This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS174.roa File: AS174.roa (raw, json) Hash identifier: JV82qsHT2EuyxEZvm7huF+DdtnW5H7afYMoySPEsA6w= Subject key identifier: F7:DD:EA:E0:9B:AA:B2:FF:DC:9B:D9:C6:81:7A:CB:20:5B:C2:97:2C Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Certificate serial: 3CFE8D1881144BB4CE00940CB262FA24FDAD61C5 Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS174.roa Signing time: Fri 05 Dec 2025 16:35:24 +0000 ROA not before: Fri 05 Dec 2025 16:30:24 +0000 ROA not after: Fri 04 Dec 2026 16:35:24 +0000 asID: 174 IP address blocks: 82.21.150.0/24 maxlen: 24 82.27.133.0/24 maxlen: 24 82.27.134.0/24 maxlen: 24 82.27.135.0/24 maxlen: 24 82.39.160.0/24 maxlen: 24 82.39.166.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:fe:8d:18:81:14:4b:b4:ce:00:94:0c:b2:62:fa:24:fd:ad:61:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Validity Not Before: Dec 5 16:30:24 2025 GMT Not After : Dec 4 16:35:24 2026 GMT Subject: CN=F7DDEAE09BAAB2FFDC9BD9C6817ACB205BC2972C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:40:3a:6f:5b:51:df:8f:f9:0a:fb:2c:c7:6e: 90:a7:d5:02:ae:a1:f6:4a:5a:e7:04:2f:b6:01:fd: 09:ce:6f:08:3e:af:da:b1:60:bd:b8:66:f5:c7:fa: a8:33:08:67:69:fd:82:33:5c:fe:9c:5f:ab:02:62: 9d:4b:b6:0c:08:fb:02:c8:f3:21:59:98:3a:fa:ec: 39:33:b3:f9:f6:1f:a8:40:e1:46:b6:bc:90:f1:cb: c5:6d:4f:48:6f:cc:0d:3a:8a:f3:84:4b:0b:c1:df: 48:bd:e2:0e:3b:ad:6f:3e:7a:37:a3:9d:95:8a:20: d5:9a:fc:f3:5e:5d:cc:c0:9c:ce:15:6e:0e:4c:6c: b3:18:28:20:ea:43:12:35:36:7e:5f:fb:30:7b:d6: 5a:66:37:a9:4f:33:e8:54:5f:72:d9:53:92:8d:41: c3:e4:02:ad:7b:cd:6d:cd:60:a4:72:ca:5c:fe:00: 5e:0b:1b:3d:d8:70:8c:70:34:d8:c1:8a:71:50:23: 31:22:6c:9f:b9:9e:81:4d:b9:11:68:0f:9d:12:1a: 1f:ff:d6:55:01:07:41:6b:e4:54:91:99:68:47:99: 0b:71:7d:91:57:9e:ed:16:2c:b3:23:e7:9b:fb:0f: be:d6:01:55:96:e2:c5:da:02:41:cf:e5:29:5c:5f: 29:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:DD:EA:E0:9B:AA:B2:FF:DC:9B:D9:C6:81:7A:CB:20:5B:C2:97:2C X509v3 Authority Key Identifier: keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS174.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 82.21.150.0/24 82.27.133.0-82.27.135.255 82.39.160.0/24 82.39.166.0/24 Signature Algorithm: sha256WithRSAEncryption 66:c2:0e:7c:fd:f3:2e:53:73:15:3e:5a:e8:cd:b0:ca:9d:8d: 52:db:6e:c9:2e:c7:c3:d7:67:04:56:32:0a:bd:5d:69:bd:d6: d0:1b:55:e3:57:c4:01:87:6c:34:62:fe:f2:2d:72:70:32:09: 4c:64:9f:f5:59:f9:02:d9:03:6b:0b:a3:e8:ac:4f:2a:bb:d7: ab:17:13:84:63:f5:da:c8:d8:c6:10:08:1a:77:94:56:b6:ae: b3:ff:54:aa:e6:92:3b:65:8f:0d:9f:7d:64:9f:72:75:22:0e: 55:8f:c6:f4:5a:6d:e1:b8:24:30:5b:8c:3f:36:3b:75:2a:43: be:fc:23:97:08:87:21:7b:b2:e6:b8:26:85:bc:b5:72:c8:01: b7:9e:c0:b1:a1:6c:42:0d:49:b4:9c:87:dc:63:7c:4f:1f:ac: 63:af:71:df:c7:91:7c:99:3d:6d:e3:d5:d5:31:f0:25:ad:d4: 9d:20:51:e9:01:e5:ce:f9:fa:3e:4c:b8:c3:00:90:04:e0:bb: e3:60:3c:e5:89:cd:53:9b:91:4b:e9:a4:69:4c:65:ae:fd:6d: fd:c7:70:85:57:91:f6:25:15:fa:be:34:df:73:43:b9:86:f4: f8:1a:4a:e2:07:8b:02:b3:6a:e9:8b:e4:b9:af:c5:84:73:39: f5:5e:05:ce -----BEGIN CERTIFICATE----- MIIFFzCCA/+gAwIBAgIUPP6NGIEUS7TOAJQMsmL6JP2tYcUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjE4Y2M2ZTI0MTA1ZGU2YzVjOTAwM2Q2NTI0Mzg5M2Ni M2NmZGQwMTAeFw0yNTEyMDUxNjMwMjRaFw0yNjEyMDQxNjM1MjRaMDMxMTAvBgNV BAMTKEY3RERFQUUwOUJBQUIyRkZEQzlCRDlDNjgxN0FDQjIwNUJDMjk3MkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCgQDpvW1Hfj/kK+yzHbpCn1QKu ofZKWucEL7YB/QnObwg+r9qxYL24ZvXH+qgzCGdp/YIzXP6cX6sCYp1LtgwI+wLI 8yFZmDr67Dkzs/n2H6hA4Ua2vJDxy8VtT0hvzA06ivOESwvB30i94g47rW8+ejej nZWKINWa/PNeXczAnM4Vbg5MbLMYKCDqQxI1Nn5f+zB71lpmN6lPM+hUX3LZU5KN QcPkAq17zW3NYKRyylz+AF4LGz3YcIxwNNjBinFQIzEibJ+5noFNuRFoD50SGh// 1lUBB0Fr5FSRmWhHmQtxfZFXnu0WLLMj55v7D77WAVWW4sXaAkHP5SlcXylnAgMB AAGjggIhMIICHTAdBgNVHQ4EFgQU993q4Juqsv/cm9nGgXrLIFvClywwHwYDVR0j BBgwFoAUIYzG4kEF3mxckAPWUkOJPLPP3QEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYtYjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWEx YWY2LzAvMjE4Q0M2RTI0MTA1REU2QzVDOTAwM0Q2NTI0Mzg5M0NCM0NGREQwMS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0lZekc0a0VGM214Y2tBUFdVa09KUExQ UDNRRS5jZXIweAYIKwYBBQUHAQsEbDBqMGgGCCsGAQUFBzALhlxyc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzcxOGExYjRmLWI2NGMt NDAyYy1iZTE1LWRkODJhNDFhMWFmNi8wL0FTMTc0LnJvYTAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDkGCCsGAQUFBwEHAQH/BCowKDAmBAIAATAgAwQAUhWWMAwD BABSG4UDBANSG4ADBABSJ6ADBABSJ6YwDQYJKoZIhvcNAQELBQADggEBAGbCDnz9 8y5TcxU+WujNsMqdjVLbbskux8PXZwRWMgq9XWm91tAbVeNXxAGHbDRi/vItcnAy CUxkn/VZ+QLZA2sLo+isTyq716sXE4Rj9drI2MYQCBp3lFa2rrP/VKrmkjtljw2f fWSfcnUiDlWPxvRabeG4JDBbjD82O3UqQ778I5cIhyF7sua4JoW8tXLIAbeewLGh bEINSbSch9xjfE8frGOvcd/HkXyZPW3j1dUx8CWt1J0gUekB5c75+j5MuMMAkATg u+NgPOWJzVObkUvppGlMZa79bf3HcIVXkfYlFfq+NN9zQ7mG9PgaSuIHiwKzaumL 5LmvxYRzOfVeBc4= -----END CERTIFICATE-----Generated at Sat Dec 6 11:47:42 2025 by rpki-client