This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c409d7b2-ee64-49f1-ad81-8e4a107d62e0/0/AS213734.roa File: AS213734.roa (raw, json) Hash identifier: gSg3h0S+e1ICI/EkPiZM6OOPtjgWRQhemzoaulS2JT4= Subject key identifier: CA:4A:72:3E:BC:BA:66:19:B8:0C:38:17:6B:A5:D3:75:19:2C:E1:E1 Certificate issuer: /CN=88c14ec02adbf083138eddd47871176ddeb93d9d Certificate serial: 487123171198F176E5C3A33FFA0F2F2EAE8C4AC9 Authority key identifier: 88:C1:4E:C0:2A:DB:F0:83:13:8E:DD:D4:78:71:17:6D:DE:B9:3D:9D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iMFOwCrb8IMTjt3UeHEXbd65PZ0.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c409d7b2-ee64-49f1-ad81-8e4a107d62e0/0/AS213734.roa Signing time: Thu 22 Jan 2026 06:14:19 +0000 ROA not before: Thu 22 Jan 2026 06:09:19 +0000 ROA not after: Thu 21 Jan 2027 06:14:19 +0000 asID: 213734 IP address blocks: 143.20.8.0/24 maxlen: 24 143.20.179.0/24 maxlen: 24 143.20.221.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c409d7b2-ee64-49f1-ad81-8e4a107d62e0/0/88C14EC02ADBF083138EDDD47871176DDEB93D9D.crl rsync://rsync.paas.rpki.ripe.net/repository/c409d7b2-ee64-49f1-ad81-8e4a107d62e0/0/88C14EC02ADBF083138EDDD47871176DDEB93D9D.mft rsync://rpki.ripe.net/repository/DEFAULT/iMFOwCrb8IMTjt3UeHEXbd65PZ0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:71:23:17:11:98:f1:76:e5:c3:a3:3f:fa:0f:2f:2e:ae:8c:4a:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=88c14ec02adbf083138eddd47871176ddeb93d9d Validity Not Before: Jan 22 06:09:19 2026 GMT Not After : Jan 21 06:14:19 2027 GMT Subject: CN=CA4A723EBCBA6619B80C38176BA5D375192CE1E1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:8a:d7:15:42:d3:2d:8e:25:7b:f9:e7:fe:2c: 7d:84:2f:60:03:12:7c:a2:17:36:85:dc:76:49:24: 66:44:27:c3:c5:aa:6b:b1:a1:0b:90:c7:5b:13:14: 7b:9f:eb:d0:c5:b4:47:87:8c:03:70:8c:f5:83:ac: 3a:e0:59:76:f4:92:98:a0:b2:c8:81:8f:3f:01:26: 84:56:f7:37:78:24:7f:f6:2a:ce:b1:6e:5f:bd:58: cf:57:7b:b7:ba:f8:4a:e6:dc:bb:54:c5:c7:98:9b: b2:a7:bb:36:60:0b:3b:20:e1:81:01:c7:92:7d:a4: c5:38:6b:97:dd:d4:04:ce:f3:37:5d:2d:67:47:d8: b0:1f:71:84:c8:07:32:f8:e2:09:6a:7f:b8:2b:72: 28:0e:a5:0f:d3:c6:3a:a0:59:d2:75:20:6a:04:9f: 33:51:5a:2c:07:9c:5e:88:ca:f1:ff:ce:38:0c:a7: 1c:f7:50:65:20:2b:60:4d:a0:f0:91:d1:19:90:af: 28:f2:aa:3a:52:5e:a4:fd:33:87:d2:6e:4b:14:4c: 60:4f:16:7c:19:d3:21:f0:23:63:d8:4c:a9:01:f9: 86:d0:ac:83:0f:61:cf:5b:e8:b9:d1:50:85:cc:d1: da:ab:40:e9:27:0a:ad:f0:19:24:85:1d:eb:4e:e2: 87:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:4A:72:3E:BC:BA:66:19:B8:0C:38:17:6B:A5:D3:75:19:2C:E1:E1 X509v3 Authority Key Identifier: keyid:88:C1:4E:C0:2A:DB:F0:83:13:8E:DD:D4:78:71:17:6D:DE:B9:3D:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/c409d7b2-ee64-49f1-ad81-8e4a107d62e0/0/88C14EC02ADBF083138EDDD47871176DDEB93D9D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iMFOwCrb8IMTjt3UeHEXbd65PZ0.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c409d7b2-ee64-49f1-ad81-8e4a107d62e0/0/AS213734.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 143.20.8.0/24 143.20.179.0/24 143.20.221.0/24 Signature Algorithm: sha256WithRSAEncryption 66:6c:3e:03:22:c3:c5:32:d9:c8:4a:96:f5:63:7f:4b:b8:59: f0:de:d9:ca:24:58:9f:34:b7:e1:e4:f0:6f:e3:39:48:d5:bc: 0a:49:b3:22:b0:f7:ad:51:05:56:31:08:af:39:d7:88:58:cd: c8:d6:c7:21:d7:11:b3:a7:e8:61:1d:64:83:13:e3:df:1f:6e: a8:19:05:0b:e6:ce:b6:f8:46:8b:df:9e:b8:2f:d2:e3:e9:96: d3:3c:64:86:3a:01:87:03:cf:0d:2e:19:70:ae:f0:85:a7:81: 77:3a:25:8f:86:28:e6:b3:45:5a:61:72:d9:19:9f:9f:9e:7c: 05:5c:d3:ca:a1:45:aa:28:43:76:85:fe:f7:bf:69:fd:2c:ec: 68:65:99:b1:a7:fc:f5:fb:38:18:42:02:3e:cb:18:0e:3c:6a: eb:8a:95:69:59:c3:9e:1a:6a:12:e4:3b:c1:be:74:e6:43:36: a4:f0:80:8e:58:b6:5b:a7:40:4c:a6:d5:9b:07:ec:86:5c:20: ec:f7:36:12:f8:ac:3d:be:ee:63:b6:39:cc:46:e8:72:66:7d: aa:36:cb:5d:4b:12:c5:5e:92:4f:c1:51:69:32:1b:9c:1a:99: 95:e3:f2:a0:a2:b1:02:07:23:f8:b3:7b:aa:0e:40:62:ce:0a: af:a8:cf:b8 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgIUSHEjFxGY8Xblw6M/+g8vLq6MSskwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODhjMTRlYzAyYWRiZjA4MzEzOGVkZGQ0Nzg3MTE3NmRk ZWI5M2Q5ZDAeFw0yNjAxMjIwNjA5MTlaFw0yNzAxMjEwNjE0MTlaMDMxMTAvBgNV BAMTKENBNEE3MjNFQkNCQTY2MTlCODBDMzgxNzZCQTVEMzc1MTkyQ0UxRTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNitcVQtMtjiV7+ef+LH2EL2AD EnyiFzaF3HZJJGZEJ8PFqmuxoQuQx1sTFHuf69DFtEeHjANwjPWDrDrgWXb0kpig ssiBjz8BJoRW9zd4JH/2Ks6xbl+9WM9Xe7e6+Erm3LtUxceYm7KnuzZgCzsg4YEB x5J9pMU4a5fd1ATO8zddLWdH2LAfcYTIBzL44glqf7grcigOpQ/TxjqgWdJ1IGoE nzNRWiwHnF6IyvH/zjgMpxz3UGUgK2BNoPCR0RmQryjyqjpSXqT9M4fSbksUTGBP FnwZ0yHwI2PYTKkB+YbQrIMPYc9b6LnRUIXM0dqrQOknCq3wGSSFHetO4oczAgMB AAGjggIWMIICEjAdBgNVHQ4EFgQUykpyPry6Zhm4DDgXa6XTdRks4eEwHwYDVR0j BBgwFoAUiMFOwCrb8IMTjt3UeHEXbd65PZ0wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYzQwOWQ3YjItZWU2NC00OWYxLWFkODEtOGU0YTEwN2Q2 MmUwLzAvODhDMTRFQzAyQURCRjA4MzEzOEVEREQ0Nzg3MTE3NkRERUI5M0Q5RC5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2lNRk93Q3JiOElNVGp0M1VlSEVYYmQ2 NVBaMC5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2M0MDlkN2IyLWVlNjQt NDlmMS1hZDgxLThlNGExMDdkNjJlMC8wL0FTMjEzNzM0LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQAjxQI AwQAjxSzAwQAjxTdMA0GCSqGSIb3DQEBCwUAA4IBAQBmbD4DIsPFMtnISpb1Y39L uFnw3tnKJFifNLfh5PBv4zlI1bwKSbMisPetUQVWMQivOdeIWM3I1sch1xGzp+hh HWSDE+PfH26oGQUL5s62+EaL3564L9Lj6ZbTPGSGOgGHA88NLhlwrvCFp4F3OiWP hijms0VaYXLZGZ+fnnwFXNPKoUWqKEN2hf73v2n9LOxoZZmxp/z1+zgYQgI+yxgO PGrripVpWcOeGmoS5DvBvnTmQzak8ICOWLZbp0BMptWbB+yGXCDs9zYS+Kw9vu5j tjnMRuhyZn2qNstdSxLFXpJPwVFpMhucGpmV4/KgorECByP4s3uqDkBizgqvqM+4 -----END CERTIFICATE-----Generated at Sun Jan 25 08:52:24 2026 by rpki-client