This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS14618.roa File: AS14618.roa (raw, json) Hash identifier: zuF8aioGwTAkhj+6OoTg4TRJp4Ayw8iEstlVdaqseR8= Subject key identifier: 42:22:E0:70:1C:E4:BD:7A:BA:7F:9C:62:E3:7B:0B:AB:75:63:27:05 Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc Certificate serial: 22655F8CE2A40EE049ADF3D34BCD7041E907E3D2 Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS14618.roa Signing time: Sat 17 Jan 2026 01:14:54 +0000 ROA not before: Sat 17 Jan 2026 01:09:54 +0000 ROA not after: Sat 16 Jan 2027 01:14:54 +0000 asID: 14618 IP address blocks: 96.62.208.0/22 maxlen: 22 140.233.128.0/19 maxlen: 24 143.14.227.0/24 maxlen: 24 145.223.64.0/24 maxlen: 24 145.223.65.0/24 maxlen: 24 146.103.60.0/24 maxlen: 24 146.103.62.0/23 maxlen: 24 147.79.25.0/24 maxlen: 24 148.135.180.0/24 maxlen: 24 148.135.186.0/24 maxlen: 24 155.117.0.0/24 maxlen: 24 155.117.60.0/24 maxlen: 24 155.117.185.0/24 maxlen: 24 155.117.187.0/24 maxlen: 24 155.117.203.0/24 maxlen: 24 162.141.159.0/24 maxlen: 24 162.141.180.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.mft rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 20:24:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:65:5f:8c:e2:a4:0e:e0:49:ad:f3:d3:4b:cd:70:41:e9:07:e3:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc Validity Not Before: Jan 17 01:09:54 2026 GMT Not After : Jan 16 01:14:54 2027 GMT Subject: CN=4222E0701CE4BD7ABA7F9C62E37B0BAB75632705 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:86:cb:e9:c3:82:d4:af:ff:2b:70:97:57:07: 84:d5:5b:6e:3a:42:e7:ab:cc:90:ed:ad:11:9d:19: 9e:04:29:26:8d:60:c4:6f:80:e2:b8:de:9c:b6:b0: e2:7d:c7:6c:45:14:05:19:6f:15:86:75:d1:1b:f1: f6:c0:1d:e9:06:e2:d0:d9:bc:e8:8c:e7:2e:7b:ab: 42:1f:eb:fa:69:ca:54:ce:ef:b1:47:9e:a8:91:75: db:69:cd:64:ac:38:43:ce:54:e4:ff:85:09:b7:75: 1f:20:f6:7a:d3:3d:7e:04:32:e1:19:56:e5:d7:2d: 6b:fb:78:75:a5:57:e3:3b:56:ce:49:ce:4b:31:3a: b1:0d:03:be:5f:00:4b:6c:54:b2:6f:0a:bf:5c:0a: bb:e5:bc:57:22:31:b8:c4:e2:03:c5:bd:e0:af:cd: f3:d2:d1:b7:55:cd:f8:27:d0:6d:c7:92:b8:c8:9f: 48:2c:1c:52:20:5c:bb:43:e9:b0:91:6f:44:c8:eb: 32:0a:ca:cd:60:6a:68:bb:13:ff:d2:d1:b9:48:8c: f4:4a:d7:d4:d9:1d:5d:e6:7d:a2:85:b7:b0:f7:5f: 19:aa:cd:30:c4:30:2a:2c:e1:4f:68:11:66:50:96: 05:c6:a2:42:1c:e1:10:ee:35:8f:34:aa:8f:21:f9: f6:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:22:E0:70:1C:E4:BD:7A:BA:7F:9C:62:E3:7B:0B:AB:75:63:27:05 X509v3 Authority Key Identifier: keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS14618.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.62.208.0/22 140.233.128.0/19 143.14.227.0/24 145.223.64.0/23 146.103.60.0/24 146.103.62.0/23 147.79.25.0/24 148.135.180.0/24 148.135.186.0/24 155.117.0.0/24 155.117.60.0/24 155.117.185.0/24 155.117.187.0/24 155.117.203.0/24 162.141.159.0/24 162.141.180.0/24 Signature Algorithm: sha256WithRSAEncryption 44:00:30:4b:92:ce:3e:70:f1:54:9a:7e:8a:b5:5a:7a:14:b5: 2f:8f:e2:74:94:95:72:f4:cb:69:01:ab:96:2e:08:22:0f:44: 08:fb:36:b4:c0:b6:b3:12:37:f8:75:e0:40:13:a2:12:23:cd: 17:01:73:66:ce:f1:c3:eb:19:73:11:57:e2:2c:03:45:f5:87: a6:e7:18:16:f5:29:8b:c3:93:1e:8c:ec:fe:14:cd:42:1d:2a: c5:ac:9a:de:13:04:24:24:61:72:e5:f4:ba:aa:a8:ba:61:5e: 22:36:c0:dd:3f:e6:39:32:29:9c:dd:3d:30:59:d1:0a:64:5b: 28:4a:ca:c2:ad:a0:61:3c:d7:c4:e7:bc:bb:7a:7f:c1:2b:6e: 79:91:53:33:db:68:a1:fc:ab:4e:63:a7:07:2e:7a:c9:42:c5: 9c:e0:f7:80:75:1f:c6:d6:dd:04:7e:e0:c9:4c:0c:ce:d5:1c: 5d:4e:cb:a7:78:b0:5c:0a:ea:76:2f:b5:62:58:a8:ef:7c:e7: f5:2f:7e:15:69:f5:84:cf:5c:6f:8a:e8:10:35:cf:ae:ae:22: 97:51:25:77:a8:95:6c:38:0c:c7:47:60:e0:77:3f:0f:8a:da: 70:e3:b9:0d:37:5c:4c:bf:f0:a5:95:50:48:a7:6a:22:b1:10: c9:03:d0:bd -----BEGIN CERTIFICATE----- MIIFWTCCBEGgAwIBAgIUImVfjOKkDuBJrfPTS81wQekH49IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNGZjMzM2YmY5ZjNkZTVjZTQxNDE0YmQxOTcxOTQ1ZjRi MjQ2YmZjYzAeFw0yNjAxMTcwMTA5NTRaFw0yNzAxMTYwMTE0NTRaMDMxMTAvBgNV BAMTKDQyMjJFMDcwMUNFNEJEN0FCQTdGOUM2MkUzN0IwQkFCNzU2MzI3MDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1hsvpw4LUr/8rcJdXB4TVW246 QuerzJDtrRGdGZ4EKSaNYMRvgOK43py2sOJ9x2xFFAUZbxWGddEb8fbAHekG4tDZ vOiM5y57q0If6/ppylTO77FHnqiRddtpzWSsOEPOVOT/hQm3dR8g9nrTPX4EMuEZ VuXXLWv7eHWlV+M7Vs5JzksxOrENA75fAEtsVLJvCr9cCrvlvFciMbjE4gPFveCv zfPS0bdVzfgn0G3HkrjIn0gsHFIgXLtD6bCRb0TI6zIKys1gami7E//S0blIjPRK 19TZHV3mfaKFt7D3XxmqzTDEMCos4U9oEWZQlgXGokIc4RDuNY80qo8h+fZLAgMB AAGjggJjMIICXzAdBgNVHQ4EFgQUQiLgcBzkvXq6f5xi43sLq3VjJwUwHwYDVR0j BBgwFoAUT8M2v5895c5BQUvRlxlF9LJGv8wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMDliZTNhYWUtYWVhMS00MWRjLWIxYjktOTVhYzU5MTgy NDRkLzAvNEZDMzM2QkY5RjNERTVDRTQxNDE0QkQxOTcxOTQ1RjRCMjQ2QkZDQy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1Q4TTJ2NTg5NWM1QlFVdlJseGxGOUxK R3Y4dy5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzA5YmUzYWFlLWFlYTEt NDFkYy1iMWI5LTk1YWM1OTE4MjQ0ZC8wL0FTMTQ2MTgucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIweQYIKwYBBQUHAQcBAf8EajBoMGYEAgABMGADBAJgPtAD BAWM6YADBACPDuMDBAGR30ADBACSZzwDBAGSZz4DBACTTxkDBACUh7QDBACUh7oD BACbdQADBACbdTwDBACbdbkDBACbdbsDBACbdcsDBACijZ8DBACijbQwDQYJKoZI hvcNAQELBQADggEBAEQAMEuSzj5w8VSafoq1WnoUtS+P4nSUlXL0y2kBq5YuCCIP RAj7NrTAtrMSN/h14EATohIjzRcBc2bO8cPrGXMRV+IsA0X1h6bnGBb1KYvDkx6M 7P4UzUIdKsWsmt4TBCQkYXLl9LqqqLphXiI2wN0/5jkyKZzdPTBZ0QpkWyhKysKt oGE818TnvLt6f8ErbnmRUzPbaKH8q05jpwcueslCxZzg94B1H8bW3QR+4MlMDM7V HF1Oy6d4sFwK6nYvtWJYqO985/UvfhVp9YTPXG+K6BA1z66uIpdRJXeolWw4DMdH YOB3Pw+K2nDjuQ03XEy/8KWVUEinaiKxEMkD0L0= -----END CERTIFICATE-----Generated at Sun Jan 25 07:29:02 2026 by rpki-client