This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS2914.roa File: AS2914.roa (raw, json) Hash identifier: uWRnJzeVqa9ZkvAg3qMtkUNpezX2Zh2f+lVsz/IPWig= Subject key identifier: 80:03:29:49:6A:2E:5E:CC:9D:13:0E:FE:04:F9:06:F6:E2:13:A2:14 Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f Certificate serial: 439B5F2160C36C5FBE7FA4C457EE51FF7A29DA3A Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS2914.roa Signing time: Thu 11 Dec 2025 03:14:17 +0000 ROA not before: Thu 11 Dec 2025 03:09:17 +0000 ROA not after: Thu 10 Dec 2026 03:14:17 +0000 asID: 2914 IP address blocks: 46.202.51.0/24 maxlen: 24 46.202.53.0/24 maxlen: 24 46.203.176.0/24 maxlen: 24 46.203.197.0/24 maxlen: 24 46.203.205.0/24 maxlen: 24 46.203.223.0/24 maxlen: 24 46.203.225.0/24 maxlen: 24 91.124.20.0/22 maxlen: 22 92.112.240.0/24 maxlen: 24 92.112.241.0/24 maxlen: 24 92.112.242.0/24 maxlen: 24 92.112.243.0/24 maxlen: 24 92.112.244.0/24 maxlen: 24 92.112.245.0/24 maxlen: 24 92.112.246.0/24 maxlen: 24 92.112.247.0/24 maxlen: 24 95.134.83.0/24 maxlen: 24 95.134.148.0/24 maxlen: 24 95.134.150.0/24 maxlen: 24 95.134.168.0/23 maxlen: 24 95.134.170.0/23 maxlen: 24 95.134.172.0/23 maxlen: 24 95.134.174.0/24 maxlen: 24 95.135.194.0/24 maxlen: 24 95.135.223.0/24 maxlen: 24 178.92.16.0/22 maxlen: 24 178.92.36.0/22 maxlen: 24 178.92.226.0/24 maxlen: 24 178.92.235.0/24 maxlen: 24 178.92.237.0/24 maxlen: 24 178.92.251.0/24 maxlen: 24 178.93.0.0/22 maxlen: 24 178.93.37.0/24 maxlen: 24 178.94.0.0/24 maxlen: 24 178.94.4.0/24 maxlen: 24 178.94.6.0/24 maxlen: 24 178.94.7.0/24 maxlen: 24 178.94.21.0/24 maxlen: 24 178.94.27.0/24 maxlen: 24 178.94.32.0/24 maxlen: 24 178.94.66.0/24 maxlen: 24 178.94.73.0/24 maxlen: 24 178.94.77.0/24 maxlen: 24 178.94.79.0/24 maxlen: 24 178.94.103.0/24 maxlen: 24 178.94.110.0/24 maxlen: 24 178.94.120.0/24 maxlen: 24 178.94.189.0/24 maxlen: 24 178.94.210.0/24 maxlen: 24 178.94.212.0/24 maxlen: 24 178.94.220.0/24 maxlen: 24 178.94.223.0/24 maxlen: 24 178.94.254.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 16 Dec 2025 08:00:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:9b:5f:21:60:c3:6c:5f:be:7f:a4:c4:57:ee:51:ff:7a:29:da:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f Validity Not Before: Dec 11 03:09:17 2025 GMT Not After : Dec 10 03:14:17 2026 GMT Subject: CN=800329496A2E5ECC9D130EFE04F906F6E213A214 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:db:6c:cc:db:12:e1:b6:04:63:f3:d8:55:88: 09:d4:2f:cf:a7:bd:06:67:06:22:52:3b:6a:8f:94: 20:08:fa:3e:3e:28:cc:06:57:61:fe:b9:c3:3b:89: 69:4e:a0:6b:b0:8e:0a:ee:d4:f8:7e:ab:6d:88:95: 61:29:5d:79:82:a0:74:cc:49:c0:c1:4c:01:eb:86: 15:13:49:d1:77:a2:48:36:cd:27:bb:3c:61:2c:c1: de:8c:15:fb:a3:37:58:f5:ac:ed:cd:04:b0:d9:b0: 6e:88:a6:8e:72:36:cb:10:ab:1f:f6:d9:45:2a:30: ba:de:dd:c3:77:63:9c:fd:0c:c5:6c:39:0c:10:28: c1:b4:a9:ea:aa:27:a7:98:8b:2b:65:ca:fe:b1:91: 11:96:90:61:72:24:90:f8:c4:31:9d:02:a3:66:47: d1:51:4d:b3:30:8f:29:28:26:1d:3f:0e:02:fc:99: 04:6b:54:1f:d4:96:e4:de:24:72:c9:72:21:5b:6d: cd:91:ac:f6:b7:75:d9:27:26:0f:ef:e3:1e:06:0b: ed:50:8f:a4:fb:19:d7:94:c3:97:9d:f2:49:84:1b: 1c:4f:0c:10:e3:96:c7:fc:06:e5:d0:ce:aa:03:4b: ea:55:09:70:09:25:ec:e4:35:db:05:95:0b:a5:88: f0:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:03:29:49:6A:2E:5E:CC:9D:13:0E:FE:04:F9:06:F6:E2:13:A2:14 X509v3 Authority Key Identifier: keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS2914.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 46.202.51.0/24 46.202.53.0/24 46.203.176.0/24 46.203.197.0/24 46.203.205.0/24 46.203.223.0/24 46.203.225.0/24 91.124.20.0/22 92.112.240.0/21 95.134.83.0/24 95.134.148.0/24 95.134.150.0/24 95.134.168.0-95.134.174.255 95.135.194.0/24 95.135.223.0/24 178.92.16.0/22 178.92.36.0/22 178.92.226.0/24 178.92.235.0/24 178.92.237.0/24 178.92.251.0/24 178.93.0.0/22 178.93.37.0/24 178.94.0.0/24 178.94.4.0/24 178.94.6.0/23 178.94.21.0/24 178.94.27.0/24 178.94.32.0/24 178.94.66.0/24 178.94.73.0/24 178.94.77.0/24 178.94.79.0/24 178.94.103.0/24 178.94.110.0/24 178.94.120.0/24 178.94.189.0/24 178.94.210.0/24 178.94.212.0/24 178.94.220.0/24 178.94.223.0/24 178.94.254.0/24 Signature Algorithm: sha256WithRSAEncryption 63:75:ca:53:70:93:31:7b:40:9f:6b:be:4e:75:a6:10:c1:04: e3:04:db:66:85:37:7c:4a:a8:2f:13:60:d9:81:9e:73:be:1f: 10:9c:cc:2a:6c:72:1c:09:3f:63:37:89:28:33:ae:10:ea:17: d2:36:06:4d:e5:d2:63:99:fe:0e:a3:f3:bc:cc:7e:0d:c1:7d: 01:1e:ea:6e:a2:15:7c:a0:b0:ea:2b:cf:f2:aa:14:30:87:0c: 6e:55:5f:f1:48:ad:4a:57:00:82:ad:c2:b9:25:c7:c7:bb:23: 0a:b7:20:20:3f:8d:99:33:22:07:c3:8c:c2:ab:4c:9b:6b:cf: 91:5d:c8:23:c2:0e:85:7a:3f:82:5e:10:e3:e6:e1:31:e6:60: 18:87:48:8b:d2:73:82:8c:7d:85:51:88:26:f8:5b:64:5b:d9: 34:1d:8e:fa:88:9f:19:19:4b:ac:92:eb:77:63:36:2c:3b:da: ec:e9:57:38:8c:0d:44:6c:8b:f2:0b:63:b1:c1:5e:57:45:55: 05:3b:80:69:33:64:58:cc:40:a5:be:fc:77:d8:b5:f5:ae:5d: aa:52:3f:97:f3:3b:89:65:7d:13:89:9c:af:98:64:e8:9f:14: d9:7d:1d:f9:8a:a3:66:38:c0:db:63:76:f5:aa:b1:25:46:0b: 4c:cf:5d:1a -----BEGIN CERTIFICATE----- MIIGBjCCBO6gAwIBAgIUQ5tfIWDDbF++f6TEV+5R/3op2jowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOWJkODEzMzkxZTRhZjJhZTMxMDNjMTg5MWIyMjcyZDRk NWMxM2I1ZjAeFw0yNTEyMTEwMzA5MTdaFw0yNjEyMTAwMzE0MTdaMDMxMTAvBgNV BAMTKDgwMDMyOTQ5NkEyRTVFQ0M5RDEzMEVGRTA0RjkwNkY2RTIxM0EyMTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDS22zM2xLhtgRj89hViAnUL8+n vQZnBiJSO2qPlCAI+j4+KMwGV2H+ucM7iWlOoGuwjgru1Ph+q22IlWEpXXmCoHTM ScDBTAHrhhUTSdF3okg2zSe7PGEswd6MFfujN1j1rO3NBLDZsG6Ipo5yNssQqx/2 2UUqMLre3cN3Y5z9DMVsOQwQKMG0qeqqJ6eYiytlyv6xkRGWkGFyJJD4xDGdAqNm R9FRTbMwjykoJh0/DgL8mQRrVB/UluTeJHLJciFbbc2RrPa3ddknJg/v4x4GC+1Q j6T7GdeUw5ed8kmEGxxPDBDjlsf8BuXQzqoDS+pVCXAJJezkNdsFlQuliPAJAgMB AAGjggMQMIIDDDAdBgNVHQ4EFgQUgAMpSWouXsydEw7+BPkG9uITohQwHwYDVR0j BBgwFoAUm9gTOR5K8q4xA8GJGyJy1NXBO18wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYzQ3OGY2ZjUtNDQ5YS00ODI3LTk5ZDUtYmY2YjkzYThm NmI0LzAvOUJEODEzMzkxRTRBRjJBRTMxMDNDMTg5MUIyMjcyRDRENUMxM0I1Ri5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL205Z1RPUjVLOHE0eEE4R0pHeUp5MU5Y Qk8xOC5jZXIweQYIKwYBBQUHAQsEbTBrMGkGCCsGAQUFBzALhl1yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2M0NzhmNmY1LTQ0OWEt NDgyNy05OWQ1LWJmNmI5M2E4ZjZiNC8wL0FTMjkxNC5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjCCASUGCCsGAQUFBwEHAQH/BIIBFDCCARAwggEMBAIAATCC AQQDBAAuyjMDBAAuyjUDBAAuy7ADBAAuy8UDBAAuy80DBAAuy98DBAAuy+EDBAJb fBQDBANccPADBABfhlMDBABfhpQDBABfhpYwDAMEA1+GqAMEAF+GrgMEAF+HwgME AF+H3wMEArJcEAMEArJcJAMEALJc4gMEALJc6wMEALJc7QMEALJc+wMEArJdAAME ALJdJQMEALJeAAMEALJeBAMEAbJeBgMEALJeFQMEALJeGwMEALJeIAMEALJeQgME ALJeSQMEALJeTQMEALJeTwMEALJeZwMEALJebgMEALJeeAMEALJevQMEALJe0gME ALJe1AMEALJe3AMEALJe3wMEALJe/jANBgkqhkiG9w0BAQsFAAOCAQEAY3XKU3CT MXtAn2u+TnWmEMEE4wTbZoU3fEqoLxNg2YGec74fEJzMKmxyHAk/YzeJKDOuEOoX 0jYGTeXSY5n+DqPzvMx+DcF9AR7qbqIVfKCw6ivP8qoUMIcMblVf8UitSlcAgq3C uSXHx7sjCrcgID+NmTMiB8OMwqtMm2vPkV3II8IOhXo/gl4Q4+bhMeZgGIdIi9Jz gox9hVGIJvhbZFvZNB2O+oifGRlLrJLrd2M2LDva7OlXOIwNRGyL8gtjscFeV0VV BTuAaTNkWMxApb78d9i19a5dqlI/l/M7iWV9E4mcr5hk6J8U2X0d+YqjZjjA22N2 9aqxJUYLTM9dGg== -----END CERTIFICATE-----Generated at Mon Dec 15 15:31:40 2025 by rpki-client