This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS215152.roa File: AS215152.roa (raw, json) Hash identifier: /5ejW+5Sr4PA4HnlZbbYiWKU7dJJDDfE2umITVRTsr4= Subject key identifier: 03:8F:83:16:83:03:FA:0B:FF:7C:93:9D:A0:86:B9:BA:92:65:EF:40 Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Certificate serial: 79CD98E392A9095CAAC151C79E328AEAD344B1D1 Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS215152.roa Signing time: Sun 25 Jan 2026 02:09:56 +0000 ROA not before: Sun 25 Jan 2026 02:04:56 +0000 ROA not after: Sun 24 Jan 2027 02:09:56 +0000 asID: 215152 IP address blocks: 82.24.25.0/24 maxlen: 24 82.29.6.0/24 maxlen: 24 82.38.61.0/24 maxlen: 24 82.41.75.0/24 maxlen: 24 82.41.122.0/24 maxlen: 24 82.41.196.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 05:21:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:cd:98:e3:92:a9:09:5c:aa:c1:51:c7:9e:32:8a:ea:d3:44:b1:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Validity Not Before: Jan 25 02:04:56 2026 GMT Not After : Jan 24 02:09:56 2027 GMT Subject: CN=038F83168303FA0BFF7C939DA086B9BA9265EF40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:1f:5d:cc:0a:95:01:52:fa:76:c2:5b:bb:fc: 2d:68:20:26:06:73:33:4a:f0:48:c9:82:d3:5d:41: e6:77:a4:80:47:76:e8:8e:23:3d:f3:6f:91:0f:9f: 03:1a:7a:48:0b:f1:06:5e:29:43:22:5c:5c:be:26: 5f:76:81:9a:70:0a:52:ff:ed:3b:1f:c3:bb:2f:31: f4:22:09:c1:c9:41:93:09:33:b0:30:50:32:41:78: 72:bd:f0:42:ed:49:ad:bb:36:57:a9:a9:db:84:91: d2:7b:e2:ac:67:99:2f:3f:8a:70:16:b2:82:2b:e3: bd:1f:a9:25:9a:ee:94:59:d6:c5:c9:ab:7f:37:62: 51:75:76:1a:d2:de:6d:df:cf:40:8e:b7:af:cc:f0: a1:1a:e2:3a:49:94:66:f9:32:c6:1e:d6:3b:f0:6e: b6:ef:32:2c:73:7b:79:e1:38:88:44:a7:f0:f5:a2: ab:dd:07:f9:3e:de:bb:b1:6b:ae:f6:0b:96:69:96: 07:3f:f9:91:58:f4:fc:18:5a:f3:15:fa:22:c8:85: d5:22:f7:46:a6:be:2b:4d:db:0e:41:62:66:c1:a6: 61:ee:c3:1e:e0:f2:67:8b:d3:50:de:84:7a:7f:55: b2:0d:00:fc:ca:33:c3:67:5d:09:76:14:36:42:b4: a4:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:8F:83:16:83:03:FA:0B:FF:7C:93:9D:A0:86:B9:BA:92:65:EF:40 X509v3 Authority Key Identifier: keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS215152.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 82.24.25.0/24 82.29.6.0/24 82.38.61.0/24 82.41.75.0/24 82.41.122.0/24 82.41.196.0/24 Signature Algorithm: sha256WithRSAEncryption 8d:35:e9:91:fe:4a:2c:d2:01:a9:52:5c:1d:b6:6b:37:aa:19: 9f:0f:d0:18:e9:db:46:2c:1f:fa:1b:a8:82:bf:2b:e8:e4:74: 4a:b8:eb:1a:e9:8e:4d:ef:95:4d:87:07:19:5d:4c:f5:17:78: 68:0e:cd:15:a8:ae:b9:12:2d:d5:99:cb:50:97:87:fd:68:b4: b4:ef:87:25:69:27:c6:b0:6d:bb:88:dd:e6:04:78:f0:38:84: 20:b1:38:56:eb:42:ac:40:ea:2e:02:c3:1e:8f:e5:d6:d9:d0: 07:6b:7c:60:9d:bd:22:36:1d:0a:53:3b:70:5d:83:76:bf:cd: ff:74:bb:35:72:15:72:3f:69:91:f9:8a:8e:8b:1f:75:d5:f3: 83:63:2d:8a:7b:14:b5:75:54:34:55:a6:53:31:db:5b:2f:e5: 76:58:c6:37:cc:cb:8e:c8:f8:2e:bb:b7:85:fc:d1:5b:1b:7a: 84:0e:5e:9c:a0:f1:2e:d4:e0:3b:2c:5e:a3:9b:96:aa:a6:c3: 15:11:29:89:24:98:c2:3b:17:7e:98:e1:08:22:51:76:fc:cc: 71:48:96:2f:f1:42:10:b1:49:0b:0b:5b:f5:c5:e6:ad:59:5d: 80:80:2d:6b:ed:eb:6a:64:ca:ad:ed:f1:66:0c:ce:96:bb:25: 54:00:33:83 -----BEGIN CERTIFICATE----- MIIFHjCCBAagAwIBAgIUec2Y45KpCVyqwVHHnjKK6tNEsdEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjE4Y2M2ZTI0MTA1ZGU2YzVjOTAwM2Q2NTI0Mzg5M2Ni M2NmZGQwMTAeFw0yNjAxMjUwMjA0NTZaFw0yNzAxMjQwMjA5NTZaMDMxMTAvBgNV BAMTKDAzOEY4MzE2ODMwM0ZBMEJGRjdDOTM5REEwODZCOUJBOTI2NUVGNDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/H13MCpUBUvp2wlu7/C1oICYG czNK8EjJgtNdQeZ3pIBHduiOIz3zb5EPnwMaekgL8QZeKUMiXFy+Jl92gZpwClL/ 7Tsfw7svMfQiCcHJQZMJM7AwUDJBeHK98ELtSa27NlepqduEkdJ74qxnmS8/inAW soIr470fqSWa7pRZ1sXJq383YlF1dhrS3m3fz0COt6/M8KEa4jpJlGb5MsYe1jvw brbvMixze3nhOIhEp/D1oqvdB/k+3ruxa672C5Zplgc/+ZFY9PwYWvMV+iLIhdUi 90amvitN2w5BYmbBpmHuwx7g8meL01DehHp/VbINAPzKM8NnXQl2FDZCtKRrAgMB AAGjggIoMIICJDAdBgNVHQ4EFgQUA4+DFoMD+gv/fJOdoIa5upJl70AwHwYDVR0j BBgwFoAUIYzG4kEF3mxckAPWUkOJPLPP3QEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYtYjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWEx YWY2LzAvMjE4Q0M2RTI0MTA1REU2QzVDOTAwM0Q2NTI0Mzg5M0NCM0NGREQwMS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0lZekc0a0VGM214Y2tBUFdVa09KUExQ UDNRRS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzcxOGExYjRmLWI2NGMt NDAyYy1iZTE1LWRkODJhNDFhMWFmNi8wL0FTMjE1MTUyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMD0GCCsGAQUFBwEHAQH/BC4wLDAqBAIAATAkAwQAUhgZ AwQAUh0GAwQAUiY9AwQAUilLAwQAUil6AwQAUinEMA0GCSqGSIb3DQEBCwUAA4IB AQCNNemR/kos0gGpUlwdtms3qhmfD9AY6dtGLB/6G6iCvyvo5HRKuOsa6Y5N75VN hwcZXUz1F3hoDs0VqK65Ei3VmctQl4f9aLS074claSfGsG27iN3mBHjwOIQgsThW 60KsQOouAsMej+XW2dAHa3xgnb0iNh0KUztwXYN2v83/dLs1chVyP2mR+YqOix91 1fODYy2KexS1dVQ0VaZTMdtbL+V2WMY3zMuOyPguu7eF/NFbG3qEDl6coPEu1OA7 LF6jm5aqpsMVESmJJJjCOxd+mOEIIlF2/MxxSJYv8UIQsUkLC1v1xeatWV2AgC1r 7etqZMqt7fFmDM6WuyVUADOD -----END CERTIFICATE-----Generated at Sun Jan 25 12:30:39 2026 by rpki-client