This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS25198.roa File: AS25198.roa (raw, json) Hash identifier: RnQo8dk4F9ROVNJcqrJ0h/OHNDOyfb+fY4uiheS6eMs= Subject key identifier: 95:8D:A8:C5:A1:99:10:54:8D:51:1C:8B:75:1F:2F:4C:DC:AC:27:E6 Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Certificate serial: 05D343C66C4B81B35383B8BBBA011BD575D9BB1E Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS25198.roa Signing time: Thu 04 Dec 2025 10:43:53 +0000 ROA not before: Thu 04 Dec 2025 10:38:53 +0000 ROA not after: Thu 03 Dec 2026 10:43:53 +0000 asID: 25198 IP address blocks: 82.21.7.0/24 maxlen: 24 82.22.126.0/24 maxlen: 24 82.22.196.0/24 maxlen: 24 82.23.163.0/24 maxlen: 24 82.23.248.0/24 maxlen: 24 82.24.81.0/24 maxlen: 24 82.24.110.0/24 maxlen: 24 82.24.144.0/24 maxlen: 24 82.25.11.0/24 maxlen: 24 82.25.39.0/24 maxlen: 24 82.25.60.0/24 maxlen: 24 82.25.200.0/24 maxlen: 24 82.26.113.0/24 maxlen: 24 82.26.202.0/24 maxlen: 24 82.27.117.0/24 maxlen: 24 82.27.118.0/24 maxlen: 24 82.38.17.0/24 maxlen: 24 82.38.19.0/24 maxlen: 24 82.38.40.0/24 maxlen: 24 82.38.44.0/24 maxlen: 24 82.38.63.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:d3:43:c6:6c:4b:81:b3:53:83:b8:bb:ba:01:1b:d5:75:d9:bb:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Validity Not Before: Dec 4 10:38:53 2025 GMT Not After : Dec 3 10:43:53 2026 GMT Subject: CN=958DA8C5A19910548D511C8B751F2F4CDCAC27E6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:88:e8:99:b4:88:bd:7f:be:a9:5d:88:b9:21: 8d:68:f0:4c:b0:5b:75:76:f9:e9:fe:b3:78:22:4a: f1:c3:f7:3c:e1:a0:d0:9a:e7:7a:8c:d3:48:37:fb: 75:26:c4:ed:0d:38:2d:72:20:8a:fd:fb:4a:c3:e7: 04:d3:48:45:45:31:6e:8c:58:2b:09:54:0b:8a:fa: ec:2a:7d:6b:3c:17:a5:5d:aa:ff:ef:6e:ae:67:0d: 75:db:c5:fc:05:16:de:9f:58:bf:a7:ac:d5:3e:cb: ab:de:e4:79:1b:6b:33:11:6b:b8:94:60:a4:db:4f: f4:98:82:26:1a:01:eb:94:79:71:75:4a:a0:37:d3: 84:2e:eb:b6:53:d5:ba:19:6a:9a:79:c1:95:fa:ad: b7:dc:70:17:b3:62:ef:88:27:54:d8:87:13:f3:67: 86:65:e0:c6:d6:60:77:8c:5a:97:3b:65:e2:88:ab: 06:f4:b0:8b:34:35:9a:a5:67:78:11:9c:b1:e1:40: 3a:f5:2a:f0:07:df:a6:5c:93:2e:07:aa:e8:d8:14: e0:d8:b1:bb:a7:e0:4c:0b:2b:4f:8a:34:38:5d:b4: 7b:f5:a2:b9:eb:e3:30:b3:d5:39:5f:b5:41:5d:78: f4:5f:30:bc:ea:a0:fe:d8:fe:f5:7c:41:fc:50:15: 5e:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:8D:A8:C5:A1:99:10:54:8D:51:1C:8B:75:1F:2F:4C:DC:AC:27:E6 X509v3 Authority Key Identifier: keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS25198.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 82.21.7.0/24 82.22.126.0/24 82.22.196.0/24 82.23.163.0/24 82.23.248.0/24 82.24.81.0/24 82.24.110.0/24 82.24.144.0/24 82.25.11.0/24 82.25.39.0/24 82.25.60.0/24 82.25.200.0/24 82.26.113.0/24 82.26.202.0/24 82.27.117.0-82.27.118.255 82.38.17.0/24 82.38.19.0/24 82.38.40.0/24 82.38.44.0/24 82.38.63.0/24 Signature Algorithm: sha256WithRSAEncryption 93:e9:7e:5f:3a:99:86:df:d7:2d:61:e9:1b:78:6c:58:d9:18: 04:a5:5b:21:4b:b9:ff:61:58:98:8e:23:6f:33:ba:81:dd:c6: 45:35:09:7c:43:d3:d8:6d:43:7a:46:5c:82:f1:08:f7:d0:ab: 16:29:79:03:2a:fd:1f:45:59:09:d8:59:c2:18:f1:75:89:d9: 92:6e:47:8c:1b:44:ac:51:36:ca:88:ad:a6:a7:9c:46:b4:57: e2:60:3d:a3:82:51:cc:11:07:8d:33:dd:0f:65:50:f1:4d:95: da:f4:5f:b7:57:2c:cd:39:02:75:db:bb:ca:6c:88:02:77:a9: 6f:f2:dd:ce:e1:26:ba:a4:13:3a:ed:f9:b9:e5:c7:91:cb:d9: 40:ab:54:bc:48:a6:93:85:26:be:d9:99:5a:90:87:69:7e:5f: 97:b6:88:76:96:b2:96:a8:e5:cb:c5:59:69:30:fe:db:37:d9: e4:29:30:7c:59:41:36:1b:1c:3a:77:ea:e2:08:79:4c:32:e7: db:41:29:c9:ec:1b:47:46:95:5d:a3:60:5d:13:0a:2c:a0:88: e8:8e:93:47:0e:81:2a:b5:2e:58:d3:7e:21:0d:88:2d:75:6b: da:aa:7e:93:9a:52:5e:44:99:3e:a7:a6:a9:37:53:1d:04:11: 96:31:2d:e0 -----BEGIN CERTIFICATE----- MIIFfjCCBGagAwIBAgIUBdNDxmxLgbNTg7i7ugEb1XXZux4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjE4Y2M2ZTI0MTA1ZGU2YzVjOTAwM2Q2NTI0Mzg5M2Ni M2NmZGQwMTAeFw0yNTEyMDQxMDM4NTNaFw0yNjEyMDMxMDQzNTNaMDMxMTAvBgNV BAMTKDk1OERBOEM1QTE5OTEwNTQ4RDUxMUM4Qjc1MUYyRjRDRENBQzI3RTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJiOiZtIi9f76pXYi5IY1o8Eyw W3V2+en+s3giSvHD9zzhoNCa53qM00g3+3UmxO0NOC1yIIr9+0rD5wTTSEVFMW6M WCsJVAuK+uwqfWs8F6Vdqv/vbq5nDXXbxfwFFt6fWL+nrNU+y6ve5HkbazMRa7iU YKTbT/SYgiYaAeuUeXF1SqA304Qu67ZT1boZapp5wZX6rbfccBezYu+IJ1TYhxPz Z4Zl4MbWYHeMWpc7ZeKIqwb0sIs0NZqlZ3gRnLHhQDr1KvAH36Zcky4HqujYFODY sbun4EwLK0+KNDhdtHv1ornr4zCz1TlftUFdePRfMLzqoP7Y/vV8QfxQFV71AgMB AAGjggKIMIIChDAdBgNVHQ4EFgQUlY2oxaGZEFSNURyLdR8vTNysJ+YwHwYDVR0j BBgwFoAUIYzG4kEF3mxckAPWUkOJPLPP3QEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYtYjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWEx YWY2LzAvMjE4Q0M2RTI0MTA1REU2QzVDOTAwM0Q2NTI0Mzg5M0NCM0NGREQwMS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0lZekc0a0VGM214Y2tBUFdVa09KUExQ UDNRRS5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzcxOGExYjRmLWI2NGMt NDAyYy1iZTE1LWRkODJhNDFhMWFmNi8wL0FTMjUxOTgucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwgZ0GCCsGAQUFBwEHAQH/BIGNMIGKMIGHBAIAATCBgAME AFIVBwMEAFIWfgMEAFIWxAMEAFIXowMEAFIX+AMEAFIYUQMEAFIYbgMEAFIYkAME AFIZCwMEAFIZJwMEAFIZPAMEAFIZyAMEAFIacQMEAFIayjAMAwQAUht1AwQAUht2 AwQAUiYRAwQAUiYTAwQAUiYoAwQAUiYsAwQAUiY/MA0GCSqGSIb3DQEBCwUAA4IB AQCT6X5fOpmG39ctYekbeGxY2RgEpVshS7n/YViYjiNvM7qB3cZFNQl8Q9PYbUN6 RlyC8Qj30KsWKXkDKv0fRVkJ2FnCGPF1idmSbkeMG0SsUTbKiK2mp5xGtFfiYD2j glHMEQeNM90PZVDxTZXa9F+3VyzNOQJ127vKbIgCd6lv8t3O4Sa6pBM67fm55ceR y9lAq1S8SKaThSa+2ZlakIdpfl+Xtoh2lrKWqOXLxVlpMP7bN9nkKTB8WUE2Gxw6 d+riCHlMMufbQSnJ7BtHRpVdo2BdEwosoIjojpNHDoEqtS5Y034hDYgtdWvaqn6T mlJeRJk+p6apN1MdBBGWMS3g -----END CERTIFICATE-----Generated at Sat Dec 6 11:47:41 2025 by rpki-client