This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c409d7b2-ee64-49f1-ad81-8e4a107d62e0/0/AS214480.roa File: AS214480.roa (raw, json) Hash identifier: iDtcM00n0pVC3A6pO8DGK55AwcL4OhWnF2x7BbiF9ps= Subject key identifier: 50:EF:75:12:E6:A6:80:3E:98:CB:D6:58:54:86:E7:5B:6E:42:46:26 Certificate issuer: /CN=88c14ec02adbf083138eddd47871176ddeb93d9d Certificate serial: 684E6AE7ECB136024E62161C1764E5D6CC2FAC18 Authority key identifier: 88:C1:4E:C0:2A:DB:F0:83:13:8E:DD:D4:78:71:17:6D:DE:B9:3D:9D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iMFOwCrb8IMTjt3UeHEXbd65PZ0.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c409d7b2-ee64-49f1-ad81-8e4a107d62e0/0/AS214480.roa Signing time: Fri 19 Dec 2025 08:54:30 +0000 ROA not before: Fri 19 Dec 2025 08:49:30 +0000 ROA not after: Fri 18 Dec 2026 08:54:30 +0000 asID: 214480 IP address blocks: 143.20.2.0/23 maxlen: 23 143.20.2.0/24 maxlen: 24 143.20.3.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c409d7b2-ee64-49f1-ad81-8e4a107d62e0/0/88C14EC02ADBF083138EDDD47871176DDEB93D9D.crl rsync://rsync.paas.rpki.ripe.net/repository/c409d7b2-ee64-49f1-ad81-8e4a107d62e0/0/88C14EC02ADBF083138EDDD47871176DDEB93D9D.mft rsync://rpki.ripe.net/repository/DEFAULT/iMFOwCrb8IMTjt3UeHEXbd65PZ0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 16:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:4e:6a:e7:ec:b1:36:02:4e:62:16:1c:17:64:e5:d6:cc:2f:ac:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=88c14ec02adbf083138eddd47871176ddeb93d9d Validity Not Before: Dec 19 08:49:30 2025 GMT Not After : Dec 18 08:54:30 2026 GMT Subject: CN=50EF7512E6A6803E98CBD6585486E75B6E424626 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:9b:ea:e9:5a:f8:a2:ad:2b:2b:bb:69:d6:1a: 38:66:33:33:57:db:b1:01:3f:21:dd:7f:cf:67:c7: 13:55:59:46:8c:51:73:39:5a:f1:2d:0a:ad:fe:4e: 17:1a:b0:3a:8e:38:ca:f4:e2:68:f8:ac:e0:80:33: 75:95:30:90:21:7f:71:f0:46:7c:81:4f:ec:79:5f: 18:8d:91:c0:7a:f9:b9:59:5e:4d:ca:b8:84:2d:2b: 5e:7b:dd:39:2d:ba:26:88:1b:0f:41:cf:7f:55:17: 83:70:c9:7b:08:f0:4d:cc:ed:72:aa:18:e9:eb:7f: ca:7b:a3:92:ed:49:23:41:82:b0:aa:98:2c:c3:7a: 54:90:7d:b2:4f:c9:c5:ae:32:b9:75:f5:2e:21:cf: 28:9c:5b:f7:1d:4e:ab:54:86:d9:86:7a:01:49:c6: 45:5a:8d:1c:35:9e:3a:05:45:d0:49:83:c1:08:08: ef:a3:f9:f8:bc:37:e4:4d:b6:43:e1:55:1c:e6:9f: 53:af:91:28:bb:3a:68:32:8b:8d:79:ef:8c:97:18: 6c:07:2a:05:db:0d:cc:d5:87:b5:99:d6:64:69:86: cf:4b:6a:a8:d5:c8:0d:4d:22:9b:d2:b5:83:2a:46: ba:89:0e:86:45:76:82:bd:cc:ef:b6:ee:a6:c5:75: bd:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:EF:75:12:E6:A6:80:3E:98:CB:D6:58:54:86:E7:5B:6E:42:46:26 X509v3 Authority Key Identifier: keyid:88:C1:4E:C0:2A:DB:F0:83:13:8E:DD:D4:78:71:17:6D:DE:B9:3D:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/c409d7b2-ee64-49f1-ad81-8e4a107d62e0/0/88C14EC02ADBF083138EDDD47871176DDEB93D9D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iMFOwCrb8IMTjt3UeHEXbd65PZ0.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c409d7b2-ee64-49f1-ad81-8e4a107d62e0/0/AS214480.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 143.20.2.0/23 Signature Algorithm: sha256WithRSAEncryption 23:a0:b4:64:5e:74:1e:3a:75:c1:a3:ee:bc:e5:26:55:d5:05: 0b:9e:d6:02:8a:29:6e:8a:dc:5e:09:fc:8e:40:b6:c7:1d:4f: 40:42:fa:25:dc:ba:57:bf:f8:b5:1f:b2:81:fb:b0:a6:f6:f7: fb:ba:ad:d0:c4:61:a4:f7:1d:93:2a:05:8b:f1:ae:c2:4f:25: 22:01:c7:82:00:67:52:a7:c4:58:37:4c:cd:96:12:83:36:eb: 74:a6:4f:0e:49:25:d0:b2:c9:8f:f7:7a:e4:21:ad:47:8d:44: 98:06:2b:85:18:bc:c9:20:86:5a:02:59:3a:96:d4:45:7a:12: 9c:bc:c6:7b:42:d2:62:19:83:2e:e2:57:94:fb:05:58:c5:ba: 7e:8d:87:c6:54:a7:08:26:62:0b:ed:94:01:c8:4c:75:53:0c: 82:80:01:e9:b4:9a:b3:53:ef:b8:18:60:4a:54:a7:bd:2b:52: 45:e4:64:76:32:14:96:72:76:a6:fb:0c:e6:aa:36:c0:b4:47: 47:64:17:c4:e6:4c:bf:cd:31:b6:83:7e:08:06:b4:ef:fa:45: d0:90:11:dc:80:ca:4b:d8:c6:d3:4e:c9:25:74:af:a1:7f:d4: b1:53:6d:f6:be:98:0e:26:3e:24:57:d5:8a:e3:86:52:30:e3: 68:d6:2b:ba -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgIUaE5q5+yxNgJOYhYcF2Tl1swvrBgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODhjMTRlYzAyYWRiZjA4MzEzOGVkZGQ0Nzg3MTE3NmRk ZWI5M2Q5ZDAeFw0yNTEyMTkwODQ5MzBaFw0yNjEyMTgwODU0MzBaMDMxMTAvBgNV BAMTKDUwRUY3NTEyRTZBNjgwM0U5OENCRDY1ODU0ODZFNzVCNkU0MjQ2MjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMm+rpWviirSsru2nWGjhmMzNX 27EBPyHdf89nxxNVWUaMUXM5WvEtCq3+ThcasDqOOMr04mj4rOCAM3WVMJAhf3Hw RnyBT+x5XxiNkcB6+blZXk3KuIQtK1573TktuiaIGw9Bz39VF4NwyXsI8E3M7XKq GOnrf8p7o5LtSSNBgrCqmCzDelSQfbJPycWuMrl19S4hzyicW/cdTqtUhtmGegFJ xkVajRw1njoFRdBJg8EICO+j+fi8N+RNtkPhVRzmn1OvkSi7Omgyi41574yXGGwH KgXbDczVh7WZ1mRphs9LaqjVyA1NIpvStYMqRrqJDoZFdoK9zO+27qbFdb1rAgMB AAGjggIKMIICBjAdBgNVHQ4EFgQUUO91EuamgD6Yy9ZYVIbnW25CRiYwHwYDVR0j BBgwFoAUiMFOwCrb8IMTjt3UeHEXbd65PZ0wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYzQwOWQ3YjItZWU2NC00OWYxLWFkODEtOGU0YTEwN2Q2 MmUwLzAvODhDMTRFQzAyQURCRjA4MzEzOEVEREQ0Nzg3MTE3NkRERUI5M0Q5RC5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2lNRk93Q3JiOElNVGp0M1VlSEVYYmQ2 NVBaMC5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2M0MDlkN2IyLWVlNjQt NDlmMS1hZDgxLThlNGExMDdkNjJlMC8wL0FTMjE0NDgwLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBjxQC MA0GCSqGSIb3DQEBCwUAA4IBAQAjoLRkXnQeOnXBo+685SZV1QULntYCiiluitxe CfyOQLbHHU9AQvol3LpXv/i1H7KB+7Cm9vf7uq3QxGGk9x2TKgWL8a7CTyUiAceC AGdSp8RYN0zNlhKDNut0pk8OSSXQssmP93rkIa1HjUSYBiuFGLzJIIZaAlk6ltRF ehKcvMZ7QtJiGYMu4leU+wVYxbp+jYfGVKcIJmIL7ZQByEx1UwyCgAHptJqzU++4 GGBKVKe9K1JF5GR2MhSWcnam+wzmqjbAtEdHZBfE5ky/zTG2g34IBrTv+kXQkBHc gMpL2MbTTskldK+hf9SxU232vpgOJj4kV9WK44ZSMONo1iu6 -----END CERTIFICATE-----Generated at Sat Dec 20 02:38:27 2025 by rpki-client