This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS21859.roa File: AS21859.roa (raw, json) Hash identifier: 66TPmiPU2jojtGxrJd8nfv0upTUicYv1l7QgmQ3iiSM= Subject key identifier: 61:BF:D4:44:65:D2:61:2F:F3:09:8D:71:A3:E5:BF:F8:83:59:E8:1C Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Certificate serial: 76E75E504A9ECDA57FE7E3126A8D25E5AA6850E0 Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS21859.roa Signing time: Mon 24 Nov 2025 05:14:09 +0000 ROA not before: Mon 24 Nov 2025 05:09:09 +0000 ROA not after: Mon 23 Nov 2026 05:14:09 +0000 asID: 21859 IP address blocks: 82.21.188.0/24 maxlen: 24 82.22.45.0/24 maxlen: 24 82.22.187.0/24 maxlen: 24 82.23.172.0/24 maxlen: 24 82.25.35.0/24 maxlen: 24 82.27.197.0/24 maxlen: 24 82.38.42.0/24 maxlen: 24 82.38.43.0/24 maxlen: 24 2a13:9500:aa::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:e7:5e:50:4a:9e:cd:a5:7f:e7:e3:12:6a:8d:25:e5:aa:68:50:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Validity Not Before: Nov 24 05:09:09 2025 GMT Not After : Nov 23 05:14:09 2026 GMT Subject: CN=61BFD44465D2612FF3098D71A3E5BFF88359E81C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:ef:42:5b:54:7d:e3:cf:6f:58:d1:a0:6c:de: 54:88:c8:bb:35:e9:a6:98:78:e2:26:46:f8:93:e0: 61:dc:f1:38:3c:52:35:34:f4:08:7f:da:21:cb:59: 1d:33:6e:9e:87:5d:20:75:84:7c:48:e4:60:88:e6: 89:39:66:f2:62:77:6f:94:b4:c0:83:cd:b0:4e:85: f3:38:cf:60:65:53:d3:a0:e0:1e:33:b4:fa:24:f6: c9:92:b9:03:96:a8:ad:c8:3f:f6:22:a5:91:2e:c0: 17:d2:d0:62:ac:ff:3e:5e:21:ae:02:f8:dd:37:fe: db:6f:f3:d8:3f:44:66:6d:e0:79:71:a2:c1:7e:bb: 4f:52:bd:02:bc:bb:b2:8a:6e:d7:95:96:c4:8c:6a: 1b:64:ff:8f:61:fc:73:bf:1d:c8:fe:33:e6:be:bd: f5:4b:96:bf:b7:d1:d3:6d:b9:1a:9a:a4:58:72:a1: 15:10:36:7c:88:7d:e7:d5:7f:e1:a8:59:4d:95:8f: 07:1d:c3:80:6e:c3:e2:3c:ef:94:cf:cb:93:f7:66: 0e:4f:20:af:3c:01:9d:8f:98:6a:11:d0:6c:c9:cc: 89:74:54:36:df:3c:0c:7e:e1:d5:ff:5c:74:1d:ce: 96:ea:45:0f:55:8c:96:0a:6a:74:95:23:34:d9:f8: e5:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:BF:D4:44:65:D2:61:2F:F3:09:8D:71:A3:E5:BF:F8:83:59:E8:1C X509v3 Authority Key Identifier: keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS21859.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 82.21.188.0/24 82.22.45.0/24 82.22.187.0/24 82.23.172.0/24 82.25.35.0/24 82.27.197.0/24 82.38.42.0/23 IPv6: 2a13:9500:aa::/48 Signature Algorithm: sha256WithRSAEncryption 9f:52:e0:21:69:7e:e6:dc:0c:72:33:a6:04:98:77:67:29:9c: 77:28:4e:47:a4:d9:2c:d6:55:76:07:59:0d:c1:fe:c0:b0:7e: ed:b8:08:e9:9f:6e:39:50:d4:18:2c:94:57:76:25:af:3e:10: 65:51:cd:d6:2e:ed:aa:6e:af:1e:a4:9b:09:31:e6:62:50:ee: 9d:c1:23:c3:38:83:5e:64:f8:21:6c:3c:b2:6e:39:d0:11:f6: 61:f7:c0:47:7c:09:44:7f:f1:e6:b4:52:af:bb:72:e9:9a:7e: cf:15:bf:5c:36:5d:47:30:1a:2e:7d:91:9a:3a:aa:d0:1f:39: a5:6c:6f:76:cf:18:d8:74:e0:34:64:27:11:77:c7:98:da:db: 1f:a1:a6:06:35:72:84:5d:25:e8:a2:09:9d:4e:fa:9f:6a:12: 01:d3:b8:df:d7:0e:59:30:fe:73:6c:27:40:5f:da:55:45:4b: 3e:52:b3:d3:ab:28:21:6a:86:5f:b1:b7:c3:d4:d5:bc:84:13: b9:6f:9c:19:6b:e1:cf:0a:0f:82:56:64:b2:54:fb:c4:d0:3f: da:4b:0d:5a:28:41:a8:eb:0d:6e:d0:09:1d:d7:cd:e3:16:f6: c2:ea:88:5a:3e:3d:23:ce:11:62:33:6a:e2:d1:ed:e7:a6:bb: b2:6c:2b:f0 -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUdudeUEqezaV/5+MSao0l5apoUOAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjE4Y2M2ZTI0MTA1ZGU2YzVjOTAwM2Q2NTI0Mzg5M2Ni M2NmZGQwMTAeFw0yNTExMjQwNTA5MDlaFw0yNjExMjMwNTE0MDlaMDMxMTAvBgNV BAMTKDYxQkZENDQ0NjVEMjYxMkZGMzA5OEQ3MUEzRTVCRkY4ODM1OUU4MUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDL70JbVH3jz29Y0aBs3lSIyLs1 6aaYeOImRviT4GHc8Tg8UjU09Ah/2iHLWR0zbp6HXSB1hHxI5GCI5ok5ZvJid2+U tMCDzbBOhfM4z2BlU9Og4B4ztPok9smSuQOWqK3IP/YipZEuwBfS0GKs/z5eIa4C +N03/ttv89g/RGZt4HlxosF+u09SvQK8u7KKbteVlsSMahtk/49h/HO/Hcj+M+a+ vfVLlr+30dNtuRqapFhyoRUQNnyIfefVf+GoWU2Vjwcdw4Buw+I875TPy5P3Zg5P IK88AZ2PmGoR0GzJzIl0VDbfPAx+4dX/XHQdzpbqRQ9VjJYKanSVIzTZ+OVPAgMB AAGjggI+MIICOjAdBgNVHQ4EFgQUYb/URGXSYS/zCY1xo+W/+INZ6BwwHwYDVR0j BBgwFoAUIYzG4kEF3mxckAPWUkOJPLPP3QEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYtYjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWEx YWY2LzAvMjE4Q0M2RTI0MTA1REU2QzVDOTAwM0Q2NTI0Mzg5M0NCM0NGREQwMS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0lZekc0a0VGM214Y2tBUFdVa09KUExQ UDNRRS5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzcxOGExYjRmLWI2NGMt NDAyYy1iZTE1LWRkODJhNDFhMWFmNi8wL0FTMjE4NTkucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwVAYIKwYBBQUHAQcBAf8ERTBDMDAEAgABMCoDBABSFbwD BABSFi0DBABSFrsDBABSF6wDBABSGSMDBABSG8UDBAFSJiowDwQCAAIwCQMHACoT lQAAqjANBgkqhkiG9w0BAQsFAAOCAQEAn1LgIWl+5twMcjOmBJh3ZymcdyhOR6TZ LNZVdgdZDcH+wLB+7bgI6Z9uOVDUGCyUV3Ylrz4QZVHN1i7tqm6vHqSbCTHmYlDu ncEjwziDXmT4IWw8sm450BH2YffAR3wJRH/x5rRSr7ty6Zp+zxW/XDZdRzAaLn2R mjqq0B85pWxvds8Y2HTgNGQnEXfHmNrbH6GmBjVyhF0l6KIJnU76n2oSAdO439cO WTD+c2wnQF/aVUVLPlKz06soIWqGX7G3w9TVvIQTuW+cGWvhzwoPglZkslT7xNA/ 2ksNWihBqOsNbtAJHdfN4xb2wuqIWj49I84RYjNq4tHt56a7smwr8A== -----END CERTIFICATE-----Generated at Sat Dec 6 11:47:45 2025 by rpki-client