This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/AS213617.roa File: AS213617.roa (raw, json) Hash identifier: LYQKC4dxRF1WEat92TEeJMq3/q+4IbfcYcFlBWWkY+M= Subject key identifier: DF:6B:FF:4D:DD:19:A0:57:EB:49:73:BB:56:DB:CD:F0:46:AF:F5:9C Certificate issuer: /CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772 Certificate serial: 3D5005C1333191C97F51F89BDC93D2C1D0F0F83A Authority key identifier: A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/AS213617.roa Signing time: Sat 22 Nov 2025 16:57:19 +0000 ROA not before: Sat 22 Nov 2025 16:52:19 +0000 ROA not after: Sat 21 Nov 2026 16:57:19 +0000 asID: 213617 IP address blocks: 2a14:7581:9b00::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 23:45:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:50:05:c1:33:31:91:c9:7f:51:f8:9b:dc:93:d2:c1:d0:f0:f8:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772 Validity Not Before: Nov 22 16:52:19 2025 GMT Not After : Nov 21 16:57:19 2026 GMT Subject: CN=DF6BFF4DDD19A057EB4973BB56DBCDF046AFF59C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:23:a7:4d:c7:6e:34:91:2c:0a:e7:f7:96:4a: 79:a9:3b:6d:2d:a2:83:f6:b7:da:07:95:16:67:53: 38:19:d8:18:07:5b:51:ae:cd:08:1f:19:56:b1:7f: 90:a9:2d:80:5d:d8:ca:4d:4d:ca:e6:1b:3e:aa:89: da:07:55:26:af:9a:e0:98:54:ba:63:cc:37:02:82: 5d:c4:e7:a9:4c:79:72:8e:32:86:fc:96:38:7f:5f: 67:60:0e:e7:36:16:c5:04:1b:e5:99:db:f2:9e:1c: 44:37:dd:5c:93:5c:4e:a4:86:f2:55:91:f4:84:45: 71:51:4d:a8:43:a5:11:09:0a:83:50:d5:8e:26:1a: 7a:4f:fd:09:be:ba:86:8f:ff:7b:4e:b0:f4:71:8b: 6d:51:ae:10:61:25:b4:31:ca:84:b2:a0:b1:33:eb: 9f:8b:25:6f:a4:ef:bd:47:67:20:48:c2:37:4a:f1: 3c:e4:16:ad:7c:18:e5:33:b3:39:8c:34:1d:40:52: 11:d3:45:e1:c9:7f:53:74:ac:2c:34:5a:0a:79:74: ab:98:62:bb:0d:96:ea:e6:7d:ec:a2:83:e4:5f:99: 98:02:51:12:ac:26:b2:bd:32:d3:03:b9:b7:49:cf: bf:ea:53:83:83:a8:fb:91:67:4c:59:2c:12:f2:c2: 03:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:6B:FF:4D:DD:19:A0:57:EB:49:73:BB:56:DB:CD:F0:46:AF:F5:9C X509v3 Authority Key Identifier: keyid:A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/AS213617.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:9b00::/40 Signature Algorithm: sha256WithRSAEncryption 8d:f3:2e:e0:f9:4d:10:a4:80:fd:88:81:97:55:4a:ba:48:d9: ca:07:1b:76:08:78:5b:3d:33:b5:44:0a:0a:4e:8b:6a:f9:8f: b0:95:c3:de:6d:6c:39:57:c6:ee:89:61:6d:d6:0d:be:3a:8c: 6c:5b:6a:fa:c7:e4:02:e9:86:d3:1f:e0:2a:d6:e6:5f:9a:06: 23:49:d7:61:9a:c5:19:8d:4a:78:41:e8:1c:c1:22:4d:07:77: b4:1d:9f:35:90:a8:06:8f:cf:12:ce:73:ee:2d:f4:11:f6:16: 23:5f:5e:c9:3d:4c:c9:e5:ae:e0:a8:96:73:cb:33:ca:49:c3: cd:45:51:1e:f0:f4:2c:0e:6b:da:71:05:1d:b0:61:d5:31:e3: 05:c6:52:aa:c2:4d:83:ee:44:7a:02:2c:16:c5:74:1d:82:25: fd:c0:79:00:6c:b9:3b:35:6a:de:96:3d:ef:3e:7c:01:d9:25: f2:6a:24:c9:67:41:ab:7c:57:2a:e3:90:37:98:c5:95:af:45: 58:9d:35:2e:cd:f2:79:5c:be:32:3f:43:1f:26:2a:86:8c:67: 78:0a:0a:e7:19:0d:33:0b:3b:eb:62:56:f9:69:a8:27:5c:b6: d8:b2:94:a5:84:38:b2:20:b1:a9:79:6a:80:fd:60:9e:9a:26: 76:29:34:92 -----BEGIN CERTIFICATE----- MIIFAjCCA+qgAwIBAgIUPVAFwTMxkcl/Ufib3JPSwdDw+DowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYTgzZDQ4NjUyZjNiMmRmNzRmNmJmOWJhYThhOWMxNzRj Y2ZkMzc3MjAeFw0yNTExMjIxNjUyMTlaFw0yNjExMjExNjU3MTlaMDMxMTAvBgNV BAMTKERGNkJGRjREREQxOUEwNTdFQjQ5NzNCQjU2REJDREYwNDZBRkY1OUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/I6dNx240kSwK5/eWSnmpO20t ooP2t9oHlRZnUzgZ2BgHW1GuzQgfGVaxf5CpLYBd2MpNTcrmGz6qidoHVSavmuCY VLpjzDcCgl3E56lMeXKOMob8ljh/X2dgDuc2FsUEG+WZ2/KeHEQ33VyTXE6khvJV kfSERXFRTahDpREJCoNQ1Y4mGnpP/Qm+uoaP/3tOsPRxi21RrhBhJbQxyoSyoLEz 65+LJW+k771HZyBIwjdK8TzkFq18GOUzszmMNB1AUhHTReHJf1N0rCw0Wgp5dKuY YrsNlurmfeyig+RfmZgCURKsJrK9MtMDubdJz7/qU4ODqPuRZ0xZLBLywgOBAgMB AAGjggIMMIICCDAdBgNVHQ4EFgQU32v/Td0ZoFfrSXO7VtvN8Eav9ZwwHwYDVR0j BBgwFoAUqD1IZS87LfdPa/m6qKnBdMz9N3IwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvODkyNzBmNmMtYTNmZS00Mjk5LWIwNzktMzA5ZWQ5N2Yz ODI0LzAvQTgzRDQ4NjUyRjNCMkRGNzRGNkJGOUJBQThBOUMxNzRDQ0ZEMzc3Mi5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3FEMUlaUzg3TGZkUGFfbTZxS25CZE16 OU4zSS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5Lzg5MjcwZjZjLWEzZmUt NDI5OS1iMDc5LTMwOWVkOTdmMzgyNC8wL0FTMjEzNjE3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYAKhR1 gZswDQYJKoZIhvcNAQELBQADggEBAI3zLuD5TRCkgP2IgZdVSrpI2coHG3YIeFs9 M7VECgpOi2r5j7CVw95tbDlXxu6JYW3WDb46jGxbavrH5ALphtMf4CrW5l+aBiNJ 12GaxRmNSnhB6BzBIk0Hd7QdnzWQqAaPzxLOc+4t9BH2FiNfXsk9TMnlruColnPL M8pJw81FUR7w9CwOa9pxBR2wYdUx4wXGUqrCTYPuRHoCLBbFdB2CJf3AeQBsuTs1 at6WPe8+fAHZJfJqJMlnQat8VyrjkDeYxZWvRVidNS7N8nlcvjI/Qx8mKoaMZ3gK CucZDTMLO+tiVvlpqCdcttiylKWEOLIgsal5aoD9YJ6aJnYpNJI= -----END CERTIFICATE-----Generated at Sat Dec 6 09:47:07 2025 by rpki-client