This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS198825.roa File: AS198825.roa (raw, json) Hash identifier: gQAWmyXmZhSPfvMWhuEZv9iiPaubeXedpmDgKy2ExHY= Subject key identifier: B5:BA:3E:AA:74:7A:01:2B:83:54:F4:03:61:BF:B7:B3:CA:9A:92:E4 Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Certificate serial: 7B0FDBA5C7069E495DE84C2C061D667E4092EED5 Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS198825.roa Signing time: Sun 07 Dec 2025 20:18:58 +0000 ROA not before: Sun 07 Dec 2025 20:13:58 +0000 ROA not after: Sun 06 Dec 2026 20:18:58 +0000 asID: 198825 IP address blocks: 82.22.7.0/24 maxlen: 24 82.22.77.0/24 maxlen: 24 82.26.157.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 16 Dec 2025 08:00:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:0f:db:a5:c7:06:9e:49:5d:e8:4c:2c:06:1d:66:7e:40:92:ee:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Validity Not Before: Dec 7 20:13:58 2025 GMT Not After : Dec 6 20:18:58 2026 GMT Subject: CN=B5BA3EAA747A012B8354F40361BFB7B3CA9A92E4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:ff:68:20:d5:4c:14:7b:49:c4:dd:ee:ef:09: 17:74:c0:32:4c:88:fc:32:b2:10:c2:ff:66:53:3a: 84:9f:90:bd:97:93:39:cf:8f:2d:38:3a:6c:c8:de: 72:6c:40:be:31:82:48:0a:0b:c6:a9:aa:17:fc:0e: f1:f8:06:a1:5b:b9:ac:9e:77:7b:2c:0a:67:f7:58: 4c:1f:3f:24:c8:d0:ea:13:83:56:ce:4c:f2:dd:83: 70:fd:3b:0a:82:37:b9:a5:5a:04:48:a1:72:0f:e3: c7:eb:a5:f8:c6:0b:0e:be:84:4b:a3:9f:c7:48:17: a4:5d:97:b7:96:3a:96:63:17:44:ce:52:95:b8:af: 5e:87:50:7f:89:1a:84:c4:78:bd:b2:da:18:ca:fd: 4c:20:fd:31:d6:be:2c:3a:00:de:62:c7:16:30:f3: de:ed:92:a5:c3:b6:88:fe:ec:6b:13:59:6b:67:70: 4d:c8:33:d2:dd:72:0f:26:4b:5d:f3:f9:19:a0:43: e7:c8:af:c4:e9:f5:c8:5d:92:f8:5d:0e:3e:26:a1: 7d:86:44:6e:4a:0e:86:ff:f5:7b:3d:f9:ab:de:b0: 19:41:7d:79:7d:4d:d6:cc:9b:c2:ac:ec:f4:cc:36: fe:a7:40:bc:9a:e7:9e:40:d4:08:00:5b:9e:a8:8a: 57:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:BA:3E:AA:74:7A:01:2B:83:54:F4:03:61:BF:B7:B3:CA:9A:92:E4 X509v3 Authority Key Identifier: keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS198825.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 82.22.7.0/24 82.22.77.0/24 82.26.157.0/24 Signature Algorithm: sha256WithRSAEncryption 81:fa:7c:67:e5:aa:ff:c5:b0:9a:13:3e:31:1b:2e:dc:4a:5b: dd:11:59:b6:1c:3d:2d:ed:16:8f:67:67:5f:00:72:7d:8e:fb: c8:11:7c:ff:90:80:a2:e7:c0:76:69:a1:4d:28:af:42:a2:1f: 61:06:01:96:8b:59:a6:00:08:83:c7:67:00:41:51:92:c7:67: 04:a7:e7:4f:d1:0f:ae:3f:4d:78:4a:89:4c:c8:15:58:f4:58: b1:59:8b:bf:05:a1:29:7e:f0:88:66:ae:0e:f7:39:33:a1:cc: 61:51:64:ee:5a:8e:13:be:64:fe:e6:37:dd:86:7b:d5:8d:5e: fe:4c:87:9f:7b:e0:03:e0:8d:3f:16:cf:a8:be:fa:a2:a9:af: 7c:3d:a7:5d:4a:ac:9c:c1:6a:b3:3e:f7:f9:1b:37:56:4d:81: aa:9b:e1:48:4d:cf:67:5f:ec:91:f6:4a:49:4f:03:ae:bd:5a: e1:2c:b5:1e:28:45:c7:71:88:bc:6e:13:c4:c1:21:42:6f:cc: 9c:3f:b1:d6:01:9a:56:01:ca:8b:11:a7:7f:4c:a4:d7:87:5f: 23:b3:b1:5b:55:e8:ba:0d:df:34:f7:b8:d1:3f:71:49:82:82: 5a:f1:0e:99:a8:f6:a3:72:30:ac:3e:24:99:9e:75:83:41:3c: ea:ab:7a:dd -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgIUew/bpccGnkld6EwsBh1mfkCS7tUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjE4Y2M2ZTI0MTA1ZGU2YzVjOTAwM2Q2NTI0Mzg5M2Ni M2NmZGQwMTAeFw0yNTEyMDcyMDEzNThaFw0yNjEyMDYyMDE4NThaMDMxMTAvBgNV BAMTKEI1QkEzRUFBNzQ3QTAxMkI4MzU0RjQwMzYxQkZCN0IzQ0E5QTkyRTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCr/2gg1UwUe0nE3e7vCRd0wDJM iPwyshDC/2ZTOoSfkL2XkznPjy04OmzI3nJsQL4xgkgKC8apqhf8DvH4BqFbuaye d3ssCmf3WEwfPyTI0OoTg1bOTPLdg3D9OwqCN7mlWgRIoXIP48frpfjGCw6+hEuj n8dIF6Rdl7eWOpZjF0TOUpW4r16HUH+JGoTEeL2y2hjK/Uwg/THWviw6AN5ixxYw 897tkqXDtoj+7GsTWWtncE3IM9Ldcg8mS13z+RmgQ+fIr8Tp9chdkvhdDj4moX2G RG5KDob/9Xs9+avesBlBfXl9TdbMm8Ks7PTMNv6nQLya555A1AgAW56oilf9AgMB AAGjggIWMIICEjAdBgNVHQ4EFgQUtbo+qnR6ASuDVPQDYb+3s8qakuQwHwYDVR0j BBgwFoAUIYzG4kEF3mxckAPWUkOJPLPP3QEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYtYjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWEx YWY2LzAvMjE4Q0M2RTI0MTA1REU2QzVDOTAwM0Q2NTI0Mzg5M0NCM0NGREQwMS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0lZekc0a0VGM214Y2tBUFdVa09KUExQ UDNRRS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzcxOGExYjRmLWI2NGMt NDAyYy1iZTE1LWRkODJhNDFhMWFmNi8wL0FTMTk4ODI1LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQAUhYH AwQAUhZNAwQAUhqdMA0GCSqGSIb3DQEBCwUAA4IBAQCB+nxn5ar/xbCaEz4xGy7c SlvdEVm2HD0t7RaPZ2dfAHJ9jvvIEXz/kICi58B2aaFNKK9Coh9hBgGWi1mmAAiD x2cAQVGSx2cEp+dP0Q+uP014SolMyBVY9FixWYu/BaEpfvCIZq4O9zkzocxhUWTu Wo4TvmT+5jfdhnvVjV7+TIefe+AD4I0/Fs+ovvqiqa98PaddSqycwWqzPvf5GzdW TYGqm+FITc9nX+yR9kpJTwOuvVrhLLUeKEXHcYi8bhPEwSFCb8ycP7HWAZpWAcqL Ead/TKTXh18js7FbVei6Dd8097jRP3FJgoJa8Q6ZqPajcjCsPiSZnnWDQTzqq3rd -----END CERTIFICATE-----Generated at Mon Dec 15 15:30:23 2025 by rpki-client