This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS212238.roa File: AS212238.roa (raw, json) Hash identifier: XCO65DUgtpI43YjF6BZ2jewkDMwDccvGcjwet0/xHCk= Subject key identifier: 73:3C:E9:90:6F:73:66:09:0A:3E:13:40:0C:72:07:46:D4:CB:EA:D0 Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Certificate serial: 261BC45B5223E8FCBC0C4DCF6EA7FB1DEACA4531 Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS212238.roa Signing time: Tue 09 Dec 2025 00:00:22 +0000 ROA not before: Mon 08 Dec 2025 23:55:22 +0000 ROA not after: Tue 08 Dec 2026 00:00:22 +0000 asID: 212238 IP address blocks: 82.21.2.0/24 maxlen: 24 82.21.56.0/24 maxlen: 24 82.21.59.0/24 maxlen: 24 82.21.68.0/24 maxlen: 24 82.21.70.0/24 maxlen: 24 82.21.87.0/24 maxlen: 24 82.21.108.0/24 maxlen: 24 82.21.133.0/24 maxlen: 24 82.21.141.0/24 maxlen: 24 82.21.142.0/24 maxlen: 24 82.21.151.0/24 maxlen: 24 82.21.158.0/24 maxlen: 24 82.21.159.0/24 maxlen: 24 82.21.168.0/24 maxlen: 24 82.21.175.0/24 maxlen: 24 82.21.189.0/24 maxlen: 24 82.21.191.0/24 maxlen: 24 82.21.193.0/24 maxlen: 24 82.21.211.0/24 maxlen: 24 82.21.243.0/24 maxlen: 24 82.22.65.0/24 maxlen: 24 82.22.79.0/24 maxlen: 24 82.22.85.0/24 maxlen: 24 82.22.87.0/24 maxlen: 24 82.22.147.0/24 maxlen: 24 82.22.212.0/24 maxlen: 24 82.22.222.0/24 maxlen: 24 82.22.243.0/24 maxlen: 24 82.22.253.0/24 maxlen: 24 82.23.17.0/24 maxlen: 24 82.23.18.0/24 maxlen: 24 82.23.21.0/24 maxlen: 24 82.23.22.0/24 maxlen: 24 82.23.37.0/24 maxlen: 24 82.23.38.0/24 maxlen: 24 82.23.119.0/24 maxlen: 24 82.23.120.0/24 maxlen: 24 82.23.121.0/24 maxlen: 24 82.23.122.0/24 maxlen: 24 82.23.126.0/24 maxlen: 24 82.23.145.0/24 maxlen: 24 82.23.146.0/24 maxlen: 24 82.23.217.0/24 maxlen: 24 82.23.229.0/24 maxlen: 24 82.23.233.0/24 maxlen: 24 82.23.243.0/24 maxlen: 24 82.23.253.0/24 maxlen: 24 82.23.254.0/24 maxlen: 24 82.23.255.0/24 maxlen: 24 82.24.34.0/24 maxlen: 24 82.24.46.0/24 maxlen: 24 82.24.112.0/24 maxlen: 24 82.24.182.0/24 maxlen: 24 82.24.215.0/24 maxlen: 24 82.24.239.0/24 maxlen: 24 82.24.243.0/24 maxlen: 24 82.24.253.0/24 maxlen: 24 82.25.34.0/24 maxlen: 24 82.25.212.0/24 maxlen: 24 82.25.219.0/24 maxlen: 24 82.25.243.0/24 maxlen: 24 82.25.253.0/24 maxlen: 24 82.26.237.0/24 maxlen: 24 82.26.253.0/24 maxlen: 24 82.27.130.0/24 maxlen: 24 82.27.213.0/24 maxlen: 24 82.27.222.0/24 maxlen: 24 82.27.225.0/24 maxlen: 24 82.27.234.0/24 maxlen: 24 82.27.238.0/24 maxlen: 24 82.27.253.0/24 maxlen: 24 82.29.92.0/24 maxlen: 24 82.29.94.0/24 maxlen: 24 82.29.96.0/24 maxlen: 24 82.29.97.0/24 maxlen: 24 82.29.100.0/24 maxlen: 24 82.29.101.0/24 maxlen: 24 82.29.125.0/24 maxlen: 24 82.29.202.0/24 maxlen: 24 82.29.215.0/24 maxlen: 24 82.29.217.0/24 maxlen: 24 82.29.228.0/24 maxlen: 24 82.29.233.0/24 maxlen: 24 82.29.242.0/24 maxlen: 24 82.29.243.0/24 maxlen: 24 82.38.129.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 16 Dec 2025 12:52:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:1b:c4:5b:52:23:e8:fc:bc:0c:4d:cf:6e:a7:fb:1d:ea:ca:45:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Validity Not Before: Dec 8 23:55:22 2025 GMT Not After : Dec 8 00:00:22 2026 GMT Subject: CN=733CE9906F7366090A3E13400C720746D4CBEAD0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:16:c7:c5:56:7b:7e:7b:8a:ca:98:35:31:e2: d9:96:3d:a4:0e:a7:c1:15:62:e8:6d:80:16:3b:1d: 85:e1:43:8c:c5:c5:ee:71:1b:22:45:12:0b:b3:49: e0:d4:af:f6:6b:94:e0:e8:f4:02:0e:f5:96:95:7d: 32:a7:db:6b:75:34:e4:b6:78:5c:12:b6:b2:cb:44: 13:d3:8d:54:0a:80:99:dd:22:ba:a1:31:a8:3b:05: 9d:af:32:e0:61:3e:f1:d9:1c:9f:9f:1a:50:ba:61: 75:ca:18:55:92:38:93:5d:5e:5b:d3:67:d2:d1:6e: 29:41:14:e5:8d:14:48:1d:c1:48:1c:d9:66:39:cf: 5b:45:e8:85:34:d7:e7:1e:28:35:eb:80:cd:7f:58: 05:a7:9e:b5:cc:5b:47:b9:99:c9:7c:0f:5a:58:4d: 8e:ec:fc:5b:c6:08:c5:f1:28:8a:f5:1c:ba:cf:cd: 0e:51:2e:79:14:07:85:81:54:97:a9:48:95:23:1f: 0f:f2:74:7a:c5:de:22:f8:a3:ed:54:f5:64:bd:ab: 99:e8:8d:81:3d:df:ac:04:15:4b:be:25:e7:fc:55: a9:b8:14:b0:64:81:57:26:98:c2:c9:ab:58:f7:12: 69:79:b6:d8:35:c0:45:47:03:99:ce:9d:49:42:aa: f0:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:3C:E9:90:6F:73:66:09:0A:3E:13:40:0C:72:07:46:D4:CB:EA:D0 X509v3 Authority Key Identifier: keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS212238.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 82.21.2.0/24 82.21.56.0/24 82.21.59.0/24 82.21.68.0/24 82.21.70.0/24 82.21.87.0/24 82.21.108.0/24 82.21.133.0/24 82.21.141.0-82.21.142.255 82.21.151.0/24 82.21.158.0/23 82.21.168.0/24 82.21.175.0/24 82.21.189.0/24 82.21.191.0/24 82.21.193.0/24 82.21.211.0/24 82.21.243.0/24 82.22.65.0/24 82.22.79.0/24 82.22.85.0/24 82.22.87.0/24 82.22.147.0/24 82.22.212.0/24 82.22.222.0/24 82.22.243.0/24 82.22.253.0/24 82.23.17.0-82.23.18.255 82.23.21.0-82.23.22.255 82.23.37.0-82.23.38.255 82.23.119.0-82.23.122.255 82.23.126.0/24 82.23.145.0-82.23.146.255 82.23.217.0/24 82.23.229.0/24 82.23.233.0/24 82.23.243.0/24 82.23.253.0-82.23.255.255 82.24.34.0/24 82.24.46.0/24 82.24.112.0/24 82.24.182.0/24 82.24.215.0/24 82.24.239.0/24 82.24.243.0/24 82.24.253.0/24 82.25.34.0/24 82.25.212.0/24 82.25.219.0/24 82.25.243.0/24 82.25.253.0/24 82.26.237.0/24 82.26.253.0/24 82.27.130.0/24 82.27.213.0/24 82.27.222.0/24 82.27.225.0/24 82.27.234.0/24 82.27.238.0/24 82.27.253.0/24 82.29.92.0/24 82.29.94.0/24 82.29.96.0/23 82.29.100.0/23 82.29.125.0/24 82.29.202.0/24 82.29.215.0/24 82.29.217.0/24 82.29.228.0/24 82.29.233.0/24 82.29.242.0/23 82.38.129.0/24 Signature Algorithm: sha256WithRSAEncryption 37:c0:cf:fd:e7:97:2a:ec:8e:89:34:61:d5:36:b6:29:be:74: d7:53:e8:5c:53:30:18:52:88:f3:d5:88:ca:2a:b3:99:3d:ee: 62:b5:1a:96:7c:e2:ec:99:45:1c:ef:0b:85:e7:a8:2e:a2:59: 03:27:94:cd:0d:84:21:03:48:85:f5:24:9e:28:3a:38:91:a3: c3:69:81:a2:b7:16:e8:82:12:2a:12:4f:47:ec:61:70:83:aa: 71:7d:76:a2:94:dd:43:26:8b:88:a4:b1:c3:41:d9:5d:79:de: af:42:5d:31:c9:75:08:bc:53:83:01:5e:cc:78:f7:60:08:e0: 5f:d1:1b:d3:ad:e3:19:d8:51:f1:24:48:31:3b:09:cd:86:27: 0e:cc:d8:9d:73:7a:5a:82:5b:1b:d0:7b:df:8e:be:de:e5:b5: de:b3:99:83:42:01:a5:9e:85:2e:5e:5a:bb:5c:49:b6:6c:e3: c7:2d:2a:8f:36:4d:0f:f9:82:f6:67:ed:92:0d:1e:88:79:db: f2:8b:45:d0:8d:39:0f:f0:12:e7:55:a3:66:fb:aa:7e:62:83: a3:2a:c3:fe:d2:71:b2:04:c1:83:b0:37:ec:dc:c7:b6:23:10: 52:a3:2d:de:c0:db:73:28:3f:6f:a3:9e:21:9d:42:82:3c:d5: 7a:08:39:3d -----BEGIN CERTIFICATE----- MIIG6zCCBdOgAwIBAgIUJhvEW1Ij6Py8DE3Pbqf7HerKRTEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjE4Y2M2ZTI0MTA1ZGU2YzVjOTAwM2Q2NTI0Mzg5M2Ni M2NmZGQwMTAeFw0yNTEyMDgyMzU1MjJaFw0yNjEyMDgwMDAwMjJaMDMxMTAvBgNV BAMTKDczM0NFOTkwNkY3MzY2MDkwQTNFMTM0MDBDNzIwNzQ2RDRDQkVBRDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCSFsfFVnt+e4rKmDUx4tmWPaQO p8EVYuhtgBY7HYXhQ4zFxe5xGyJFEguzSeDUr/ZrlODo9AIO9ZaVfTKn22t1NOS2 eFwStrLLRBPTjVQKgJndIrqhMag7BZ2vMuBhPvHZHJ+fGlC6YXXKGFWSOJNdXlvT Z9LRbilBFOWNFEgdwUgc2WY5z1tF6IU01+ceKDXrgM1/WAWnnrXMW0e5mcl8D1pY TY7s/FvGCMXxKIr1HLrPzQ5RLnkUB4WBVJepSJUjHw/ydHrF3iL4o+1U9WS9q5no jYE936wEFUu+Jef8Vam4FLBkgVcmmMLJq1j3Eml5ttg1wEVHA5nOnUlCqvBRAgMB AAGjggP1MIID8TAdBgNVHQ4EFgQUczzpkG9zZgkKPhNADHIHRtTL6tAwHwYDVR0j BBgwFoAUIYzG4kEF3mxckAPWUkOJPLPP3QEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYtYjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWEx YWY2LzAvMjE4Q0M2RTI0MTA1REU2QzVDOTAwM0Q2NTI0Mzg5M0NCM0NGREQwMS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0lZekc0a0VGM214Y2tBUFdVa09KUExQ UDNRRS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzcxOGExYjRmLWI2NGMt NDAyYy1iZTE1LWRkODJhNDFhMWFmNi8wL0FTMjEyMjM4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMIICCAYIKwYBBQUHAQcBAf8EggH3MIIB8zCCAe8EAgAB MIIB5wMEAFIVAgMEAFIVOAMEAFIVOwMEAFIVRAMEAFIVRgMEAFIVVwMEAFIVbAME AFIVhTAMAwQAUhWNAwQAUhWOAwQAUhWXAwQBUhWeAwQAUhWoAwQAUhWvAwQAUhW9 AwQAUhW/AwQAUhXBAwQAUhXTAwQAUhXzAwQAUhZBAwQAUhZPAwQAUhZVAwQAUhZX AwQAUhaTAwQAUhbUAwQAUhbeAwQAUhbzAwQAUhb9MAwDBABSFxEDBABSFxIwDAME AFIXFQMEAFIXFjAMAwQAUhclAwQAUhcmMAwDBABSF3cDBABSF3oDBABSF34wDAME AFIXkQMEAFIXkgMEAFIX2QMEAFIX5QMEAFIX6QMEAFIX8zALAwQAUhf9AwMDUhAD BABSGCIDBABSGC4DBABSGHADBABSGLYDBABSGNcDBABSGO8DBABSGPMDBABSGP0D BABSGSIDBABSGdQDBABSGdsDBABSGfMDBABSGf0DBABSGu0DBABSGv0DBABSG4ID BABSG9UDBABSG94DBABSG+EDBABSG+oDBABSG+4DBABSG/0DBABSHVwDBABSHV4D BAFSHWADBAFSHWQDBABSHX0DBABSHcoDBABSHdcDBABSHdkDBABSHeQDBABSHekD BAFSHfIDBABSJoEwDQYJKoZIhvcNAQELBQADggEBADfAz/3nlyrsjok0YdU2tim+ dNdT6FxTMBhSiPPViMoqs5k97mK1GpZ84uyZRRzvC4XnqC6iWQMnlM0NhCEDSIX1 JJ4oOjiRo8NpgaK3FuiCEioST0fsYXCDqnF9dqKU3UMmi4ikscNB2V153q9CXTHJ dQi8U4MBXsx492AI4F/RG9Ot4xnYUfEkSDE7Cc2GJw7M2J1zelqCWxvQe9+Ovt7l td6zmYNCAaWehS5eWrtcSbZs48ctKo82TQ/5gvZn7ZINHoh52/KLRdCNOQ/wEudV o2b7qn5ig6Mqw/7ScbIEwYOwN+zcx7YjEFKjLd7A23MoP2+jniGdQoI81XoIOT0= -----END CERTIFICATE-----Generated at Mon Dec 15 17:03:30 2025 by rpki-client