This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/AS214025.roa File: AS214025.roa (raw, json) Hash identifier: YY5LMXmSyImUN8AVVStLXGSTbMZhBCKpSR+HIWvBk6E= Subject key identifier: 22:03:EF:80:F4:4C:80:76:9E:C4:30:D7:3D:A0:C8:8F:3E:38:35:80 Certificate issuer: /CN=7051b4c2f7ae9ef80b53000b32ab8f5d2f2f415b Certificate serial: 23E3C3EE0F52663F7088E4EBC4E2AC82505E167B Authority key identifier: 70:51:B4:C2:F7:AE:9E:F8:0B:53:00:0B:32:AB:8F:5D:2F:2F:41:5B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cFG0wveunvgLUwALMquPXS8vQVs.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/AS214025.roa Signing time: Wed 07 Jan 2026 04:41:56 +0000 ROA not before: Wed 07 Jan 2026 04:36:56 +0000 ROA not after: Wed 06 Jan 2027 04:41:56 +0000 asID: 214025 IP address blocks: 83.171.244.0/24 maxlen: 24 83.171.246.0/24 maxlen: 24 193.187.134.0/24 maxlen: 24 194.93.51.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/7051B4C2F7AE9EF80B53000B32AB8F5D2F2F415B.crl rsync://rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/7051B4C2F7AE9EF80B53000B32AB8F5D2F2F415B.mft rsync://rpki.ripe.net/repository/DEFAULT/cFG0wveunvgLUwALMquPXS8vQVs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 19 Jan 2026 19:27:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:e3:c3:ee:0f:52:66:3f:70:88:e4:eb:c4:e2:ac:82:50:5e:16:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7051b4c2f7ae9ef80b53000b32ab8f5d2f2f415b Validity Not Before: Jan 7 04:36:56 2026 GMT Not After : Jan 6 04:41:56 2027 GMT Subject: CN=2203EF80F44C80769EC430D73DA0C88F3E383580 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:16:fd:ac:c1:08:b5:fd:73:ab:d8:ef:5b:22: ac:81:a9:66:ee:eb:bd:4d:61:17:aa:f5:38:f4:a6: 3d:16:88:01:4a:bd:c2:d5:8f:0d:a4:65:66:2a:0b: 0b:ef:f6:65:52:fb:16:8c:da:64:ef:3e:20:96:9c: b5:2f:22:4a:4d:e9:ec:7d:f9:c9:18:45:7b:7a:98: 49:b0:ac:bb:41:2e:fe:5d:46:ec:55:2f:73:ed:ca: 2f:bc:4e:29:ff:3e:97:82:12:c7:0b:50:c3:d8:4e: 3e:78:e5:9b:b7:38:3a:13:bd:7c:80:03:4e:e3:16: 1d:17:7a:8f:c7:51:f0:8a:af:51:2b:74:ba:57:4c: 1a:27:10:8c:f9:34:66:2a:86:94:b8:75:12:bc:65: fa:9b:24:44:da:10:41:c6:77:6f:62:00:fa:fa:f7: 99:0a:a6:a4:f6:47:bc:c9:d7:e0:43:ec:37:15:40: 0c:5f:fc:cc:93:a4:8b:72:3a:94:4e:81:4d:d0:57: 7d:9f:d3:cc:4c:19:20:04:86:e6:cc:ba:db:24:bf: cd:03:36:9a:ed:a2:e2:78:ce:0a:73:07:6d:a1:a8: 2b:55:f7:f7:69:14:dd:3a:c6:c1:3c:40:2c:61:74: 7b:b0:04:80:c9:a7:54:6c:7b:0b:d0:f7:b2:bd:f0: e2:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:03:EF:80:F4:4C:80:76:9E:C4:30:D7:3D:A0:C8:8F:3E:38:35:80 X509v3 Authority Key Identifier: keyid:70:51:B4:C2:F7:AE:9E:F8:0B:53:00:0B:32:AB:8F:5D:2F:2F:41:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/7051B4C2F7AE9EF80B53000B32AB8F5D2F2F415B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cFG0wveunvgLUwALMquPXS8vQVs.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/AS214025.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 83.171.244.0/24 83.171.246.0/24 193.187.134.0/24 194.93.51.0/24 Signature Algorithm: sha256WithRSAEncryption 35:35:e9:1a:60:fe:87:04:92:a9:9c:89:4d:ef:4e:e6:c1:79: 89:33:7b:a7:68:69:4c:5a:b1:53:13:14:76:47:70:11:94:d7: 15:9c:79:90:25:74:73:d7:63:ba:ba:e2:f3:11:24:20:f6:52: 67:d4:74:e9:ba:68:0f:cf:ef:b8:1d:b2:d5:56:f7:a5:58:19: 35:30:aa:4e:cd:fa:bf:8f:66:15:44:5f:81:0f:c7:da:f5:e7: 42:66:5d:93:6b:c4:32:ea:41:31:9c:25:c6:98:3e:c9:40:dc: 37:07:0c:6c:95:d5:6d:64:ab:14:0d:c8:64:1b:d3:f8:14:2b: 4d:02:86:3d:85:70:e9:e2:0c:af:93:3d:79:59:93:16:7a:62: 7c:f3:29:b1:33:37:7d:9a:15:2b:a8:1a:81:8a:70:f4:aa:83: f5:95:00:04:e7:e2:2c:c8:ea:42:6d:97:d0:e9:c9:9e:d5:f1: 71:cb:e1:fc:51:21:ee:12:86:70:89:63:24:17:40:7f:07:1d: 8e:08:1c:48:e5:9c:35:49:ca:d0:54:9a:9a:ca:71:e2:c6:e4: 74:db:cf:c0:29:71:1e:c1:6a:03:57:bd:aa:45:2a:db:2e:c0: 9d:b3:cf:16:22:65:98:02:58:9b:fa:72:13:29:06:d4:a8:e2: 9e:1e:24:bc -----BEGIN CERTIFICATE----- MIIFEjCCA/qgAwIBAgIUI+PD7g9SZj9wiOTrxOKsglBeFnswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzA1MWI0YzJmN2FlOWVmODBiNTMwMDBiMzJhYjhmNWQy ZjJmNDE1YjAeFw0yNjAxMDcwNDM2NTZaFw0yNzAxMDYwNDQxNTZaMDMxMTAvBgNV BAMTKDIyMDNFRjgwRjQ0QzgwNzY5RUM0MzBENzNEQTBDODhGM0UzODM1ODAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCgFv2swQi1/XOr2O9bIqyBqWbu 671NYReq9Tj0pj0WiAFKvcLVjw2kZWYqCwvv9mVS+xaM2mTvPiCWnLUvIkpN6ex9 +ckYRXt6mEmwrLtBLv5dRuxVL3Ptyi+8Tin/PpeCEscLUMPYTj545Zu3ODoTvXyA A07jFh0Xeo/HUfCKr1ErdLpXTBonEIz5NGYqhpS4dRK8ZfqbJETaEEHGd29iAPr6 95kKpqT2R7zJ1+BD7DcVQAxf/MyTpItyOpROgU3QV32f08xMGSAEhubMutskv80D NprtouJ4zgpzB22hqCtV9/dpFN06xsE8QCxhdHuwBIDJp1RsewvQ97K98OJxAgMB AAGjggIcMIICGDAdBgNVHQ4EFgQUIgPvgPRMgHaexDDXPaDIjz44NYAwHwYDVR0j BBgwFoAUcFG0wveunvgLUwALMquPXS8vQVswDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvOWM1Y2U5ZmEtOWE2Zi00ZTBjLTk4MDktN2E0Nzg4NzQ0 ODkzLzAvNzA1MUI0QzJGN0FFOUVGODBCNTMwMDBCMzJBQjhGNUQyRjJGNDE1Qi5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2NGRzB3dmV1bnZnTFV3QUxNcXVQWFM4 dlFWcy5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzljNWNlOWZhLTlhNmYt NGUwYy05ODA5LTdhNDc4ODc0NDg5My8wL0FTMjE0MDI1LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMDEGCCsGAQUFBwEHAQH/BCIwIDAeBAIAATAYAwQAU6v0 AwQAU6v2AwQAwbuGAwQAwl0zMA0GCSqGSIb3DQEBCwUAA4IBAQA1NekaYP6HBJKp nIlN707mwXmJM3unaGlMWrFTExR2R3ARlNcVnHmQJXRz12O6uuLzESQg9lJn1HTp umgPz++4HbLVVvelWBk1MKpOzfq/j2YVRF+BD8fa9edCZl2Ta8Qy6kExnCXGmD7J QNw3BwxsldVtZKsUDchkG9P4FCtNAoY9hXDp4gyvkz15WZMWemJ88ymxMzd9mhUr qBqBinD0qoP1lQAE5+IsyOpCbZfQ6cme1fFxy+H8USHuEoZwiWMkF0B/Bx2OCBxI 5Zw1ScrQVJqaynHixuR028/AKXEewWoDV72qRSrbLsCds88WImWYAlib+nITKQbU qOKeHiS8 -----END CERTIFICATE-----Generated at Mon Jan 19 05:24:49 2026 by rpki-client