This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS2914.roa File: AS2914.roa (raw, json) Hash identifier: QipHgXoOcdIO/NfBC90U8MDRyF0EDnDGS5Z3uMOhRdo= Subject key identifier: 9A:82:29:55:CB:71:A9:8D:5E:DB:58:40:31:22:55:E6:20:D4:01:0E Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f Certificate serial: 77E050C66C920D7DC67507C13769384E4547475C Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS2914.roa Signing time: Mon 02 Feb 2026 02:49:48 +0000 ROA not before: Mon 02 Feb 2026 02:44:48 +0000 ROA not after: Mon 01 Feb 2027 02:49:48 +0000 asID: 2914 IP address blocks: 46.202.53.0/24 maxlen: 24 46.203.176.0/24 maxlen: 24 46.203.197.0/24 maxlen: 24 46.203.205.0/24 maxlen: 24 46.203.223.0/24 maxlen: 24 46.203.225.0/24 maxlen: 24 91.124.20.0/22 maxlen: 22 92.112.240.0/24 maxlen: 24 92.112.241.0/24 maxlen: 24 92.112.242.0/24 maxlen: 24 92.112.243.0/24 maxlen: 24 92.112.246.0/24 maxlen: 24 92.112.247.0/24 maxlen: 24 95.134.6.0/24 maxlen: 24 95.134.83.0/24 maxlen: 24 95.134.148.0/24 maxlen: 24 95.134.150.0/24 maxlen: 24 95.134.168.0/23 maxlen: 24 95.134.170.0/23 maxlen: 24 95.134.172.0/23 maxlen: 24 95.134.174.0/24 maxlen: 24 95.135.194.0/24 maxlen: 24 95.135.223.0/24 maxlen: 24 178.92.16.0/22 maxlen: 24 178.92.36.0/22 maxlen: 24 178.92.226.0/24 maxlen: 24 178.92.235.0/24 maxlen: 24 178.92.237.0/24 maxlen: 24 178.92.251.0/24 maxlen: 24 178.93.0.0/22 maxlen: 24 178.93.37.0/24 maxlen: 24 178.94.0.0/24 maxlen: 24 178.94.4.0/24 maxlen: 24 178.94.6.0/24 maxlen: 24 178.94.7.0/24 maxlen: 24 178.94.21.0/24 maxlen: 24 178.94.27.0/24 maxlen: 24 178.94.32.0/24 maxlen: 24 178.94.66.0/24 maxlen: 24 178.94.73.0/24 maxlen: 24 178.94.77.0/24 maxlen: 24 178.94.79.0/24 maxlen: 24 178.94.103.0/24 maxlen: 24 178.94.110.0/24 maxlen: 24 178.94.120.0/24 maxlen: 24 178.94.189.0/24 maxlen: 24 178.94.210.0/24 maxlen: 24 178.94.212.0/24 maxlen: 24 178.94.220.0/24 maxlen: 24 178.94.223.0/24 maxlen: 24 178.94.254.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 11 Feb 2026 08:46:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:e0:50:c6:6c:92:0d:7d:c6:75:07:c1:37:69:38:4e:45:47:47:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f Validity Not Before: Feb 2 02:44:48 2026 GMT Not After : Feb 1 02:49:48 2027 GMT Subject: CN=9A822955CB71A98D5EDB5840312255E620D4010E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:a8:7c:d8:bd:f0:4c:f9:1e:31:6d:e9:cf:51: 2e:16:e8:41:eb:81:2c:d2:f5:e8:3f:89:5f:35:6c: 45:3f:52:d1:ca:32:85:6c:7c:ab:81:d4:9c:9d:37: 32:63:29:74:fe:5c:e5:55:78:42:01:b4:b9:ad:ea: fd:9a:bc:dd:be:c2:a2:59:fd:c6:d2:41:16:d9:70: 07:12:0e:88:67:0e:93:c3:18:e1:7d:8f:b9:7a:60: fa:6b:ed:5e:a2:2c:7f:91:06:00:c1:e6:ec:f2:d9: ae:13:1e:7d:b8:bf:b7:61:cd:18:ac:b4:a0:fb:53: ec:cf:ed:cc:87:99:95:7e:18:f3:4c:02:83:c0:f2: e9:80:70:22:5f:e5:bc:3c:68:ef:d2:6d:51:48:e8: 9e:a9:d4:a9:70:55:ea:f3:7c:51:d4:b0:86:9c:86: b2:3f:38:e0:91:21:0d:46:cd:e1:8d:ca:c1:75:c3: d4:cd:8f:a0:8f:8e:c8:ca:20:03:49:2d:c9:bc:ca: bc:6e:10:16:a5:4d:4e:b1:b5:4e:2b:10:83:f3:f6: 3b:a8:0c:56:7a:13:b9:17:3a:06:03:8e:c0:0b:f6: d6:bc:96:aa:8f:e7:b2:80:ba:89:b1:fe:6a:4a:ea: 36:5f:ce:e4:c1:6d:e3:47:01:51:d1:6c:8c:b0:99: 81:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:82:29:55:CB:71:A9:8D:5E:DB:58:40:31:22:55:E6:20:D4:01:0E X509v3 Authority Key Identifier: keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS2914.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 46.202.53.0/24 46.203.176.0/24 46.203.197.0/24 46.203.205.0/24 46.203.223.0/24 46.203.225.0/24 91.124.20.0/22 92.112.240.0/22 92.112.246.0/23 95.134.6.0/24 95.134.83.0/24 95.134.148.0/24 95.134.150.0/24 95.134.168.0-95.134.174.255 95.135.194.0/24 95.135.223.0/24 178.92.16.0/22 178.92.36.0/22 178.92.226.0/24 178.92.235.0/24 178.92.237.0/24 178.92.251.0/24 178.93.0.0/22 178.93.37.0/24 178.94.0.0/24 178.94.4.0/24 178.94.6.0/23 178.94.21.0/24 178.94.27.0/24 178.94.32.0/24 178.94.66.0/24 178.94.73.0/24 178.94.77.0/24 178.94.79.0/24 178.94.103.0/24 178.94.110.0/24 178.94.120.0/24 178.94.189.0/24 178.94.210.0/24 178.94.212.0/24 178.94.220.0/24 178.94.223.0/24 178.94.254.0/24 Signature Algorithm: sha256WithRSAEncryption 7b:c8:c4:d4:9e:27:54:8a:20:91:a9:64:61:46:41:0d:af:24: ee:60:42:24:2d:8c:03:7c:3b:96:47:a8:77:71:e6:d4:87:80: 92:b9:c8:32:a6:d5:a0:c2:c5:a0:46:04:80:31:a7:2a:c4:43: e3:00:6f:00:33:4f:af:c3:fc:26:e4:a0:ea:42:2d:6a:f6:a0: 9f:ba:18:6e:ae:07:c6:3f:de:da:18:bd:0e:9c:97:39:a4:06: e3:ff:48:65:0a:55:47:7b:6f:16:72:6e:a2:90:9e:96:63:60: e1:b9:7d:0e:44:7a:82:65:1b:ce:53:72:00:15:85:6e:45:21: 65:12:df:ac:59:33:03:3e:11:51:16:fd:72:3c:2e:25:e9:b5: 2e:aa:10:8c:08:74:81:d2:35:a5:53:f6:22:e1:ab:06:a5:5d: fc:40:0b:59:08:07:c5:ce:6a:26:75:49:25:34:44:98:67:cb: 2e:4e:8a:23:f3:7d:37:45:47:84:dd:e1:37:8a:0a:02:63:6d: 40:6d:26:83:cd:7d:bb:da:0e:1b:67:37:55:b4:f7:bc:7e:ee: c6:ac:c9:e2:11:1c:1c:bc:5a:32:7f:b3:1b:3f:23:7a:9e:9c: 4f:e9:37:c9:52:46:cc:5f:66:34:00:5a:7e:4d:87:c3:b1:a8: 5f:7a:82:4c -----BEGIN CERTIFICATE----- MIIGDDCCBPSgAwIBAgIUd+BQxmySDX3GdQfBN2k4TkVHR1wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOWJkODEzMzkxZTRhZjJhZTMxMDNjMTg5MWIyMjcyZDRk NWMxM2I1ZjAeFw0yNjAyMDIwMjQ0NDhaFw0yNzAyMDEwMjQ5NDhaMDMxMTAvBgNV BAMTKDlBODIyOTU1Q0I3MUE5OEQ1RURCNTg0MDMxMjI1NUU2MjBENDAxMEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDqHzYvfBM+R4xbenPUS4W6EHr gSzS9eg/iV81bEU/UtHKMoVsfKuB1JydNzJjKXT+XOVVeEIBtLmt6v2avN2+wqJZ /cbSQRbZcAcSDohnDpPDGOF9j7l6YPpr7V6iLH+RBgDB5uzy2a4THn24v7dhzRis tKD7U+zP7cyHmZV+GPNMAoPA8umAcCJf5bw8aO/SbVFI6J6p1KlwVerzfFHUsIac hrI/OOCRIQ1GzeGNysF1w9TNj6CPjsjKIANJLcm8yrxuEBalTU6xtU4rEIPz9juo DFZ6E7kXOgYDjsAL9ta8lqqP57KAuomx/mpK6jZfzuTBbeNHAVHRbIywmYF7AgMB AAGjggMWMIIDEjAdBgNVHQ4EFgQUmoIpVctxqY1e21hAMSJV5iDUAQ4wHwYDVR0j BBgwFoAUm9gTOR5K8q4xA8GJGyJy1NXBO18wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYzQ3OGY2ZjUtNDQ5YS00ODI3LTk5ZDUtYmY2YjkzYThm NmI0LzAvOUJEODEzMzkxRTRBRjJBRTMxMDNDMTg5MUIyMjcyRDRENUMxM0I1Ri5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL205Z1RPUjVLOHE0eEE4R0pHeUp5MU5Y Qk8xOC5jZXIweQYIKwYBBQUHAQsEbTBrMGkGCCsGAQUFBzALhl1yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2M0NzhmNmY1LTQ0OWEt NDgyNy05OWQ1LWJmNmI5M2E4ZjZiNC8wL0FTMjkxNC5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjCCASsGCCsGAQUFBwEHAQH/BIIBGjCCARYwggESBAIAATCC AQoDBAAuyjUDBAAuy7ADBAAuy8UDBAAuy80DBAAuy98DBAAuy+EDBAJbfBQDBAJc cPADBAFccPYDBABfhgYDBABfhlMDBABfhpQDBABfhpYwDAMEA1+GqAMEAF+GrgME AF+HwgMEAF+H3wMEArJcEAMEArJcJAMEALJc4gMEALJc6wMEALJc7QMEALJc+wME ArJdAAMEALJdJQMEALJeAAMEALJeBAMEAbJeBgMEALJeFQMEALJeGwMEALJeIAME ALJeQgMEALJeSQMEALJeTQMEALJeTwMEALJeZwMEALJebgMEALJeeAMEALJevQME ALJe0gMEALJe1AMEALJe3AMEALJe3wMEALJe/jANBgkqhkiG9w0BAQsFAAOCAQEA e8jE1J4nVIogkalkYUZBDa8k7mBCJC2MA3w7lkeod3Hm1IeAkrnIMqbVoMLFoEYE gDGnKsRD4wBvADNPr8P8JuSg6kItavagn7oYbq4Hxj/e2hi9DpyXOaQG4/9IZQpV R3tvFnJuopCelmNg4bl9DkR6gmUbzlNyABWFbkUhZRLfrFkzAz4RURb9cjwuJem1 LqoQjAh0gdI1pVP2IuGrBqVd/EALWQgHxc5qJnVJJTREmGfLLk6KI/N9N0VHhN3h N4oKAmNtQG0mg819u9oOG2c3VbT3vH7uxqzJ4hEcHLxaMn+zGz8jep6cT+k3yVJG zF9mNABafk2Hw7GoX3qCTA== -----END CERTIFICATE-----Generated at Tue Feb 10 10:54:42 2026 by rpki-client