This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS214781.roa File: AS214781.roa (raw, json) Hash identifier: XMEuaHDO2NiUAEtmBtIWMDcP9gPkw0edFzDcMtnh5Fk= Subject key identifier: A7:9A:76:DE:86:F2:51:83:A5:B0:41:C6:F8:64:42:ED:15:14:7E:50 Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Certificate serial: 572524BAC2065B72FE59809F26DF8DD6B33B11BD Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS214781.roa Signing time: Sat 06 Dec 2025 14:13:57 +0000 ROA not before: Sat 06 Dec 2025 14:08:57 +0000 ROA not after: Sat 05 Dec 2026 14:13:57 +0000 asID: 214781 IP address blocks: 82.40.20.0/24 maxlen: 24 2a13:9500:111::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:25:24:ba:c2:06:5b:72:fe:59:80:9f:26:df:8d:d6:b3:3b:11:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Validity Not Before: Dec 6 14:08:57 2025 GMT Not After : Dec 5 14:13:57 2026 GMT Subject: CN=A79A76DE86F25183A5B041C6F86442ED15147E50 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:60:cc:4e:36:df:75:b4:16:58:54:a6:fe:41: 6b:fe:ca:56:d7:89:88:02:e0:04:bd:cb:6d:e1:57: 1f:8b:89:e2:02:50:cf:87:8b:3d:4c:3b:42:86:57: e5:bb:96:66:62:ad:d5:7a:07:1b:9e:88:9c:8f:76: 53:1a:ab:7a:24:95:1f:8b:83:2b:78:25:2f:53:68: 75:92:6b:57:ef:d0:dc:fc:ab:20:29:74:9e:31:c7: d5:27:32:e3:0d:bd:cd:72:32:32:8d:7d:93:e6:d5: a5:00:c2:52:3b:93:d5:f5:a1:20:cc:cd:fe:51:32: c3:88:5a:f2:8f:13:28:c6:fc:2d:e6:97:06:b4:b0: 17:80:67:e5:98:2f:65:4e:94:36:a7:8f:dd:2c:69: ed:1b:07:a7:da:80:bf:7c:f1:fa:86:18:3a:a0:b6: 0c:cc:6a:4a:61:08:fa:19:23:f0:a4:e1:2b:c1:35: c0:7e:f0:cf:37:e6:ee:b0:4e:78:4f:aa:83:70:38: 0a:58:06:8f:71:4a:86:10:78:1b:3d:64:d8:97:0c: d1:c6:51:e1:d8:22:03:0e:d4:19:e8:d0:b0:36:2b: 54:99:62:8a:41:65:c8:1d:18:53:ec:d4:e9:46:56: 6d:03:29:7b:4f:41:f0:23:fb:f5:42:f2:2e:00:e4: 74:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:9A:76:DE:86:F2:51:83:A5:B0:41:C6:F8:64:42:ED:15:14:7E:50 X509v3 Authority Key Identifier: keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS214781.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 82.40.20.0/24 IPv6: 2a13:9500:111::/48 Signature Algorithm: sha256WithRSAEncryption 63:2e:40:14:a4:b4:ec:74:42:bb:30:9a:ca:3a:b8:43:a3:83: 6f:93:45:ce:7d:bc:11:d8:13:c2:94:bb:b8:2a:01:4f:c2:ef: f3:2a:8f:64:63:30:9a:76:f9:37:a3:cc:36:6e:ff:54:3d:ed: 8f:8e:23:1a:31:c8:92:66:16:3c:cd:d9:94:17:80:b4:2f:b3: 3a:28:7a:3d:bc:d3:5d:ec:4f:f0:da:f9:98:fe:7b:f5:c5:7b: 12:2b:5f:3a:64:0b:db:2b:35:73:2f:06:5a:c3:83:20:68:35: 9a:06:4a:fa:11:89:8d:2a:f2:a9:8c:eb:0d:db:7d:fe:c6:6b: ae:d7:d7:f6:74:f9:7c:19:42:26:68:c5:ec:0c:6f:ca:ac:b9: f8:b2:79:3d:7e:87:20:70:9d:ee:46:6d:71:a6:55:87:29:24: d2:19:5b:a8:b6:15:ef:cc:e7:41:5e:6e:ab:c8:86:e4:5c:06: 56:34:20:7a:66:e1:e7:68:42:dd:78:bf:1a:45:96:2e:82:a0: cd:77:88:0b:c9:6f:f2:5a:61:1c:ce:89:4f:64:aa:f2:7b:3f: 98:c0:9e:ad:b9:e3:59:41:97:7a:3f:d9:8e:0c:f0:e8:2b:6c: cb:4b:96:85:f1:1c:e9:c3:38:fd:ba:4c:4e:8c:d9:32:6e:a7: 27:14:41:1c -----BEGIN CERTIFICATE----- MIIFETCCA/mgAwIBAgIUVyUkusIGW3L+WYCfJt+N1rM7Eb0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjE4Y2M2ZTI0MTA1ZGU2YzVjOTAwM2Q2NTI0Mzg5M2Ni M2NmZGQwMTAeFw0yNTEyMDYxNDA4NTdaFw0yNjEyMDUxNDEzNTdaMDMxMTAvBgNV BAMTKEE3OUE3NkRFODZGMjUxODNBNUIwNDFDNkY4NjQ0MkVEMTUxNDdFNTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7YMxONt91tBZYVKb+QWv+ylbX iYgC4AS9y23hVx+LieICUM+Hiz1MO0KGV+W7lmZirdV6BxueiJyPdlMaq3oklR+L gyt4JS9TaHWSa1fv0Nz8qyApdJ4xx9UnMuMNvc1yMjKNfZPm1aUAwlI7k9X1oSDM zf5RMsOIWvKPEyjG/C3mlwa0sBeAZ+WYL2VOlDanj90sae0bB6fagL988fqGGDqg tgzMakphCPoZI/Ck4SvBNcB+8M835u6wTnhPqoNwOApYBo9xSoYQeBs9ZNiXDNHG UeHYIgMO1Bno0LA2K1SZYopBZcgdGFPs1OlGVm0DKXtPQfAj+/VC8i4A5HSFAgMB AAGjggIbMIICFzAdBgNVHQ4EFgQUp5p23obyUYOlsEHG+GRC7RUUflAwHwYDVR0j BBgwFoAUIYzG4kEF3mxckAPWUkOJPLPP3QEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYtYjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWEx YWY2LzAvMjE4Q0M2RTI0MTA1REU2QzVDOTAwM0Q2NTI0Mzg5M0NCM0NGREQwMS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0lZekc0a0VGM214Y2tBUFdVa09KUExQ UDNRRS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzcxOGExYjRmLWI2NGMt NDAyYy1iZTE1LWRkODJhNDFhMWFmNi8wL0FTMjE0NzgxLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAUigU MA8EAgACMAkDBwAqE5UAAREwDQYJKoZIhvcNAQELBQADggEBAGMuQBSktOx0Qrsw mso6uEOjg2+TRc59vBHYE8KUu7gqAU/C7/Mqj2RjMJp2+TejzDZu/1Q97Y+OIxox yJJmFjzN2ZQXgLQvszooej28013sT/Da+Zj+e/XFexIrXzpkC9srNXMvBlrDgyBo NZoGSvoRiY0q8qmM6w3bff7Ga67X1/Z0+XwZQiZoxewMb8qsufiyeT1+hyBwne5G bXGmVYcpJNIZW6i2Fe/M50FebqvIhuRcBlY0IHpm4edoQt14vxpFli6CoM13iAvJ b/JaYRzOiU9kqvJ7P5jAnq2541lBl3o/2Y4M8OgrbMtLloXxHOnDOP26TE6M2TJu pycUQRw= -----END CERTIFICATE-----Generated at Sat Dec 6 21:47:07 2025 by rpki-client