This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS214025.roa File: AS214025.roa (raw, json) Hash identifier: jdAfg1Jr5+AlIf0dFwfLT6+ho4vUHr+ZB6KjHI9iW8I= Subject key identifier: 2B:77:A6:70:58:19:84:DF:66:8D:D3:57:F9:03:36:88:1E:66:4D:74 Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Certificate serial: 12D6CBF3C9691B732C52295872E0CF37E6540933 Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS214025.roa Signing time: Sun 18 Jan 2026 06:15:21 +0000 ROA not before: Sun 18 Jan 2026 06:10:21 +0000 ROA not after: Sun 17 Jan 2027 06:15:21 +0000 asID: 214025 IP address blocks: 82.22.162.0/24 maxlen: 24 82.23.173.0/24 maxlen: 24 82.39.221.0/24 maxlen: 24 82.40.21.0/24 maxlen: 24 82.40.22.0/24 maxlen: 24 82.41.73.0/24 maxlen: 24 82.41.170.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 19 Jan 2026 04:45:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:d6:cb:f3:c9:69:1b:73:2c:52:29:58:72:e0:cf:37:e6:54:09:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Validity Not Before: Jan 18 06:10:21 2026 GMT Not After : Jan 17 06:15:21 2027 GMT Subject: CN=2B77A670581984DF668DD357F90336881E664D74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:e7:dc:e5:9d:a1:e0:ef:6a:19:db:ca:30:74: ea:1f:4e:69:58:11:32:6b:c8:9e:d5:cb:4f:6b:52: 2f:ec:c4:7c:f8:1a:ce:3a:2c:9f:35:13:dc:dc:e7: fb:77:d1:3b:5d:ef:a8:0c:a1:3e:d0:ad:e6:8c:51: d1:6d:33:95:3c:1d:33:86:f5:c8:a4:ed:00:78:20: e4:85:e7:39:fc:e2:a5:c6:0f:17:ed:d9:b5:65:0a: 15:58:f6:00:34:c5:df:aa:0e:4c:2a:c8:aa:28:9d: 61:17:5c:a5:73:92:8a:ae:5c:63:83:40:22:45:8d: e1:c3:46:c4:9b:89:3c:50:78:1c:91:92:25:38:e1: cd:81:64:cf:dc:d4:e8:9d:3f:cc:ca:da:f4:71:9f: ca:b6:60:3c:39:71:bb:15:2f:f3:2a:67:4e:93:a3: ff:32:be:1b:5d:da:7b:b2:41:e1:25:f5:fc:89:53: dd:a3:81:de:2b:ef:fe:24:d8:e4:4d:6d:ac:3c:2f: a9:1f:8c:4b:94:ed:c5:1c:2d:a4:89:fc:94:99:9c: c3:12:22:a5:88:ef:f5:82:51:78:4c:21:cc:ae:65: 83:85:8f:43:bd:24:4c:7a:30:54:55:d6:ac:04:ca: 76:c1:b5:00:f0:38:5c:40:a0:08:1c:bb:59:c9:f4: 05:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:77:A6:70:58:19:84:DF:66:8D:D3:57:F9:03:36:88:1E:66:4D:74 X509v3 Authority Key Identifier: keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS214025.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 82.22.162.0/24 82.23.173.0/24 82.39.221.0/24 82.40.21.0-82.40.22.255 82.41.73.0/24 82.41.170.0/24 Signature Algorithm: sha256WithRSAEncryption 6f:63:70:4a:be:d3:09:76:e6:e2:8c:e7:62:45:b4:ea:38:4e: d6:8a:fa:04:82:5f:67:f6:9c:a2:a8:03:16:3e:a4:c0:2e:53: 6e:26:90:16:bf:4c:b7:5d:54:eb:5c:3f:75:94:32:1e:c3:6c: 51:27:30:41:b5:61:dc:3d:61:c7:d8:f9:1d:7f:eb:4d:e8:77: 07:45:c3:a0:cd:e4:96:c9:cd:30:06:37:9f:22:53:49:e9:96: 77:6d:b8:7f:f5:b7:97:b5:52:a6:4b:ba:44:f5:e4:41:4d:cc: 02:79:51:82:df:e3:87:e4:45:05:cb:a1:aa:11:e5:45:2f:28: e6:20:6e:df:4e:ff:ef:b2:78:66:68:8a:fa:d4:fe:75:5a:a5: f1:1d:f9:90:b4:16:e5:f7:62:f8:09:0d:f6:c2:0e:1d:47:a7: 72:01:22:d2:83:d4:22:fe:a6:b6:c8:64:cc:e3:39:b2:6b:90: 50:e9:67:4c:3e:55:6f:89:fa:cc:d0:fe:ee:06:e4:d1:8f:60: 82:16:8f:ed:ae:2f:4e:a8:68:e2:e5:80:fe:6a:8c:9f:2e:8a: 8c:b2:4b:77:ab:6e:ff:3f:93:d1:f6:c1:55:10:b5:99:3c:d8: 04:aa:22:01:29:ea:f0:2e:ac:9e:a7:ea:24:9e:64:0e:7d:48: 5e:17:7b:0f -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUEtbL88lpG3MsUilYcuDPN+ZUCTMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjE4Y2M2ZTI0MTA1ZGU2YzVjOTAwM2Q2NTI0Mzg5M2Ni M2NmZGQwMTAeFw0yNjAxMTgwNjEwMjFaFw0yNzAxMTcwNjE1MjFaMDMxMTAvBgNV BAMTKDJCNzdBNjcwNTgxOTg0REY2NjhERDM1N0Y5MDMzNjg4MUU2NjRENzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/59zlnaHg72oZ28owdOofTmlY ETJryJ7Vy09rUi/sxHz4Gs46LJ81E9zc5/t30Ttd76gMoT7QreaMUdFtM5U8HTOG 9cik7QB4IOSF5zn84qXGDxft2bVlChVY9gA0xd+qDkwqyKoonWEXXKVzkoquXGOD QCJFjeHDRsSbiTxQeByRkiU44c2BZM/c1OidP8zK2vRxn8q2YDw5cbsVL/MqZ06T o/8yvhtd2nuyQeEl9fyJU92jgd4r7/4k2ORNbaw8L6kfjEuU7cUcLaSJ/JSZnMMS IqWI7/WCUXhMIcyuZYOFj0O9JEx6MFRV1qwEynbBtQDwOFxAoAgcu1nJ9AXBAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUK3emcFgZhN9mjdNX+QM2iB5mTXQwHwYDVR0j BBgwFoAUIYzG4kEF3mxckAPWUkOJPLPP3QEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYtYjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWEx YWY2LzAvMjE4Q0M2RTI0MTA1REU2QzVDOTAwM0Q2NTI0Mzg5M0NCM0NGREQwMS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0lZekc0a0VGM214Y2tBUFdVa09KUExQ UDNRRS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzcxOGExYjRmLWI2NGMt NDAyYy1iZTE1LWRkODJhNDFhMWFmNi8wL0FTMjE0MDI1LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMEUGCCsGAQUFBwEHAQH/BDYwNDAyBAIAATAsAwQAUhai AwQAUhetAwQAUifdMAwDBABSKBUDBABSKBYDBABSKUkDBABSKaowDQYJKoZIhvcN AQELBQADggEBAG9jcEq+0wl25uKM52JFtOo4TtaK+gSCX2f2nKKoAxY+pMAuU24m kBa/TLddVOtcP3WUMh7DbFEnMEG1Ydw9YcfY+R1/603odwdFw6DN5JbJzTAGN58i U0nplndtuH/1t5e1UqZLukT15EFNzAJ5UYLf44fkRQXLoaoR5UUvKOYgbt9O/++y eGZoivrU/nVapfEd+ZC0FuX3YvgJDfbCDh1Hp3IBItKD1CL+prbIZMzjObJrkFDp Z0w+VW+J+szQ/u4G5NGPYIIWj+2uL06oaOLlgP5qjJ8uioyyS3erbv8/k9H2wVUQ tZk82ASqIgEp6vAurJ6n6iSeZA59SF4Xew8= -----END CERTIFICATE-----Generated at Sun Jan 18 08:56:42 2026 by rpki-client