This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS20473.roa File: AS20473.roa (raw, json) Hash identifier: 1ICQhcLbbi14l6Jb1o82kNE8+f81pVuBrMrWZhsCwGo= Subject key identifier: 97:4B:2E:57:B0:80:5F:B5:F3:64:27:5B:1E:14:E7:DE:02:36:7E:9B Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Certificate serial: 3EA4056843FD33FAB4C6DA629C5C723E2AE86518 Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS20473.roa Signing time: Mon 19 Jan 2026 12:55:32 +0000 ROA not before: Mon 19 Jan 2026 12:50:32 +0000 ROA not after: Mon 18 Jan 2027 12:55:32 +0000 asID: 20473 IP address blocks: 82.38.41.0/24 maxlen: 24 178.83.105.0/24 maxlen: 24 178.83.106.0/24 maxlen: 24 178.83.107.0/24 maxlen: 24 2a13:9500:61::/48 maxlen: 48 2a13:9500:ae::/48 maxlen: 48 2a13:9500:cf::/48 maxlen: 48 2a13:9500:dd::/48 maxlen: 48 2a13:9500:10c::/48 maxlen: 48 2a13:9500:120::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 05:21:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:a4:05:68:43:fd:33:fa:b4:c6:da:62:9c:5c:72:3e:2a:e8:65:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Validity Not Before: Jan 19 12:50:32 2026 GMT Not After : Jan 18 12:55:32 2027 GMT Subject: CN=974B2E57B0805FB5F364275B1E14E7DE02367E9B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:64:8c:e3:40:78:02:49:82:eb:c7:f9:44:9e: f9:63:85:72:42:a8:c5:32:1f:7a:7c:26:61:f6:11: 74:08:19:e4:72:93:aa:57:3c:be:4f:40:e4:86:9b: 8c:94:69:f2:60:a5:1e:15:e0:98:33:51:2a:73:6b: d4:a4:08:85:30:a2:30:1c:a3:e0:7c:9c:c1:ee:08: b5:d1:34:6c:c4:c3:07:d8:3a:14:ba:9e:31:91:f3: dd:6f:49:6e:e4:cf:78:5a:7f:b1:e4:73:df:46:77: b2:82:8a:f4:16:e6:d6:ab:2e:13:aa:92:91:e9:16: 8f:1f:51:70:87:f2:d5:1b:85:5a:92:8d:7f:09:01: 22:f7:88:69:9a:a5:da:21:02:ba:15:fa:f4:06:16: a0:6b:94:9a:11:36:f0:d0:5e:4c:4c:dd:98:72:0d: 00:54:5a:f2:3a:7a:01:4a:e8:b0:f1:5a:ee:6e:1b: 84:4c:3a:96:85:32:e8:e0:57:c1:57:3a:dc:41:a4: d8:ff:bc:1c:0d:ce:bf:79:11:37:77:d1:39:1c:8b: 28:54:c5:1f:41:a9:a8:25:99:ed:1f:d6:9b:4b:9d: d7:66:e3:26:9e:f8:66:f0:da:13:df:ae:d9:cb:ec: d8:18:a8:6d:8a:97:3b:f7:9b:81:46:a9:25:49:e5: 9b:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:4B:2E:57:B0:80:5F:B5:F3:64:27:5B:1E:14:E7:DE:02:36:7E:9B X509v3 Authority Key Identifier: keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS20473.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 82.38.41.0/24 178.83.105.0-178.83.107.255 IPv6: 2a13:9500:61::/48 2a13:9500:ae::/48 2a13:9500:cf::/48 2a13:9500:dd::/48 2a13:9500:10c::/48 2a13:9500:120::/48 Signature Algorithm: sha256WithRSAEncryption 85:08:c4:db:31:d4:98:eb:ba:79:79:11:ba:17:2b:e6:11:06: 87:41:f0:99:09:a0:ff:08:0d:52:28:d4:ac:52:1b:8b:12:c3: 12:c9:bc:aa:37:a5:94:20:13:36:28:f1:2d:20:2f:51:49:5d: 7f:3f:12:6b:ef:c9:ab:04:fb:52:32:51:d7:b1:c7:04:da:b6: f3:f1:c6:4a:ca:f9:f7:2c:41:e7:37:a3:7c:1a:9b:9a:25:5e: 9f:10:ae:f0:61:f2:37:a0:81:92:9d:d1:0b:34:64:df:6d:93: 08:da:e2:b3:da:dc:11:df:97:12:db:cc:33:c9:47:46:bf:b5: 27:d5:76:87:64:0f:5c:aa:9f:3b:60:dc:37:24:fd:c6:ba:5a: 4a:24:49:1f:54:0f:f8:ae:a1:76:0d:3a:42:c5:e5:3c:7a:b4: 58:34:7f:b7:fb:80:21:56:6d:bf:42:8b:5c:51:ef:2c:bc:71: 42:6d:fc:77:4b:6c:7f:35:b5:54:1b:73:7d:d8:b7:e5:17:ab: ac:4d:5e:ef:92:83:56:80:81:ae:9d:87:07:c9:04:63:60:eb: cf:37:b1:d1:13:dc:b2:cd:12:c6:a9:3a:28:34:b5:06:17:34: 35:13:f6:c9:32:5b:4c:fa:1f:43:b9:1d:1f:1c:4b:52:57:e1: ea:42:c8:4e -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgIUPqQFaEP9M/q0xtpinFxyPiroZRgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjE4Y2M2ZTI0MTA1ZGU2YzVjOTAwM2Q2NTI0Mzg5M2Ni M2NmZGQwMTAeFw0yNjAxMTkxMjUwMzJaFw0yNzAxMTgxMjU1MzJaMDMxMTAvBgNV BAMTKDk3NEIyRTU3QjA4MDVGQjVGMzY0Mjc1QjFFMTRFN0RFMDIzNjdFOUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1ZIzjQHgCSYLrx/lEnvljhXJC qMUyH3p8JmH2EXQIGeRyk6pXPL5PQOSGm4yUafJgpR4V4JgzUSpza9SkCIUwojAc o+B8nMHuCLXRNGzEwwfYOhS6njGR891vSW7kz3haf7Hkc99Gd7KCivQW5tarLhOq kpHpFo8fUXCH8tUbhVqSjX8JASL3iGmapdohAroV+vQGFqBrlJoRNvDQXkxM3Zhy DQBUWvI6egFK6LDxWu5uG4RMOpaFMujgV8FXOtxBpNj/vBwNzr95ETd30TkciyhU xR9Bqaglme0f1ptLnddm4yae+Gbw2hPfrtnL7NgYqG2Klzv3m4FGqSVJ5ZslAgMB AAGjggJVMIICUTAdBgNVHQ4EFgQUl0suV7CAX7XzZCdbHhTn3gI2fpswHwYDVR0j BBgwFoAUIYzG4kEF3mxckAPWUkOJPLPP3QEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYtYjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWEx YWY2LzAvMjE4Q0M2RTI0MTA1REU2QzVDOTAwM0Q2NTI0Mzg5M0NCM0NGREQwMS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0lZekc0a0VGM214Y2tBUFdVa09KUExQ UDNRRS5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzcxOGExYjRmLWI2NGMt NDAyYy1iZTE1LWRkODJhNDFhMWFmNi8wL0FTMjA0NzMucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwawYIKwYBBQUHAQcBAf8EXDBaMBoEAgABMBQDBABSJikw DAMEALJTaQMEArJTaDA8BAIAAjA2AwcAKhOVAABhAwcAKhOVAACuAwcAKhOVAADP AwcAKhOVAADdAwcAKhOVAAEMAwcAKhOVAAEgMA0GCSqGSIb3DQEBCwUAA4IBAQCF CMTbMdSY67p5eRG6FyvmEQaHQfCZCaD/CA1SKNSsUhuLEsMSybyqN6WUIBM2KPEt IC9RSV1/PxJr78mrBPtSMlHXsccE2rbz8cZKyvn3LEHnN6N8GpuaJV6fEK7wYfI3 oIGSndELNGTfbZMI2uKz2twR35cS28wzyUdGv7Un1XaHZA9cqp87YNw3JP3GulpK JEkfVA/4rqF2DTpCxeU8erRYNH+3+4AhVm2/QotcUe8svHFCbfx3S2x/NbVUG3N9 2LflF6usTV7vkoNWgIGunYcHyQRjYOvPN7HRE9yyzRLGqTooNLUGFzQ1E/bJMltM +h9DuR0fHEtSV+HqQshO -----END CERTIFICATE-----Generated at Sun Jan 25 12:30:21 2026 by rpki-client