This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS198128.roa File: AS198128.roa (raw, json) Hash identifier: 5Kg9SbrVQaCzrrJyV6kybz6aS386kXTcPqAMHDw2xNo= Subject key identifier: 8D:7C:F3:3C:23:90:BD:C6:8C:65:AD:93:23:A7:4B:A0:77:73:2A:8F Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Certificate serial: 191CBB41CDB718C8BA5570263D228B9A5905FC62 Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS198128.roa Signing time: Mon 17 Nov 2025 09:58:01 +0000 ROA not before: Mon 17 Nov 2025 09:53:01 +0000 ROA not after: Mon 16 Nov 2026 09:58:01 +0000 asID: 198128 IP address blocks: 82.24.201.0/24 maxlen: 24 82.38.84.0/22 maxlen: 22 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:1c:bb:41:cd:b7:18:c8:ba:55:70:26:3d:22:8b:9a:59:05:fc:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Validity Not Before: Nov 17 09:53:01 2025 GMT Not After : Nov 16 09:58:01 2026 GMT Subject: CN=8D7CF33C2390BDC68C65AD9323A74BA077732A8F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:62:5d:8d:20:3f:cc:7e:5f:79:1f:18:b6:c8: e3:c8:f2:d0:4f:91:54:37:9c:a5:cc:ff:3f:09:79: bd:83:56:17:73:50:22:93:ea:12:a7:ab:59:00:a7: 23:23:e5:78:44:8b:df:a5:03:bf:4b:36:9f:33:74: 63:50:4d:84:3f:da:00:8a:0c:69:f9:28:4c:4d:2b: 57:81:99:c3:f1:3d:15:3a:b2:b5:e8:2d:8a:0f:07: 05:65:0b:d3:dd:d3:02:68:95:48:f3:4a:45:b1:0b: 30:4f:02:85:c2:50:36:9b:55:f2:ca:38:2d:af:bf: a9:e5:59:73:9d:88:0a:24:7f:3a:b4:0c:97:34:83: dd:cd:48:a1:37:3b:29:bb:55:10:ff:63:74:0e:d2: 2c:2f:9f:93:55:74:f3:fc:57:5b:fa:3e:63:85:c1: cd:fb:2a:50:85:3c:4c:91:48:87:87:a6:42:89:a6: 08:4e:89:3b:dc:c7:23:48:9b:19:43:21:31:d3:3a: bb:8d:54:72:71:71:3e:e2:5f:ba:d4:7e:c9:fd:bc: 40:b9:66:b7:8b:8d:c4:eb:fe:63:6d:b0:b3:cd:8f: ab:72:cc:0d:0d:76:5b:0b:f5:b6:d5:f8:80:e2:08: 67:b9:c6:3f:90:e3:40:9f:c3:a7:d6:22:17:29:98: 30:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:7C:F3:3C:23:90:BD:C6:8C:65:AD:93:23:A7:4B:A0:77:73:2A:8F X509v3 Authority Key Identifier: keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS198128.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 82.24.201.0/24 82.38.84.0/22 Signature Algorithm: sha256WithRSAEncryption 2b:0d:b5:1c:40:c9:ba:74:81:0c:76:a2:78:b7:fd:fc:ae:eb: 0b:16:6b:e1:55:2f:8f:f4:98:b1:93:c4:56:c4:43:57:63:4b: 32:c7:a8:77:7f:b0:8f:04:63:93:49:19:1b:7e:b5:74:e0:96: cb:cf:af:51:08:4f:73:af:cf:1a:7d:11:0e:37:fb:25:d3:e5: 29:9d:30:ca:f0:7f:b2:fb:c6:e5:28:50:0a:64:b5:25:c1:f1: c7:e2:f8:1c:8d:57:9a:70:0c:d3:c8:7f:5f:01:c5:f1:d4:10: e9:26:6b:45:2a:05:d5:d7:50:d5:f5:65:9f:8f:1e:79:05:74: 3c:cd:8a:a2:f0:de:7f:bd:b9:12:de:2a:9e:8c:7c:e7:f8:ff: bb:6b:79:a6:c7:d4:4d:fa:5b:5f:e2:0a:09:b5:b7:7b:a5:97: ac:1c:b3:9d:98:8d:dd:f0:fc:ed:4b:25:31:5b:17:e7:6f:67: 8a:13:f7:25:3b:2d:c5:0e:9e:5e:e4:e6:50:0c:2c:e0:ec:7c: a4:be:02:57:f4:f2:88:46:c8:e7:c0:b9:5a:e5:50:73:e6:c2: ed:71:6d:41:a1:80:7e:3d:27:e4:3c:72:f5:89:5a:3a:71:80: 9c:19:81:ff:3e:00:91:42:36:f6:d9:b8:04:88:cc:4c:58:51: 14:1e:21:ad -----BEGIN CERTIFICATE----- MIIFBjCCA+6gAwIBAgIUGRy7Qc23GMi6VXAmPSKLmlkF/GIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjE4Y2M2ZTI0MTA1ZGU2YzVjOTAwM2Q2NTI0Mzg5M2Ni M2NmZGQwMTAeFw0yNTExMTcwOTUzMDFaFw0yNjExMTYwOTU4MDFaMDMxMTAvBgNV BAMTKDhEN0NGMzNDMjM5MEJEQzY4QzY1QUQ5MzIzQTc0QkEwNzc3MzJBOEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCJYl2NID/Mfl95Hxi2yOPI8tBP kVQ3nKXM/z8Jeb2DVhdzUCKT6hKnq1kApyMj5XhEi9+lA79LNp8zdGNQTYQ/2gCK DGn5KExNK1eBmcPxPRU6srXoLYoPBwVlC9Pd0wJolUjzSkWxCzBPAoXCUDabVfLK OC2vv6nlWXOdiAokfzq0DJc0g93NSKE3Oym7VRD/Y3QO0iwvn5NVdPP8V1v6PmOF wc37KlCFPEyRSIeHpkKJpghOiTvcxyNImxlDITHTOruNVHJxcT7iX7rUfsn9vEC5 ZreLjcTr/mNtsLPNj6tyzA0NdlsL9bbV+IDiCGe5xj+Q40Cfw6fWIhcpmDCVAgMB AAGjggIQMIICDDAdBgNVHQ4EFgQUjXzzPCOQvcaMZa2TI6dLoHdzKo8wHwYDVR0j BBgwFoAUIYzG4kEF3mxckAPWUkOJPLPP3QEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYtYjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWEx YWY2LzAvMjE4Q0M2RTI0MTA1REU2QzVDOTAwM0Q2NTI0Mzg5M0NCM0NGREQwMS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0lZekc0a0VGM214Y2tBUFdVa09KUExQ UDNRRS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzcxOGExYjRmLWI2NGMt NDAyYy1iZTE1LWRkODJhNDFhMWFmNi8wL0FTMTk4MTI4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAUhjJ AwQCUiZUMA0GCSqGSIb3DQEBCwUAA4IBAQArDbUcQMm6dIEMdqJ4t/38rusLFmvh VS+P9Jixk8RWxENXY0syx6h3f7CPBGOTSRkbfrV04JbLz69RCE9zr88afREON/sl 0+UpnTDK8H+y+8blKFAKZLUlwfHH4vgcjVeacAzTyH9fAcXx1BDpJmtFKgXV11DV 9WWfjx55BXQ8zYqi8N5/vbkS3iqejHzn+P+7a3mmx9RN+ltf4goJtbd7pZesHLOd mI3d8PztSyUxWxfnb2eKE/clOy3FDp5e5OZQDCzg7HykvgJX9PKIRsjnwLla5VBz 5sLtcW1BoYB+PSfkPHL1iVo6cYCcGYH/PgCRQjb22bgEiMxMWFEUHiGt -----END CERTIFICATE-----Generated at Sat Dec 6 11:47:30 2025 by rpki-client