This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS214432.roa File: AS214432.roa (raw, json) Hash identifier: Vd0kgHKh3cWokEWuOBOO7Cm0eKmOjIVHPUY+RKt82DU= Subject key identifier: F3:CF:D3:6E:11:E7:BC:75:D9:B3:83:5E:B7:C7:2F:55:90:7D:68:26 Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f Certificate serial: 2F4ADEC195BCA2C0C88E1995FAA53D4E0097AA3B Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS214432.roa Signing time: Thu 08 Jan 2026 03:30:44 +0000 ROA not before: Thu 08 Jan 2026 03:25:44 +0000 ROA not after: Thu 07 Jan 2027 03:30:44 +0000 asID: 214432 IP address blocks: 178.94.130.0/24 maxlen: 24 178.94.131.0/24 maxlen: 24 178.94.136.0/24 maxlen: 24 178.94.138.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 10 Jan 2026 12:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:4a:de:c1:95:bc:a2:c0:c8:8e:19:95:fa:a5:3d:4e:00:97:aa:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f Validity Not Before: Jan 8 03:25:44 2026 GMT Not After : Jan 7 03:30:44 2027 GMT Subject: CN=F3CFD36E11E7BC75D9B3835EB7C72F55907D6826 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:c8:f6:91:8e:49:ce:84:ab:8a:e8:9a:6b:d2: ef:40:e7:37:04:fb:cd:f0:fa:e1:e9:6b:48:f9:bd: 5c:92:70:47:54:d9:a0:85:18:56:ce:51:97:54:8c: 43:26:69:50:d9:18:42:02:a7:a9:d4:a4:a4:03:26: 7b:4d:ba:ee:4e:a6:2f:17:ca:1e:0c:e0:de:49:51: 1e:f5:ad:f4:0b:82:6d:9e:4e:07:cd:1d:27:49:12: 5e:f8:d4:92:fd:a7:93:19:26:aa:3c:01:05:3d:cf: a2:d8:44:7f:cc:92:95:fd:70:8a:c5:1f:29:88:45: de:63:3a:9c:c9:91:eb:c7:3b:b8:d8:86:6c:13:c1: 80:51:00:94:c4:93:65:ce:eb:a5:19:17:1f:8f:da: 33:f4:3b:47:d4:3c:5a:77:28:b0:3c:6c:a1:40:77: e0:91:82:59:40:ad:d8:9a:00:2e:ea:f9:ed:71:2a: 50:df:3d:85:96:1d:be:96:4d:96:9a:81:97:1b:48: 34:e8:6f:23:8f:9c:cd:4f:b2:d7:6d:9e:cc:0a:b5: 55:40:26:da:85:45:30:91:eb:fb:34:ac:09:da:87: a4:87:22:ed:52:7f:be:81:cf:ee:2a:47:eb:79:4e: 82:65:cd:10:ea:ed:5b:d4:cb:27:37:a6:6f:0b:e0: 26:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:CF:D3:6E:11:E7:BC:75:D9:B3:83:5E:B7:C7:2F:55:90:7D:68:26 X509v3 Authority Key Identifier: keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS214432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 178.94.130.0/23 178.94.136.0/24 178.94.138.0/24 Signature Algorithm: sha256WithRSAEncryption 2b:b7:02:83:13:28:27:b4:78:cf:7b:cd:bd:fb:21:ac:2b:13: 77:4b:1d:9b:e3:7d:76:18:e4:99:cb:c4:cb:ec:78:be:3c:e7: c3:16:44:58:31:6a:87:8c:dc:16:5d:ac:24:72:9a:2b:dd:93: c1:28:77:62:1b:f3:93:c5:d5:e9:71:c3:0d:45:d4:b1:5f:c8: bf:07:68:9b:6e:03:be:a8:62:96:b7:07:ee:a6:c8:d2:76:cf: dc:b7:69:ec:90:64:a8:69:4b:b3:17:66:2b:e5:8e:9a:21:21: 19:13:30:6e:f7:00:cd:6c:ef:4b:1d:0d:59:fc:3d:92:36:5f: f6:eb:b5:e7:b0:8f:7c:c6:00:9f:13:70:69:31:e9:61:90:a8: 88:80:12:c2:3e:67:13:3c:f5:d8:cb:40:09:05:05:93:b4:3f: e8:b4:4f:2e:55:f2:b2:10:1c:e7:ea:ba:fc:c8:8d:89:ca:9e: b6:6c:49:54:a5:5a:59:19:2d:f2:43:c0:31:16:96:1f:23:1d: 78:0e:ea:21:23:c7:7c:95:70:5c:78:8f:c1:e1:86:51:f1:4f: 19:37:75:2a:bb:d3:dc:99:e0:21:b7:d2:2d:c7:09:b0:7b:5b: e8:0e:bd:db:4c:60:13:b0:4f:54:6a:72:7e:93:12:a0:f8:0e: 60:d8:8d:57 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgIUL0rewZW8osDIjhmV+qU9TgCXqjswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOWJkODEzMzkxZTRhZjJhZTMxMDNjMTg5MWIyMjcyZDRk NWMxM2I1ZjAeFw0yNjAxMDgwMzI1NDRaFw0yNzAxMDcwMzMwNDRaMDMxMTAvBgNV BAMTKEYzQ0ZEMzZFMTFFN0JDNzVEOUIzODM1RUI3QzcyRjU1OTA3RDY4MjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGyPaRjknOhKuK6Jpr0u9A5zcE +83w+uHpa0j5vVyScEdU2aCFGFbOUZdUjEMmaVDZGEICp6nUpKQDJntNuu5Opi8X yh4M4N5JUR71rfQLgm2eTgfNHSdJEl741JL9p5MZJqo8AQU9z6LYRH/MkpX9cIrF HymIRd5jOpzJkevHO7jYhmwTwYBRAJTEk2XO66UZFx+P2jP0O0fUPFp3KLA8bKFA d+CRgllArdiaAC7q+e1xKlDfPYWWHb6WTZaagZcbSDTobyOPnM1PstdtnswKtVVA JtqFRTCR6/s0rAnah6SHIu1Sf76Bz+4qR+t5ToJlzRDq7VvUyyc3pm8L4Cb3AgMB AAGjggIWMIICEjAdBgNVHQ4EFgQU88/TbhHnvHXZs4Net8cvVZB9aCYwHwYDVR0j BBgwFoAUm9gTOR5K8q4xA8GJGyJy1NXBO18wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYzQ3OGY2ZjUtNDQ5YS00ODI3LTk5ZDUtYmY2YjkzYThm NmI0LzAvOUJEODEzMzkxRTRBRjJBRTMxMDNDMTg5MUIyMjcyRDRENUMxM0I1Ri5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL205Z1RPUjVLOHE0eEE4R0pHeUp5MU5Y Qk8xOC5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2M0NzhmNmY1LTQ0OWEt NDgyNy05OWQ1LWJmNmI5M2E4ZjZiNC8wL0FTMjE0NDMyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQBsl6C AwQAsl6IAwQAsl6KMA0GCSqGSIb3DQEBCwUAA4IBAQArtwKDEygntHjPe829+yGs KxN3Sx2b4312GOSZy8TL7Hi+POfDFkRYMWqHjNwWXawkcpor3ZPBKHdiG/OTxdXp ccMNRdSxX8i/B2ibbgO+qGKWtwfupsjSds/ct2nskGSoaUuzF2Yr5Y6aISEZEzBu 9wDNbO9LHQ1Z/D2SNl/267XnsI98xgCfE3BpMelhkKiIgBLCPmcTPPXYy0AJBQWT tD/otE8uVfKyEBzn6rr8yI2Jyp62bElUpVpZGS3yQ8AxFpYfIx14DuohI8d8lXBc eI/B4YZR8U8ZN3Uqu9PcmeAht9Itxwmwe1voDr3bTGATsE9UanJ+kxKg+A5g2I1X -----END CERTIFICATE-----Generated at Fri Jan 9 18:38:14 2026 by rpki-client