This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS214654.roa File: AS214654.roa (raw, json) Hash identifier: IZW/w+Q80Qmc0WtVpNp/5wRaew7dp2gkP1OqAQBXRWc= Subject key identifier: F0:6F:82:8F:2B:E6:A4:A6:99:E2:86:E7:D2:AD:99:78:6D:05:EB:4B Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Certificate serial: 04AA84EE42344F0158BD4A33FB90928C459BFD29 Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS214654.roa Signing time: Wed 03 Dec 2025 11:40:46 +0000 ROA not before: Wed 03 Dec 2025 11:35:46 +0000 ROA not after: Wed 02 Dec 2026 11:40:46 +0000 asID: 214654 IP address blocks: 82.25.46.0/23 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:aa:84:ee:42:34:4f:01:58:bd:4a:33:fb:90:92:8c:45:9b:fd:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Validity Not Before: Dec 3 11:35:46 2025 GMT Not After : Dec 2 11:40:46 2026 GMT Subject: CN=F06F828F2BE6A4A699E286E7D2AD99786D05EB4B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:20:fa:cb:85:29:5b:82:f7:f0:45:09:57:73: 44:d9:c5:42:59:52:f0:65:19:1b:72:3d:9d:ba:77: b5:b5:af:af:e6:bc:0e:ac:ee:e6:ac:0f:3f:6e:f5: 6a:26:a2:1b:23:e2:61:0e:75:5c:f5:1a:fa:6d:ac: c8:72:97:06:f6:c7:ab:d1:b5:81:d5:70:70:d5:ae: 56:f0:af:56:fe:35:a8:78:86:b2:d3:ae:c7:73:3d: fc:74:1b:da:e3:b4:ec:86:9b:0c:6b:82:93:f8:4c: 5d:e1:7f:d4:61:b5:2d:f8:2e:e0:fe:5c:48:c0:12: f1:54:d9:57:fe:f1:e1:d3:02:b1:c7:30:b2:b1:ef: 23:0f:bf:bb:88:40:74:31:56:06:83:cb:b8:45:65: fe:1c:5e:42:48:cb:26:a7:f5:2f:d7:37:60:f5:c0: fc:ab:ec:dd:8c:0e:9e:2b:56:2a:72:ef:a0:c7:ac: a4:b7:a6:e6:ce:0d:4b:ea:d6:91:f4:59:4f:54:35: 9c:04:b8:d9:cc:6d:fb:53:93:a3:e0:94:a8:bd:6d: a9:a5:05:51:58:d5:35:68:87:8c:82:67:ab:ac:ac: 92:73:0e:85:5e:5c:71:d0:48:bd:81:f6:47:a2:70: d5:f9:45:5b:a4:df:eb:27:fb:64:97:ba:7c:0c:1a: 86:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:6F:82:8F:2B:E6:A4:A6:99:E2:86:E7:D2:AD:99:78:6D:05:EB:4B X509v3 Authority Key Identifier: keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS214654.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 82.25.46.0/23 Signature Algorithm: sha256WithRSAEncryption 98:01:4b:85:35:a5:5e:ab:8b:94:66:59:2a:19:50:ed:ff:46: d6:1c:49:c7:99:ec:4f:d0:2e:39:8a:86:e2:3a:2b:95:b5:bf: 7f:fd:9f:85:58:0d:54:c2:dc:e1:03:66:20:c1:23:4a:e1:e1: f8:ed:91:90:a7:71:c1:7f:e7:8c:2b:c0:03:02:99:13:01:57: 61:30:80:3e:d6:12:8f:7a:14:f4:26:d0:bc:77:dd:08:a9:6a: 35:ef:8d:43:fa:68:86:39:ca:25:9d:b7:4d:f2:0e:75:1f:b5: 38:1a:b7:c7:81:f6:2f:cd:f4:2f:89:44:ad:89:53:01:9e:5a: ec:80:58:a3:cf:cb:6a:0e:a2:58:3b:bd:46:81:d5:5f:fd:da: 4a:c9:0f:5a:c9:0f:df:30:bf:a2:18:bb:6a:db:20:29:f5:f0: 50:05:2f:be:9b:fd:a4:9d:19:15:d4:e7:cc:fc:96:97:7b:ff: 09:45:62:62:4e:86:e5:10:56:47:99:26:2a:ec:16:1c:73:52: b4:54:3d:f7:0c:92:e2:50:f5:af:82:e9:e8:b2:bf:ed:d7:68: 7c:45:aa:d9:78:96:cc:33:6b:f9:cc:bc:fd:76:11:87:5c:29: 5b:0f:a4:a6:8a:6c:04:22:6c:1c:a7:dd:2d:b5:0c:3d:14:42: 00:8d:4c:af -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgIUBKqE7kI0TwFYvUoz+5CSjEWb/SkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjE4Y2M2ZTI0MTA1ZGU2YzVjOTAwM2Q2NTI0Mzg5M2Ni M2NmZGQwMTAeFw0yNTEyMDMxMTM1NDZaFw0yNjEyMDIxMTQwNDZaMDMxMTAvBgNV BAMTKEYwNkY4MjhGMkJFNkE0QTY5OUUyODZFN0QyQUQ5OTc4NkQwNUVCNEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD4IPrLhSlbgvfwRQlXc0TZxUJZ UvBlGRtyPZ26d7W1r6/mvA6s7uasDz9u9Womohsj4mEOdVz1GvptrMhylwb2x6vR tYHVcHDVrlbwr1b+Nah4hrLTrsdzPfx0G9rjtOyGmwxrgpP4TF3hf9RhtS34LuD+ XEjAEvFU2Vf+8eHTArHHMLKx7yMPv7uIQHQxVgaDy7hFZf4cXkJIyyan9S/XN2D1 wPyr7N2MDp4rVipy76DHrKS3pubODUvq1pH0WU9UNZwEuNnMbftTk6PglKi9baml BVFY1TVoh4yCZ6usrJJzDoVeXHHQSL2B9keicNX5RVuk3+sn+2SXunwMGoatAgMB AAGjggIKMIICBjAdBgNVHQ4EFgQU8G+CjyvmpKaZ4obn0q2ZeG0F60swHwYDVR0j BBgwFoAUIYzG4kEF3mxckAPWUkOJPLPP3QEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYtYjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWEx YWY2LzAvMjE4Q0M2RTI0MTA1REU2QzVDOTAwM0Q2NTI0Mzg5M0NCM0NGREQwMS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0lZekc0a0VGM214Y2tBUFdVa09KUExQ UDNRRS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzcxOGExYjRmLWI2NGMt NDAyYy1iZTE1LWRkODJhNDFhMWFmNi8wL0FTMjE0NjU0LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBUhku MA0GCSqGSIb3DQEBCwUAA4IBAQCYAUuFNaVeq4uUZlkqGVDt/0bWHEnHmexP0C45 iobiOiuVtb9//Z+FWA1UwtzhA2YgwSNK4eH47ZGQp3HBf+eMK8ADApkTAVdhMIA+ 1hKPehT0JtC8d90IqWo1741D+miGOcolnbdN8g51H7U4GrfHgfYvzfQviUStiVMB nlrsgFijz8tqDqJYO71GgdVf/dpKyQ9ayQ/fML+iGLtq2yAp9fBQBS++m/2knRkV 1OfM/JaXe/8JRWJiToblEFZHmSYq7BYcc1K0VD33DJLiUPWvgunosr/t12h8RarZ eJbMM2v5zLz9dhGHXClbD6SmimwEImwcp90ttQw9FEIAjUyv -----END CERTIFICATE-----Generated at Sat Dec 6 11:47:07 2025 by rpki-client