This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS215152.roa File: AS215152.roa (raw, json) Hash identifier: 5lxW5JVskcro4LSS1ufma/gOSF+e371xa/Zr1DX6+zg= Subject key identifier: F0:76:B3:D9:51:F7:8F:A6:AA:EF:35:1D:28:3D:82:9B:00:A4:57:EB Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Certificate serial: 53F25FE2D6BF22487D994C5C764B079CB80871DB Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS215152.roa Signing time: Fri 28 Nov 2025 06:46:12 +0000 ROA not before: Fri 28 Nov 2025 06:41:12 +0000 ROA not after: Fri 27 Nov 2026 06:46:12 +0000 asID: 215152 IP address blocks: 82.24.25.0/24 maxlen: 24 82.29.6.0/24 maxlen: 24 82.38.61.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:f2:5f:e2:d6:bf:22:48:7d:99:4c:5c:76:4b:07:9c:b8:08:71:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Validity Not Before: Nov 28 06:41:12 2025 GMT Not After : Nov 27 06:46:12 2026 GMT Subject: CN=F076B3D951F78FA6AAEF351D283D829B00A457EB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:73:2c:ac:bf:fe:13:b6:5e:6f:9a:f0:c4:4e: a6:62:d9:90:ef:73:7b:59:af:e0:c2:8f:57:d5:c0: da:97:bc:d5:5c:a5:32:ac:36:af:c7:da:25:d8:fe: 50:c4:e4:9f:30:5f:02:f0:f7:7b:ad:bb:f4:94:74: 33:ec:2c:6c:4e:aa:e1:9b:1b:fd:c6:6b:2e:d4:22: b0:f2:25:05:00:37:5c:cb:aa:78:1a:3e:b7:a3:db: 01:ae:0f:e1:a7:a3:2e:75:14:d0:4e:60:87:0b:20: 8b:6e:43:15:bc:a9:25:68:68:c9:fe:cf:44:fe:72: f9:ec:3c:0a:76:c3:10:5d:09:f8:96:2b:c3:47:42: 81:5c:1a:e7:66:5b:f3:7a:39:14:0c:6a:63:63:c2: 97:8e:da:bc:f0:12:eb:ef:92:75:3a:07:5c:27:32: e7:e5:77:6a:0b:cf:1e:30:87:af:22:f4:e8:7e:87: 84:9e:3a:b1:2e:29:a5:ba:d6:b0:c8:7e:41:07:77: 3f:6f:46:ab:56:bd:67:33:c8:12:6b:8f:47:eb:fb: aa:44:54:f2:80:7e:19:ed:44:3b:f1:9d:6e:36:e6: 9b:f4:02:eb:43:68:17:3d:ea:de:be:9f:c7:bb:9a: 29:09:24:c9:a7:5d:71:9c:25:ca:bd:13:45:c7:c6: ac:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:76:B3:D9:51:F7:8F:A6:AA:EF:35:1D:28:3D:82:9B:00:A4:57:EB X509v3 Authority Key Identifier: keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS215152.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 82.24.25.0/24 82.29.6.0/24 82.38.61.0/24 Signature Algorithm: sha256WithRSAEncryption 45:97:5b:02:ac:4b:dc:ca:73:f5:d0:d3:92:8d:69:29:d5:f1: e0:c4:ba:cd:ed:10:a5:db:71:6f:8e:53:68:b3:da:4d:98:a5: 4c:76:04:7b:3f:5d:c8:02:a8:8a:ef:38:1d:7d:47:2b:9f:ee: e4:37:a7:e0:1c:28:13:24:a0:df:cb:37:d4:3f:a2:f8:b7:af: ed:9d:be:c3:85:5e:0a:d3:7e:b9:0f:a6:a5:96:2d:ec:39:d0: 45:bf:dd:c1:01:ed:ee:fb:b3:ab:05:81:a5:c7:4b:6f:20:14: ce:7e:b6:9b:24:5d:56:d5:6e:ac:ca:b7:77:45:a5:5a:4f:62: f9:1d:3f:80:88:77:d9:df:59:06:1b:41:ac:48:db:b4:27:33: 2b:6a:4c:10:68:7e:a8:3d:e1:35:b9:d1:f1:89:54:e1:4c:29: 50:23:b6:c7:35:f4:bc:0c:1c:da:01:a7:97:57:06:19:2a:6a: 1f:55:a0:f7:f3:b5:d9:cc:00:a8:16:ad:8d:b7:59:1e:39:44: 68:43:3e:ae:2f:25:c5:1e:56:f3:0e:33:fc:2a:56:56:cb:3a: 55:73:06:ad:b6:27:65:ee:05:11:e6:59:9c:b6:27:41:46:42: 51:4c:ed:60:00:1d:d6:cf:34:ca:89:20:79:a8:f8:83:29:98: 19:4d:72:41 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgIUU/Jf4ta/Ikh9mUxcdksHnLgIcdswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjE4Y2M2ZTI0MTA1ZGU2YzVjOTAwM2Q2NTI0Mzg5M2Ni M2NmZGQwMTAeFw0yNTExMjgwNjQxMTJaFw0yNjExMjcwNjQ2MTJaMDMxMTAvBgNV BAMTKEYwNzZCM0Q5NTFGNzhGQTZBQUVGMzUxRDI4M0Q4MjlCMDBBNDU3RUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxcyysv/4Ttl5vmvDETqZi2ZDv c3tZr+DCj1fVwNqXvNVcpTKsNq/H2iXY/lDE5J8wXwLw93utu/SUdDPsLGxOquGb G/3Gay7UIrDyJQUAN1zLqngaPrej2wGuD+Gnoy51FNBOYIcLIItuQxW8qSVoaMn+ z0T+cvnsPAp2wxBdCfiWK8NHQoFcGudmW/N6ORQMamNjwpeO2rzwEuvvknU6B1wn Mufld2oLzx4wh68i9Oh+h4SeOrEuKaW61rDIfkEHdz9vRqtWvWczyBJrj0fr+6pE VPKAfhntRDvxnW425pv0AutDaBc96t6+n8e7mikJJMmnXXGcJcq9E0XHxqzBAgMB AAGjggIWMIICEjAdBgNVHQ4EFgQU8Haz2VH3j6aq7zUdKD2CmwCkV+swHwYDVR0j BBgwFoAUIYzG4kEF3mxckAPWUkOJPLPP3QEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYtYjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWEx YWY2LzAvMjE4Q0M2RTI0MTA1REU2QzVDOTAwM0Q2NTI0Mzg5M0NCM0NGREQwMS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0lZekc0a0VGM214Y2tBUFdVa09KUExQ UDNRRS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzcxOGExYjRmLWI2NGMt NDAyYy1iZTE1LWRkODJhNDFhMWFmNi8wL0FTMjE1MTUyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQAUhgZ AwQAUh0GAwQAUiY9MA0GCSqGSIb3DQEBCwUAA4IBAQBFl1sCrEvcynP10NOSjWkp 1fHgxLrN7RCl23FvjlNos9pNmKVMdgR7P13IAqiK7zgdfUcrn+7kN6fgHCgTJKDf yzfUP6L4t6/tnb7DhV4K0365D6alli3sOdBFv93BAe3u+7OrBYGlx0tvIBTOfrab JF1W1W6syrd3RaVaT2L5HT+AiHfZ31kGG0GsSNu0JzMrakwQaH6oPeE1udHxiVTh TClQI7bHNfS8DBzaAaeXVwYZKmofVaD387XZzACoFq2Nt1keOURoQz6uLyXFHlbz DjP8KlZWyzpVcwattidl7gUR5lmctidBRkJRTO1gAB3WzzTKiSB5qPiDKZgZTXJB -----END CERTIFICATE-----Generated at Sat Dec 6 21:47:18 2025 by rpki-client