This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c409d7b2-ee64-49f1-ad81-8e4a107d62e0/0/AS214481.roa File: AS214481.roa (raw, json) Hash identifier: zLO21srBJLOw0zixpBVWxn7CMdOTvkXuaGW+iRhGgIY= Subject key identifier: 2F:CA:C7:3A:EE:18:79:68:FC:BD:DD:D6:78:0D:1D:06:E6:17:1A:33 Certificate issuer: /CN=88c14ec02adbf083138eddd47871176ddeb93d9d Certificate serial: 23321D1E68808DF3DA88B3BB118816BF3283AAAD Authority key identifier: 88:C1:4E:C0:2A:DB:F0:83:13:8E:DD:D4:78:71:17:6D:DE:B9:3D:9D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iMFOwCrb8IMTjt3UeHEXbd65PZ0.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c409d7b2-ee64-49f1-ad81-8e4a107d62e0/0/AS214481.roa Signing time: Wed 05 Nov 2025 19:16:38 +0000 ROA not before: Wed 05 Nov 2025 19:11:38 +0000 ROA not after: Wed 04 Nov 2026 19:16:38 +0000 asID: 214481 IP address blocks: 143.20.64.0/24 maxlen: 24 143.20.97.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c409d7b2-ee64-49f1-ad81-8e4a107d62e0/0/88C14EC02ADBF083138EDDD47871176DDEB93D9D.crl rsync://rsync.paas.rpki.ripe.net/repository/c409d7b2-ee64-49f1-ad81-8e4a107d62e0/0/88C14EC02ADBF083138EDDD47871176DDEB93D9D.mft rsync://rpki.ripe.net/repository/DEFAULT/iMFOwCrb8IMTjt3UeHEXbd65PZ0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 11:00:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:32:1d:1e:68:80:8d:f3:da:88:b3:bb:11:88:16:bf:32:83:aa:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=88c14ec02adbf083138eddd47871176ddeb93d9d Validity Not Before: Nov 5 19:11:38 2025 GMT Not After : Nov 4 19:16:38 2026 GMT Subject: CN=2FCAC73AEE187968FCBDDDD6780D1D06E6171A33 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:89:91:57:b3:1b:a2:d5:3e:5e:ce:2c:1b:bc: bc:67:ca:cd:a9:e8:25:1b:71:39:05:2d:7f:b5:72: 24:c8:1f:d0:56:7f:9f:61:ce:94:16:16:ab:dd:4b: 0b:4f:9e:05:27:58:d6:fe:0e:c5:39:a8:3b:99:95: 3d:5a:f4:16:a0:e3:25:9b:5c:de:d8:a6:4c:07:f3: ce:fc:59:fe:74:a6:93:d6:9c:d2:7c:13:16:53:80: 8b:12:c7:b5:4b:fa:e4:66:2c:0c:94:32:fe:9f:7e: 3a:8a:da:6a:00:cf:ec:5f:b9:5f:ef:64:96:b3:f3: fb:75:5c:c9:49:5d:60:91:f0:04:fa:4e:37:5c:ae: d8:03:0b:3b:48:2e:ac:69:9e:56:c9:75:21:f9:20: 9c:df:3f:e2:a8:6d:97:a8:50:c4:08:7b:80:20:f3: b2:22:2a:ba:93:7c:f4:77:76:3e:2d:4a:91:90:23: 41:6b:dd:94:83:f3:30:78:5e:94:6a:6c:f5:3c:17: fa:b7:ab:d3:e8:f2:14:ee:58:00:54:e1:c9:0b:ed: 28:98:c5:2e:e5:b4:fd:95:0a:c8:fb:a8:a9:14:ea: b6:12:90:b1:d3:3e:74:9a:3e:a5:e2:17:b3:f3:75: 35:db:4d:5b:10:03:de:17:a6:40:8e:a0:1a:5f:9f: 00:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:CA:C7:3A:EE:18:79:68:FC:BD:DD:D6:78:0D:1D:06:E6:17:1A:33 X509v3 Authority Key Identifier: keyid:88:C1:4E:C0:2A:DB:F0:83:13:8E:DD:D4:78:71:17:6D:DE:B9:3D:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/c409d7b2-ee64-49f1-ad81-8e4a107d62e0/0/88C14EC02ADBF083138EDDD47871176DDEB93D9D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iMFOwCrb8IMTjt3UeHEXbd65PZ0.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c409d7b2-ee64-49f1-ad81-8e4a107d62e0/0/AS214481.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 143.20.64.0/24 143.20.97.0/24 Signature Algorithm: sha256WithRSAEncryption 06:fa:9d:cc:77:c9:66:44:84:36:b6:50:4f:d8:df:34:99:d3: 12:d6:ea:a3:a6:41:6d:4c:36:dd:5b:60:fc:2c:ff:44:7f:60: a7:0d:15:b0:10:6c:37:86:10:e8:c7:93:7c:48:d2:fc:a6:16: d8:fe:d1:c1:da:3a:b1:bb:38:8a:4e:ee:89:94:6b:26:e3:91: 28:ed:aa:05:d3:b2:df:4b:5b:18:d1:66:04:d1:47:6e:c6:a5: 52:4b:1e:48:c0:ea:c3:89:67:6b:51:8f:09:f1:0a:32:29:1a: 8f:95:d5:b6:65:69:61:b1:44:2c:bd:9c:bd:b2:e5:48:55:c6: 2b:99:b3:64:37:15:6b:0c:a7:3b:25:93:b2:54:3b:b3:05:f7: cb:b6:9c:43:1f:5e:90:3a:58:29:2c:a5:fd:ae:42:a1:71:80: 02:42:d0:7d:92:e7:27:da:03:da:e4:00:c9:9c:03:9f:94:69: 89:42:ac:a6:d8:1c:f1:0d:29:80:61:ea:23:5d:e0:d1:c8:8f: 61:c3:d5:4b:df:b3:b5:13:f3:d5:68:d2:44:ba:a5:fd:66:d7: bd:d4:94:7c:77:73:b1:8f:d6:f0:b8:bb:ff:fe:c5:4a:75:99: 36:a2:12:87:ae:3f:52:9b:df:ef:52:cd:07:d2:41:70:f7:fe: 2a:3f:b1:25 -----BEGIN CERTIFICATE----- MIIFBjCCA+6gAwIBAgIUIzIdHmiAjfPaiLO7EYgWvzKDqq0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODhjMTRlYzAyYWRiZjA4MzEzOGVkZGQ0Nzg3MTE3NmRk ZWI5M2Q5ZDAeFw0yNTExMDUxOTExMzhaFw0yNjExMDQxOTE2MzhaMDMxMTAvBgNV BAMTKDJGQ0FDNzNBRUUxODc5NjhGQ0JERERENjc4MEQxRDA2RTYxNzFBMzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDgiZFXsxui1T5eziwbvLxnys2p 6CUbcTkFLX+1ciTIH9BWf59hzpQWFqvdSwtPngUnWNb+DsU5qDuZlT1a9Bag4yWb XN7YpkwH8878Wf50ppPWnNJ8ExZTgIsSx7VL+uRmLAyUMv6ffjqK2moAz+xfuV/v ZJaz8/t1XMlJXWCR8AT6TjdcrtgDCztILqxpnlbJdSH5IJzfP+KobZeoUMQIe4Ag 87IiKrqTfPR3dj4tSpGQI0Fr3ZSD8zB4XpRqbPU8F/q3q9Po8hTuWABU4ckL7SiY xS7ltP2VCsj7qKkU6rYSkLHTPnSaPqXiF7PzdTXbTVsQA94XpkCOoBpfnwALAgMB AAGjggIQMIICDDAdBgNVHQ4EFgQUL8rHOu4YeWj8vd3WeA0dBuYXGjMwHwYDVR0j BBgwFoAUiMFOwCrb8IMTjt3UeHEXbd65PZ0wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYzQwOWQ3YjItZWU2NC00OWYxLWFkODEtOGU0YTEwN2Q2 MmUwLzAvODhDMTRFQzAyQURCRjA4MzEzOEVEREQ0Nzg3MTE3NkRERUI5M0Q5RC5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2lNRk93Q3JiOElNVGp0M1VlSEVYYmQ2 NVBaMC5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2M0MDlkN2IyLWVlNjQt NDlmMS1hZDgxLThlNGExMDdkNjJlMC8wL0FTMjE0NDgxLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAjxRA AwQAjxRhMA0GCSqGSIb3DQEBCwUAA4IBAQAG+p3Md8lmRIQ2tlBP2N80mdMS1uqj pkFtTDbdW2D8LP9Ef2CnDRWwEGw3hhDox5N8SNL8phbY/tHB2jqxuziKTu6JlGsm 45Eo7aoF07LfS1sY0WYE0UduxqVSSx5IwOrDiWdrUY8J8QoyKRqPldW2ZWlhsUQs vZy9suVIVcYrmbNkNxVrDKc7JZOyVDuzBffLtpxDH16QOlgpLKX9rkKhcYACQtB9 kucn2gPa5ADJnAOflGmJQqym2BzxDSmAYeojXeDRyI9hw9VL37O1E/PVaNJEuqX9 Zte91JR8d3Oxj9bwuLv//sVKdZk2ohKHrj9Sm9/vUs0H0kFw9/4qP7El -----END CERTIFICATE-----Generated at Fri Dec 5 17:05:57 2025 by rpki-client