This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS30058.roa File: AS30058.roa (raw, json) Hash identifier: i+AwBQiZ54nvoN8X4iwYkPcv4TRR8SYig55ujqCBosI= Subject key identifier: C3:A9:C0:CC:DF:D1:6E:90:BB:12:61:65:D5:D8:F3:13:C0:29:18:16 Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Certificate serial: 295F9EACF1C18ACCE193FADC53B6B314C1F4A3A5 Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS30058.roa Signing time: Fri 14 Nov 2025 06:45:41 +0000 ROA not before: Fri 14 Nov 2025 06:40:41 +0000 ROA not after: Fri 13 Nov 2026 06:45:41 +0000 asID: 30058 IP address blocks: 82.21.1.0/24 maxlen: 24 82.26.169.0/24 maxlen: 24 2a13:9500:10a::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:5f:9e:ac:f1:c1:8a:cc:e1:93:fa:dc:53:b6:b3:14:c1:f4:a3:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Validity Not Before: Nov 14 06:40:41 2025 GMT Not After : Nov 13 06:45:41 2026 GMT Subject: CN=C3A9C0CCDFD16E90BB126165D5D8F313C0291816 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:99:49:dd:31:fd:77:8e:70:86:f7:51:f7:37: 7d:39:d9:b5:40:c5:8f:72:81:35:32:75:91:0f:ab: cd:cf:d2:06:c7:b4:5d:3c:fe:b9:8e:d2:26:b2:04: 98:cf:89:2c:6e:ea:06:cb:9b:fd:07:9b:bb:14:eb: 3a:8e:5b:ad:e5:7b:80:20:b2:fe:5f:d0:e5:fa:b2: 0a:0b:33:86:f8:33:64:10:4a:7b:8c:c3:20:db:82: cb:bd:aa:05:38:b6:57:fb:90:81:f8:0c:15:6e:4b: 38:cf:ab:a3:c6:5a:70:45:75:c4:6f:dc:d4:43:ce: 38:be:ce:33:74:03:b7:5d:3d:fe:48:79:a3:15:e3: 5d:ac:3c:8f:5d:ca:0f:fd:49:9c:90:41:bf:d7:45: 30:2c:bf:bf:d0:d9:eb:ae:76:a5:c5:6d:ca:4f:3c: b5:14:5a:01:54:61:34:ae:99:a9:ee:2a:d0:f7:4d: 00:08:41:16:f4:9e:ea:e7:e2:93:c9:ee:19:2b:c2: d0:fa:6e:e3:e3:a2:7d:64:5c:4e:0a:e6:e1:d6:bf: 00:a4:dc:1a:b8:8c:21:0a:33:7d:f7:e1:bc:7a:11: de:9d:8a:42:60:97:51:04:5c:83:4f:89:06:15:94: 07:d9:7f:b6:e5:eb:c3:25:22:f1:cc:11:88:c2:56: ce:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:A9:C0:CC:DF:D1:6E:90:BB:12:61:65:D5:D8:F3:13:C0:29:18:16 X509v3 Authority Key Identifier: keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS30058.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 82.21.1.0/24 82.26.169.0/24 IPv6: 2a13:9500:10a::/48 Signature Algorithm: sha256WithRSAEncryption 0f:2f:bc:f1:18:0a:29:c3:a2:b5:e8:9f:5b:5b:9f:dc:26:86: 80:44:ae:22:86:5a:71:87:b0:71:fa:20:d7:e2:4d:b9:2a:7f: 8e:e1:86:c6:93:46:5c:7f:e3:6a:fe:90:ce:a9:49:ac:31:ce: 61:e9:d9:04:8a:67:65:e0:07:5d:c2:aa:e1:f2:54:63:02:99: 30:ad:2e:a6:3d:05:0c:d2:0d:78:02:4a:20:d5:4b:5c:49:96: d2:f3:c9:18:42:01:3c:1d:67:22:9e:1f:bb:31:a3:d3:c2:83: b0:b5:36:1d:65:6b:96:d0:ec:4c:a7:df:27:d7:10:5b:cf:17: e4:9a:78:b7:15:b0:9a:09:84:5d:ab:61:72:be:07:97:a5:1a: ba:e0:49:f1:bd:fd:89:a5:94:f9:17:b1:8f:a5:84:b9:37:ad: f7:3e:81:42:13:a1:e7:98:79:ed:a4:7d:1b:d1:a4:11:08:2e: 9b:10:53:49:7f:e0:fa:87:19:0f:a1:6b:31:de:be:1d:a9:2d: 38:50:0a:29:2c:f7:b1:da:30:4b:d1:13:0b:84:b0:26:eb:5f: 07:76:57:79:99:d2:fc:30:a9:ae:f4:1d:56:12:57:e1:32:cd: 27:d3:b2:f2:88:dd:3d:51:9b:dc:20:9a:72:f9:3e:2f:34:f5: 9e:c8:66:c7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgIUKV+erPHBiszhk/rcU7azFMH0o6UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjE4Y2M2ZTI0MTA1ZGU2YzVjOTAwM2Q2NTI0Mzg5M2Ni M2NmZGQwMTAeFw0yNTExMTQwNjQwNDFaFw0yNjExMTMwNjQ1NDFaMDMxMTAvBgNV BAMTKEMzQTlDMENDREZEMTZFOTBCQjEyNjE2NUQ1RDhGMzEzQzAyOTE4MTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCmmUndMf13jnCG91H3N3052bVA xY9ygTUydZEPq83P0gbHtF08/rmO0iayBJjPiSxu6gbLm/0Hm7sU6zqOW63le4Ag sv5f0OX6sgoLM4b4M2QQSnuMwyDbgsu9qgU4tlf7kIH4DBVuSzjPq6PGWnBFdcRv 3NRDzji+zjN0A7ddPf5IeaMV412sPI9dyg/9SZyQQb/XRTAsv7/Q2euudqXFbcpP PLUUWgFUYTSumanuKtD3TQAIQRb0nurn4pPJ7hkrwtD6buPjon1kXE4K5uHWvwCk 3Bq4jCEKM3334bx6Ed6dikJgl1EEXINPiQYVlAfZf7bl68MlIvHMEYjCVs7ZAgMB AAGjggIgMIICHDAdBgNVHQ4EFgQUw6nAzN/RbpC7EmFl1djzE8ApGBYwHwYDVR0j BBgwFoAUIYzG4kEF3mxckAPWUkOJPLPP3QEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYtYjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWEx YWY2LzAvMjE4Q0M2RTI0MTA1REU2QzVDOTAwM0Q2NTI0Mzg5M0NCM0NGREQwMS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0lZekc0a0VGM214Y2tBUFdVa09KUExQ UDNRRS5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzcxOGExYjRmLWI2NGMt NDAyYy1iZTE1LWRkODJhNDFhMWFmNi8wL0FTMzAwNTgucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwNgYIKwYBBQUHAQcBAf8EJzAlMBIEAgABMAwDBABSFQED BABSGqkwDwQCAAIwCQMHACoTlQABCjANBgkqhkiG9w0BAQsFAAOCAQEADy+88RgK KcOiteifW1uf3CaGgESuIoZacYewcfog1+JNuSp/juGGxpNGXH/jav6QzqlJrDHO YenZBIpnZeAHXcKq4fJUYwKZMK0upj0FDNINeAJKINVLXEmW0vPJGEIBPB1nIp4f uzGj08KDsLU2HWVrltDsTKffJ9cQW88X5Jp4txWwmgmEXathcr4Hl6UauuBJ8b39 iaWU+Rexj6WEuTet9z6BQhOh55h57aR9G9GkEQgumxBTSX/g+ocZD6FrMd6+Hakt OFAKKSz3sdowS9ETC4SwJutfB3ZXeZnS/DCprvQdVhJX4TLNJ9Oy8ojdPVGb3CCa cvk+LzT1nshmxw== -----END CERTIFICATE-----Generated at Sat Dec 6 11:47:25 2025 by rpki-client