This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS25198.roa File: AS25198.roa (raw, json) Hash identifier: iPgTIOtmDGxRHGmciv/yCBMVAMZUNaGSg21DiA6zCfs= Subject key identifier: 71:04:12:09:2A:85:8E:93:3C:0B:80:95:8B:B0:B1:5C:1E:A5:3F:75 Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Certificate serial: 73D2F05ED866299DC5DF42636915ACE33711D276 Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS25198.roa Signing time: Fri 23 Jan 2026 02:26:07 +0000 ROA not before: Fri 23 Jan 2026 02:21:07 +0000 ROA not after: Fri 22 Jan 2027 02:26:07 +0000 asID: 25198 IP address blocks: 82.21.7.0/24 maxlen: 24 82.21.153.0/24 maxlen: 24 82.21.199.0/24 maxlen: 24 82.22.126.0/24 maxlen: 24 82.22.162.0/24 maxlen: 24 82.23.163.0/24 maxlen: 24 82.23.248.0/24 maxlen: 24 82.24.81.0/24 maxlen: 24 82.24.144.0/24 maxlen: 24 82.26.202.0/24 maxlen: 24 82.27.117.0/24 maxlen: 24 82.38.17.0/24 maxlen: 24 82.38.40.0/24 maxlen: 24 82.38.44.0/24 maxlen: 24 82.39.221.0/24 maxlen: 24 82.41.73.0/24 maxlen: 24 82.41.170.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 23:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:d2:f0:5e:d8:66:29:9d:c5:df:42:63:69:15:ac:e3:37:11:d2:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Validity Not Before: Jan 23 02:21:07 2026 GMT Not After : Jan 22 02:26:07 2027 GMT Subject: CN=710412092A858E933C0B80958BB0B15C1EA53F75 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:02:be:98:2b:f1:83:a8:dd:2b:a8:18:52:be: 7c:ac:45:61:e0:70:83:01:a4:99:f8:3b:31:32:93: cb:a2:70:95:c5:13:5b:1f:67:21:36:6e:5d:8c:43: 93:19:35:cb:33:02:4d:14:16:e5:b2:44:7e:d2:c8: 85:f4:55:3a:cb:ab:24:69:8e:2f:16:b7:09:14:86: 81:ca:ee:8b:57:89:4d:5a:b1:d1:c2:c5:4d:49:14: ab:fb:90:a1:75:19:4f:1e:22:b6:86:3f:58:af:d9: 0f:4f:a8:fa:b9:2d:10:e4:97:5d:e7:45:03:19:2d: 3f:8d:46:91:41:b7:84:69:df:9a:92:f7:f9:c0:a9: f9:62:19:42:13:93:0d:bd:d1:0b:43:4e:58:a7:b4: d9:fc:33:84:cb:69:75:b9:eb:36:96:c4:ca:04:43: 95:6e:38:25:0b:79:cf:53:fa:71:e2:0d:34:52:c0: f1:e7:ec:52:d6:07:00:a7:23:03:a3:c4:f9:ff:ad: ae:6d:b9:c2:c8:a0:40:d7:69:b6:2d:d9:fd:13:b9: e4:af:7c:56:7e:04:a2:6e:f9:ae:ee:cb:4a:e2:bf: dd:9f:7e:96:3d:a1:63:ce:39:b4:9e:f0:f8:35:64: 67:97:da:41:08:3d:79:51:54:8b:7c:5e:0f:b3:b6: f8:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:04:12:09:2A:85:8E:93:3C:0B:80:95:8B:B0:B1:5C:1E:A5:3F:75 X509v3 Authority Key Identifier: keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS25198.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 82.21.7.0/24 82.21.153.0/24 82.21.199.0/24 82.22.126.0/24 82.22.162.0/24 82.23.163.0/24 82.23.248.0/24 82.24.81.0/24 82.24.144.0/24 82.26.202.0/24 82.27.117.0/24 82.38.17.0/24 82.38.40.0/24 82.38.44.0/24 82.39.221.0/24 82.41.73.0/24 82.41.170.0/24 Signature Algorithm: sha256WithRSAEncryption 9a:25:38:51:0b:7f:59:fc:5f:e7:24:ad:65:63:42:85:4f:c3: 13:37:a8:49:ce:75:e9:fb:13:e3:9a:de:82:f8:34:87:f2:00: 13:85:4a:4c:4b:61:cf:2c:a6:44:fb:b9:b4:d8:d5:e8:f1:3a: a2:65:7e:a3:fb:fd:32:4f:8b:bb:38:40:f8:50:d9:92:54:f3: 4c:74:b8:ee:b8:69:90:df:2b:cc:42:e1:a0:ba:fd:bd:f5:13: 96:d5:f0:fd:c1:6c:35:4c:52:62:af:08:f8:53:7d:15:66:df: 3e:74:c4:15:bb:ed:04:64:80:b1:49:3f:64:c4:67:2d:b9:f9: 49:3f:0b:44:8f:5c:f9:f1:5d:fc:29:25:cb:f7:65:d2:7e:90: 0c:da:21:8e:8a:ff:19:e1:f7:87:1a:ea:db:4e:17:1d:e7:c4: de:fb:98:b3:5a:4b:31:a3:33:44:23:a8:af:d9:ce:2b:5d:5a: 54:04:5a:1e:63:06:78:14:1d:b1:34:a4:ce:b8:37:ab:e4:25: 63:1e:f8:69:87:89:36:75:68:04:b7:fe:ce:54:53:af:df:b2: ba:96:59:f2:3c:e3:33:0f:23:30:43:d6:11:98:87:2e:5a:cd: 23:bb:98:cf:d2:54:6c:13:0b:c7:86:a6:6a:26:48:0b:ff:f0: 33:c4:ed:71 -----BEGIN CERTIFICATE----- MIIFXzCCBEegAwIBAgIUc9LwXthmKZ3F30JjaRWs4zcR0nYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjE4Y2M2ZTI0MTA1ZGU2YzVjOTAwM2Q2NTI0Mzg5M2Ni M2NmZGQwMTAeFw0yNjAxMjMwMjIxMDdaFw0yNzAxMjIwMjI2MDdaMDMxMTAvBgNV BAMTKDcxMDQxMjA5MkE4NThFOTMzQzBCODA5NThCQjBCMTVDMUVBNTNGNzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCiAr6YK/GDqN0rqBhSvnysRWHg cIMBpJn4OzEyk8uicJXFE1sfZyE2bl2MQ5MZNcszAk0UFuWyRH7SyIX0VTrLqyRp ji8WtwkUhoHK7otXiU1asdHCxU1JFKv7kKF1GU8eIraGP1iv2Q9PqPq5LRDkl13n RQMZLT+NRpFBt4Rp35qS9/nAqfliGUITkw290QtDTlintNn8M4TLaXW56zaWxMoE Q5VuOCULec9T+nHiDTRSwPHn7FLWBwCnIwOjxPn/ra5tucLIoEDXabYt2f0TueSv fFZ+BKJu+a7uy0riv92ffpY9oWPOObSe8Pg1ZGeX2kEIPXlRVIt8Xg+ztvg5AgMB AAGjggJpMIICZTAdBgNVHQ4EFgQUcQQSCSqFjpM8C4CVi7CxXB6lP3UwHwYDVR0j BBgwFoAUIYzG4kEF3mxckAPWUkOJPLPP3QEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYtYjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWEx YWY2LzAvMjE4Q0M2RTI0MTA1REU2QzVDOTAwM0Q2NTI0Mzg5M0NCM0NGREQwMS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0lZekc0a0VGM214Y2tBUFdVa09KUExQ UDNRRS5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzcxOGExYjRmLWI2NGMt NDAyYy1iZTE1LWRkODJhNDFhMWFmNi8wL0FTMjUxOTgucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwfwYIKwYBBQUHAQcBAf8EcDBuMGwEAgABMGYDBABSFQcD BABSFZkDBABSFccDBABSFn4DBABSFqIDBABSF6MDBABSF/gDBABSGFEDBABSGJAD BABSGsoDBABSG3UDBABSJhEDBABSJigDBABSJiwDBABSJ90DBABSKUkDBABSKaow DQYJKoZIhvcNAQELBQADggEBAJolOFELf1n8X+ckrWVjQoVPwxM3qEnOden7E+Oa 3oL4NIfyABOFSkxLYc8spkT7ubTY1ejxOqJlfqP7/TJPi7s4QPhQ2ZJU80x0uO64 aZDfK8xC4aC6/b31E5bV8P3BbDVMUmKvCPhTfRVm3z50xBW77QRkgLFJP2TEZy25 +Uk/C0SPXPnxXfwpJcv3ZdJ+kAzaIY6K/xnh94ca6ttOFx3nxN77mLNaSzGjM0Qj qK/ZzitdWlQEWh5jBngUHbE0pM64N6vkJWMe+GmHiTZ1aAS3/s5UU6/fsrqWWfI8 4zMPIzBD1hGYhy5azSO7mM/SVGwTC8eGpmomSAv/8DPE7XE= -----END CERTIFICATE-----Generated at Sun Jan 25 11:05:36 2026 by rpki-client