This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/AS214454.roa File: AS214454.roa (raw, json) Hash identifier: f48kd0cLw3oC9f05YF60l2tUm2apgbkxVO1jXz3AjaM= Subject key identifier: 6C:55:89:9C:10:51:F3:D5:41:D2:99:97:1E:01:0F:18:E4:19:AC:72 Certificate issuer: /CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772 Certificate serial: 0B92BB72E601BAEC30A41C702624597EC20F1D5D Authority key identifier: A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/AS214454.roa Signing time: Tue 06 Jan 2026 01:00:43 +0000 ROA not before: Tue 06 Jan 2026 00:55:43 +0000 ROA not after: Tue 05 Jan 2027 01:00:43 +0000 asID: 214454 IP address blocks: 2a14:7580:2000::/36 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 03 Feb 2026 21:21:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:92:bb:72:e6:01:ba:ec:30:a4:1c:70:26:24:59:7e:c2:0f:1d:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772 Validity Not Before: Jan 6 00:55:43 2026 GMT Not After : Jan 5 01:00:43 2027 GMT Subject: CN=6C55899C1051F3D541D299971E010F18E419AC72 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:db:55:05:6f:71:16:7e:5f:75:8b:72:78:40: 2b:3a:c5:4c:34:12:a0:93:57:59:02:bd:f0:ed:99: 09:c8:87:dd:5b:cc:84:d6:60:22:6b:2b:b0:90:89: 22:60:57:4e:45:43:9e:ee:3b:60:a4:de:ea:07:4e: a7:d0:e0:e1:0b:e6:85:7d:9e:41:08:46:0e:4b:a8: 0d:86:2a:eb:c3:94:bc:3d:c3:e3:ef:fd:00:7d:8f: 1d:e2:67:f9:7d:51:8c:31:df:6a:95:71:fc:73:25: 90:5c:3a:df:2c:20:35:34:78:4c:16:15:76:98:ff: 9e:21:6f:ed:d2:bc:9c:3a:a3:8d:25:15:6b:15:66: 6e:4e:74:f1:43:76:8a:9f:58:00:3c:98:e4:d6:1b: c2:e7:07:5d:e7:a2:6c:b1:60:5d:c9:67:9b:eb:b1: 31:d0:2f:e3:29:51:45:2e:a2:e3:65:d1:e4:26:8b: 42:b1:38:1e:e7:83:34:ea:90:c5:ce:29:84:0b:e3: 3c:92:b2:f3:77:01:60:b9:fb:dc:a9:24:49:15:db: 6f:09:88:68:d3:9a:d6:70:4f:bb:2c:5d:21:51:ee: ff:20:da:81:fd:0f:11:44:2c:1f:a8:a0:8d:3d:0a: 39:82:69:16:7a:b9:bf:46:19:56:13:34:92:0f:3f: b5:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:55:89:9C:10:51:F3:D5:41:D2:99:97:1E:01:0F:18:E4:19:AC:72 X509v3 Authority Key Identifier: keyid:A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/AS214454.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7580:2000::/36 Signature Algorithm: sha256WithRSAEncryption 9d:7c:58:df:2c:79:a6:a0:c8:36:85:15:b5:97:dc:96:6b:8c: 43:a2:d2:da:b5:ac:ae:0d:98:ac:e3:76:53:e3:63:47:8f:ea: 05:ef:7b:a5:a2:df:d4:6a:4d:b2:2c:b7:02:8d:2c:9c:a4:fe: 8e:ea:3d:8c:3a:34:ec:01:d2:1a:f4:01:4d:97:47:96:0b:f5: 17:d1:0f:2d:09:36:10:6f:32:0e:76:a6:3b:e7:7d:60:e2:fa: 1b:cc:3d:08:86:b7:6b:ad:ee:b8:60:d6:dc:91:9b:8a:6b:6b: 1c:58:b1:f6:c7:7a:96:9a:30:42:0c:0c:7a:a2:55:09:ac:5d: 49:59:a8:e7:2f:54:76:72:bd:06:56:33:8a:a1:20:11:db:44: b3:23:6b:94:5d:09:d0:86:14:ba:64:79:b7:0d:d5:7a:1a:fd: 31:2f:90:12:e9:f3:30:b1:64:13:1c:a5:a4:d8:f4:7a:dc:90: ea:b8:01:1d:01:00:1d:53:4c:c4:87:82:eb:b2:94:d7:b3:6c: 11:ae:cb:95:62:7d:31:c2:3e:cb:ef:53:f0:38:b6:26:d3:5d: 60:56:b3:68:5a:78:d3:65:e0:c5:af:8e:b3:3d:c9:c8:76:c2: ad:6c:76:23:5b:63:94:00:ab:63:6d:31:e8:13:5b:92:37:f5: 83:5e:6b:66 -----BEGIN CERTIFICATE----- MIIFAjCCA+qgAwIBAgIUC5K7cuYBuuwwpBxwJiRZfsIPHV0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYTgzZDQ4NjUyZjNiMmRmNzRmNmJmOWJhYThhOWMxNzRj Y2ZkMzc3MjAeFw0yNjAxMDYwMDU1NDNaFw0yNzAxMDUwMTAwNDNaMDMxMTAvBgNV BAMTKDZDNTU4OTlDMTA1MUYzRDU0MUQyOTk5NzFFMDEwRjE4RTQxOUFDNzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCx21UFb3EWfl91i3J4QCs6xUw0 EqCTV1kCvfDtmQnIh91bzITWYCJrK7CQiSJgV05FQ57uO2Ck3uoHTqfQ4OEL5oV9 nkEIRg5LqA2GKuvDlLw9w+Pv/QB9jx3iZ/l9UYwx32qVcfxzJZBcOt8sIDU0eEwW FXaY/54hb+3SvJw6o40lFWsVZm5OdPFDdoqfWAA8mOTWG8LnB13nomyxYF3JZ5vr sTHQL+MpUUUuouNl0eQmi0KxOB7ngzTqkMXOKYQL4zySsvN3AWC5+9ypJEkV228J iGjTmtZwT7ssXSFR7v8g2oH9DxFELB+ooI09CjmCaRZ6ub9GGVYTNJIPP7WZAgMB AAGjggIMMIICCDAdBgNVHQ4EFgQUbFWJnBBR89VB0pmXHgEPGOQZrHIwHwYDVR0j BBgwFoAUqD1IZS87LfdPa/m6qKnBdMz9N3IwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvODkyNzBmNmMtYTNmZS00Mjk5LWIwNzktMzA5ZWQ5N2Yz ODI0LzAvQTgzRDQ4NjUyRjNCMkRGNzRGNkJGOUJBQThBOUMxNzRDQ0ZEMzc3Mi5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3FEMUlaUzg3TGZkUGFfbTZxS25CZE16 OU4zSS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5Lzg5MjcwZjZjLWEzZmUt NDI5OS1iMDc5LTMwOWVkOTdmMzgyNC8wL0FTMjE0NDU0LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYEKhR1 gCAwDQYJKoZIhvcNAQELBQADggEBAJ18WN8seaagyDaFFbWX3JZrjEOi0tq1rK4N mKzjdlPjY0eP6gXve6Wi39RqTbIstwKNLJyk/o7qPYw6NOwB0hr0AU2XR5YL9RfR Dy0JNhBvMg52pjvnfWDi+hvMPQiGt2ut7rhg1tyRm4praxxYsfbHepaaMEIMDHqi VQmsXUlZqOcvVHZyvQZWM4qhIBHbRLMja5RdCdCGFLpkebcN1Xoa/TEvkBLp8zCx ZBMcpaTY9HrckOq4AR0BAB1TTMSHguuylNezbBGuy5VifTHCPsvvU/A4tibTXWBW s2haeNNl4MWvjrM9ych2wq1sdiNbY5QAq2NtMegTW5I39YNea2Y= -----END CERTIFICATE-----Generated at Tue Feb 3 06:47:05 2026 by rpki-client