This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS13213.roa File: AS13213.roa (raw, json) Hash identifier: X5zhmnsjIdFWC2BYmJM4lJm15lwJ58pXdBtku4YaJ+Y= Subject key identifier: 06:1A:17:7D:95:C1:A6:77:0C:BE:B0:9C:8D:1E:24:8A:39:AA:FF:E6 Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Certificate serial: 4412A7B46E9005D8960C543601E2490E47B53B99 Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS13213.roa Signing time: Mon 24 Nov 2025 07:48:02 +0000 ROA not before: Mon 24 Nov 2025 07:43:02 +0000 ROA not after: Mon 23 Nov 2026 07:48:02 +0000 asID: 13213 IP address blocks: 2a13:9500:3::/48 maxlen: 48 2a13:9500:24::/48 maxlen: 48 2a13:9500:25::/48 maxlen: 48 2a13:9500:26::/48 maxlen: 48 2a13:9500:27::/48 maxlen: 48 2a13:9500:28::/48 maxlen: 48 2a13:9500:5b::/48 maxlen: 48 2a13:9500:5c::/48 maxlen: 48 2a13:9500:5d::/48 maxlen: 48 2a13:9500:5e::/48 maxlen: 48 2a13:9500:5f::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 05 Dec 2025 00:00:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:12:a7:b4:6e:90:05:d8:96:0c:54:36:01:e2:49:0e:47:b5:3b:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Validity Not Before: Nov 24 07:43:02 2025 GMT Not After : Nov 23 07:48:02 2026 GMT Subject: CN=061A177D95C1A6770CBEB09C8D1E248A39AAFFE6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:81:86:7a:41:47:9c:ef:da:6f:86:cc:78:25: ec:4d:25:4a:0e:e0:7b:01:87:96:fd:29:6c:99:51: 34:24:1c:3b:16:2e:74:31:fc:4f:d0:37:8f:27:0b: 36:98:07:83:3e:34:b7:72:75:27:dc:78:0e:65:3f: d2:4a:1b:a8:b3:58:93:1d:cf:47:b0:c8:a8:c7:bd: 09:4d:38:71:d9:5b:6d:8e:b7:cc:de:aa:1c:65:b4: 0f:de:ea:20:bd:ee:ab:57:ed:cc:75:71:dd:c1:b0: 97:c6:a2:c5:f8:52:3a:7a:bc:d6:1d:3f:e7:27:53: 12:e7:41:94:86:17:ae:f1:3b:7e:5c:89:66:ff:84: 4e:1f:e3:33:22:56:18:e5:5b:e2:d5:32:c9:cc:ec: 3e:31:d9:4d:64:38:e9:1f:6a:27:75:c4:f0:4b:8d: 59:53:46:f7:fd:19:00:5b:a6:1f:b2:2a:39:2f:a4: 22:26:4b:03:b7:7f:3d:62:1a:4c:12:67:c7:55:44: 48:e4:48:91:44:c2:5f:e1:96:62:1d:73:11:96:b2: b3:6c:80:02:a0:5c:34:7b:59:1b:5a:f6:c4:0b:7d: eb:c9:db:68:c2:c5:47:35:be:96:f0:df:f3:1c:76: 64:98:9b:e3:45:77:ea:91:8f:53:68:cc:49:de:d0: 6d:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:1A:17:7D:95:C1:A6:77:0C:BE:B0:9C:8D:1E:24:8A:39:AA:FF:E6 X509v3 Authority Key Identifier: keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS13213.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a13:9500:3::/48 2a13:9500:24::-2a13:9500:28:ffff:ffff:ffff:ffff:ffff 2a13:9500:5b::-2a13:9500:5f:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 78:19:f8:41:2d:58:5b:87:c3:8d:22:20:6e:ae:dc:3f:eb:75: 12:73:63:d1:0f:aa:ff:ad:72:ab:54:b5:16:7d:ad:c6:fb:2d: 92:ad:de:b0:df:0f:54:05:51:84:db:e9:19:46:b3:d4:f0:88: dc:bb:a1:f8:34:89:c2:e6:d3:fd:e4:e4:79:f5:60:be:d5:0f: d5:bf:33:d8:0b:fb:2e:bb:0e:ae:4e:9a:84:0d:a7:2d:8f:bd: 36:bd:b1:9a:0a:04:d7:1b:97:c1:ab:19:1d:c7:26:b6:d1:5b: d3:fe:94:75:fa:a7:8e:f8:45:a7:21:9d:ff:43:02:6a:e3:93: a8:2b:51:df:34:55:2a:46:1e:d2:21:c9:ff:01:f2:1d:e3:06: 48:54:19:84:c8:04:79:35:86:ec:84:7f:e7:f3:29:d2:57:ca: 55:14:12:9f:23:77:2f:62:8d:17:2c:61:b7:d6:ce:c5:80:29: 56:9f:29:47:38:0a:e7:74:c2:f6:91:b1:48:91:6d:cb:db:8d: 1d:61:f9:9f:57:f9:8f:40:b4:e3:9f:f8:3e:0f:5a:cb:06:fc: ea:f2:20:f5:49:79:9e:21:b5:c4:e6:68:4e:4f:42:f3:91:38: 19:2b:57:0a:28:40:57:a1:9e:14:6a:8e:d4:aa:7e:e9:38:ff: 14:01:ad:62 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIURBKntG6QBdiWDFQ2AeJJDke1O5kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjE4Y2M2ZTI0MTA1ZGU2YzVjOTAwM2Q2NTI0Mzg5M2Ni M2NmZGQwMTAeFw0yNTExMjQwNzQzMDJaFw0yNjExMjMwNzQ4MDJaMDMxMTAvBgNV BAMTKDA2MUExNzdEOTVDMUE2NzcwQ0JFQjA5QzhEMUUyNDhBMzlBQUZGRTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDxgYZ6QUec79pvhsx4JexNJUoO 4HsBh5b9KWyZUTQkHDsWLnQx/E/QN48nCzaYB4M+NLdydSfceA5lP9JKG6izWJMd z0ewyKjHvQlNOHHZW22Ot8zeqhxltA/e6iC97qtX7cx1cd3BsJfGosX4Ujp6vNYd P+cnUxLnQZSGF67xO35ciWb/hE4f4zMiVhjlW+LVMsnM7D4x2U1kOOkfaid1xPBL jVlTRvf9GQBbph+yKjkvpCImSwO3fz1iGkwSZ8dVREjkSJFEwl/hlmIdcxGWsrNs gAKgXDR7WRta9sQLfevJ22jCxUc1vpbw3/McdmSYm+NFd+qRj1NozEne0G0hAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUBhoXfZXBpncMvrCcjR4kijmq/+YwHwYDVR0j BBgwFoAUIYzG4kEF3mxckAPWUkOJPLPP3QEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYtYjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWEx YWY2LzAvMjE4Q0M2RTI0MTA1REU2QzVDOTAwM0Q2NTI0Mzg5M0NCM0NGREQwMS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0lZekc0a0VGM214Y2tBUFdVa09KUExQ UDNRRS5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzcxOGExYjRmLWI2NGMt NDAyYy1iZTE1LWRkODJhNDFhMWFmNi8wL0FTMTMyMTMucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwSgYIKwYBBQUHAQcBAf8EOzA5MDcEAgACMDEDBwAqE5UA AAMwEgMHAioTlQAAJAMHACoTlQAAKDASAwcAKhOVAABbAwcFKhOVAABAMA0GCSqG SIb3DQEBCwUAA4IBAQB4GfhBLVhbh8ONIiBurtw/63USc2PRD6r/rXKrVLUWfa3G +y2Srd6w3w9UBVGE2+kZRrPU8Ijcu6H4NInC5tP95OR59WC+1Q/VvzPYC/suuw6u TpqEDactj702vbGaCgTXG5fBqxkdxya20VvT/pR1+qeO+EWnIZ3/QwJq45OoK1Hf NFUqRh7SIcn/AfId4wZIVBmEyAR5NYbshH/n8ynSV8pVFBKfI3cvYo0XLGG31s7F gClWnylHOArndML2kbFIkW3L240dYfmfV/mPQLTjn/g+D1rLBvzq8iD1SXmeIbXE 5mhOT0LzkTgZK1cKKEBXoZ4Uao7Uqn7pOP8UAa1i -----END CERTIFICATE-----Generated at Thu Dec 4 06:00:28 2025 by rpki-client