This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/AS213581.roa File: AS213581.roa (raw, json) Hash identifier: D3Pv6TL3i5mXISsTEzGu1Z3/fxLTS+EhV1ET9ugw6LQ= Subject key identifier: B7:91:E1:4A:E7:FD:5A:5D:1D:7C:3A:83:EA:A0:72:F5:0B:5A:BA:DD Certificate issuer: /CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772 Certificate serial: 487133DABCCF23706E7B240340FE91BB11796544 Authority key identifier: A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/AS213581.roa Signing time: Tue 06 Jan 2026 01:00:44 +0000 ROA not before: Tue 06 Jan 2026 00:55:44 +0000 ROA not after: Tue 05 Jan 2027 01:00:44 +0000 asID: 213581 IP address blocks: 2a14:7584:9000::/36 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 17:03:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:71:33:da:bc:cf:23:70:6e:7b:24:03:40:fe:91:bb:11:79:65:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772 Validity Not Before: Jan 6 00:55:44 2026 GMT Not After : Jan 5 01:00:44 2027 GMT Subject: CN=B791E14AE7FD5A5D1D7C3A83EAA072F50B5ABADD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:12:d0:cc:55:64:2a:fe:72:a0:4d:0a:87:cb: a8:37:df:91:a6:a4:9f:88:28:08:7c:e2:c6:6f:4d: de:c8:17:3f:39:e8:12:c2:e9:8d:b6:29:3e:46:fe: 5b:f7:9e:e1:d6:45:64:0d:7a:ff:7a:46:58:1a:3d: 24:2b:d0:4c:aa:23:60:2d:4c:e7:89:b0:5d:2a:c5: 95:7f:a7:ce:4c:3a:b1:f8:77:67:36:7f:b3:0f:e7: e0:ab:05:a5:bf:16:95:ca:0d:96:20:87:23:18:b7: 8c:ba:61:68:32:54:24:bc:ef:4a:bc:12:d7:4c:1b: 51:a2:e1:11:fc:3c:cf:bb:95:4f:91:f9:6f:1c:c2: 78:43:a2:bd:0b:c1:57:07:39:9c:22:cc:af:01:51: 8c:c5:d8:bb:d4:99:15:fc:f8:c3:b2:1e:24:36:91: 64:64:9a:80:7a:4d:a7:d5:fe:63:77:6c:53:16:db: 96:4e:16:15:64:4c:10:54:df:52:63:46:f9:18:14: 37:a4:4f:17:2c:60:93:a5:5f:12:9e:67:0d:28:0d: 6a:79:ab:a3:c5:90:e7:8b:76:e1:fb:eb:5e:09:08: 1c:82:2d:1d:48:4f:cd:f4:cb:f9:80:4f:2f:24:33: 06:24:2e:32:38:dd:3b:2a:5c:ee:cc:83:c7:25:c6: 2b:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:91:E1:4A:E7:FD:5A:5D:1D:7C:3A:83:EA:A0:72:F5:0B:5A:BA:DD X509v3 Authority Key Identifier: keyid:A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/AS213581.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7584:9000::/36 Signature Algorithm: sha256WithRSAEncryption 11:10:4e:95:6a:bd:ca:81:cd:86:40:4a:db:0a:5e:30:8a:27: 4d:04:e4:eb:70:19:b7:75:57:fe:39:ba:5c:49:74:5e:c6:37: 4f:e9:45:87:7a:dd:23:ed:e0:9c:84:77:7c:b1:8e:bb:53:38: 6a:98:58:47:36:02:28:79:f9:6f:f3:56:75:34:b3:ec:28:80: e1:5c:f8:56:c1:29:ac:c2:6d:8b:5e:6f:39:11:95:87:77:2c: 2c:a7:9a:bc:4d:25:e6:cc:6f:f9:a7:ef:53:61:b9:64:cc:95: ba:ed:85:7d:c4:17:ac:a8:87:f0:e0:09:cd:b3:50:67:c4:42: 26:e8:97:59:79:07:bf:9d:a6:4d:c7:5a:c4:c6:1b:9e:dd:fb: d1:3b:ff:ff:b3:ca:06:cd:cf:28:06:cb:4f:37:e8:5b:5c:25: dc:59:4a:75:04:f9:91:f8:c7:16:27:9f:2c:7a:84:ca:d8:e8: fc:50:9e:8d:7f:e5:12:29:71:e6:fc:65:ba:d3:70:5a:df:b0: 78:85:30:f3:da:8c:13:3e:2f:33:04:18:9b:6b:81:b3:8a:d3: 81:47:bb:0e:b1:14:3e:a3:d0:1b:28:b4:8e:26:f7:ca:70:8e: a6:86:1f:b6:86:33:d4:c1:76:e1:3a:67:6e:86:06:c4:d1:25: c9:ce:de:e1 -----BEGIN CERTIFICATE----- MIIFAjCCA+qgAwIBAgIUSHEz2rzPI3BueyQDQP6RuxF5ZUQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYTgzZDQ4NjUyZjNiMmRmNzRmNmJmOWJhYThhOWMxNzRj Y2ZkMzc3MjAeFw0yNjAxMDYwMDU1NDRaFw0yNzAxMDUwMTAwNDRaMDMxMTAvBgNV BAMTKEI3OTFFMTRBRTdGRDVBNUQxRDdDM0E4M0VBQTA3MkY1MEI1QUJBREQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwEtDMVWQq/nKgTQqHy6g335Gm pJ+IKAh84sZvTd7IFz856BLC6Y22KT5G/lv3nuHWRWQNev96RlgaPSQr0EyqI2At TOeJsF0qxZV/p85MOrH4d2c2f7MP5+CrBaW/FpXKDZYghyMYt4y6YWgyVCS870q8 EtdMG1Gi4RH8PM+7lU+R+W8cwnhDor0LwVcHOZwizK8BUYzF2LvUmRX8+MOyHiQ2 kWRkmoB6TafV/mN3bFMW25ZOFhVkTBBU31JjRvkYFDekTxcsYJOlXxKeZw0oDWp5 q6PFkOeLduH7614JCByCLR1IT830y/mATy8kMwYkLjI43TsqXO7Mg8clxiupAgMB AAGjggIMMIICCDAdBgNVHQ4EFgQUt5HhSuf9Wl0dfDqD6qBy9Qtaut0wHwYDVR0j BBgwFoAUqD1IZS87LfdPa/m6qKnBdMz9N3IwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvODkyNzBmNmMtYTNmZS00Mjk5LWIwNzktMzA5ZWQ5N2Yz ODI0LzAvQTgzRDQ4NjUyRjNCMkRGNzRGNkJGOUJBQThBOUMxNzRDQ0ZEMzc3Mi5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3FEMUlaUzg3TGZkUGFfbTZxS25CZE16 OU4zSS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5Lzg5MjcwZjZjLWEzZmUt NDI5OS1iMDc5LTMwOWVkOTdmMzgyNC8wL0FTMjEzNTgxLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYEKhR1 hJAwDQYJKoZIhvcNAQELBQADggEBABEQTpVqvcqBzYZAStsKXjCKJ00E5OtwGbd1 V/45ulxJdF7GN0/pRYd63SPt4JyEd3yxjrtTOGqYWEc2Aih5+W/zVnU0s+wogOFc +FbBKazCbYtebzkRlYd3LCynmrxNJebMb/mn71NhuWTMlbrthX3EF6yoh/DgCc2z UGfEQibol1l5B7+dpk3HWsTGG57d+9E7//+zygbNzygGy0836FtcJdxZSnUE+ZH4 xxYnnyx6hMrY6PxQno1/5RIpceb8ZbrTcFrfsHiFMPPajBM+LzMEGJtrgbOK04FH uw6xFD6j0BsotI4m98pwjqaGH7aGM9TBduE6Z26GBsTRJcnO3uE= -----END CERTIFICATE-----Generated at Tue Jan 20 00:29:58 2026 by rpki-client