90:2e:8d:2a:56:d8:cd:55:ff:3b:92:9d:05:9b: bb:c3:42:be:56:e2:1e:6b:07:1d:b2:1b:05:8b:16:bb:8a:10: 2a:0d:58:d1:49:55:9c:c4:99:48:b9:4f:c8:29:85:29:ab:90: 45:0e:47:6e:94:a8:4d:36:28:52:99:13:96:37:18:37:99:96: 1c:50:ab:e1:d0:23:6f:ef:b5:40:75:be:5a:c8:ad:07:65:84: 9f:99:34:1b -----BEGIN CERTIFICATE----- MIIFETCCA/mgAwIBAgIUK9sIe9Vju7Aomr7JSudWnd7CLa0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjFiMWJiNDQ0NzcxOGYxNmIzZDM2Njc1ZDIwNWM0ZGVh NDFiYmEwYTAeFw0yNjAxMTUxNDIwNThaFw0yNzAxMTQxNDI1NThaMDMxMTAvBgNV BAMTKDNFQUQzRDU0NTFDMUNBODRGMzFCRTZGRTNBNEIyRTVCRjMxQkU1NEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7/EgMA4Wbw1HAYC1AVkkF5hmC 4KwNbc0cWjdvMlGFXKpXb0sPa2nRmuKUwPNhzsgA20Bd8YIic2QxRgBK2+RB4UTd i4LYfBFAcv2vj0M0Pzwjix2mGREuUKxSiey7QXu+yEY4RPksk8huEWGRllndI7Qe sb5ZIe87VmN0S8UZKKRreklCwuP09b3ejvcr04wWGzaLHhXbPIzVq5/KE5NfiBCX WkiVo+EoHZm/uSFxwf2timBhcCTkc+DTfVuSs9nPCFzHfEn4BgMfGoJa0C6cIS6j u/Vwb0rXPVyaceaNpxcznBDlsfz/CDq4E1PnvDWQv5nPUOt5s4LIxx24QAiLAgMB AAGjggIbMIICFzAdBgNVHQ4EFgQUPq09VFHByoTzG+b+OksuW/Mb5UwwHwYDVR0j BBgwFoAUYbG7REdxjxaz02Z10gXE3qQbugowDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNTM3NDU5ZTctMmE4My00M2QxLTlhYTEtNTg0MTdhYmFj NGI2LzEvNjFCMUJCNDQ0NzcxOEYxNkIzRDM2Njc1RDIwNUM0REVBNDFCQkEwQS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1liRzdSRWR4anhhejAyWjEwZ1hFM3FR YnVnby5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzUzNzQ1OWU3LTJhODMt NDNkMS05YWExLTU4NDE3YWJhYzRiNi8xL0FTMzIxODEucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwMQYIKwYBBQUHAQcBAf8EIjAgMB4EAgABMBgDBAC11k0D BAC11pIDBAC11p0DBAC/YD4wDQYJKoZIhvcNAQELBQADggEBACJBy2FSGO2vAfjC Nmc4qjzEgq/er/u9s3lMw8B570X3FAD0S4w0zq92mRqN+L2Kj69TCNncKu3jzspn S4OP5/rmuXYJhn0BdRWbauMPIPKIaRJg/CfoFmS6iX9HKj/4bMh3hNjduskuuSXl CPABFJ5mfrwbx12DgFuL0IylSg4o4dT3/K/WBfK+NTUgYAJmpQMTvQiIZ9b0xFL/ 0qj3ZFN5eI3FkQWQLo0qVtjNVf87kp0Fm7vDQr5W4h5rBx2yGwWLFruKECoNWNFJ VZzEmUi5T8gphSmrkEUOR26UqE02KFKZE5Y3GDeZlhxQq+HQI2/vtUB1vlrIrQdl hJ+ZNBs= -----END CERTIFICATE-----Generated at Tue Jan 20 01:24:30 2026 by rpki-client