This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS213772.roa File: AS213772.roa (raw, json) Hash identifier: 3UPmXJ4ULXhlDfXrt/uRMYRIAPAq/TEsGcB+qIHzZyc= Subject key identifier: CA:9D:D4:26:61:69:0A:38:D0:1C:C2:04:25:20:DE:88:E2:EE:32:8D Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a Certificate serial: 777A5EFC4A45184A7B330CCD51E5F28D919B671C Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS213772.roa Signing time: Wed 26 Nov 2025 21:56:26 +0000 ROA not before: Wed 26 Nov 2025 21:51:26 +0000 ROA not after: Wed 25 Nov 2026 21:56:26 +0000 asID: 213772 IP address blocks: 181.214.147.0/24 maxlen: 24 191.96.245.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.mft rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 22:12:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:7a:5e:fc:4a:45:18:4a:7b:33:0c:cd:51:e5:f2:8d:91:9b:67:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a Validity Not Before: Nov 26 21:51:26 2025 GMT Not After : Nov 25 21:56:26 2026 GMT Subject: CN=CA9DD42661690A38D01CC2042520DE88E2EE328D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:87:3e:40:56:63:90:9e:99:d6:3f:e4:8b:74:f4: 30:ba:8f:d2:cc:53:ff:85:e0:69:e6:d8:5f:47:d6: a9:35:46:a0:65:4c:42:7d:8e:77:96:ce:e3:a6:1b: a1:a0:3b:23:86:3e:de:54:29:f7:49:99:88:8d:ac: 65:45:39:0b:d4:da:67:bc:c6:e8:ad:ca:69:9f:12: f8:16:b7:fe:5d:54:03:d0:3b:f8:72:6d:71:61:20: a3:50:9c:41:14:59:ab:a9:a2:08:29:81:d4:43:88: bb:c5:1d:ea:38:28:58:09:ea:bc:0a:b3:b6:76:c6: 0d:50:62:db:7e:68:87:e0:03:5f:1b:7e:a9:e2:a3: bf:0c:03:1a:1a:f4:d4:03:e2:4b:cd:1d:ef:56:05: d1:99:94:eb:0f:58:71:9a:f7:58:3c:60:13:6f:c3: 93:4a:8a:12:53:25:9b:95:c0:87:9d:19:b3:c1:34: a6:3a:cc:8e:02:df:29:55:bf:c5:7e:74:28:98:f4: 5e:4e:af:e6:9a:bc:c3:96:ff:28:59:0e:8e:d4:64: b0:06:c1:57:b4:23:f9:90:0b:b0:9a:bc:8f:d4:40: f6:1f:26:17:d0:3f:94:cb:ac:90:79:a0:b7:da:30: 10:72:d6:04:8e:70:17:a6:ee:80:10:5c:cf:6b:bf: 41:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:9D:D4:26:61:69:0A:38:D0:1C:C2:04:25:20:DE:88:E2:EE:32:8D X509v3 Authority Key Identifier: keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS213772.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 181.214.147.0/24 191.96.245.0/24 Signature Algorithm: sha256WithRSAEncryption 60:19:fa:24:e8:14:60:a1:bd:ba:4d:a5:81:3d:45:6e:12:5d: d5:5b:9c:07:08:be:e1:56:32:23:17:0d:fe:d1:b6:53:6c:73: c2:58:5b:4b:ed:82:b5:15:24:d0:50:61:74:c6:4a:0d:f8:e8: b8:c0:41:cf:61:73:3c:4e:6c:22:e9:95:2c:a3:f0:8e:c6:f6: e8:79:35:8e:01:af:3a:d2:52:81:40:b0:a9:ff:39:94:10:db: 94:c1:3e:5c:72:e9:ba:0c:48:92:7f:b8:b6:fa:2a:23:e6:ab: a6:14:2b:f7:9a:df:3a:05:2d:e1:f4:38:54:62:31:6c:7e:21: 8c:f8:db:37:82:c6:1e:47:13:a5:b8:6c:43:6b:13:63:3a:90: ce:4e:86:92:15:20:7a:48:dd:bc:5b:39:0f:3e:67:dd:e1:ad: 9f:a1:82:59:80:0e:75:d2:f2:e3:c1:14:d3:d3:10:2c:7b:a4: 20:ca:e7:b2:f0:79:b9:aa:b4:ea:bf:3f:df:fd:4d:e6:6f:a9: 92:bf:89:d5:8d:8c:a5:3f:e3:39:ec:c5:5a:ae:32:a9:40:ac: 95:83:8c:0f:57:d5:9a:b4:5d:9b:b1:53:15:2e:41:d4:9e:6c: 1b:0e:f8:d9:12:05:87:4a:d2:68:a4:e3:5e:12:1a:c6:e0:a3: 6a:00:94:e7 -----BEGIN CERTIFICATE----- MIIFBjCCA+6gAwIBAgIUd3pe/EpFGEp7MwzNUeXyjZGbZxwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjFiMWJiNDQ0NzcxOGYxNmIzZDM2Njc1ZDIwNWM0ZGVh NDFiYmEwYTAeFw0yNTExMjYyMTUxMjZaFw0yNjExMjUyMTU2MjZaMDMxMTAvBgNV BAMTKENBOURENDI2NjE2OTBBMzhEMDFDQzIwNDI1MjBERTg4RTJFRTMyOEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCHPkBWY5CemdY/5It09DC6j9LM U/+F4Gnm2F9H1qk1RqBlTEJ9jneWzuOmG6GgOyOGPt5UKfdJmYiNrGVFOQvU2me8 xuitymmfEvgWt/5dVAPQO/hybXFhIKNQnEEUWaupoggpgdRDiLvFHeo4KFgJ6rwK s7Z2xg1QYtt+aIfgA18bfqnio78MAxoa9NQD4kvNHe9WBdGZlOsPWHGa91g8YBNv w5NKihJTJZuVwIedGbPBNKY6zI4C3ylVv8V+dCiY9F5Or+aavMOW/yhZDo7UZLAG wVe0I/mQC7CavI/UQPYfJhfQP5TLrJB5oLfaMBBy1gSOcBem7oAQXM9rv0GTAgMB AAGjggIQMIICDDAdBgNVHQ4EFgQUyp3UJmFpCjjQHMIEJSDeiOLuMo0wHwYDVR0j BBgwFoAUYbG7REdxjxaz02Z10gXE3qQbugowDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNTM3NDU5ZTctMmE4My00M2QxLTlhYTEtNTg0MTdhYmFj NGI2LzEvNjFCMUJCNDQ0NzcxOEYxNkIzRDM2Njc1RDIwNUM0REVBNDFCQkEwQS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1liRzdSRWR4anhhejAyWjEwZ1hFM3FR YnVnby5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzUzNzQ1OWU3LTJhODMt NDNkMS05YWExLTU4NDE3YWJhYzRiNi8xL0FTMjEzNzcyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAtdaT AwQAv2D1MA0GCSqGSIb3DQEBCwUAA4IBAQBgGfok6BRgob26TaWBPUVuEl3VW5wH CL7hVjIjFw3+0bZTbHPCWFtL7YK1FSTQUGF0xkoN+Oi4wEHPYXM8Tmwi6ZUso/CO xvboeTWOAa860lKBQLCp/zmUENuUwT5ccum6DEiSf7i2+ioj5qumFCv3mt86BS3h 9DhUYjFsfiGM+Ns3gsYeRxOluGxDaxNjOpDOToaSFSB6SN28WzkPPmfd4a2foYJZ gA510vLjwRTT0xAse6Qgyuey8Hm5qrTqvz/f/U3mb6mSv4nVjYylP+M57MVarjKp QKyVg4wPV9WatF2bsVMVLkHUnmwbDvjZEgWHStJopONeEhrG4KNqAJTn -----END CERTIFICATE-----Generated at Sat Dec 6 12:53:47 2025 by rpki-client