This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS14618.roa File: AS14618.roa (raw, json) Hash identifier: 0My/SKEGu9OKF189Lzgu6I4C5mIYUVCSGNF59nFUcfc= Subject key identifier: 03:B7:36:82:83:CC:C9:98:75:01:03:19:EB:F7:4E:C3:EE:A8:E8:E2 Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc Certificate serial: 53F37C202B21F0D2EF673E3D0FD1A6DC70B60AA9 Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS14618.roa Signing time: Tue 02 Dec 2025 07:43:10 +0000 ROA not before: Tue 02 Dec 2025 07:38:10 +0000 ROA not after: Tue 01 Dec 2026 07:43:10 +0000 asID: 14618 IP address blocks: 96.62.208.0/22 maxlen: 22 140.233.128.0/19 maxlen: 24 143.14.132.0/24 maxlen: 24 143.14.227.0/24 maxlen: 24 145.223.64.0/24 maxlen: 24 145.223.65.0/24 maxlen: 24 146.103.60.0/24 maxlen: 24 146.103.62.0/23 maxlen: 24 147.79.25.0/24 maxlen: 24 148.135.180.0/24 maxlen: 24 148.135.186.0/24 maxlen: 24 155.117.0.0/24 maxlen: 24 155.117.60.0/24 maxlen: 24 155.117.185.0/24 maxlen: 24 155.117.187.0/24 maxlen: 24 155.117.203.0/24 maxlen: 24 162.141.159.0/24 maxlen: 24 162.141.180.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.mft rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:f3:7c:20:2b:21:f0:d2:ef:67:3e:3d:0f:d1:a6:dc:70:b6:0a:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc Validity Not Before: Dec 2 07:38:10 2025 GMT Not After : Dec 1 07:43:10 2026 GMT Subject: CN=03B7368283CCC99875010319EBF74EC3EEA8E8E2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:0c:be:04:cc:8d:51:df:15:f2:86:99:4c:e6: be:9a:62:4c:e3:c7:f5:56:b9:1a:87:89:5f:35:b9: 54:59:0c:d9:7c:2b:2d:a2:56:9f:34:86:49:35:2c: 10:28:e9:9c:73:7a:86:1d:99:d8:75:ae:3d:88:57: 44:89:c9:ef:7f:e7:b2:61:60:06:46:e2:76:b8:b1: cb:77:a0:ee:8d:e9:9b:45:4c:94:29:e6:91:60:e5: 5d:2d:ab:d6:4e:9b:ed:16:09:fa:50:11:fe:09:9b: 2b:57:b1:72:8d:77:ba:de:cf:21:53:0d:e8:58:8c: 62:32:05:f9:49:05:a4:04:df:b8:c8:75:e5:98:f5: ef:16:f8:69:8e:d3:3d:3c:72:7b:cf:07:80:8b:59: 8a:0d:74:6d:2a:25:17:e0:03:a2:08:41:10:f9:d4: 56:c5:89:94:b7:11:4b:88:28:95:46:16:24:af:b1: d6:84:d3:3c:e5:48:a7:37:0b:51:86:11:6f:57:96: 25:c5:06:31:fc:b2:8d:18:e2:a9:c4:e7:e4:b2:4c: 97:81:9b:ed:f5:24:c0:7e:d4:a0:b7:1e:b4:ad:94: f2:f7:9a:a3:7a:10:5c:5c:39:e0:5a:1e:7a:c7:0d: 9c:dc:2c:c1:08:24:93:87:1c:87:6b:e0:ed:18:8c: e8:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:B7:36:82:83:CC:C9:98:75:01:03:19:EB:F7:4E:C3:EE:A8:E8:E2 X509v3 Authority Key Identifier: keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS14618.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.62.208.0/22 140.233.128.0/19 143.14.132.0/24 143.14.227.0/24 145.223.64.0/23 146.103.60.0/24 146.103.62.0/23 147.79.25.0/24 148.135.180.0/24 148.135.186.0/24 155.117.0.0/24 155.117.60.0/24 155.117.185.0/24 155.117.187.0/24 155.117.203.0/24 162.141.159.0/24 162.141.180.0/24 Signature Algorithm: sha256WithRSAEncryption 3c:7b:30:46:e7:d1:3d:22:54:de:a8:c9:96:72:c2:15:b6:6a: 7d:df:d2:41:dc:57:f3:5d:b4:2c:4a:96:d3:ce:5c:fc:9a:95: 98:61:f3:d5:8d:8a:38:2c:c5:a0:08:9a:ef:4c:8c:97:c8:39: 44:81:97:e9:d1:50:58:99:0c:2d:d5:0b:65:7e:56:d2:a8:fc: fd:d6:b2:30:38:e6:31:81:2c:63:4f:18:19:57:9d:d1:df:32: 35:0d:3d:1b:3e:56:cd:f2:0a:56:3e:cc:8d:8d:b8:c2:d8:4c: 6c:a2:d2:82:88:2e:0c:69:6d:9d:39:7b:f9:84:a6:fa:e8:0c: 3e:c9:ed:7b:6d:9a:9b:8e:5c:39:63:40:53:89:77:13:3f:2b: ef:86:97:d2:81:dd:77:18:96:7a:09:ad:2e:2a:18:38:81:b8: f0:c1:c9:3a:f1:85:fb:af:9d:35:03:59:db:b3:c1:45:0c:ab: bf:fc:ab:19:8f:c1:d8:53:c2:6d:c6:b8:7e:5f:0c:0c:ac:d5: 31:38:40:9e:6e:3f:70:1a:a5:7a:99:96:01:19:97:04:57:6e: 7c:cf:7e:4a:0d:8e:09:3d:56:bf:ee:f1:a0:42:bc:1e:e2:b7: c1:1b:62:94:68:35:9b:60:67:18:98:56:ba:eb:d1:27:79:e9: 11:32:52:a3 -----BEGIN CERTIFICATE----- MIIFXzCCBEegAwIBAgIUU/N8ICsh8NLvZz49D9Gm3HC2CqkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNGZjMzM2YmY5ZjNkZTVjZTQxNDE0YmQxOTcxOTQ1ZjRi MjQ2YmZjYzAeFw0yNTEyMDIwNzM4MTBaFw0yNjEyMDEwNzQzMTBaMDMxMTAvBgNV BAMTKDAzQjczNjgyODNDQ0M5OTg3NTAxMDMxOUVCRjc0RUMzRUVBOEU4RTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQDL4EzI1R3xXyhplM5r6aYkzj x/VWuRqHiV81uVRZDNl8Ky2iVp80hkk1LBAo6ZxzeoYdmdh1rj2IV0SJye9/57Jh YAZG4na4sct3oO6N6ZtFTJQp5pFg5V0tq9ZOm+0WCfpQEf4JmytXsXKNd7rezyFT DehYjGIyBflJBaQE37jIdeWY9e8W+GmO0z08cnvPB4CLWYoNdG0qJRfgA6IIQRD5 1FbFiZS3EUuIKJVGFiSvsdaE0zzlSKc3C1GGEW9XliXFBjH8so0Y4qnE5+SyTJeB m+31JMB+1KC3HrStlPL3mqN6EFxcOeBaHnrHDZzcLMEIJJOHHIdr4O0YjOgFAgMB AAGjggJpMIICZTAdBgNVHQ4EFgQUA7c2goPMyZh1AQMZ6/dOw+6o6OIwHwYDVR0j BBgwFoAUT8M2v5895c5BQUvRlxlF9LJGv8wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMDliZTNhYWUtYWVhMS00MWRjLWIxYjktOTVhYzU5MTgy NDRkLzAvNEZDMzM2QkY5RjNERTVDRTQxNDE0QkQxOTcxOTQ1RjRCMjQ2QkZDQy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1Q4TTJ2NTg5NWM1QlFVdlJseGxGOUxK R3Y4dy5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzA5YmUzYWFlLWFlYTEt NDFkYy1iMWI5LTk1YWM1OTE4MjQ0ZC8wL0FTMTQ2MTgucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwfwYIKwYBBQUHAQcBAf8EcDBuMGwEAgABMGYDBAJgPtAD BAWM6YADBACPDoQDBACPDuMDBAGR30ADBACSZzwDBAGSZz4DBACTTxkDBACUh7QD BACUh7oDBACbdQADBACbdTwDBACbdbkDBACbdbsDBACbdcsDBACijZ8DBACijbQw DQYJKoZIhvcNAQELBQADggEBADx7MEbn0T0iVN6oyZZywhW2an3f0kHcV/NdtCxK ltPOXPyalZhh89WNijgsxaAImu9MjJfIOUSBl+nRUFiZDC3VC2V+VtKo/P3WsjA4 5jGBLGNPGBlXndHfMjUNPRs+Vs3yClY+zI2NuMLYTGyi0oKILgxpbZ05e/mEpvro DD7J7XttmpuOXDljQFOJdxM/K++Gl9KB3XcYlnoJrS4qGDiBuPDByTrxhfuvnTUD WduzwUUMq7/8qxmPwdhTwm3GuH5fDAys1TE4QJ5uP3AapXqZlgEZlwRXbnzPfkoN jgk9Vr/u8aBCvB7it8EbYpRoNZtgZxiYVrrr0Sd56REyUqM= -----END CERTIFICATE-----Generated at Sat Dec 6 15:44:58 2025 by rpki-client