This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS64267.roa File: AS64267.roa (raw, json) Hash identifier: 2RmhBLlqjpuywCqcqOkz7EM3C7F2tmkKnVHWtP2Hazk= Subject key identifier: 2E:04:CF:F4:64:69:EE:B2:CD:D4:F1:7E:2F:BE:AC:0B:F3:71:FC:6B Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a Certificate serial: 668BB533CA6DDDF104C6952B35D7E9953E91E893 Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS64267.roa Signing time: Mon 15 Dec 2025 00:07:53 +0000 ROA not before: Mon 15 Dec 2025 00:02:53 +0000 ROA not after: Mon 14 Dec 2026 00:07:53 +0000 asID: 64267 IP address blocks: 89.19.49.0/24 maxlen: 24 141.98.89.0/24 maxlen: 24 179.61.145.0/24 maxlen: 24 179.61.209.0/24 maxlen: 24 181.41.212.0/24 maxlen: 24 181.41.219.0/24 maxlen: 24 181.214.7.0/24 maxlen: 24 181.214.211.0/24 maxlen: 24 181.214.229.0/24 maxlen: 24 181.215.238.0/24 maxlen: 24 191.96.249.0/24 maxlen: 24 191.101.89.0/24 maxlen: 24 191.101.125.0/24 maxlen: 24 191.101.137.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.mft rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 07:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:8b:b5:33:ca:6d:dd:f1:04:c6:95:2b:35:d7:e9:95:3e:91:e8:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a Validity Not Before: Dec 15 00:02:53 2025 GMT Not After : Dec 14 00:07:53 2026 GMT Subject: CN=2E04CFF46469EEB2CDD4F17E2FBEAC0BF371FC6B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:26:4f:17:8d:4c:a6:24:e2:f6:bd:77:2c:db: 73:9a:8e:ed:67:34:01:ec:ef:a2:74:23:59:18:b2: 16:c3:5e:a5:06:9c:9c:40:16:17:53:27:3e:2b:cd: 6c:6c:0c:cf:c3:03:e0:f1:85:fe:5a:5d:be:05:73: 41:b7:8d:e0:28:cb:0f:53:df:3e:1b:0c:55:fe:15: 27:bb:0d:de:35:5d:a5:06:0d:a2:17:66:0f:0f:e2: 43:41:05:1c:3c:d2:6d:53:64:15:c7:d6:80:eb:dc: de:23:10:0e:29:9a:d3:51:c0:b7:d2:08:e6:94:a3: 4f:eb:f3:83:3d:40:b5:35:5a:43:1e:b7:c1:4b:04: 05:18:fc:7f:f6:81:12:f2:19:22:2c:06:16:55:5b: 50:ca:bc:6e:fb:aa:61:7b:93:67:f2:ed:1a:ef:50: 14:32:53:07:86:ce:26:d4:d2:35:e3:d8:be:0c:fb: 84:76:a5:7c:93:d7:b6:45:d6:1c:bf:8f:a6:39:60: 6d:19:e8:40:f7:14:28:7d:7e:11:9f:1a:26:bf:fb: 20:d0:dc:c2:c1:eb:2d:37:c3:dd:d8:fe:a4:90:27: 44:57:95:05:e6:e8:d8:8e:18:07:c3:bb:e8:b6:6c: 89:01:08:51:ff:4c:f2:a4:b6:e8:7e:97:45:47:06: 99:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:04:CF:F4:64:69:EE:B2:CD:D4:F1:7E:2F:BE:AC:0B:F3:71:FC:6B X509v3 Authority Key Identifier: keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS64267.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 89.19.49.0/24 141.98.89.0/24 179.61.145.0/24 179.61.209.0/24 181.41.212.0/24 181.41.219.0/24 181.214.7.0/24 181.214.211.0/24 181.214.229.0/24 181.215.238.0/24 191.96.249.0/24 191.101.89.0/24 191.101.125.0/24 191.101.137.0/24 Signature Algorithm: sha256WithRSAEncryption 2e:c7:32:4e:a9:2c:0b:a8:87:61:6f:25:fd:55:21:a6:2c:3e: f6:4f:00:35:0f:04:82:5f:20:a3:ec:a3:ad:7f:85:cc:70:ab: be:9d:65:b6:30:77:8d:27:d7:52:a0:a0:6f:a1:3b:1e:e5:f3: 5d:16:92:61:d0:93:a9:48:b1:41:d0:d5:41:da:1e:0f:e5:a9: 12:38:d4:10:c1:ba:ad:78:1e:0b:f5:d8:b6:cf:2f:d2:8f:34: c4:8e:07:d4:bf:59:50:ac:96:28:41:10:64:5b:ec:34:44:33: 4f:bd:ce:64:78:57:8c:b7:46:db:bf:a0:8c:3c:2a:0a:51:51: 12:c5:39:fe:6b:c5:e2:26:b9:19:84:77:44:60:b5:c3:db:01: a2:04:0c:af:17:a8:e8:88:5c:8d:82:50:7b:27:11:0d:f2:ae: 70:2e:54:4e:6c:1c:4e:41:90:49:18:30:8a:e9:e5:55:65:bc: 37:17:a2:6b:70:6c:86:e2:84:66:fb:3c:e9:03:70:94:fa:c2: 28:d9:6c:70:e1:f4:74:9c:ed:a5:3a:20:d5:fd:46:25:d0:f4: ec:a8:af:88:51:f5:44:9e:7b:11:88:87:42:ac:a7:be:12:e0: 8c:78:91:31:08:ce:59:6e:c1:3b:1a:5d:a5:ef:84:f9:ba:8b: 0f:cc:13:c4 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgIUZou1M8pt3fEExpUrNdfplT6R6JMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjFiMWJiNDQ0NzcxOGYxNmIzZDM2Njc1ZDIwNWM0ZGVh NDFiYmEwYTAeFw0yNTEyMTUwMDAyNTNaFw0yNjEyMTQwMDA3NTNaMDMxMTAvBgNV BAMTKDJFMDRDRkY0NjQ2OUVFQjJDREQ0RjE3RTJGQkVBQzBCRjM3MUZDNkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJJk8XjUymJOL2vXcs23Oaju1n NAHs76J0I1kYshbDXqUGnJxAFhdTJz4rzWxsDM/DA+Dxhf5aXb4Fc0G3jeAoyw9T 3z4bDFX+FSe7Dd41XaUGDaIXZg8P4kNBBRw80m1TZBXH1oDr3N4jEA4pmtNRwLfS COaUo0/r84M9QLU1WkMet8FLBAUY/H/2gRLyGSIsBhZVW1DKvG77qmF7k2fy7Rrv UBQyUweGzibU0jXj2L4M+4R2pXyT17ZF1hy/j6Y5YG0Z6ED3FCh9fhGfGia/+yDQ 3MLB6y03w93Y/qSQJ0RXlQXm6NiOGAfDu+i2bIkBCFH/TPKktuh+l0VHBpkPAgMB AAGjggJXMIICUzAdBgNVHQ4EFgQULgTP9GRp7rLN1PF+L76sC/Nx/GswHwYDVR0j BBgwFoAUYbG7REdxjxaz02Z10gXE3qQbugowDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNTM3NDU5ZTctMmE4My00M2QxLTlhYTEtNTg0MTdhYmFj NGI2LzEvNjFCMUJCNDQ0NzcxOEYxNkIzRDM2Njc1RDIwNUM0REVBNDFCQkEwQS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1liRzdSRWR4anhhejAyWjEwZ1hFM3FR YnVnby5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzUzNzQ1OWU3LTJhODMt NDNkMS05YWExLTU4NDE3YWJhYzRiNi8xL0FTNjQyNjcucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwbQYIKwYBBQUHAQcBAf8EXjBcMFoEAgABMFQDBABZEzED BACNYlkDBACzPZEDBACzPdEDBAC1KdQDBAC1KdsDBAC11gcDBAC11tMDBAC11uUD BAC11+4DBAC/YPkDBAC/ZVkDBAC/ZX0DBAC/ZYkwDQYJKoZIhvcNAQELBQADggEB AC7HMk6pLAuoh2FvJf1VIaYsPvZPADUPBIJfIKPso61/hcxwq76dZbYwd40n11Kg oG+hOx7l810WkmHQk6lIsUHQ1UHaHg/lqRI41BDBuq14Hgv12LbPL9KPNMSOB9S/ WVCslihBEGRb7DREM0+9zmR4V4y3Rtu/oIw8KgpRURLFOf5rxeImuRmEd0RgtcPb AaIEDK8XqOiIXI2CUHsnEQ3yrnAuVE5sHE5BkEkYMIrp5VVlvDcXomtwbIbihGb7 POkDcJT6wijZbHDh9HSc7aU6INX9RiXQ9Oyor4hR9USeexGIh0Ksp74S4Ix4kTEI zlluwTsaXaXvhPm6iw/ME8Q= -----END CERTIFICATE-----Generated at Fri Dec 19 10:19:20 2025 by rpki-client