This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/AS215666.roa File: AS215666.roa (raw, json) Hash identifier: 58sV0MwauwAACZ3JmvwAV3PMxFmEKqb2u7hFmBcoWrE= Subject key identifier: 8D:0F:CF:84:33:51:77:60:72:4F:24:F2:98:32:26:B3:0D:BD:1B:EF Certificate issuer: /CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772 Certificate serial: 1BE43308AC7B4A8FBC31031ADB978CA9320CD7D9 Authority key identifier: A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/AS215666.roa Signing time: Sun 30 Nov 2025 20:01:38 +0000 ROA not before: Sun 30 Nov 2025 19:56:38 +0000 ROA not after: Sun 29 Nov 2026 20:01:38 +0000 asID: 215666 IP address blocks: 2a14:7581:9e00::/40 maxlen: 40 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 20:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:e4:33:08:ac:7b:4a:8f:bc:31:03:1a:db:97:8c:a9:32:0c:d7:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772 Validity Not Before: Nov 30 19:56:38 2025 GMT Not After : Nov 29 20:01:38 2026 GMT Subject: CN=8D0FCF8433517760724F24F2983226B30DBD1BEF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:56:94:01:2d:3e:33:b8:73:b2:a5:0d:0c:28: b8:da:09:56:ef:36:36:42:46:5c:02:09:1c:23:c1: 75:bd:a4:23:24:dd:bc:47:72:d1:30:0a:d9:51:7c: 65:0a:d8:3a:cb:c0:0f:40:72:4a:31:73:49:01:cf: 69:8b:f2:9c:0e:de:f8:92:75:47:26:f2:bd:6c:57: 0f:5d:1d:24:2f:3c:cd:cd:a0:47:3e:e2:8e:f1:59: 5e:6f:ef:c1:22:17:83:47:e2:ef:27:13:be:3d:79: e8:fe:bb:67:d6:31:8d:33:99:48:20:38:33:61:81: f6:b4:b3:3b:44:f0:b9:16:33:d5:af:26:fa:a6:c3: 73:e7:52:45:4e:03:6d:6e:a2:bc:76:21:b4:87:dc: a7:16:22:b4:b3:c5:e8:42:80:1e:03:7e:94:7e:eb: ac:00:08:e0:05:0b:d2:33:0c:20:54:57:2d:9e:93: d1:38:88:df:0f:7b:e5:ae:8c:ca:be:8c:6a:06:9c: bf:26:7a:23:fd:0e:8d:c4:2a:e3:57:6b:17:79:c7: 01:bd:a7:94:fb:48:4a:fb:6b:23:8b:1c:15:31:09: 88:98:01:ac:26:a9:97:86:12:83:df:01:40:26:89: 73:78:74:07:ad:a0:b2:77:38:d8:f1:b1:33:b1:9e: b1:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:0F:CF:84:33:51:77:60:72:4F:24:F2:98:32:26:B3:0D:BD:1B:EF X509v3 Authority Key Identifier: keyid:A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/AS215666.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:9e00::/40 Signature Algorithm: sha256WithRSAEncryption 46:44:64:78:3e:1c:6c:7f:28:22:3c:4c:a6:14:e0:b2:02:0c: a0:9a:ba:11:99:2b:1b:50:16:8b:69:d7:da:91:be:93:c3:1f: f4:3e:1b:d4:d7:16:d6:1d:29:79:c5:e6:fd:db:f3:69:e3:f5: 92:57:05:f2:55:06:92:e9:a7:b1:cc:0d:7e:81:5f:65:fd:76: 1e:41:a2:ff:eb:f8:88:1b:67:9d:ff:39:62:49:74:9a:05:25: 45:9d:23:e4:6b:58:b4:d7:3b:da:08:fe:fc:77:ab:a3:d6:e7: 04:ba:0f:f0:8a:ed:54:07:84:9b:0b:27:bf:c5:79:6c:e3:f9: 44:87:5b:8d:95:a4:c1:09:c8:ff:87:5c:d5:ab:6d:3f:8e:4f: 63:ca:13:35:e7:a4:fd:8e:89:25:c7:1f:cd:2f:fb:4a:e3:e8: ac:0e:f4:39:f7:83:ab:52:ad:c8:ff:48:3a:78:4e:c4:64:d3: 8b:6c:d5:06:74:05:22:31:13:d3:82:b2:30:d2:0f:5a:ae:5e: 49:05:0b:cd:22:b6:8d:f9:3d:b0:25:53:2a:af:01:bb:6a:56: 12:74:6a:03:9a:b1:f5:f3:4d:87:a8:22:77:ae:b6:b5:50:b2: 40:4a:32:44:d5:55:27:f1:b9:e4:22:9f:d6:e3:61:07:d0:bd: ac:4f:ab:18 -----BEGIN CERTIFICATE----- MIIFAjCCA+qgAwIBAgIUG+QzCKx7So+8MQMa25eMqTIM19kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYTgzZDQ4NjUyZjNiMmRmNzRmNmJmOWJhYThhOWMxNzRj Y2ZkMzc3MjAeFw0yNTExMzAxOTU2MzhaFw0yNjExMjkyMDAxMzhaMDMxMTAvBgNV BAMTKDhEMEZDRjg0MzM1MTc3NjA3MjRGMjRGMjk4MzIyNkIzMERCRDFCRUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIVpQBLT4zuHOypQ0MKLjaCVbv NjZCRlwCCRwjwXW9pCMk3bxHctEwCtlRfGUK2DrLwA9Ackoxc0kBz2mL8pwO3viS dUcm8r1sVw9dHSQvPM3NoEc+4o7xWV5v78EiF4NH4u8nE749eej+u2fWMY0zmUgg ODNhgfa0sztE8LkWM9WvJvqmw3PnUkVOA21uorx2IbSH3KcWIrSzxehCgB4DfpR+ 66wACOAFC9IzDCBUVy2ek9E4iN8Pe+WujMq+jGoGnL8meiP9Do3EKuNXaxd5xwG9 p5T7SEr7ayOLHBUxCYiYAawmqZeGEoPfAUAmiXN4dAetoLJ3ONjxsTOxnrGvAgMB AAGjggIMMIICCDAdBgNVHQ4EFgQUjQ/PhDNRd2ByTyTymDImsw29G+8wHwYDVR0j BBgwFoAUqD1IZS87LfdPa/m6qKnBdMz9N3IwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvODkyNzBmNmMtYTNmZS00Mjk5LWIwNzktMzA5ZWQ5N2Yz ODI0LzAvQTgzRDQ4NjUyRjNCMkRGNzRGNkJGOUJBQThBOUMxNzRDQ0ZEMzc3Mi5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3FEMUlaUzg3TGZkUGFfbTZxS25CZE16 OU4zSS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5Lzg5MjcwZjZjLWEzZmUt NDI5OS1iMDc5LTMwOWVkOTdmMzgyNC8wL0FTMjE1NjY2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYAKhR1 gZ4wDQYJKoZIhvcNAQELBQADggEBAEZEZHg+HGx/KCI8TKYU4LICDKCauhGZKxtQ Fotp19qRvpPDH/Q+G9TXFtYdKXnF5v3b82nj9ZJXBfJVBpLpp7HMDX6BX2X9dh5B ov/r+IgbZ53/OWJJdJoFJUWdI+RrWLTXO9oI/vx3q6PW5wS6D/CK7VQHhJsLJ7/F eWzj+USHW42VpMEJyP+HXNWrbT+OT2PKEzXnpP2OiSXHH80v+0rj6KwO9Dn3g6tS rcj/SDp4TsRk04ts1QZ0BSIxE9OCsjDSD1quXkkFC80ito35PbAlUyqvAbtqVhJ0 agOasfXzTYeoIneutrVQskBKMkTVVSfxueQin9bjYQfQvaxPqxg= -----END CERTIFICATE-----Generated at Sat Dec 6 05:37:25 2025 by rpki-client