This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/84d51810-1987-4701-8f1f-8425111964f4/0/AS213866.roa File: AS213866.roa (raw, json) Hash identifier: WSj7J4OlYzL2SHEz9MUItaGVvPXGKHDNPkygKQgL4Co= Subject key identifier: C1:37:A8:7A:AF:94:2D:DA:33:2E:BB:CC:56:54:52:AF:02:94:51:9C Certificate issuer: /CN=c4ce7d8902405ba4598f84b6a41c27d722834b1c Certificate serial: 61F9EEC5B7E9B23A3B1B3D2F228CDE2D4E9B33E0 Authority key identifier: C4:CE:7D:89:02:40:5B:A4:59:8F:84:B6:A4:1C:27:D7:22:83:4B:1C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xM59iQJAW6RZj4S2pBwn1yKDSxw.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/84d51810-1987-4701-8f1f-8425111964f4/0/AS213866.roa Signing time: Thu 06 Nov 2025 12:27:31 +0000 ROA not before: Thu 06 Nov 2025 12:22:31 +0000 ROA not after: Thu 05 Nov 2026 12:27:31 +0000 asID: 213866 IP address blocks: 2a0f:85c1:8f7::/48 maxlen: 48 2a0f:85c1:c17::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/84d51810-1987-4701-8f1f-8425111964f4/0/C4CE7D8902405BA4598F84B6A41C27D722834B1C.crl rsync://rsync.paas.rpki.ripe.net/repository/84d51810-1987-4701-8f1f-8425111964f4/0/C4CE7D8902405BA4598F84B6A41C27D722834B1C.mft rsync://rpki.ripe.net/repository/DEFAULT/xM59iQJAW6RZj4S2pBwn1yKDSxw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 23 Nov 2025 12:00:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:f9:ee:c5:b7:e9:b2:3a:3b:1b:3d:2f:22:8c:de:2d:4e:9b:33:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c4ce7d8902405ba4598f84b6a41c27d722834b1c Validity Not Before: Nov 6 12:22:31 2025 GMT Not After : Nov 5 12:27:31 2026 GMT Subject: CN=C137A87AAF942DDA332EBBCC565452AF0294519C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:d2:e6:05:97:ea:25:94:eb:fa:37:12:c1:41: c8:a1:26:33:a1:46:fc:77:7a:23:b4:2b:ad:94:ec: 1a:99:7c:1c:5f:09:76:f0:9d:2d:84:4c:cd:2e:f3: f1:c6:70:9d:f5:de:a3:f0:61:46:94:7b:6e:8d:fc: 9d:25:7f:21:d5:25:68:02:ec:80:a6:9d:56:7d:9c: a8:4c:02:1c:2f:a7:9c:9c:1b:39:9e:10:e2:81:cb: 15:1e:f7:58:06:79:1f:b9:b4:02:23:92:d4:dd:a2: 44:c0:df:ed:90:fc:67:53:7f:01:22:1a:f4:18:fe: 71:6e:00:de:fa:eb:fb:3b:76:b4:9a:97:90:aa:d5: 6b:55:0a:96:19:9d:61:68:c4:8a:f8:b0:97:3c:45: dd:01:7b:5d:d2:2c:78:33:e3:f1:1d:0f:bc:d7:76: ca:f5:04:09:01:2f:00:16:a3:6a:4e:9b:c2:17:3c: ba:2a:3b:c6:02:90:57:19:9e:fb:3b:67:f4:9e:93: 12:d6:53:ea:61:6f:06:84:59:1e:e5:6c:7b:c6:87: 9d:06:3f:63:94:3b:58:29:ad:d5:a7:e1:be:42:97: 8e:a8:9c:2f:55:ef:ff:1c:b1:b7:bf:9e:8d:65:77: 23:5c:d0:01:03:eb:f3:6b:87:75:94:d7:94:46:25: a7:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:37:A8:7A:AF:94:2D:DA:33:2E:BB:CC:56:54:52:AF:02:94:51:9C X509v3 Authority Key Identifier: keyid:C4:CE:7D:89:02:40:5B:A4:59:8F:84:B6:A4:1C:27:D7:22:83:4B:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/84d51810-1987-4701-8f1f-8425111964f4/0/C4CE7D8902405BA4598F84B6A41C27D722834B1C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xM59iQJAW6RZj4S2pBwn1yKDSxw.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/84d51810-1987-4701-8f1f-8425111964f4/0/AS213866.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0f:85c1:8f7::/48 2a0f:85c1:c17::/48 Signature Algorithm: sha256WithRSAEncryption b7:a0:b5:af:f7:05:4c:df:c8:fe:ce:eb:a2:42:f0:66:ab:e2: 60:e0:85:a1:a2:9b:20:c7:c6:9f:bc:31:fc:e6:9f:a4:be:e1: 0e:c5:82:ad:ff:c7:41:e6:f4:5f:73:c0:9b:4c:22:a1:7a:33: d9:40:fc:9d:d7:c6:5d:db:88:c3:71:3c:1a:2d:83:6d:e9:3e: 6d:97:db:c4:f7:31:c7:42:a1:d8:3c:e0:25:bb:7d:47:f2:52: c8:ef:bf:87:95:a4:ea:f9:c0:d0:d3:5d:62:df:75:9b:17:b1: 01:8d:93:2c:5f:66:66:f0:79:f5:22:1f:14:b1:33:bb:49:75: 60:f8:ac:2b:6c:51:a4:13:57:c7:4f:03:d4:65:87:0e:45:59: e9:12:dd:75:8a:f5:d1:d4:a2:9c:9c:6d:36:40:74:ae:3b:27: 95:10:81:57:6d:23:5d:4f:cd:6b:50:67:fa:9c:b7:a8:d8:04: 37:d8:6d:e7:a7:a8:76:da:c2:7f:28:7b:ae:b3:c4:57:08:41: c1:56:4b:5c:e7:e7:3e:81:1c:4f:05:c7:4c:09:91:9b:e6:e9: 2e:a9:98:22:94:cd:21:b4:f6:71:44:2f:c0:53:03:6a:b0:41: 62:b9:b7:15:09:5c:3c:27:c0:e9:e2:cc:41:0f:80:a5:d6:b3: eb:7e:ef:6d -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgIUYfnuxbfpsjo7Gz0vIozeLU6bM+AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYzRjZTdkODkwMjQwNWJhNDU5OGY4NGI2YTQxYzI3ZDcy MjgzNGIxYzAeFw0yNTExMDYxMjIyMzFaFw0yNjExMDUxMjI3MzFaMDMxMTAvBgNV BAMTKEMxMzdBODdBQUY5NDJEREEzMzJFQkJDQzU2NTQ1MkFGMDI5NDUxOUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCe0uYFl+ollOv6NxLBQcihJjOh Rvx3eiO0K62U7BqZfBxfCXbwnS2ETM0u8/HGcJ313qPwYUaUe26N/J0lfyHVJWgC 7ICmnVZ9nKhMAhwvp5ycGzmeEOKByxUe91gGeR+5tAIjktTdokTA3+2Q/GdTfwEi GvQY/nFuAN766/s7drSal5Cq1WtVCpYZnWFoxIr4sJc8Rd0Be13SLHgz4/EdD7zX dsr1BAkBLwAWo2pOm8IXPLoqO8YCkFcZnvs7Z/SekxLWU+phbwaEWR7lbHvGh50G P2OUO1gprdWn4b5Cl46onC9V7/8csbe/no1ldyNc0AED6/Nrh3WU15RGJachAgMB AAGjggIWMIICEjAdBgNVHQ4EFgQUwTeoeq+ULdozLrvMVlRSrwKUUZwwHwYDVR0j BBgwFoAUxM59iQJAW6RZj4S2pBwn1yKDSxwwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvODRkNTE4MTAtMTk4Ny00NzAxLThmMWYtODQyNTExMTk2 NGY0LzAvQzRDRTdEODkwMjQwNUJBNDU5OEY4NEI2QTQxQzI3RDcyMjgzNEIxQy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3hNNTlpUUpBVzZSWmo0UzJwQnduMXlL RFN4dy5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5Lzg0ZDUxODEwLTE5ODct NDcwMS04ZjFmLTg0MjUxMTE5NjRmNC8wL0FTMjEzODY2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAAjASAwcAKg+F wQj3AwcAKg+FwQwXMA0GCSqGSIb3DQEBCwUAA4IBAQC3oLWv9wVM38j+zuuiQvBm q+Jg4IWhopsgx8afvDH85p+kvuEOxYKt/8dB5vRfc8CbTCKhejPZQPyd18Zd24jD cTwaLYNt6T5tl9vE9zHHQqHYPOAlu31H8lLI77+HlaTq+cDQ011i33WbF7EBjZMs X2Zm8Hn1Ih8UsTO7SXVg+KwrbFGkE1fHTwPUZYcORVnpEt11ivXR1KKcnG02QHSu OyeVEIFXbSNdT81rUGf6nLeo2AQ32G3np6h22sJ/KHuus8RXCEHBVktc5+c+gRxP BcdMCZGb5ukuqZgilM0htPZxRC/AUwNqsEFiubcVCVw8J8Dp4sxBD4Cl1rPrfu9t -----END CERTIFICATE-----Generated at Sat Nov 22 22:06:24 2025 by rpki-client