This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS214025.roa File: AS214025.roa (raw, json) Hash identifier: BncgELu+Dnas7pFfD2ZmpWXJQqRh4JgG0X6eEwyaEZE= Subject key identifier: 93:EE:7F:62:08:5F:7E:5A:F9:3F:D6:54:11:B8:D0:1B:21:DA:3D:2B Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Certificate serial: 0CB9A4993B20139FACAA6B658657B466849DA918 Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS214025.roa Signing time: Sat 13 Dec 2025 07:58:02 +0000 ROA not before: Sat 13 Dec 2025 07:53:02 +0000 ROA not after: Sat 12 Dec 2026 07:58:02 +0000 asID: 214025 IP address blocks: 82.22.187.0/24 maxlen: 24 82.23.173.0/24 maxlen: 24 82.29.78.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 08:51:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:b9:a4:99:3b:20:13:9f:ac:aa:6b:65:86:57:b4:66:84:9d:a9:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Validity Not Before: Dec 13 07:53:02 2025 GMT Not After : Dec 12 07:58:02 2026 GMT Subject: CN=93EE7F62085F7E5AF93FD65411B8D01B21DA3D2B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:c1:57:0e:e8:fa:59:45:e2:d6:6e:8c:65:92: 54:a2:f5:71:99:5d:ee:35:be:aa:98:f4:d2:24:3e: 77:77:74:fc:e7:b3:87:b5:07:1a:e2:2d:0d:db:8b: 31:1f:c1:7a:78:59:b2:79:a7:fd:b7:bf:76:4e:c8: fa:e5:09:d7:07:f4:9d:13:8d:73:64:cc:89:d9:ed: 63:ee:f3:fc:bd:13:cd:64:31:2b:98:81:ee:fa:13: 3a:c1:53:31:0a:42:3d:a1:fd:90:b2:79:81:03:17: 32:0c:92:01:c8:06:72:b0:83:64:15:52:4a:b8:4e: 9e:a7:d8:1c:f3:2d:df:96:ae:e6:3c:10:28:e1:b0: 57:3f:b0:b3:28:c2:10:7f:51:44:64:fa:e9:98:38: b3:a1:4d:08:b8:b6:e1:58:60:78:c1:b9:b5:64:cd: 86:28:a9:fd:3e:69:08:4e:7b:b1:bd:ce:e3:f7:d0: 17:13:9a:c9:49:8c:fb:5b:9e:26:96:c9:64:73:9c: cc:14:da:e0:70:29:eb:e5:95:07:32:84:96:b3:f1: 15:80:46:d8:11:df:ec:89:03:be:7f:3a:15:83:91: d7:99:9e:4d:07:88:a9:26:b0:44:c5:f0:5d:a3:ca: 5f:b6:f3:07:1b:c4:9b:c8:55:ea:a4:24:55:de:6c: bd:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:EE:7F:62:08:5F:7E:5A:F9:3F:D6:54:11:B8:D0:1B:21:DA:3D:2B X509v3 Authority Key Identifier: keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS214025.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 82.22.187.0/24 82.23.173.0/24 82.29.78.0/24 Signature Algorithm: sha256WithRSAEncryption 2b:1a:60:25:ba:a2:7f:b7:59:fe:0b:2f:c4:8e:bd:73:e1:6b: d3:0f:f4:5a:86:5d:38:f0:ec:8f:ea:cb:1e:76:81:94:d7:10: d6:d8:9f:28:ba:b0:71:5f:a4:61:e9:24:71:65:84:cf:49:1b: bb:a5:2b:e2:3d:30:35:cb:a0:e8:a8:e7:72:01:15:6f:3d:f9: 50:80:7c:74:ff:70:a1:99:ba:dd:d0:8d:b2:dd:37:5c:3f:51: e4:1d:2b:d6:68:ef:d7:05:bb:15:21:d0:9e:a2:eb:fa:37:5f: 0c:91:21:34:98:ac:c9:4a:70:10:12:cc:d4:b4:60:e3:cd:97: c4:e0:a5:5e:5c:fb:a2:7b:fb:b8:91:6a:74:7f:11:12:2f:d0: a9:30:99:0c:1e:4f:96:f1:6d:4f:8a:9b:ea:1d:4b:be:dd:fe: 8b:23:59:88:75:3d:07:83:ce:86:e8:9b:14:41:71:3f:bf:b3: 2c:a4:94:06:b1:fd:ee:87:59:c0:e2:e4:53:04:46:2a:fb:d3: 45:ba:a3:e8:6e:3a:db:eb:5e:f0:7c:42:5f:29:7f:c0:5d:82: a0:4c:97:9c:d2:1c:d7:f0:2e:f8:20:07:1e:f9:41:ec:ea:af: fc:c4:15:17:3d:33:72:ef:c2:6d:d6:5a:a5:1d:bb:75:61:84: c4:7c:31:47 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgIUDLmkmTsgE5+sqmtlhle0ZoSdqRgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjE4Y2M2ZTI0MTA1ZGU2YzVjOTAwM2Q2NTI0Mzg5M2Ni M2NmZGQwMTAeFw0yNTEyMTMwNzUzMDJaFw0yNjEyMTIwNzU4MDJaMDMxMTAvBgNV BAMTKDkzRUU3RjYyMDg1RjdFNUFGOTNGRDY1NDExQjhEMDFCMjFEQTNEMkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCmwVcO6PpZReLWboxlklSi9XGZ Xe41vqqY9NIkPnd3dPzns4e1BxriLQ3bizEfwXp4WbJ5p/23v3ZOyPrlCdcH9J0T jXNkzInZ7WPu8/y9E81kMSuYge76EzrBUzEKQj2h/ZCyeYEDFzIMkgHIBnKwg2QV Ukq4Tp6n2BzzLd+WruY8ECjhsFc/sLMowhB/UURk+umYOLOhTQi4tuFYYHjBubVk zYYoqf0+aQhOe7G9zuP30BcTmslJjPtbniaWyWRznMwU2uBwKevllQcyhJaz8RWA RtgR3+yJA75/OhWDkdeZnk0HiKkmsETF8F2jyl+28wcbxJvIVeqkJFXebL15AgMB AAGjggIWMIICEjAdBgNVHQ4EFgQUk+5/Yghfflr5P9ZUEbjQGyHaPSswHwYDVR0j BBgwFoAUIYzG4kEF3mxckAPWUkOJPLPP3QEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYtYjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWEx YWY2LzAvMjE4Q0M2RTI0MTA1REU2QzVDOTAwM0Q2NTI0Mzg5M0NCM0NGREQwMS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0lZekc0a0VGM214Y2tBUFdVa09KUExQ UDNRRS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzcxOGExYjRmLWI2NGMt NDAyYy1iZTE1LWRkODJhNDFhMWFmNi8wL0FTMjE0MDI1LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQAUha7 AwQAUhetAwQAUh1OMA0GCSqGSIb3DQEBCwUAA4IBAQArGmAluqJ/t1n+Cy/Ejr1z 4WvTD/Rahl048OyP6ssedoGU1xDW2J8ourBxX6Rh6SRxZYTPSRu7pSviPTA1y6Do qOdyARVvPflQgHx0/3Chmbrd0I2y3TdcP1HkHSvWaO/XBbsVIdCeouv6N18MkSE0 mKzJSnAQEszUtGDjzZfE4KVeXPuie/u4kWp0fxESL9CpMJkMHk+W8W1PipvqHUu+ 3f6LI1mIdT0Hg86G6JsUQXE/v7MspJQGsf3uh1nA4uRTBEYq+9NFuqPobjrb617w fEJfKX/AXYKgTJec0hzX8C74IAce+UHs6q/8xBUXPTNy78Jt1lqlHbt1YYTEfDFH -----END CERTIFICATE-----Generated at Sat Dec 20 20:44:21 2025 by rpki-client