This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS214432.roa File: AS214432.roa (raw, json) Hash identifier: 4zzLeDgby+n5o/gYPHkW1YIJhTmh6ep7VuQg/c+ILic= Subject key identifier: 3E:1C:5B:4A:5F:DF:C4:80:7E:3D:04:6E:79:9A:04:D8:44:87:B9:E0 Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Certificate serial: 7F0215955547590236E1678807AF19F2FF17A519 Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS214432.roa Signing time: Fri 16 Jan 2026 06:29:25 +0000 ROA not before: Fri 16 Jan 2026 06:24:25 +0000 ROA not after: Fri 15 Jan 2027 06:29:25 +0000 asID: 214432 IP address blocks: 82.25.142.0/24 maxlen: 24 82.41.57.0/24 maxlen: 24 82.41.74.0/24 maxlen: 24 82.41.97.0/24 maxlen: 24 178.83.34.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 19 Jan 2026 04:45:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:02:15:95:55:47:59:02:36:e1:67:88:07:af:19:f2:ff:17:a5:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Validity Not Before: Jan 16 06:24:25 2026 GMT Not After : Jan 15 06:29:25 2027 GMT Subject: CN=3E1C5B4A5FDFC4807E3D046E799A04D84487B9E0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:8f:f7:9e:0b:c1:6f:65:3c:04:4f:cc:9a:d8: 46:2b:98:c7:91:05:95:27:b8:3f:03:79:99:8a:05: e9:c3:ec:9f:22:e5:fb:ce:ca:bd:da:89:34:f4:c7: 27:d0:50:60:e4:ec:d4:72:c5:83:2f:7f:24:46:b5: f1:5e:d3:d5:1e:c8:9b:52:b3:2f:6a:de:bf:b3:9a: ae:d8:19:f8:f4:0c:7b:d6:c7:17:55:c0:e3:1c:8d: 4d:e4:22:23:65:7a:18:d5:fd:17:1a:b7:fe:4f:f7: fc:f6:7b:13:21:c7:e7:19:60:1b:7d:47:2b:d0:b5: c1:43:20:20:65:40:04:a7:76:1b:0f:c5:a0:de:57: b1:fc:55:50:34:db:2b:05:30:42:8f:25:22:82:44: 94:e3:17:a8:db:54:b0:62:99:55:9f:76:67:e4:12: cc:92:d2:26:de:b0:bb:05:e1:49:cf:6e:b2:e2:78: ed:9e:20:77:6d:d0:3f:17:27:46:71:32:c3:7a:63: 37:6b:41:56:a8:93:85:9a:c6:fa:b0:d1:f7:e0:cd: 08:e5:35:39:fa:54:bf:0c:55:73:fd:10:7f:18:2e: d8:1f:b2:a9:af:48:c3:80:bf:f9:5c:6f:c0:4a:2a: 0b:d5:24:63:a1:73:47:cc:de:84:09:e3:89:94:93: ac:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:1C:5B:4A:5F:DF:C4:80:7E:3D:04:6E:79:9A:04:D8:44:87:B9:E0 X509v3 Authority Key Identifier: keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS214432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 82.25.142.0/24 82.41.57.0/24 82.41.74.0/24 82.41.97.0/24 178.83.34.0/24 Signature Algorithm: sha256WithRSAEncryption 79:2d:cb:14:37:99:2b:63:11:84:48:ac:11:2b:a7:14:9a:14: de:6c:ff:32:a0:24:76:8b:88:20:43:17:53:3a:a7:f6:47:c9: 42:28:e1:aa:16:65:58:3a:9a:f3:0b:a3:2f:d6:5a:a4:92:ba: dd:1a:10:98:60:86:62:54:1f:e4:20:d2:5c:55:0f:82:48:9c: bb:a2:eb:8f:6b:93:77:4a:3c:80:be:15:b9:08:3e:1a:2b:b7: 2b:6c:a8:30:45:23:ce:a0:26:06:c1:57:f7:33:47:40:af:f9: 5b:09:d7:9d:52:bb:33:50:e7:4d:cb:1c:8a:84:6b:0e:d3:2e: f7:21:32:02:d4:15:a8:11:aa:77:8a:18:92:38:2a:30:28:bf: dd:b7:6e:e0:36:bc:83:dd:19:8d:0e:d2:a2:e3:45:7a:5b:27: d5:66:73:8f:a4:1d:56:02:96:f7:4a:67:2c:b4:a4:63:9f:f2: 72:61:bb:71:09:6e:ec:5a:54:4f:15:04:d9:fd:c0:47:db:54: 73:9d:63:75:a9:10:f9:48:d7:4f:51:da:3d:e0:2c:54:1f:ed: 90:58:62:8a:f8:d0:f9:f6:b7:30:b6:b1:8e:e6:93:9e:94:45: 33:2d:c9:10:5c:85:b2:6c:b7:76:f3:90:7d:66:8f:40:c7:43: ac:34:2b:b8 -----BEGIN CERTIFICATE----- MIIFGDCCBACgAwIBAgIUfwIVlVVHWQI24WeIB68Z8v8XpRkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjE4Y2M2ZTI0MTA1ZGU2YzVjOTAwM2Q2NTI0Mzg5M2Ni M2NmZGQwMTAeFw0yNjAxMTYwNjI0MjVaFw0yNzAxMTUwNjI5MjVaMDMxMTAvBgNV BAMTKDNFMUM1QjRBNUZERkM0ODA3RTNEMDQ2RTc5OUEwNEQ4NDQ4N0I5RTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTj/eeC8FvZTwET8ya2EYrmMeR BZUnuD8DeZmKBenD7J8i5fvOyr3aiTT0xyfQUGDk7NRyxYMvfyRGtfFe09UeyJtS sy9q3r+zmq7YGfj0DHvWxxdVwOMcjU3kIiNlehjV/Rcat/5P9/z2exMhx+cZYBt9 RyvQtcFDICBlQASndhsPxaDeV7H8VVA02ysFMEKPJSKCRJTjF6jbVLBimVWfdmfk EsyS0ibesLsF4UnPbrLieO2eIHdt0D8XJ0ZxMsN6YzdrQVaok4Waxvqw0ffgzQjl NTn6VL8MVXP9EH8YLtgfsqmvSMOAv/lcb8BKKgvVJGOhc0fM3oQJ44mUk6zfAgMB AAGjggIiMIICHjAdBgNVHQ4EFgQUPhxbSl/fxIB+PQRueZoE2ESHueAwHwYDVR0j BBgwFoAUIYzG4kEF3mxckAPWUkOJPLPP3QEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYtYjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWEx YWY2LzAvMjE4Q0M2RTI0MTA1REU2QzVDOTAwM0Q2NTI0Mzg5M0NCM0NGREQwMS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0lZekc0a0VGM214Y2tBUFdVa09KUExQ UDNRRS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzcxOGExYjRmLWI2NGMt NDAyYy1iZTE1LWRkODJhNDFhMWFmNi8wL0FTMjE0NDMyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMDcGCCsGAQUFBwEHAQH/BCgwJjAkBAIAATAeAwQAUhmO AwQAUik5AwQAUilKAwQAUilhAwQAslMiMA0GCSqGSIb3DQEBCwUAA4IBAQB5LcsU N5krYxGESKwRK6cUmhTebP8yoCR2i4ggQxdTOqf2R8lCKOGqFmVYOprzC6Mv1lqk krrdGhCYYIZiVB/kINJcVQ+CSJy7ouuPa5N3SjyAvhW5CD4aK7crbKgwRSPOoCYG wVf3M0dAr/lbCdedUrszUOdNyxyKhGsO0y73ITIC1BWoEap3ihiSOCowKL/dt27g NryD3RmNDtKi40V6WyfVZnOPpB1WApb3SmcstKRjn/JyYbtxCW7sWlRPFQTZ/cBH 21RznWN1qRD5SNdPUdo94CxUH+2QWGKK+ND59rcwtrGO5pOelEUzLckQXIWybLd2 85B9Zo9Ax0OsNCu4 -----END CERTIFICATE-----Generated at Sun Jan 18 08:55:12 2026 by rpki-client