This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS138997.roa File: AS138997.roa (raw, json) Hash identifier: YtzKAWbRbo8aNF1w3fTy94LxlRiejxnklOghOS1/32Q= Subject key identifier: 6B:08:ED:CF:C6:A5:47:A9:A5:97:1F:42:A8:A8:14:76:71:90:E6:47 Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Certificate serial: 501AAFE378A173BBF61F43747AB5FBD3A7F74DDC Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS138997.roa Signing time: Tue 30 Dec 2025 10:47:38 +0000 ROA not before: Tue 30 Dec 2025 10:42:38 +0000 ROA not after: Tue 29 Dec 2026 10:47:38 +0000 asID: 138997 IP address blocks: 2a13:9500:ad::/48 maxlen: 48 2a13:9500:11d::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 05:21:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:1a:af:e3:78:a1:73:bb:f6:1f:43:74:7a:b5:fb:d3:a7:f7:4d:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Validity Not Before: Dec 30 10:42:38 2025 GMT Not After : Dec 29 10:47:38 2026 GMT Subject: CN=6B08EDCFC6A547A9A5971F42A8A814767190E647 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:39:25:72:f3:db:d0:03:cf:b7:e6:61:48:78: 6e:34:3f:1f:1a:88:7f:58:aa:20:55:83:1e:c4:58: f5:3c:5b:83:7e:37:f3:04:07:00:09:86:6b:01:86: 7c:21:bd:47:ba:80:5f:92:bf:a7:3d:2a:b1:2d:03: ec:30:41:9a:ae:2b:1c:9f:0a:28:e0:66:ba:c8:72: 5e:7e:38:51:79:a9:07:21:3a:5a:b0:b4:44:ef:fe: 75:68:d3:90:30:6f:b6:65:fc:e8:c0:15:78:3c:ea: 97:14:2b:3e:7f:41:bd:03:45:f5:e2:28:a4:d5:e4: f9:34:d1:0f:f6:21:2b:bd:b5:88:5c:1b:dd:85:27: 3e:e4:7d:4a:62:41:88:d9:2f:78:95:da:87:29:d0: 67:f4:2e:bf:cb:88:15:8b:a1:9a:7c:e8:ad:14:86: 45:0f:c5:1f:d7:b9:d2:8e:f7:a8:4a:7a:55:7a:21: 42:46:ae:af:bf:e6:e0:ab:0c:82:b2:8f:7a:fa:25: ab:2d:3f:d5:86:75:bd:da:32:be:2e:68:05:fa:24: 8f:57:73:48:c9:28:82:48:29:12:27:ca:49:66:d2: 26:f7:5c:5e:91:3d:ff:ba:75:75:bf:66:d7:c4:14: d2:77:e1:50:eb:59:cc:f9:ba:79:59:c8:fc:ea:a9: 47:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:08:ED:CF:C6:A5:47:A9:A5:97:1F:42:A8:A8:14:76:71:90:E6:47 X509v3 Authority Key Identifier: keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS138997.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a13:9500:ad::/48 2a13:9500:11d::/48 Signature Algorithm: sha256WithRSAEncryption a0:8a:32:de:a5:10:a4:2c:80:28:4b:0b:2f:1f:dd:fa:8b:31: 59:93:91:b2:e8:f4:8e:5b:52:19:c7:be:a9:d3:bf:a3:e5:f1: e1:f8:fe:0e:da:8e:5c:b3:82:ad:46:28:2c:99:86:28:68:9a: f1:53:26:fc:ec:12:eb:dd:35:bf:f3:85:f8:ee:53:cc:10:f7: 97:9b:3c:5d:50:59:d4:fa:4c:ac:ba:27:95:ac:7a:2f:66:87: c5:0d:37:49:d3:b3:7e:2b:0d:34:06:07:9e:2d:a8:b8:d8:1f: f5:18:7a:13:c8:62:f2:15:24:bc:1b:e9:e7:3d:da:a4:0e:63: 21:be:65:dd:ed:0b:17:74:6f:68:f3:2d:27:5e:91:80:41:15: e6:87:66:43:49:3e:f4:02:d1:35:9e:60:18:05:71:85:f2:a4: 75:70:44:29:5e:d6:95:ce:aa:88:39:95:85:f7:ea:50:d1:b2: 08:47:92:39:d6:7c:cf:49:83:bc:91:11:cd:9c:8e:18:ef:01: ef:98:6b:01:5a:a9:f6:35:1b:bd:b8:b8:ce:39:db:e6:74:f1: 44:0d:6b:a3:67:57:3d:05:d6:85:67:f2:13:41:d7:03:55:e7: 6e:35:77:ed:7d:32:51:e5:d6:40:d1:9e:87:0e:74:b8:1a:39: 4e:aa:da:56 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgIUUBqv43ihc7v2H0N0erX706f3TdwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjE4Y2M2ZTI0MTA1ZGU2YzVjOTAwM2Q2NTI0Mzg5M2Ni M2NmZGQwMTAeFw0yNTEyMzAxMDQyMzhaFw0yNjEyMjkxMDQ3MzhaMDMxMTAvBgNV BAMTKDZCMDhFRENGQzZBNTQ3QTlBNTk3MUY0MkE4QTgxNDc2NzE5MEU2NDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzOSVy89vQA8+35mFIeG40Px8a iH9YqiBVgx7EWPU8W4N+N/MEBwAJhmsBhnwhvUe6gF+Sv6c9KrEtA+wwQZquKxyf CijgZrrIcl5+OFF5qQchOlqwtETv/nVo05Awb7Zl/OjAFXg86pcUKz5/Qb0DRfXi KKTV5Pk00Q/2ISu9tYhcG92FJz7kfUpiQYjZL3iV2ocp0Gf0Lr/LiBWLoZp86K0U hkUPxR/XudKO96hKelV6IUJGrq+/5uCrDIKyj3r6JastP9WGdb3aMr4uaAX6JI9X c0jJKIJIKRInyklm0ib3XF6RPf+6dXW/ZtfEFNJ34VDrWcz5unlZyPzqqUdhAgMB AAGjggIWMIICEjAdBgNVHQ4EFgQUawjtz8alR6mllx9CqKgUdnGQ5kcwHwYDVR0j BBgwFoAUIYzG4kEF3mxckAPWUkOJPLPP3QEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYtYjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWEx YWY2LzAvMjE4Q0M2RTI0MTA1REU2QzVDOTAwM0Q2NTI0Mzg5M0NCM0NGREQwMS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0lZekc0a0VGM214Y2tBUFdVa09KUExQ UDNRRS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzcxOGExYjRmLWI2NGMt NDAyYy1iZTE1LWRkODJhNDFhMWFmNi8wL0FTMTM4OTk3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAAjASAwcAKhOV AACtAwcAKhOVAAEdMA0GCSqGSIb3DQEBCwUAA4IBAQCgijLepRCkLIAoSwsvH936 izFZk5Gy6PSOW1IZx76p07+j5fHh+P4O2o5cs4KtRigsmYYoaJrxUyb87BLr3TW/ 84X47lPMEPeXmzxdUFnU+kysuieVrHovZofFDTdJ07N+Kw00BgeeLai42B/1GHoT yGLyFSS8G+nnPdqkDmMhvmXd7QsXdG9o8y0nXpGAQRXmh2ZDST70AtE1nmAYBXGF 8qR1cEQpXtaVzqqIOZWF9+pQ0bIIR5I51nzPSYO8kRHNnI4Y7wHvmGsBWqn2NRu9 uLjOOdvmdPFEDWujZ1c9BdaFZ/ITQdcDVeduNXftfTJR5dZA0Z6HDnS4GjlOqtpW -----END CERTIFICATE-----Generated at Sun Jan 25 12:30:23 2026 by rpki-client