This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS14618.roa File: AS14618.roa (raw, json) Hash identifier: ZFA+9Yuryyu0oup8d+bB4uhqz+9SYLgs7TLv0UexMPE= Subject key identifier: 1E:31:59:0C:AB:83:08:31:B9:1A:31:A2:1E:67:0F:DA:02:8F:B1:7D Certificate issuer: /CN=03b1ba3fdb91d8d9ea76c5776320eb7eb2d6ed9d Certificate serial: 4CFCF822AADEEC11D6C33D4A48B882493486896C Authority key identifier: 03:B1:BA:3F:DB:91:D8:D9:EA:76:C5:77:63:20:EB:7E:B2:D6:ED:9D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A7G6P9uR2NnqdsV3YyDrfrLW7Z0.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS14618.roa Signing time: Mon 01 Dec 2025 13:43:13 +0000 ROA not before: Mon 01 Dec 2025 13:38:13 +0000 ROA not after: Mon 30 Nov 2026 13:43:13 +0000 asID: 14618 IP address blocks: 45.149.101.0/24 maxlen: 24 45.155.17.0/24 maxlen: 24 193.164.10.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/03B1BA3FDB91D8D9EA76C5776320EB7EB2D6ED9D.crl rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/03B1BA3FDB91D8D9EA76C5776320EB7EB2D6ED9D.mft rsync://rpki.ripe.net/repository/DEFAULT/A7G6P9uR2NnqdsV3YyDrfrLW7Z0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:fc:f8:22:aa:de:ec:11:d6:c3:3d:4a:48:b8:82:49:34:86:89:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=03b1ba3fdb91d8d9ea76c5776320eb7eb2d6ed9d Validity Not Before: Dec 1 13:38:13 2025 GMT Not After : Nov 30 13:43:13 2026 GMT Subject: CN=1E31590CAB830831B91A31A21E670FDA028FB17D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:75:65:8e:e3:d9:d9:0e:1a:b8:f0:f4:1c:8b: dc:7e:b5:11:b0:91:cf:d2:a4:6d:1d:6c:40:fd:1e: 4e:43:73:b0:bf:91:76:6f:84:b2:ea:f6:e5:8e:a9: cf:28:79:2a:f5:52:36:4c:02:9c:dc:06:75:67:6b: 43:d2:41:d4:8f:bc:a3:5c:a7:77:a8:e3:d6:06:26: fd:51:84:85:3f:18:65:b6:1a:61:77:55:ad:e3:e0: 7e:67:5c:ea:00:c3:c8:bb:01:c0:67:7e:b7:05:3e: 10:8a:49:94:bc:11:6b:8b:6b:9b:0d:de:9e:4c:f1: 70:db:db:39:e1:64:ab:5b:2c:7d:71:d8:26:a6:41: e9:54:ba:fe:d0:5d:7f:8a:09:dc:44:17:bb:0b:2f: ab:ea:fd:9a:bd:b3:79:a7:38:64:f1:85:c9:b4:a3: 36:03:1e:2e:a7:84:68:c1:90:f7:af:14:c6:c6:78: 58:8a:ba:5d:fe:fc:12:ae:07:f8:1b:ce:70:d0:b5: 58:60:fe:d2:ee:d2:c1:9f:0a:cb:03:7b:90:0c:db: 42:20:ca:78:5f:45:5e:17:e3:12:23:cd:09:c2:6e: dc:44:de:02:60:43:23:26:ef:5d:17:c8:da:60:62: eb:bd:48:b0:75:29:9f:d1:49:5b:35:9b:89:ca:c1: 22:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:31:59:0C:AB:83:08:31:B9:1A:31:A2:1E:67:0F:DA:02:8F:B1:7D X509v3 Authority Key Identifier: keyid:03:B1:BA:3F:DB:91:D8:D9:EA:76:C5:77:63:20:EB:7E:B2:D6:ED:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/03B1BA3FDB91D8D9EA76C5776320EB7EB2D6ED9D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A7G6P9uR2NnqdsV3YyDrfrLW7Z0.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS14618.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.149.101.0/24 45.155.17.0/24 193.164.10.0/24 Signature Algorithm: sha256WithRSAEncryption cb:89:7c:02:2e:93:28:9d:32:0e:bc:bb:76:b5:d4:64:f2:53: 01:99:1a:35:ce:47:bb:ee:77:46:ce:5e:21:29:86:69:14:85: 2e:29:59:70:bc:4a:dd:dd:d9:29:fc:21:14:c1:90:d2:b5:0e: 35:33:d5:4b:30:93:dc:0d:50:f8:cb:ca:57:c3:0e:25:ba:6f: 6c:34:4e:92:a0:a0:7b:2f:84:c4:66:08:33:a9:66:62:33:ee: e5:13:1d:c6:de:22:5c:5f:d7:71:9e:df:ae:46:df:ab:7a:47: db:28:ad:45:47:18:79:f2:7e:0e:b0:7b:ad:4d:b2:26:97:b4: 81:b1:af:4f:25:04:9f:36:26:8c:0b:bd:fe:13:94:6d:8f:7a: 49:d4:36:b6:5b:50:5d:79:85:57:51:c3:40:b6:ea:7b:5d:61: e5:60:1c:4c:72:c0:75:77:06:8e:39:17:7c:09:2d:13:86:c0: f0:ac:6f:b2:07:aa:af:ee:13:64:b3:a5:0c:88:eb:ad:a4:9f: 31:f4:3e:fb:19:d3:a1:1f:e2:8d:64:78:a0:65:09:a7:5a:0a: c2:aa:66:93:a1:c1:ff:b0:1e:7b:2c:fb:ea:d9:4f:d0:0b:31: 99:b7:e9:1e:0a:0a:50:f2:4c:92:dd:fa:c1:8a:52:c1:a3:dd: 5d:fe:f1:4e -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgIUTPz4Iqre7BHWwz1KSLiCSTSGiWwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDNiMWJhM2ZkYjkxZDhkOWVhNzZjNTc3NjMyMGViN2Vi MmQ2ZWQ5ZDAeFw0yNTEyMDExMzM4MTNaFw0yNjExMzAxMzQzMTNaMDMxMTAvBgNV BAMTKDFFMzE1OTBDQUI4MzA4MzFCOTFBMzFBMjFFNjcwRkRBMDI4RkIxN0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5dWWO49nZDhq48PQci9x+tRGw kc/SpG0dbED9Hk5Dc7C/kXZvhLLq9uWOqc8oeSr1UjZMApzcBnVna0PSQdSPvKNc p3eo49YGJv1RhIU/GGW2GmF3Va3j4H5nXOoAw8i7AcBnfrcFPhCKSZS8EWuLa5sN 3p5M8XDb2znhZKtbLH1x2CamQelUuv7QXX+KCdxEF7sLL6vq/Zq9s3mnOGTxhcm0 ozYDHi6nhGjBkPevFMbGeFiKul3+/BKuB/gbznDQtVhg/tLu0sGfCssDe5AM20Ig ynhfRV4X4xIjzQnCbtxE3gJgQyMm710XyNpgYuu9SLB1KZ/RSVs1m4nKwSKXAgMB AAGjggIVMIICETAdBgNVHQ4EFgQUHjFZDKuDCDG5GjGiHmcP2gKPsX0wHwYDVR0j BBgwFoAUA7G6P9uR2NnqdsV3YyDrfrLW7Z0wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvN2ZmMGY1NTUtZGJhNy00MTkyLWEwMWQtZjY5MTZkNWJi ODRlLzAvMDNCMUJBM0ZEQjkxRDhEOUVBNzZDNTc3NjMyMEVCN0VCMkQ2RUQ5RC5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0E3RzZQOXVSMk5ucWRzVjNZeURyZnJM VzdaMC5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzdmZjBmNTU1LWRiYTct NDE5Mi1hMDFkLWY2OTE2ZDViYjg0ZS8wL0FTMTQ2MTgucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwKwYIKwYBBQUHAQcBAf8EHDAaMBgEAgABMBIDBAAtlWUD BAAtmxEDBADBpAowDQYJKoZIhvcNAQELBQADggEBAMuJfAIukyidMg68u3a11GTy UwGZGjXOR7vud0bOXiEphmkUhS4pWXC8St3d2Sn8IRTBkNK1DjUz1Uswk9wNUPjL ylfDDiW6b2w0TpKgoHsvhMRmCDOpZmIz7uUTHcbeIlxf13Ge365G36t6R9sorUVH GHnyfg6we61NsiaXtIGxr08lBJ82JowLvf4TlG2PeknUNrZbUF15hVdRw0C26ntd YeVgHExywHV3Bo45F3wJLROGwPCsb7IHqq/uE2SzpQyI662knzH0PvsZ06Ef4o1k eKBlCadaCsKqZpOhwf+wHnss++rZT9ALMZm36R4KClDyTJLd+sGKUsGj3V3+8U4= -----END CERTIFICATE-----Generated at Sat Dec 6 22:36:15 2025 by rpki-client