This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS214025.roa File: AS214025.roa (raw, json) Hash identifier: D8U3L1VZZ2B3LzD4SXjKYTExghEtHdp610eSBcfBkE0= Subject key identifier: 89:28:6B:28:19:DF:3D:43:88:EC:8A:7C:CF:12:BC:1D:10:53:AA:96 Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f Certificate serial: 6875F4D0032102C72AC44199CD3A7EB7CB6EAEE9 Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS214025.roa Signing time: Mon 08 Dec 2025 03:19:54 +0000 ROA not before: Mon 08 Dec 2025 03:14:54 +0000 ROA not after: Mon 07 Dec 2026 03:19:54 +0000 asID: 214025 IP address blocks: 46.203.98.0/24 maxlen: 24 46.203.203.0/24 maxlen: 24 92.113.106.0/23 maxlen: 24 92.113.112.0/23 maxlen: 24 92.113.124.0/23 maxlen: 24 92.113.136.0/23 maxlen: 24 92.113.142.0/23 maxlen: 24 92.113.211.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 11:58:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:75:f4:d0:03:21:02:c7:2a:c4:41:99:cd:3a:7e:b7:cb:6e:ae:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f Validity Not Before: Dec 8 03:14:54 2025 GMT Not After : Dec 7 03:19:54 2026 GMT Subject: CN=89286B2819DF3D4388EC8A7CCF12BC1D1053AA96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:93:35:ab:80:32:63:9e:9d:25:83:9a:f1:77: 18:35:31:46:ed:be:94:9d:97:75:02:bc:7c:79:14: 0d:48:bb:45:3d:31:74:a9:f8:be:68:e6:62:6c:46: 5e:12:85:17:ca:f1:ca:9e:71:0c:a7:f0:4e:65:9b: 42:87:aa:c1:88:5d:65:ec:10:a4:ad:60:e1:0a:69: b5:19:47:8f:63:a8:17:24:67:a9:82:2f:b9:83:ed: c6:4e:2a:38:28:da:9c:1c:15:9b:e1:0d:8c:c7:61: 8c:28:7c:bc:19:58:5d:eb:a2:86:f9:55:c1:34:8d: c6:bf:48:7b:95:4f:a4:1c:76:79:4e:49:8c:85:fd: 9a:06:9b:90:71:16:30:df:e9:e7:c4:d5:cb:02:fc: c1:92:17:f6:fa:2b:77:36:53:f6:ac:ce:16:3b:d1: ba:71:45:68:f5:b5:2b:93:ac:61:5a:41:b2:94:03: c8:78:a0:eb:9a:4d:6d:64:d6:2c:b3:a5:a3:7b:fd: b2:90:66:0d:f9:b6:0c:b2:3f:8a:50:0a:b9:04:0e: 59:a2:f2:27:a8:e4:10:3a:fb:f3:e2:1a:10:db:c7: 81:b4:d4:2b:72:07:94:18:57:7b:c0:f7:73:37:b9: 81:37:24:59:07:3c:e1:c5:f7:61:fa:e6:7b:1f:f5: 1f:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:28:6B:28:19:DF:3D:43:88:EC:8A:7C:CF:12:BC:1D:10:53:AA:96 X509v3 Authority Key Identifier: keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS214025.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 46.203.98.0/24 46.203.203.0/24 92.113.106.0/23 92.113.112.0/23 92.113.124.0/23 92.113.136.0/23 92.113.142.0/23 92.113.211.0/24 Signature Algorithm: sha256WithRSAEncryption 0d:28:22:8b:cb:a7:1e:ea:de:e5:43:41:86:53:af:e4:f8:1c: 1f:70:26:32:09:75:10:57:55:3c:47:0a:09:23:36:29:34:3c: ba:5c:5b:e8:16:da:29:cd:d5:d0:55:86:8a:bb:01:24:f5:4f: fb:4a:09:6c:8d:78:ac:da:36:46:8f:4e:0d:f2:95:b9:9c:bb: c1:ac:7d:0e:10:78:96:d8:54:f0:f7:51:26:74:de:30:51:33: 69:f1:e7:a0:f8:9a:37:34:08:97:42:9f:e8:08:1b:05:d4:20: f2:ec:9a:12:f1:2d:55:34:08:26:92:3a:bb:9b:fb:2e:f6:a2: e8:ed:94:2b:ad:64:16:c5:3e:60:9e:58:45:c8:6d:3f:7f:fb: d9:75:d1:40:f1:be:a6:89:82:cc:d2:1f:bd:15:f5:6f:a4:07: 10:d3:5e:a6:6f:d7:79:c9:92:82:3f:fa:32:74:be:15:2b:c7: 0e:5d:4d:b7:eb:32:50:c7:ae:f5:b6:f4:e9:35:e0:2c:c2:14: 36:cd:39:1f:45:b1:47:f2:36:97:08:43:95:ca:a0:cc:61:e7: 5a:7f:71:78:f2:3e:ab:79:21:a6:27:74:64:ff:40:e4:28:b9: de:d9:2a:1c:84:e6:10:55:18:87:aa:9b:72:29:ed:c2:f7:8a: bb:10:dd:8f -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUaHX00AMhAscqxEGZzTp+t8turukwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOWJkODEzMzkxZTRhZjJhZTMxMDNjMTg5MWIyMjcyZDRk NWMxM2I1ZjAeFw0yNTEyMDgwMzE0NTRaFw0yNjEyMDcwMzE5NTRaMDMxMTAvBgNV BAMTKDg5Mjg2QjI4MTlERjNENDM4OEVDOEE3Q0NGMTJCQzFEMTA1M0FBOTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCakzWrgDJjnp0lg5rxdxg1MUbt vpSdl3UCvHx5FA1Iu0U9MXSp+L5o5mJsRl4ShRfK8cqecQyn8E5lm0KHqsGIXWXs EKStYOEKabUZR49jqBckZ6mCL7mD7cZOKjgo2pwcFZvhDYzHYYwofLwZWF3roob5 VcE0jca/SHuVT6QcdnlOSYyF/ZoGm5BxFjDf6efE1csC/MGSF/b6K3c2U/aszhY7 0bpxRWj1tSuTrGFaQbKUA8h4oOuaTW1k1iyzpaN7/bKQZg35tgyyP4pQCrkEDlmi 8ieo5BA6+/PiGhDbx4G01CtyB5QYV3vA93M3uYE3JFkHPOHF92H65nsf9R+rAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUiShrKBnfPUOI7Ip8zxK8HRBTqpYwHwYDVR0j BBgwFoAUm9gTOR5K8q4xA8GJGyJy1NXBO18wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYzQ3OGY2ZjUtNDQ5YS00ODI3LTk5ZDUtYmY2YjkzYThm NmI0LzAvOUJEODEzMzkxRTRBRjJBRTMxMDNDMTg5MUIyMjcyRDRENUMxM0I1Ri5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL205Z1RPUjVLOHE0eEE4R0pHeUp5MU5Y Qk8xOC5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2M0NzhmNmY1LTQ0OWEt NDgyNy05OWQ1LWJmNmI5M2E4ZjZiNC8wL0FTMjE0MDI1LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMEkGCCsGAQUFBwEHAQH/BDowODA2BAIAATAwAwQALsti AwQALsvLAwQBXHFqAwQBXHFwAwQBXHF8AwQBXHGIAwQBXHGOAwQAXHHTMA0GCSqG SIb3DQEBCwUAA4IBAQANKCKLy6ce6t7lQ0GGU6/k+BwfcCYyCXUQV1U8RwoJIzYp NDy6XFvoFtopzdXQVYaKuwEk9U/7SglsjXis2jZGj04N8pW5nLvBrH0OEHiW2FTw 91EmdN4wUTNp8eeg+Jo3NAiXQp/oCBsF1CDy7JoS8S1VNAgmkjq7m/su9qLo7ZQr rWQWxT5gnlhFyG0/f/vZddFA8b6miYLM0h+9FfVvpAcQ016mb9d5yZKCP/oydL4V K8cOXU236zJQx671tvTpNeAswhQ2zTkfRbFH8jaXCEOVyqDMYedaf3F48j6reSGm J3Rk/0DkKLne2SochOYQVRiHqptyKe3C94q7EN2P -----END CERTIFICATE-----Generated at Sat Dec 20 20:44:18 2025 by rpki-client