This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS214025.roa File: AS214025.roa (raw, json) Hash identifier: 7D8FopCzscQch94yGoTFbpPlJ2y/70fBkGlHSPu9wE0= Subject key identifier: 01:CA:93:83:00:C1:27:85:1B:1B:E4:DF:09:E3:F9:B9:4D:C3:7A:D5 Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f Certificate serial: 40875210BEBB44C310373A61EEC4D0847E506F34 Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS214025.roa Signing time: Wed 03 Dec 2025 10:55:45 +0000 ROA not before: Wed 03 Dec 2025 10:50:45 +0000 ROA not after: Wed 02 Dec 2026 10:55:45 +0000 asID: 214025 IP address blocks: 46.203.61.0/24 maxlen: 24 46.203.98.0/24 maxlen: 24 46.203.203.0/24 maxlen: 24 92.113.106.0/23 maxlen: 24 92.113.112.0/23 maxlen: 24 92.113.124.0/23 maxlen: 24 92.113.136.0/23 maxlen: 24 92.113.142.0/23 maxlen: 24 92.113.211.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 06:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:87:52:10:be:bb:44:c3:10:37:3a:61:ee:c4:d0:84:7e:50:6f:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f Validity Not Before: Dec 3 10:50:45 2025 GMT Not After : Dec 2 10:55:45 2026 GMT Subject: CN=01CA938300C127851B1BE4DF09E3F9B94DC37AD5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:4a:c3:3f:cc:0f:78:79:e6:4c:2e:23:49:6f: 06:a7:e0:aa:1e:a8:bd:7d:26:1d:dc:65:da:6b:85: 8a:24:6c:5d:ec:f7:05:91:ce:6d:59:d0:85:65:d4: 1e:7b:6e:68:98:ea:5b:4e:49:db:dd:3b:0c:51:88: fb:5f:28:78:d3:2d:38:10:fb:af:9e:76:ea:6d:4f: 14:20:4d:87:99:c1:b6:9a:b5:62:fe:8a:b4:bf:af: fe:56:7f:a1:68:d7:f4:6e:9b:ec:d0:d2:f4:97:ac: 58:9c:f8:b8:85:92:26:51:1b:70:0e:c9:29:b2:db: 43:2c:95:9f:33:c2:62:d8:21:58:ae:20:c2:06:91: a8:fd:d9:ea:e9:4b:45:18:77:51:6a:59:5e:ae:8b: c8:6f:c9:fe:21:c1:df:dc:c8:60:08:a7:22:31:6c: 82:96:15:99:e2:45:ce:ab:3c:e3:e5:36:51:35:ff: 53:25:7a:bd:26:e6:20:82:08:cd:56:b0:3c:e5:7c: 46:21:37:de:83:12:b7:b7:f6:28:56:58:b0:a8:5e: a1:82:39:24:95:be:73:bd:d0:d4:cd:4d:64:57:82: f2:5e:83:a8:01:e9:04:54:7e:5c:1e:1d:d3:44:74: 7b:08:3a:6f:18:2c:66:f9:b6:41:46:43:46:6b:51: b5:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:CA:93:83:00:C1:27:85:1B:1B:E4:DF:09:E3:F9:B9:4D:C3:7A:D5 X509v3 Authority Key Identifier: keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS214025.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 46.203.61.0/24 46.203.98.0/24 46.203.203.0/24 92.113.106.0/23 92.113.112.0/23 92.113.124.0/23 92.113.136.0/23 92.113.142.0/23 92.113.211.0/24 Signature Algorithm: sha256WithRSAEncryption 6a:96:d7:90:4e:ef:03:cc:ae:f7:70:06:72:05:b0:dd:cf:f5: 1c:57:9a:89:3f:7a:f7:5f:eb:b4:d6:db:b4:74:ef:6d:90:5f: 6a:dd:36:bf:a5:af:eb:08:88:43:27:8d:aa:34:a0:60:bf:08: af:cd:2f:eb:46:8d:40:47:01:f8:e1:4e:40:34:17:9b:51:b5: f3:3e:60:6c:01:f6:57:5e:36:c5:3b:2f:9a:b4:d5:4c:cd:5c: d6:db:24:f8:07:b5:43:11:bf:c4:95:36:31:ae:43:1f:c2:5b: 46:85:11:80:a7:93:13:d8:50:b4:7c:1d:7b:83:51:5d:9d:38: 1e:09:3c:a2:eb:8a:66:bf:8f:9c:b3:0b:73:4f:44:5f:ad:7a: ca:0e:07:1a:1a:a6:aa:9b:b2:25:25:9b:f1:39:11:27:3f:eb: 9f:b9:6a:cf:92:d1:e7:1d:d7:8e:13:1d:dd:c1:cd:6c:6b:97: 22:5d:6f:97:76:0f:df:b2:46:6c:89:7f:42:bb:33:8d:b2:5e: b1:9f:15:e1:33:24:f0:46:c3:c1:67:dc:cc:5c:6e:9a:24:c2: b1:90:0a:22:1f:83:30:95:1b:7d:eb:f8:96:64:b0:17:96:12: 29:76:de:b2:2c:48:cd:98:9a:c7:95:bd:6a:ce:ec:2b:52:1f: 1b:e0:b4:41 -----BEGIN CERTIFICATE----- MIIFMDCCBBigAwIBAgIUQIdSEL67RMMQNzph7sTQhH5QbzQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOWJkODEzMzkxZTRhZjJhZTMxMDNjMTg5MWIyMjcyZDRk NWMxM2I1ZjAeFw0yNTEyMDMxMDUwNDVaFw0yNjEyMDIxMDU1NDVaMDMxMTAvBgNV BAMTKDAxQ0E5MzgzMDBDMTI3ODUxQjFCRTRERjA5RTNGOUI5NERDMzdBRDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDkSsM/zA94eeZMLiNJbwan4Koe qL19Jh3cZdprhYokbF3s9wWRzm1Z0IVl1B57bmiY6ltOSdvdOwxRiPtfKHjTLTgQ +6+eduptTxQgTYeZwbaatWL+irS/r/5Wf6Fo1/Rum+zQ0vSXrFic+LiFkiZRG3AO ySmy20MslZ8zwmLYIViuIMIGkaj92erpS0UYd1FqWV6ui8hvyf4hwd/cyGAIpyIx bIKWFZniRc6rPOPlNlE1/1Mler0m5iCCCM1WsDzlfEYhN96DEre39ihWWLCoXqGC OSSVvnO90NTNTWRXgvJeg6gB6QRUflweHdNEdHsIOm8YLGb5tkFGQ0ZrUbU9AgMB AAGjggI6MIICNjAdBgNVHQ4EFgQUAcqTgwDBJ4UbG+TfCeP5uU3DetUwHwYDVR0j BBgwFoAUm9gTOR5K8q4xA8GJGyJy1NXBO18wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYzQ3OGY2ZjUtNDQ5YS00ODI3LTk5ZDUtYmY2YjkzYThm NmI0LzAvOUJEODEzMzkxRTRBRjJBRTMxMDNDMTg5MUIyMjcyRDRENUMxM0I1Ri5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL205Z1RPUjVLOHE0eEE4R0pHeUp5MU5Y Qk8xOC5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2M0NzhmNmY1LTQ0OWEt NDgyNy05OWQ1LWJmNmI5M2E4ZjZiNC8wL0FTMjE0MDI1LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CME8GCCsGAQUFBwEHAQH/BEAwPjA8BAIAATA2AwQALss9 AwQALstiAwQALsvLAwQBXHFqAwQBXHFwAwQBXHF8AwQBXHGIAwQBXHGOAwQAXHHT MA0GCSqGSIb3DQEBCwUAA4IBAQBqlteQTu8DzK73cAZyBbDdz/UcV5qJP3r3X+u0 1tu0dO9tkF9q3Ta/pa/rCIhDJ42qNKBgvwivzS/rRo1ARwH44U5ANBebUbXzPmBs AfZXXjbFOy+atNVMzVzW2yT4B7VDEb/ElTYxrkMfwltGhRGAp5MT2FC0fB17g1Fd nTgeCTyi64pmv4+cswtzT0RfrXrKDgcaGqaqm7IlJZvxOREnP+ufuWrPktHnHdeO Ex3dwc1sa5ciXW+Xdg/fskZsiX9CuzONsl6xnxXhMyTwRsPBZ9zMXG6aJMKxkAoi H4MwlRt96/iWZLAXlhIpdt6yLEjNmJrHlb1qzuwrUh8b4LRB -----END CERTIFICATE-----Generated at Sat Dec 6 21:33:07 2025 by rpki-client