This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS20473.roa File: AS20473.roa (raw, json) Hash identifier: kb1iMup91iIAZnvnyynjIQccgV642qV43gV2EMnQfqk= Subject key identifier: 49:9A:64:41:A3:13:CA:2F:E9:E2:91:CF:B0:0F:FE:8F:71:B3:95:56 Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Certificate serial: 437D93DE66B354CDA97E377F286BA82BA81B87AE Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS20473.roa Signing time: Mon 01 Dec 2025 01:54:26 +0000 ROA not before: Mon 01 Dec 2025 01:49:26 +0000 ROA not after: Mon 30 Nov 2026 01:54:26 +0000 asID: 20473 IP address blocks: 82.38.41.0/24 maxlen: 24 2a13:9500:61::/48 maxlen: 48 2a13:9500:ae::/48 maxlen: 48 2a13:9500:cf::/48 maxlen: 48 2a13:9500:dd::/48 maxlen: 48 2a13:9500:10c::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:7d:93:de:66:b3:54:cd:a9:7e:37:7f:28:6b:a8:2b:a8:1b:87:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Validity Not Before: Dec 1 01:49:26 2025 GMT Not After : Nov 30 01:54:26 2026 GMT Subject: CN=499A6441A313CA2FE9E291CFB00FFE8F71B39556 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:98:88:1c:b4:32:6a:66:a2:a4:6f:00:33:c4: 60:38:45:4a:e1:cc:b9:fd:e9:12:90:13:8e:11:28: 58:47:1b:ef:ea:52:10:46:e1:f3:16:f7:9a:a7:ba: d0:10:c8:ce:dd:bf:39:9e:f2:61:ce:4c:10:fe:42: 9b:67:92:a7:cc:a0:28:e8:2a:35:ce:ad:06:4b:ba: a6:0e:f4:53:a4:d9:56:a0:1c:0d:23:93:98:28:aa: 4d:fb:82:3d:c7:46:92:29:b0:95:e1:2d:c9:24:c3: 9d:f8:9c:30:0c:f6:4a:3a:2e:90:65:5c:d6:7f:df: 24:92:f1:5c:b2:59:7f:ef:e5:3a:65:2a:9c:0d:cf: ff:f8:3b:64:21:b8:08:bb:0c:f9:99:82:17:75:95: be:29:65:12:9a:1c:07:6c:7c:48:eb:70:9e:f6:f8: ad:26:7c:a0:f1:b6:22:21:82:86:6d:0a:51:94:c7: dd:16:ab:97:71:49:10:a0:81:d1:66:92:da:07:bf: 6a:69:00:77:08:ab:1c:3d:0e:9d:34:0a:54:be:b2: 6d:e9:c3:0a:3c:ce:80:d6:97:e8:44:13:e5:4a:b5: 47:bc:94:f8:ba:7a:b3:9a:f1:2d:ee:ce:5f:74:e6: 63:97:11:42:73:e6:f7:a6:16:20:e5:e3:86:78:14: b2:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:9A:64:41:A3:13:CA:2F:E9:E2:91:CF:B0:0F:FE:8F:71:B3:95:56 X509v3 Authority Key Identifier: keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS20473.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 82.38.41.0/24 IPv6: 2a13:9500:61::/48 2a13:9500:ae::/48 2a13:9500:cf::/48 2a13:9500:dd::/48 2a13:9500:10c::/48 Signature Algorithm: sha256WithRSAEncryption 98:c9:dd:f7:ef:71:8e:ed:de:7f:89:d9:b2:a8:d1:3b:9b:77: cc:d5:66:ef:f5:d4:8c:2a:ea:e2:ec:d7:61:55:6c:b5:0f:87: da:ef:46:ac:db:4d:28:c0:66:49:53:c1:cd:aa:e3:f4:75:14: 93:52:1c:fa:96:59:dc:ff:d5:ee:e1:a8:5f:f9:08:0b:b5:70: f1:55:6d:6f:08:58:98:09:84:f9:b2:70:40:78:eb:cd:17:b0: e0:b1:f1:5b:52:8b:52:0a:e9:12:c0:93:c5:96:2d:f7:bf:90: 58:b4:7e:7e:2a:e1:40:b3:90:19:fb:eb:85:46:b7:10:a6:20: 89:1c:e0:e7:71:97:fa:e5:76:42:76:52:b5:00:64:5d:3d:26: 15:27:16:7c:8f:4f:e6:fb:0f:ea:b4:2f:7c:97:57:5a:29:88: d0:97:a3:40:86:2e:53:90:92:57:31:60:b7:42:20:5f:a7:47: fe:97:5e:8c:86:08:b1:78:5a:97:f7:9d:13:20:ac:81:94:da: b2:14:07:56:16:b9:17:b6:7c:15:89:6f:e9:79:f7:b4:b2:2d: 1e:32:9d:03:03:bd:61:d2:74:72:55:89:ea:e9:28:47:40:87: 73:3c:06:48:f3:20:40:c6:ab:65:92:1a:ef:04:27:e0:63:f0: 0f:b3:b2:91 -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUQ32T3mazVM2pfjd/KGuoK6gbh64wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjE4Y2M2ZTI0MTA1ZGU2YzVjOTAwM2Q2NTI0Mzg5M2Ni M2NmZGQwMTAeFw0yNTEyMDEwMTQ5MjZaFw0yNjExMzAwMTU0MjZaMDMxMTAvBgNV BAMTKDQ5OUE2NDQxQTMxM0NBMkZFOUUyOTFDRkIwMEZGRThGNzFCMzk1NTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdmIgctDJqZqKkbwAzxGA4RUrh zLn96RKQE44RKFhHG+/qUhBG4fMW95qnutAQyM7dvzme8mHOTBD+QptnkqfMoCjo KjXOrQZLuqYO9FOk2VagHA0jk5goqk37gj3HRpIpsJXhLckkw534nDAM9ko6LpBl XNZ/3ySS8VyyWX/v5TplKpwNz//4O2QhuAi7DPmZghd1lb4pZRKaHAdsfEjrcJ72 +K0mfKDxtiIhgoZtClGUx90Wq5dxSRCggdFmktoHv2ppAHcIqxw9Dp00ClS+sm3p wwo8zoDWl+hEE+VKtUe8lPi6erOa8S3uzl905mOXEUJz5vemFiDl44Z4FLLNAgMB AAGjggI+MIICOjAdBgNVHQ4EFgQUSZpkQaMTyi/p4pHPsA/+j3GzlVYwHwYDVR0j BBgwFoAUIYzG4kEF3mxckAPWUkOJPLPP3QEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYtYjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWEx YWY2LzAvMjE4Q0M2RTI0MTA1REU2QzVDOTAwM0Q2NTI0Mzg5M0NCM0NGREQwMS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0lZekc0a0VGM214Y2tBUFdVa09KUExQ UDNRRS5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzcxOGExYjRmLWI2NGMt NDAyYy1iZTE1LWRkODJhNDFhMWFmNi8wL0FTMjA0NzMucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwVAYIKwYBBQUHAQcBAf8ERTBDMAwEAgABMAYDBABSJikw MwQCAAIwLQMHACoTlQAAYQMHACoTlQAArgMHACoTlQAAzwMHACoTlQAA3QMHACoT lQABDDANBgkqhkiG9w0BAQsFAAOCAQEAmMnd9+9xju3ef4nZsqjRO5t3zNVm7/XU jCrq4uzXYVVstQ+H2u9GrNtNKMBmSVPBzarj9HUUk1Ic+pZZ3P/V7uGoX/kIC7Vw 8VVtbwhYmAmE+bJwQHjrzRew4LHxW1KLUgrpEsCTxZYt97+QWLR+firhQLOQGfvr hUa3EKYgiRzg53GX+uV2QnZStQBkXT0mFScWfI9P5vsP6rQvfJdXWimI0JejQIYu U5CSVzFgt0IgX6dH/pdejIYIsXhal/edEyCsgZTashQHVha5F7Z8FYlv6Xn3tLIt HjKdAwO9YdJ0clWJ6ukoR0CHczwGSPMgQMarZZIa7wQn4GPwD7OykQ== -----END CERTIFICATE-----Generated at Sat Dec 6 11:47:24 2025 by rpki-client