This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS214025.roa File: AS214025.roa (raw, json) Hash identifier: C9S5geD/0eacpXRnndibq3NQQMEAuOJTZiLI0FaqFoE= Subject key identifier: C2:EF:A7:48:10:D1:3E:E7:63:23:98:81:40:0A:9B:C4:D4:7F:40:D4 Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f Certificate serial: 5AF5D586AB59D24ABAF99BC7B5C367962DF7EF1D Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS214025.roa Signing time: Mon 09 Feb 2026 12:46:43 +0000 ROA not before: Mon 09 Feb 2026 12:41:43 +0000 ROA not after: Mon 08 Feb 2027 12:46:43 +0000 asID: 214025 IP address blocks: 46.202.62.0/24 maxlen: 24 46.203.98.0/24 maxlen: 24 46.203.203.0/24 maxlen: 24 92.112.39.0/24 maxlen: 24 92.112.41.0/24 maxlen: 24 92.112.45.0/24 maxlen: 24 92.112.54.0/24 maxlen: 24 92.112.56.0/24 maxlen: 24 92.112.107.0/24 maxlen: 24 92.113.56.0/24 maxlen: 24 92.113.112.0/23 maxlen: 24 92.113.124.0/23 maxlen: 24 92.113.142.0/23 maxlen: 24 92.113.169.0/24 maxlen: 24 92.113.171.0/24 maxlen: 24 92.113.209.0/24 maxlen: 24 92.113.213.0/24 maxlen: 24 95.134.213.0/24 maxlen: 24 95.135.164.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 11 Feb 2026 08:46:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:f5:d5:86:ab:59:d2:4a:ba:f9:9b:c7:b5:c3:67:96:2d:f7:ef:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f Validity Not Before: Feb 9 12:41:43 2026 GMT Not After : Feb 8 12:46:43 2027 GMT Subject: CN=C2EFA74810D13EE763239881400A9BC4D47F40D4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:2d:7a:34:25:b8:0b:14:9f:c1:7b:f1:bb:50: f6:16:d3:3a:de:82:f3:00:07:94:25:74:13:1b:aa: 6d:2f:cd:a9:3d:c8:e6:9c:32:9d:e9:1d:0b:b3:04: 39:1d:c0:8e:cc:07:7d:d0:38:30:9e:5a:55:1a:a7: 2b:ce:ac:e7:f5:bd:fc:a8:0e:75:9e:06:b9:0e:99: 7e:b7:cd:b7:22:e5:0c:b8:3c:33:6b:22:dd:0b:d0: 2a:60:de:c0:f8:75:db:6c:0c:11:e7:70:9c:35:b6: 0c:60:64:ac:9c:f2:d0:a6:7a:d0:de:78:77:af:b5: 46:41:4e:62:8f:3a:f2:36:79:37:56:23:99:86:1e: c8:f3:4e:89:94:71:5b:af:7b:50:ac:e6:44:7e:04: 74:af:32:a3:68:b3:8c:ab:99:06:7e:f3:85:55:15: 06:31:48:b4:4f:78:f5:f0:3f:e4:c2:bc:d2:29:c0: 6b:d2:a5:48:0b:4d:fe:66:04:10:ea:b4:77:25:5e: 09:22:e7:ae:6c:5e:76:ed:56:32:9e:63:01:e8:2f: cd:ef:f9:99:dd:57:07:25:2f:7e:f2:64:5e:23:97: 5a:66:56:a9:3e:bb:59:d0:b2:b3:a9:b5:53:44:63: 30:9b:35:43:28:7f:0f:eb:32:5e:79:5a:3e:96:c4: 97:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:EF:A7:48:10:D1:3E:E7:63:23:98:81:40:0A:9B:C4:D4:7F:40:D4 X509v3 Authority Key Identifier: keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS214025.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 46.202.62.0/24 46.203.98.0/24 46.203.203.0/24 92.112.39.0/24 92.112.41.0/24 92.112.45.0/24 92.112.54.0/24 92.112.56.0/24 92.112.107.0/24 92.113.56.0/24 92.113.112.0/23 92.113.124.0/23 92.113.142.0/23 92.113.169.0/24 92.113.171.0/24 92.113.209.0/24 92.113.213.0/24 95.134.213.0/24 95.135.164.0/24 Signature Algorithm: sha256WithRSAEncryption 2e:3b:05:2b:4a:ef:d2:a2:31:8c:e6:d8:bb:a3:94:88:aa:b2: 04:40:bc:9f:0f:64:dc:16:87:7b:90:5f:0d:33:04:d1:f3:53: f8:e2:ca:c2:b1:57:48:32:9e:9f:23:4b:98:45:30:47:96:46: cc:79:be:72:b3:3a:3d:c4:98:f3:fb:1f:c5:0a:42:9f:4b:b4: 64:d0:eb:46:29:40:62:11:63:05:54:06:4a:00:5f:04:f0:1d: aa:8b:2e:a8:68:81:6b:e9:5b:b3:f7:97:5b:29:3a:78:c6:10: fd:72:31:42:1f:da:33:ad:f3:87:e6:01:c8:1d:41:67:0b:1a: 9e:3f:d1:64:da:da:ad:7e:ac:71:da:c4:76:ba:47:d9:d0:a5: 36:2f:5a:86:2e:96:38:9c:73:5a:1f:c7:aa:da:2d:f5:72:7f: c3:d9:37:c4:fb:e1:2f:15:83:4a:94:1b:67:c1:31:33:55:37: 64:20:15:44:1c:4b:a2:8d:78:95:55:f6:41:51:ba:33:52:29: 47:96:51:82:ad:6e:e9:30:d6:35:cb:7a:71:d8:dc:5b:0e:30: 9e:41:d1:a7:ae:e0:66:1d:37:86:33:22:f9:1b:44:ee:06:c6: af:d0:d2:35:75:39:68:0f:1e:8b:68:e9:67:e4:34:31:bf:45: 4b:2f:fe:75 -----BEGIN CERTIFICATE----- MIIFbTCCBFWgAwIBAgIUWvXVhqtZ0kq6+ZvHtcNnli337x0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOWJkODEzMzkxZTRhZjJhZTMxMDNjMTg5MWIyMjcyZDRk NWMxM2I1ZjAeFw0yNjAyMDkxMjQxNDNaFw0yNzAyMDgxMjQ2NDNaMDMxMTAvBgNV BAMTKEMyRUZBNzQ4MTBEMTNFRTc2MzIzOTg4MTQwMEE5QkM0RDQ3RjQwRDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD4LXo0JbgLFJ/Be/G7UPYW0zre gvMAB5QldBMbqm0vzak9yOacMp3pHQuzBDkdwI7MB33QODCeWlUapyvOrOf1vfyo DnWeBrkOmX63zbci5Qy4PDNrIt0L0Cpg3sD4ddtsDBHncJw1tgxgZKyc8tCmetDe eHevtUZBTmKPOvI2eTdWI5mGHsjzTomUcVuve1Cs5kR+BHSvMqNos4yrmQZ+84VV FQYxSLRPePXwP+TCvNIpwGvSpUgLTf5mBBDqtHclXgki565sXnbtVjKeYwHoL83v +ZndVwclL37yZF4jl1pmVqk+u1nQsrOptVNEYzCbNUMofw/rMl55Wj6WxJe9AgMB AAGjggJ3MIICczAdBgNVHQ4EFgQUwu+nSBDRPudjI5iBQAqbxNR/QNQwHwYDVR0j BBgwFoAUm9gTOR5K8q4xA8GJGyJy1NXBO18wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYzQ3OGY2ZjUtNDQ5YS00ODI3LTk5ZDUtYmY2YjkzYThm NmI0LzAvOUJEODEzMzkxRTRBRjJBRTMxMDNDMTg5MUIyMjcyRDRENUMxM0I1Ri5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL205Z1RPUjVLOHE0eEE4R0pHeUp5MU5Y Qk8xOC5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2M0NzhmNmY1LTQ0OWEt NDgyNy05OWQ1LWJmNmI5M2E4ZjZiNC8wL0FTMjE0MDI1LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMIGLBggrBgEFBQcBBwEB/wR8MHoweAQCAAEwcgMEAC7K PgMEAC7LYgMEAC7LywMEAFxwJwMEAFxwKQMEAFxwLQMEAFxwNgMEAFxwOAMEAFxw awMEAFxxOAMEAVxxcAMEAVxxfAMEAVxxjgMEAFxxqQMEAFxxqwMEAFxx0QMEAFxx 1QMEAF+G1QMEAF+HpDANBgkqhkiG9w0BAQsFAAOCAQEALjsFK0rv0qIxjObYu6OU iKqyBEC8nw9k3BaHe5BfDTME0fNT+OLKwrFXSDKenyNLmEUwR5ZGzHm+crM6PcSY 8/sfxQpCn0u0ZNDrRilAYhFjBVQGSgBfBPAdqosuqGiBa+lbs/eXWyk6eMYQ/XIx Qh/aM63zh+YByB1BZwsanj/RZNrarX6scdrEdrpH2dClNi9ahi6WOJxzWh/Hqtot 9XJ/w9k3xPvhLxWDSpQbZ8ExM1U3ZCAVRBxLoo14lVX2QVG6M1IpR5ZRgq1u6TDW Nct6cdjcWw4wnkHRp67gZh03hjMi+RtE7gbGr9DSNXU5aA8ei2jpZ+Q0Mb9FSy/+ dQ== -----END CERTIFICATE-----Generated at Tue Feb 10 10:58:16 2026 by rpki-client