This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS14618.roa File: AS14618.roa (raw, json) Hash identifier: ACd1uQHMhHW5254V3RNBcFM6w/qb/p2/NhMaSvm9zXc= Subject key identifier: F0:34:19:DC:D4:57:44:DD:5D:6A:D0:B9:E2:C6:76:B5:E4:20:2F:72 Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a Certificate serial: 0156B77A1F79F1188D41E0DE28C4992BBF96C047 Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS14618.roa Signing time: Mon 24 Nov 2025 14:20:34 +0000 ROA not before: Mon 24 Nov 2025 14:15:34 +0000 ROA not after: Mon 23 Nov 2026 14:20:34 +0000 asID: 14618 IP address blocks: 181.214.94.0/24 maxlen: 24 181.214.110.0/24 maxlen: 24 181.215.206.0/23 maxlen: 24 185.135.159.0/24 maxlen: 24 185.137.12.0/24 maxlen: 24 185.137.13.0/24 maxlen: 24 185.141.166.0/24 maxlen: 24 191.96.204.0/24 maxlen: 24 191.101.111.0/24 maxlen: 24 191.101.223.0/24 maxlen: 24 213.109.169.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.mft rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:56:b7:7a:1f:79:f1:18:8d:41:e0:de:28:c4:99:2b:bf:96:c0:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a Validity Not Before: Nov 24 14:15:34 2025 GMT Not After : Nov 23 14:20:34 2026 GMT Subject: CN=F03419DCD45744DD5D6AD0B9E2C676B5E4202F72 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:e1:b9:c8:3a:ab:6c:2b:2e:b7:b5:73:b7:4c: cd:a4:9b:8a:48:1f:fe:6a:d5:07:52:ec:17:78:d0: 9c:3c:49:17:cc:a8:24:e8:fb:63:9c:f9:d7:c1:7e: e6:b0:80:86:74:0f:34:9c:76:32:09:58:6d:3f:5a: ce:c7:4e:cb:49:75:d4:71:d7:77:7f:55:10:1e:fb: 2d:4a:0d:0b:08:5f:a0:e2:dd:e0:4b:76:6f:a6:3c: c1:c8:e4:b7:c7:5c:35:bc:05:61:1e:f7:ae:a5:f7: 7b:28:51:23:c2:f0:01:e8:21:8d:30:fc:2a:d9:7e: 62:6b:c3:4e:f9:86:19:84:2c:9d:25:8e:6b:0b:47: 1c:b5:24:a7:4a:ce:06:13:a0:fa:86:ee:f6:06:cb: cf:b1:ab:39:cf:f5:a0:ed:03:63:0b:73:da:80:6e: a6:aa:50:28:e1:8b:2b:1a:b0:b7:5d:11:16:71:8c: c5:0b:72:28:c1:d1:30:38:bc:5c:b4:6a:63:f2:ff: aa:c3:bf:61:b0:68:9e:4a:c5:dc:28:96:12:78:01: 5a:6e:1f:64:f3:13:68:16:c7:72:15:8d:6c:7a:c8: 74:2f:5a:7f:aa:c6:6f:73:17:53:a3:3c:8b:9d:31: 5d:47:05:25:03:02:c6:df:03:15:df:b9:d5:29:7d: 54:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:34:19:DC:D4:57:44:DD:5D:6A:D0:B9:E2:C6:76:B5:E4:20:2F:72 X509v3 Authority Key Identifier: keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS14618.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 181.214.94.0/24 181.214.110.0/24 181.215.206.0/23 185.135.159.0/24 185.137.12.0/23 185.141.166.0/24 191.96.204.0/24 191.101.111.0/24 191.101.223.0/24 213.109.169.0/24 Signature Algorithm: sha256WithRSAEncryption 50:04:e5:6f:09:be:ba:fd:4c:4e:ed:ab:55:eb:04:e9:2f:a3: b6:7a:fa:08:18:68:44:7c:93:26:0d:c9:72:ae:73:63:15:31: 74:af:fe:b2:51:65:a9:14:d8:71:3e:6e:fd:8f:02:e1:77:a8: 97:1e:4e:3f:68:b1:6e:e9:db:08:63:73:21:7f:8e:1c:90:ad: 36:fd:a9:a5:04:91:c6:d3:72:9b:b6:4b:6e:bf:13:d6:e9:05: 15:ba:6f:e6:98:7f:25:ce:ef:41:4d:69:49:9f:f2:46:41:a9: b2:d5:4c:fa:3c:2e:46:b5:90:00:c9:08:a5:5c:54:86:08:1b: 1a:6e:2d:03:b1:99:3d:77:85:0c:1f:4e:c9:79:e8:9a:4e:41: 6c:9f:b7:3f:3b:2c:46:a9:f6:cd:a0:75:f0:66:c6:96:ba:d1: 5a:6a:bf:02:31:e1:7f:88:b2:85:28:6a:35:71:5c:03:82:a0: 88:fd:08:fd:90:56:b9:fc:b7:6f:e3:61:98:09:29:3d:e8:31: 2d:f9:f7:57:fb:13:01:e1:eb:38:cd:4c:2c:1a:f8:06:48:24: 19:78:e3:c6:24:c0:20:45:89:7d:a9:8a:a9:5e:30:72:b6:09: 88:88:67:07:ba:0f:16:0f:c7:01:47:d5:3a:56:3f:e0:06:05: 9b:05:dc:d8 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUAVa3eh958RiNQeDeKMSZK7+WwEcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjFiMWJiNDQ0NzcxOGYxNmIzZDM2Njc1ZDIwNWM0ZGVh NDFiYmEwYTAeFw0yNTExMjQxNDE1MzRaFw0yNjExMjMxNDIwMzRaMDMxMTAvBgNV BAMTKEYwMzQxOURDRDQ1NzQ0REQ1RDZBRDBCOUUyQzY3NkI1RTQyMDJGNzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC24bnIOqtsKy63tXO3TM2km4pI H/5q1QdS7Bd40Jw8SRfMqCTo+2Oc+dfBfuawgIZ0DzScdjIJWG0/Ws7HTstJddRx 13d/VRAe+y1KDQsIX6Di3eBLdm+mPMHI5LfHXDW8BWEe966l93soUSPC8AHoIY0w /CrZfmJrw075hhmELJ0ljmsLRxy1JKdKzgYToPqG7vYGy8+xqznP9aDtA2MLc9qA bqaqUCjhiysasLddERZxjMULcijB0TA4vFy0amPy/6rDv2GwaJ5KxdwolhJ4AVpu H2TzE2gWx3IVjWx6yHQvWn+qxm9zF1OjPIudMV1HBSUDAsbfAxXfudUpfVTPAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQU8DQZ3NRXRN1datC54sZ2teQgL3IwHwYDVR0j BBgwFoAUYbG7REdxjxaz02Z10gXE3qQbugowDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNTM3NDU5ZTctMmE4My00M2QxLTlhYTEtNTg0MTdhYmFj NGI2LzEvNjFCMUJCNDQ0NzcxOEYxNkIzRDM2Njc1RDIwNUM0REVBNDFCQkEwQS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1liRzdSRWR4anhhejAyWjEwZ1hFM3FR YnVnby5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzUzNzQ1OWU3LTJhODMt NDNkMS05YWExLTU4NDE3YWJhYzRiNi8xL0FTMTQ2MTgucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwVQYIKwYBBQUHAQcBAf8ERjBEMEIEAgABMDwDBAC11l4D BAC11m4DBAG1184DBAC5h58DBAG5iQwDBAC5jaYDBAC/YMwDBAC/ZW8DBAC/Zd8D BADVbakwDQYJKoZIhvcNAQELBQADggEBAFAE5W8Jvrr9TE7tq1XrBOkvo7Z6+ggY aER8kyYNyXKuc2MVMXSv/rJRZakU2HE+bv2PAuF3qJceTj9osW7p2whjcyF/jhyQ rTb9qaUEkcbTcpu2S26/E9bpBRW6b+aYfyXO70FNaUmf8kZBqbLVTPo8Lka1kADJ CKVcVIYIGxpuLQOxmT13hQwfTsl56JpOQWyftz87LEap9s2gdfBmxpa60VpqvwIx 4X+IsoUoajVxXAOCoIj9CP2QVrn8t2/jYZgJKT3oMS3591f7EwHh6zjNTCwa+AZI JBl448YkwCBFiX2piqleMHK2CYiIZwe6DxYPxwFH1TpWP+AGBZsF3Ng= -----END CERTIFICATE-----Generated at Sat Dec 6 15:45:07 2025 by rpki-client