This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS14618.roa File: AS14618.roa (raw, json) Hash identifier: 1r77sxQgV4v8LrZGBMH741AQBWKrMgicsiAWSJEeW24= Subject key identifier: FC:FB:C0:86:5A:5A:AF:77:68:CB:39:EB:36:B0:D1:C4:66:D1:4C:30 Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a Certificate serial: 1D61CA63C502BBBCD7888B7AB13BCDD70A5DF98A Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS14618.roa Signing time: Tue 16 Dec 2025 11:08:22 +0000 ROA not before: Tue 16 Dec 2025 11:03:22 +0000 ROA not after: Tue 15 Dec 2026 11:08:22 +0000 asID: 14618 IP address blocks: 181.214.94.0/24 maxlen: 24 181.214.110.0/24 maxlen: 24 181.215.206.0/23 maxlen: 24 185.135.159.0/24 maxlen: 24 185.137.12.0/24 maxlen: 24 185.137.13.0/24 maxlen: 24 191.96.204.0/24 maxlen: 24 191.101.111.0/24 maxlen: 24 191.101.223.0/24 maxlen: 24 213.109.169.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.mft rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 18 Dec 2025 19:00:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:61:ca:63:c5:02:bb:bc:d7:88:8b:7a:b1:3b:cd:d7:0a:5d:f9:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a Validity Not Before: Dec 16 11:03:22 2025 GMT Not After : Dec 15 11:08:22 2026 GMT Subject: CN=FCFBC0865A5AAF7768CB39EB36B0D1C466D14C30 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:40:56:a5:1c:61:f2:f8:78:f8:c2:a2:f5:b4: 0f:09:e6:00:d4:c5:12:7e:4b:aa:04:ff:d2:e6:da: 82:2f:c0:10:17:01:ef:8c:59:f5:01:3a:6a:17:d9: 44:b4:33:7e:3a:14:6e:a8:8f:6d:a7:ae:ea:bd:b8: cc:08:5a:63:92:e7:ae:fd:63:55:f8:26:6b:b8:a2: ae:70:9f:5c:84:ce:a7:9d:98:cf:aa:7f:7a:a0:f6: e5:27:ba:2a:b1:60:8c:8a:33:2d:19:b3:ea:a9:f8: 68:fd:fe:88:80:7b:d6:fa:c4:cb:d0:da:70:b1:ed: 26:ad:6f:7a:c4:31:89:f5:ea:c9:db:54:6f:83:cd: 0d:88:3b:29:59:6c:f5:e0:66:f3:fc:59:71:ed:a4: d4:9a:3a:4d:41:f9:c1:11:c6:cd:77:eb:60:80:a1: f7:9d:7b:ae:4b:4d:55:6c:8c:e3:16:2e:cf:0d:f8: 7c:8c:57:33:c4:1b:07:e6:f8:86:0f:15:3f:2a:f2: 25:73:3a:87:1a:60:5c:a3:10:f2:0d:00:e6:9a:ac: 9f:c8:17:1a:be:ff:70:20:09:b2:85:88:e7:36:ac: 85:48:b8:21:1e:5b:50:bb:17:34:52:67:d2:55:4a: 66:b2:ea:23:92:14:f9:cf:e3:1b:5a:0a:19:ef:7e: 82:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:FB:C0:86:5A:5A:AF:77:68:CB:39:EB:36:B0:D1:C4:66:D1:4C:30 X509v3 Authority Key Identifier: keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS14618.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 181.214.94.0/24 181.214.110.0/24 181.215.206.0/23 185.135.159.0/24 185.137.12.0/23 191.96.204.0/24 191.101.111.0/24 191.101.223.0/24 213.109.169.0/24 Signature Algorithm: sha256WithRSAEncryption 2f:74:ac:d6:9f:77:66:c0:fb:a7:7c:f1:77:b1:94:8c:52:39: 0a:92:da:e1:34:d7:ab:c5:0f:0d:86:27:7b:2b:2a:4e:2b:92: 93:39:3f:b7:1c:0a:1b:18:a7:2f:a8:10:cd:62:7e:b4:93:69: af:c8:28:89:81:d1:bf:81:33:b2:04:03:18:81:d0:c2:31:08: 4a:f1:34:e5:f1:ae:69:18:92:c9:9d:44:1a:8f:30:76:d9:2a: 8f:a1:b0:41:e7:23:a3:76:cf:22:27:91:3d:82:b5:8e:b4:06: b3:44:b1:33:e7:d0:4d:a2:dc:fd:a5:fd:67:ae:7a:da:6b:c3: ad:2a:f4:f0:54:e4:37:66:d9:f9:a5:4a:8e:47:dc:2a:a4:e8: 83:d5:e6:56:71:41:3a:3c:2b:3e:14:f6:7a:7e:94:c6:b0:b1: 40:88:79:1c:cb:ff:f3:e2:41:91:93:b7:6f:0d:9d:2a:8b:88: e0:7e:de:70:f8:2e:57:5f:92:45:bd:9a:8e:ef:de:ad:0d:89: af:28:63:dd:88:b1:37:98:5b:aa:ee:49:6e:6c:b2:38:38:53: db:79:bc:1a:e6:8d:1a:e8:6b:ee:91:59:56:fc:4c:35:86:87: 0c:a1:b4:43:f3:e9:ce:ae:ac:f0:ea:e1:2d:66:89:24:c4:42: 0c:33:c3:89 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUHWHKY8UCu7zXiIt6sTvN1wpd+YowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjFiMWJiNDQ0NzcxOGYxNmIzZDM2Njc1ZDIwNWM0ZGVh NDFiYmEwYTAeFw0yNTEyMTYxMTAzMjJaFw0yNjEyMTUxMTA4MjJaMDMxMTAvBgNV BAMTKEZDRkJDMDg2NUE1QUFGNzc2OENCMzlFQjM2QjBEMUM0NjZEMTRDMzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyQFalHGHy+Hj4wqL1tA8J5gDU xRJ+S6oE/9Lm2oIvwBAXAe+MWfUBOmoX2US0M346FG6oj22nruq9uMwIWmOS5679 Y1X4Jmu4oq5wn1yEzqedmM+qf3qg9uUnuiqxYIyKMy0Zs+qp+Gj9/oiAe9b6xMvQ 2nCx7Satb3rEMYn16snbVG+DzQ2IOylZbPXgZvP8WXHtpNSaOk1B+cERxs1362CA ofede65LTVVsjOMWLs8N+HyMVzPEGwfm+IYPFT8q8iVzOocaYFyjEPINAOaarJ/I Fxq+/3AgCbKFiOc2rIVIuCEeW1C7FzRSZ9JVSmay6iOSFPnP4xtaChnvfoLLAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQU/PvAhlpar3doyznrNrDRxGbRTDAwHwYDVR0j BBgwFoAUYbG7REdxjxaz02Z10gXE3qQbugowDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNTM3NDU5ZTctMmE4My00M2QxLTlhYTEtNTg0MTdhYmFj NGI2LzEvNjFCMUJCNDQ0NzcxOEYxNkIzRDM2Njc1RDIwNUM0REVBNDFCQkEwQS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1liRzdSRWR4anhhejAyWjEwZ1hFM3FR YnVnby5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzUzNzQ1OWU3LTJhODMt NDNkMS05YWExLTU4NDE3YWJhYzRiNi8xL0FTMTQ2MTgucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwTwYIKwYBBQUHAQcBAf8EQDA+MDwEAgABMDYDBAC11l4D BAC11m4DBAG1184DBAC5h58DBAG5iQwDBAC/YMwDBAC/ZW8DBAC/Zd8DBADVbakw DQYJKoZIhvcNAQELBQADggEBAC90rNafd2bA+6d88XexlIxSOQqS2uE016vFDw2G J3srKk4rkpM5P7ccChsYpy+oEM1ifrSTaa/IKImB0b+BM7IEAxiB0MIxCErxNOXx rmkYksmdRBqPMHbZKo+hsEHnI6N2zyInkT2CtY60BrNEsTPn0E2i3P2l/Weuetpr w60q9PBU5Ddm2fmlSo5H3Cqk6IPV5lZxQTo8Kz4U9np+lMawsUCIeRzL//PiQZGT t28NnSqLiOB+3nD4LldfkkW9mo7v3q0Nia8oY92IsTeYW6ruSW5ssjg4U9t5vBrm jRroa+6RWVb8TDWGhwyhtEPz6c6urPDq4S1miSTEQgwzw4k= -----END CERTIFICATE-----Generated at Wed Dec 17 20:48:42 2025 by rpki-client