This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/AS214731.roa File: AS214731.roa (raw, json) Hash identifier: U8kTrsqMeB8NBBnydxO3NJTKc51PFi9MN/IxGG+2BCg= Subject key identifier: B1:67:68:3B:5C:96:06:A4:A3:D2:AB:F7:32:D6:89:CE:D1:CC:43:3C Certificate issuer: /CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772 Certificate serial: 3783F991D2CD46A78ADBA067BFCF449BAF83D070 Authority key identifier: A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/AS214731.roa Signing time: Tue 06 Jan 2026 01:00:47 +0000 ROA not before: Tue 06 Jan 2026 00:55:47 +0000 ROA not after: Tue 05 Jan 2027 01:00:47 +0000 asID: 214731 IP address blocks: 2a14:7581:c000::/36 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 10:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:83:f9:91:d2:cd:46:a7:8a:db:a0:67:bf:cf:44:9b:af:83:d0:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772 Validity Not Before: Jan 6 00:55:47 2026 GMT Not After : Jan 5 01:00:47 2027 GMT Subject: CN=B167683B5C9606A4A3D2ABF732D689CED1CC433C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:6c:cc:19:a6:f6:4b:ba:fa:75:75:c5:f4:35: d2:e9:a8:c6:65:9f:df:e4:62:c8:28:4f:f6:81:aa: f9:d0:1b:23:46:80:1a:00:0b:2b:39:91:72:d6:ec: 3e:ab:49:b2:16:13:69:9c:ba:5f:81:20:73:ad:78: 69:45:a5:e7:8e:77:74:f6:67:8e:2d:b1:6b:03:16: e4:86:51:a0:1f:c7:b4:42:cb:35:bb:73:1b:78:16: 70:42:5e:f1:d8:a0:b0:b2:e8:13:e5:5b:9b:3f:ee: a5:2d:46:86:6c:6e:61:09:f0:e3:45:c5:c0:04:fa: 56:08:93:d5:87:69:1b:cb:db:eb:4f:63:65:45:03: ab:d9:68:d0:61:8f:19:64:31:86:73:aa:97:e4:11: 39:f3:ef:b0:57:74:58:3b:54:b0:c3:0d:39:bd:96: 8d:28:fc:cd:18:4a:90:bc:88:9a:35:a1:3c:77:92: 6a:be:84:17:72:78:4c:42:7d:99:5f:d6:9f:06:5d: 04:4d:66:e8:a5:39:a5:fb:7e:46:b5:0d:93:8f:9c: b2:86:fe:a5:db:19:23:41:12:b8:88:3b:96:ae:00: 10:a9:42:21:6b:57:54:12:da:21:66:63:85:2c:77: 3f:19:65:c7:47:cd:1e:19:c7:96:32:f6:e3:75:b2: 84:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:67:68:3B:5C:96:06:A4:A3:D2:AB:F7:32:D6:89:CE:D1:CC:43:3C X509v3 Authority Key Identifier: keyid:A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/AS214731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:c000::/36 Signature Algorithm: sha256WithRSAEncryption 43:e3:c3:23:c2:5c:84:41:6b:a1:02:af:30:19:f8:31:16:b4: 17:d3:d3:b4:da:69:6c:48:65:e3:72:98:e0:ec:03:63:3a:0b: cb:f0:1e:f3:7d:9e:7f:f4:57:b7:2d:da:3f:d4:5b:98:ab:e9: 53:61:46:1e:f4:f0:d3:df:d9:39:19:1b:95:89:6e:f0:cd:1b: 40:8e:ec:87:36:8a:db:19:db:3a:5b:73:dc:d8:1d:7d:49:f3: 86:ed:c5:bc:0b:35:58:4e:75:12:cb:83:da:3b:16:31:b6:57: af:05:09:f6:57:75:1b:7f:21:dd:f6:9b:8d:f6:a5:0a:a3:07: e8:5d:d0:23:90:f6:a6:dd:ba:59:7e:72:1d:20:b5:cc:be:0a: ed:29:04:e9:e4:57:4b:bc:99:f3:6e:43:3c:ee:5a:34:5c:cf: 0d:92:1c:bf:15:7c:4d:51:fb:1f:9d:b6:d5:07:d2:1a:65:b7: ac:b7:03:b2:ad:df:d8:7c:c7:19:8c:b7:34:61:ce:1d:0c:64: 2d:e6:9f:7e:ca:f2:62:24:ef:67:72:a7:b0:e6:84:94:65:76: 70:de:45:97:3e:5b:76:57:9a:02:2b:c0:b3:6e:ca:7b:8e:84: 75:1a:8a:66:09:f2:24:6c:85:53:ad:0f:df:dd:29:de:b3:e1: c5:80:14:7b -----BEGIN CERTIFICATE----- MIIFAjCCA+qgAwIBAgIUN4P5kdLNRqeK26Bnv89Em6+D0HAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYTgzZDQ4NjUyZjNiMmRmNzRmNmJmOWJhYThhOWMxNzRj Y2ZkMzc3MjAeFw0yNjAxMDYwMDU1NDdaFw0yNzAxMDUwMTAwNDdaMDMxMTAvBgNV BAMTKEIxNjc2ODNCNUM5NjA2QTRBM0QyQUJGNzMyRDY4OUNFRDFDQzQzM0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDobMwZpvZLuvp1dcX0NdLpqMZl n9/kYsgoT/aBqvnQGyNGgBoACys5kXLW7D6rSbIWE2mcul+BIHOteGlFpeeOd3T2 Z44tsWsDFuSGUaAfx7RCyzW7cxt4FnBCXvHYoLCy6BPlW5s/7qUtRoZsbmEJ8ONF xcAE+lYIk9WHaRvL2+tPY2VFA6vZaNBhjxlkMYZzqpfkETnz77BXdFg7VLDDDTm9 lo0o/M0YSpC8iJo1oTx3kmq+hBdyeExCfZlf1p8GXQRNZuilOaX7fka1DZOPnLKG /qXbGSNBEriIO5auABCpQiFrV1QS2iFmY4Usdz8ZZcdHzR4Zx5Yy9uN1soQZAgMB AAGjggIMMIICCDAdBgNVHQ4EFgQUsWdoO1yWBqSj0qv3MtaJztHMQzwwHwYDVR0j BBgwFoAUqD1IZS87LfdPa/m6qKnBdMz9N3IwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvODkyNzBmNmMtYTNmZS00Mjk5LWIwNzktMzA5ZWQ5N2Yz ODI0LzAvQTgzRDQ4NjUyRjNCMkRGNzRGNkJGOUJBQThBOUMxNzRDQ0ZEMzc3Mi5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3FEMUlaUzg3TGZkUGFfbTZxS25CZE16 OU4zSS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5Lzg5MjcwZjZjLWEzZmUt NDI5OS1iMDc5LTMwOWVkOTdmMzgyNC8wL0FTMjE0NzMxLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYEKhR1 gcAwDQYJKoZIhvcNAQELBQADggEBAEPjwyPCXIRBa6ECrzAZ+DEWtBfT07TaaWxI ZeNymODsA2M6C8vwHvN9nn/0V7ct2j/UW5ir6VNhRh708NPf2TkZG5WJbvDNG0CO 7Ic2itsZ2zpbc9zYHX1J84btxbwLNVhOdRLLg9o7FjG2V68FCfZXdRt/Id32m432 pQqjB+hd0COQ9qbdull+ch0gtcy+Cu0pBOnkV0u8mfNuQzzuWjRczw2SHL8VfE1R +x+dttUH0hplt6y3A7Kt39h8xxmMtzRhzh0MZC3mn37K8mIk72dyp7DmhJRldnDe RZc+W3ZXmgIrwLNuynuOhHUaimYJ8iRshVOtD9/dKd6z4cWAFHs= -----END CERTIFICATE-----Generated at Mon Jan 26 17:00:25 2026 by rpki-client