This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS213724.roa File: AS213724.roa (raw, json) Hash identifier: DUPJxIkFpLj0RnpSUdfyP7oXk8F3qsUEbhXRqbf+f58= Subject key identifier: 87:9B:16:06:ED:84:C6:D7:3D:2A:80:95:85:41:A6:94:C5:04:59:D2 Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Certificate serial: 02F54A0D4EA688DBF03C7F7139780AFDC26895A6 Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS213724.roa Signing time: Thu 15 Jan 2026 11:05:26 +0000 ROA not before: Thu 15 Jan 2026 11:00:26 +0000 ROA not after: Thu 14 Jan 2027 11:05:26 +0000 asID: 213724 IP address blocks: 82.24.191.0/24 maxlen: 24 82.40.55.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 05:21:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:f5:4a:0d:4e:a6:88:db:f0:3c:7f:71:39:78:0a:fd:c2:68:95:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Validity Not Before: Jan 15 11:00:26 2026 GMT Not After : Jan 14 11:05:26 2027 GMT Subject: CN=879B1606ED84C6D73D2A80958541A694C50459D2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:d4:86:d4:17:7e:11:86:64:97:e7:f8:83:d4: c4:41:21:13:05:f5:d5:ce:df:44:7f:d5:18:08:0f: cc:ee:35:92:d6:53:3e:ca:6f:be:ea:f3:ff:27:a3: 1b:92:5d:73:24:71:4b:a3:2a:c5:7c:09:41:83:89: 8f:bc:e6:02:74:12:2f:4d:34:cf:52:7f:33:c5:e4: 24:d9:7f:d9:a9:30:d0:c9:94:72:46:c0:a6:7a:69: ef:2d:a3:e2:0d:c8:44:97:42:44:c3:50:1e:12:82: 32:5f:4a:8a:99:15:24:e1:2e:37:12:8f:db:f3:79: 42:35:2c:97:65:bd:fc:04:e9:40:05:c8:78:b2:9e: e6:0d:3f:b6:50:2a:54:50:c1:b9:66:2e:16:75:a9: c7:5e:04:fb:a8:4c:40:35:5f:f9:04:43:10:7b:c8: 28:96:87:0f:4f:f0:6d:b6:b6:bc:2c:44:71:1a:c4: e9:b4:9d:fc:76:b2:95:39:3d:7d:e4:c3:c2:17:f5: 5e:35:c6:c0:aa:90:22:b7:4b:bc:cb:50:8b:3f:f2: a8:94:36:ab:07:f6:7a:a7:93:1b:86:0c:cd:5d:72: bb:53:59:18:f7:99:96:5f:be:dc:91:a7:8a:08:dd: 1e:6d:bd:0a:f1:cd:a1:1c:ef:39:fd:f4:68:ff:a6: 95:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:9B:16:06:ED:84:C6:D7:3D:2A:80:95:85:41:A6:94:C5:04:59:D2 X509v3 Authority Key Identifier: keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS213724.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 82.24.191.0/24 82.40.55.0/24 Signature Algorithm: sha256WithRSAEncryption 72:9c:c9:4c:e6:85:6e:33:3d:a6:12:2e:db:c5:3d:fc:e0:c9: 2a:99:9f:4e:64:6f:9e:db:f0:17:80:70:a5:52:f3:b0:da:a0: dd:2d:0b:bc:63:df:05:4d:cc:c3:87:49:e9:3a:da:e4:95:31: b9:01:a1:44:48:35:c5:2f:a9:f8:b6:01:a5:2a:99:fc:f9:9d: 63:de:63:fa:6a:74:bb:90:93:7c:ad:33:26:be:77:73:cf:9b: 8c:23:e6:13:9e:3c:52:d5:73:b3:ad:14:4e:fb:b3:9a:45:a2: 34:f0:78:aa:e3:70:ab:ee:b3:1f:14:0d:20:ac:5d:8c:af:2f: dd:17:f8:71:38:3c:56:db:6e:4b:01:38:a8:bb:98:9b:dc:e2: e7:cc:11:26:e5:7f:b1:02:a5:21:c1:60:52:c8:6e:fb:13:d1: 72:48:72:e1:0d:00:35:86:c1:58:f3:2d:f1:50:68:c5:0a:22: 22:8d:07:38:0d:94:c7:14:e8:42:ec:3a:86:e8:83:12:c5:ba: f5:0e:1d:b3:38:5f:bf:d3:e9:b5:6c:db:22:9d:f9:03:d5:8d: 87:e1:da:81:8f:d4:89:88:22:07:7d:7c:ca:a9:f6:ae:c1:ce: 46:39:46:cc:cb:b0:ed:3b:40:29:6d:75:77:ed:ca:7a:44:8f: dd:cc:f5:7e -----BEGIN CERTIFICATE----- MIIFBjCCA+6gAwIBAgIUAvVKDU6miNvwPH9xOXgK/cJolaYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjE4Y2M2ZTI0MTA1ZGU2YzVjOTAwM2Q2NTI0Mzg5M2Ni M2NmZGQwMTAeFw0yNjAxMTUxMTAwMjZaFw0yNzAxMTQxMTA1MjZaMDMxMTAvBgNV BAMTKDg3OUIxNjA2RUQ4NEM2RDczRDJBODA5NTg1NDFBNjk0QzUwNDU5RDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCp1IbUF34RhmSX5/iD1MRBIRMF 9dXO30R/1RgID8zuNZLWUz7Kb77q8/8noxuSXXMkcUujKsV8CUGDiY+85gJ0Ei9N NM9SfzPF5CTZf9mpMNDJlHJGwKZ6ae8to+INyESXQkTDUB4SgjJfSoqZFSThLjcS j9vzeUI1LJdlvfwE6UAFyHiynuYNP7ZQKlRQwblmLhZ1qcdeBPuoTEA1X/kEQxB7 yCiWhw9P8G22trwsRHEaxOm0nfx2spU5PX3kw8IX9V41xsCqkCK3S7zLUIs/8qiU NqsH9nqnkxuGDM1dcrtTWRj3mZZfvtyRp4oI3R5tvQrxzaEc7zn99Gj/ppU/AgMB AAGjggIQMIICDDAdBgNVHQ4EFgQUh5sWBu2Extc9KoCVhUGmlMUEWdIwHwYDVR0j BBgwFoAUIYzG4kEF3mxckAPWUkOJPLPP3QEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYtYjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWEx YWY2LzAvMjE4Q0M2RTI0MTA1REU2QzVDOTAwM0Q2NTI0Mzg5M0NCM0NGREQwMS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0lZekc0a0VGM214Y2tBUFdVa09KUExQ UDNRRS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzcxOGExYjRmLWI2NGMt NDAyYy1iZTE1LWRkODJhNDFhMWFmNi8wL0FTMjEzNzI0LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAUhi/ AwQAUig3MA0GCSqGSIb3DQEBCwUAA4IBAQBynMlM5oVuMz2mEi7bxT384MkqmZ9O ZG+e2/AXgHClUvOw2qDdLQu8Y98FTczDh0npOtrklTG5AaFESDXFL6n4tgGlKpn8 +Z1j3mP6anS7kJN8rTMmvndzz5uMI+YTnjxS1XOzrRRO+7OaRaI08Hiq43Cr7rMf FA0grF2Mry/dF/hxODxW225LATiou5ib3OLnzBEm5X+xAqUhwWBSyG77E9FySHLh DQA1hsFY8y3xUGjFCiIijQc4DZTHFOhC7DqG6IMSxbr1Dh2zOF+/0+m1bNsinfkD 1Y2H4dqBj9SJiCIHfXzKqfauwc5GOUbMy7DtO0ApbXV37cp6RI/dzPV+ -----END CERTIFICATE-----Generated at Sun Jan 25 12:30:36 2026 by rpki-client