This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/AS214344.roa File: AS214344.roa (raw, json) Hash identifier: 4EQyFyLsVGqNrCsgcNuLfdpJw1CzRMb0B+Tv/MeyCwo= Subject key identifier: D5:1C:90:2C:99:01:FB:05:47:82:58:5A:FF:71:D0:A4:58:66:AA:64 Certificate issuer: /CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772 Certificate serial: 6C7F98F1372A9B10BE97F57FD2401F40DC9DE6BC Authority key identifier: A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/AS214344.roa Signing time: Sat 29 Nov 2025 15:03:43 +0000 ROA not before: Sat 29 Nov 2025 14:58:43 +0000 ROA not after: Sat 28 Nov 2026 15:03:43 +0000 asID: 214344 IP address blocks: 2a14:7581:9900::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 23:45:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:7f:98:f1:37:2a:9b:10:be:97:f5:7f:d2:40:1f:40:dc:9d:e6:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772 Validity Not Before: Nov 29 14:58:43 2025 GMT Not After : Nov 28 15:03:43 2026 GMT Subject: CN=D51C902C9901FB054782585AFF71D0A45866AA64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:7b:27:7f:00:ce:36:e3:43:67:27:cb:59:ce: a8:a3:22:30:95:81:c3:0a:7e:fc:63:cf:92:84:9a: e1:7e:05:90:2f:78:79:ac:a0:7c:25:bc:20:2c:86: 9a:b2:84:37:81:c5:f9:01:0b:3a:b4:3f:8b:6a:b7: 06:d9:84:30:0e:4b:95:13:ee:b4:a4:ef:14:78:ac: d4:0f:05:67:7d:da:ea:61:ea:f6:df:06:0c:b3:9b: 16:02:3f:9c:ab:ef:d1:1d:f1:71:75:bf:e8:87:d4: f5:8d:13:9e:cc:15:56:19:a2:bb:ad:b7:ed:2b:67: f3:9d:f3:6f:85:5f:aa:9f:79:97:4d:41:bc:24:75: fd:8f:5d:85:df:48:96:0d:9e:f0:98:94:aa:2f:3e: 93:f2:7e:95:9e:00:c9:fc:ca:fc:18:76:d6:d7:1b: dd:70:60:cb:b1:81:1c:7e:98:2d:a0:5b:0a:e7:74: e3:ba:4b:3a:00:0a:18:9c:84:c7:46:5e:51:16:0a: ec:d1:2e:9b:79:bd:f7:d7:1c:ed:45:ad:57:75:86: df:21:8d:75:36:65:aa:09:3e:a0:51:20:ab:d5:10: 56:d8:5a:99:39:2d:b6:03:bf:cd:5d:b2:9b:66:90: 63:4f:40:75:a5:f3:f1:4e:0f:b5:e9:24:19:df:9d: 44:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:1C:90:2C:99:01:FB:05:47:82:58:5A:FF:71:D0:A4:58:66:AA:64 X509v3 Authority Key Identifier: keyid:A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/AS214344.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:9900::/40 Signature Algorithm: sha256WithRSAEncryption 70:b0:38:b2:8e:20:be:38:cd:6f:13:83:30:9c:6e:99:6e:55: 55:f4:70:c5:d4:05:89:55:43:c1:20:e1:ee:5d:24:20:df:16: 63:87:81:59:af:92:bf:7e:b3:28:c2:4d:41:36:b6:d3:6a:83: fa:e5:27:c8:9d:87:05:e9:57:0b:e3:cd:bf:ae:4a:77:80:54: b8:3f:ad:29:3d:9a:51:53:47:b7:ee:16:f3:44:3a:eb:e5:43: b9:9b:64:2d:0f:57:3b:f7:c0:bc:e1:71:5d:89:e3:2c:66:11: fa:08:3a:89:68:1d:9f:20:6b:36:19:15:2c:ab:6f:65:3e:73: d3:32:93:5f:01:39:17:c8:82:61:4e:27:fb:38:00:16:d5:ba: 98:2c:97:9c:1d:33:a3:af:23:d2:26:91:cc:f1:3a:5d:b5:cb: 77:ca:0a:eb:16:90:e6:f1:7d:05:46:b6:47:31:cb:db:9b:e2: 01:be:b3:2b:7a:b4:cb:9c:6e:d4:9f:47:47:91:b7:21:22:79: dc:bf:07:b3:3e:b3:1e:16:41:e4:d3:ff:13:4a:ff:00:37:b6: a4:5e:fb:49:f3:28:33:a6:11:22:92:21:73:33:b9:d7:b8:f1: 21:f6:a8:e5:d2:e0:82:c0:02:fb:6d:d0:34:60:c6:03:e6:55: 8b:65:e6:2a -----BEGIN CERTIFICATE----- MIIFAjCCA+qgAwIBAgIUbH+Y8TcqmxC+l/V/0kAfQNyd5rwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYTgzZDQ4NjUyZjNiMmRmNzRmNmJmOWJhYThhOWMxNzRj Y2ZkMzc3MjAeFw0yNTExMjkxNDU4NDNaFw0yNjExMjgxNTAzNDNaMDMxMTAvBgNV BAMTKEQ1MUM5MDJDOTkwMUZCMDU0NzgyNTg1QUZGNzFEMEE0NTg2NkFBNjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4eyd/AM4240NnJ8tZzqijIjCV gcMKfvxjz5KEmuF+BZAveHmsoHwlvCAshpqyhDeBxfkBCzq0P4tqtwbZhDAOS5UT 7rSk7xR4rNQPBWd92uph6vbfBgyzmxYCP5yr79Ed8XF1v+iH1PWNE57MFVYZorut t+0rZ/Od82+FX6qfeZdNQbwkdf2PXYXfSJYNnvCYlKovPpPyfpWeAMn8yvwYdtbX G91wYMuxgRx+mC2gWwrndOO6SzoAChichMdGXlEWCuzRLpt5vffXHO1FrVd1ht8h jXU2ZaoJPqBRIKvVEFbYWpk5LbYDv81dsptmkGNPQHWl8/FOD7XpJBnfnUSfAgMB AAGjggIMMIICCDAdBgNVHQ4EFgQU1RyQLJkB+wVHglha/3HQpFhmqmQwHwYDVR0j BBgwFoAUqD1IZS87LfdPa/m6qKnBdMz9N3IwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvODkyNzBmNmMtYTNmZS00Mjk5LWIwNzktMzA5ZWQ5N2Yz ODI0LzAvQTgzRDQ4NjUyRjNCMkRGNzRGNkJGOUJBQThBOUMxNzRDQ0ZEMzc3Mi5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3FEMUlaUzg3TGZkUGFfbTZxS25CZE16 OU4zSS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5Lzg5MjcwZjZjLWEzZmUt NDI5OS1iMDc5LTMwOWVkOTdmMzgyNC8wL0FTMjE0MzQ0LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYAKhR1 gZkwDQYJKoZIhvcNAQELBQADggEBAHCwOLKOIL44zW8TgzCcbpluVVX0cMXUBYlV Q8Eg4e5dJCDfFmOHgVmvkr9+syjCTUE2ttNqg/rlJ8idhwXpVwvjzb+uSneAVLg/ rSk9mlFTR7fuFvNEOuvlQ7mbZC0PVzv3wLzhcV2J4yxmEfoIOoloHZ8gazYZFSyr b2U+c9Myk18BORfIgmFOJ/s4ABbVupgsl5wdM6OvI9ImkczxOl21y3fKCusWkObx fQVGtkcxy9ub4gG+syt6tMucbtSfR0eRtyEiedy/B7M+sx4WQeTT/xNK/wA3tqRe +0nzKDOmESKSIXMzude48SH2qOXS4ILAAvtt0DRgxgPmVYtl5io= -----END CERTIFICATE-----Generated at Sat Dec 6 09:52:33 2025 by rpki-client