This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS214025.roa File: AS214025.roa (raw, json) Hash identifier: hSCi7D/ACa/CcdyfvAPDFNrCYOkfM786f+dSuWR84Kk= Subject key identifier: 02:74:26:7B:79:D9:F1:47:1B:5E:9D:96:76:2F:72:BC:88:AF:9B:E7 Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Certificate serial: 32DE74C6C46A36F8DE835F2C44EC76A2E08A204B Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS214025.roa Signing time: Tue 02 Dec 2025 08:21:34 +0000 ROA not before: Tue 02 Dec 2025 08:16:34 +0000 ROA not after: Tue 01 Dec 2026 08:21:34 +0000 asID: 214025 IP address blocks: 82.22.187.0/24 maxlen: 24 82.39.173.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 05 Dec 2025 00:00:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:de:74:c6:c4:6a:36:f8:de:83:5f:2c:44:ec:76:a2:e0:8a:20:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Validity Not Before: Dec 2 08:16:34 2025 GMT Not After : Dec 1 08:21:34 2026 GMT Subject: CN=0274267B79D9F1471B5E9D96762F72BC88AF9BE7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:ce:79:a1:36:0f:59:78:7a:fb:36:36:24:97: cd:0b:86:e1:0c:f4:ad:66:48:a2:3a:b3:07:5f:43: ba:dd:f5:e9:72:38:6c:85:d1:90:2a:90:0e:cb:6d: df:2c:79:83:11:1b:03:da:18:de:90:85:8d:de:56: 74:88:ba:f4:67:f4:e9:19:73:45:41:3e:00:b5:03: 04:56:fa:71:de:2f:3f:a3:21:ea:cb:00:9c:81:2c: 7d:c3:85:7e:17:27:af:61:e8:88:33:e2:8a:68:40: 86:87:dc:18:3b:45:d5:86:ec:3b:6b:3c:83:b4:30: a7:ca:b9:fa:b9:e2:0b:02:e1:7c:28:ce:58:08:d1: af:8a:25:9c:90:79:95:3a:01:e5:e4:32:96:50:ec: 57:50:90:07:14:3d:88:69:dd:62:2b:08:93:0a:ab: 57:c2:e8:68:04:32:f2:3f:32:c4:c4:b7:e2:8b:62: 98:c0:6a:a5:7b:ba:90:77:5b:0f:f5:b2:13:2c:56: fe:41:f4:6c:a4:e7:da:e9:65:98:26:af:4a:e4:5c: 01:f1:84:7d:77:27:f2:3f:8f:4c:63:84:16:98:bf: aa:96:b7:5b:2e:e9:64:7a:ea:62:54:e7:3f:a2:c7: f0:80:63:dc:1e:b1:8e:9d:07:ed:9e:01:fa:db:0a: cf:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:74:26:7B:79:D9:F1:47:1B:5E:9D:96:76:2F:72:BC:88:AF:9B:E7 X509v3 Authority Key Identifier: keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS214025.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 82.22.187.0/24 82.39.173.0/24 Signature Algorithm: sha256WithRSAEncryption 5e:ae:52:44:d5:2d:d0:76:f2:a8:71:cc:38:bc:e7:29:58:d8: 3d:58:f8:1f:75:01:c5:84:d2:9f:a5:3d:f2:5e:1b:bb:e5:ba: d5:ef:1a:1c:46:e4:32:bd:db:2f:e0:d9:11:16:ab:41:06:13: ee:a8:5d:bb:6b:40:fa:56:ba:62:4e:8c:01:28:cc:a7:c3:f6: 70:fd:35:62:2a:ab:12:79:68:b0:37:11:60:10:1f:b1:d0:8e: 45:3d:b9:df:7a:09:04:b6:58:e4:a5:dc:29:54:25:41:9c:c9: ce:77:6b:64:87:f2:28:1c:e8:1b:92:a6:3a:70:24:97:55:82: 57:12:95:e9:ab:8a:e5:37:64:63:ef:4e:ca:53:ca:16:75:bd: 39:fb:a1:1d:9c:3b:7d:9d:fe:2f:6a:61:2e:b3:e9:a9:d4:f8: 62:df:0a:fe:f3:73:23:d2:ee:47:53:75:8a:cd:34:17:f4:f8: 3e:15:dd:35:42:07:72:70:f2:3f:0c:e1:00:31:e6:d2:09:3d: 58:8a:ac:0f:2e:29:ba:2f:32:b9:c1:f4:4d:8d:0d:1f:5b:76: 17:43:da:68:33:2f:dd:d6:e8:31:26:df:4d:b5:a2:49:a6:97: a3:d7:f6:6a:b2:32:16:59:e9:00:24:3a:f5:c5:09:cd:91:c4: 25:66:f6:39 -----BEGIN CERTIFICATE----- MIIFBjCCA+6gAwIBAgIUMt50xsRqNvjeg18sROx2ouCKIEswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjE4Y2M2ZTI0MTA1ZGU2YzVjOTAwM2Q2NTI0Mzg5M2Ni M2NmZGQwMTAeFw0yNTEyMDIwODE2MzRaFw0yNjEyMDEwODIxMzRaMDMxMTAvBgNV BAMTKDAyNzQyNjdCNzlEOUYxNDcxQjVFOUQ5Njc2MkY3MkJDODhBRjlCRTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTznmhNg9ZeHr7NjYkl80LhuEM 9K1mSKI6swdfQ7rd9elyOGyF0ZAqkA7Lbd8seYMRGwPaGN6QhY3eVnSIuvRn9OkZ c0VBPgC1AwRW+nHeLz+jIerLAJyBLH3DhX4XJ69h6Igz4opoQIaH3Bg7RdWG7Dtr PIO0MKfKufq54gsC4XwozlgI0a+KJZyQeZU6AeXkMpZQ7FdQkAcUPYhp3WIrCJMK q1fC6GgEMvI/MsTEt+KLYpjAaqV7upB3Ww/1shMsVv5B9Gyk59rpZZgmr0rkXAHx hH13J/I/j0xjhBaYv6qWt1su6WR66mJU5z+ix/CAY9wesY6dB+2eAfrbCs+ZAgMB AAGjggIQMIICDDAdBgNVHQ4EFgQUAnQme3nZ8UcbXp2Wdi9yvIivm+cwHwYDVR0j BBgwFoAUIYzG4kEF3mxckAPWUkOJPLPP3QEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYtYjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWEx YWY2LzAvMjE4Q0M2RTI0MTA1REU2QzVDOTAwM0Q2NTI0Mzg5M0NCM0NGREQwMS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0lZekc0a0VGM214Y2tBUFdVa09KUExQ UDNRRS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzcxOGExYjRmLWI2NGMt NDAyYy1iZTE1LWRkODJhNDFhMWFmNi8wL0FTMjE0MDI1LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAUha7 AwQAUietMA0GCSqGSIb3DQEBCwUAA4IBAQBerlJE1S3QdvKoccw4vOcpWNg9WPgf dQHFhNKfpT3yXhu75brV7xocRuQyvdsv4NkRFqtBBhPuqF27a0D6VrpiTowBKMyn w/Zw/TViKqsSeWiwNxFgEB+x0I5FPbnfegkEtljkpdwpVCVBnMnOd2tkh/IoHOgb kqY6cCSXVYJXEpXpq4rlN2Rj707KU8oWdb05+6EdnDt9nf4vamEus+mp1Phi3wr+ 83Mj0u5HU3WKzTQX9Pg+Fd01QgdycPI/DOEAMebSCT1YiqwPLim6LzK5wfRNjQ0f W3YXQ9poMy/d1ugxJt9NtaJJppej1/ZqsjIWWekAJDr1xQnNkcQlZvY5 -----END CERTIFICATE-----Generated at Thu Dec 4 06:00:25 2025 by rpki-client