This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS3320.roa File: AS3320.roa (raw, json) Hash identifier: FvT61Z8jkw2vLsabde3wK3M5sD3PXegRGIwSu+uRyKM= Subject key identifier: D5:13:14:90:C9:3A:21:79:20:34:73:8B:FA:72:FD:66:79:06:64:D1 Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Certificate serial: 15145E7BA2B0AF2CE31371A31AB298844798EC03 Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS3320.roa Signing time: Mon 01 Dec 2025 06:55:03 +0000 ROA not before: Mon 01 Dec 2025 06:50:03 +0000 ROA not after: Mon 30 Nov 2026 06:55:03 +0000 asID: 3320 IP address blocks: 82.21.57.0/24 maxlen: 24 82.21.184.0/24 maxlen: 24 82.22.102.0/24 maxlen: 24 82.22.105.0/24 maxlen: 24 82.22.108.0/24 maxlen: 24 82.22.161.0/24 maxlen: 24 82.22.191.0/24 maxlen: 24 82.22.194.0/24 maxlen: 24 82.23.168.0/24 maxlen: 24 82.23.197.0/24 maxlen: 24 82.24.4.0/24 maxlen: 24 82.24.14.0/24 maxlen: 24 82.24.21.0/24 maxlen: 24 82.24.30.0/24 maxlen: 24 82.24.41.0/24 maxlen: 24 82.24.52.0/24 maxlen: 24 82.24.55.0/24 maxlen: 24 82.24.72.0/24 maxlen: 24 82.24.78.0/24 maxlen: 24 82.24.86.0/24 maxlen: 24 82.24.109.0/24 maxlen: 24 82.24.114.0/24 maxlen: 24 82.24.125.0/24 maxlen: 24 82.24.190.0/24 maxlen: 24 82.24.203.0/24 maxlen: 24 82.25.4.0/24 maxlen: 24 82.25.5.0/24 maxlen: 24 82.25.6.0/24 maxlen: 24 82.25.7.0/24 maxlen: 24 82.25.9.0/24 maxlen: 24 82.25.14.0/24 maxlen: 24 82.25.16.0/24 maxlen: 24 82.25.133.0/24 maxlen: 24 82.25.138.0/24 maxlen: 24 82.25.140.0/24 maxlen: 24 82.25.191.0/24 maxlen: 24 82.25.197.0/24 maxlen: 24 82.25.202.0/24 maxlen: 24 82.26.70.0/24 maxlen: 24 82.26.88.0/24 maxlen: 24 82.26.100.0/24 maxlen: 24 82.26.108.0/24 maxlen: 24 82.26.111.0/24 maxlen: 24 82.26.123.0/24 maxlen: 24 82.26.128.0/24 maxlen: 24 82.26.135.0/24 maxlen: 24 82.26.141.0/24 maxlen: 24 82.26.147.0/24 maxlen: 24 82.26.155.0/24 maxlen: 24 82.26.161.0/24 maxlen: 24 82.26.168.0/24 maxlen: 24 82.26.175.0/24 maxlen: 24 82.26.197.0/24 maxlen: 24 82.27.10.0/24 maxlen: 24 82.27.22.0/24 maxlen: 24 82.27.105.0/24 maxlen: 24 82.27.119.0/24 maxlen: 24 82.27.198.0/24 maxlen: 24 82.29.23.0/24 maxlen: 24 82.29.29.0/24 maxlen: 24 82.29.36.0/24 maxlen: 24 82.29.39.0/24 maxlen: 24 82.29.45.0/24 maxlen: 24 82.29.49.0/24 maxlen: 24 82.29.51.0/24 maxlen: 24 82.29.65.0/24 maxlen: 24 82.29.70.0/24 maxlen: 24 82.29.73.0/24 maxlen: 24 82.29.76.0/24 maxlen: 24 82.29.79.0/24 maxlen: 24 82.29.120.0/24 maxlen: 24 82.29.121.0/24 maxlen: 24 82.38.220.0/24 maxlen: 24 82.38.221.0/24 maxlen: 24 82.38.222.0/24 maxlen: 24 82.39.251.0/24 maxlen: 24 82.39.254.0/24 maxlen: 24 82.39.255.0/24 maxlen: 24 82.41.244.0/24 maxlen: 24 82.41.245.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:14:5e:7b:a2:b0:af:2c:e3:13:71:a3:1a:b2:98:84:47:98:ec:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Validity Not Before: Dec 1 06:50:03 2025 GMT Not After : Nov 30 06:55:03 2026 GMT Subject: CN=D5131490C93A21792034738BFA72FD66790664D1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:c4:57:a7:10:9a:c6:88:29:db:23:92:c6:2f: 58:4d:cd:83:11:ef:bf:ba:83:03:d1:ab:29:a6:d7: 9a:8c:c3:d1:22:14:6c:3f:88:2b:51:6c:63:c5:78: 97:f8:cc:fe:a6:c5:60:f7:53:22:bd:67:be:d5:bf: 1e:46:56:0d:60:78:54:d9:92:a1:66:14:69:16:af: b3:15:b0:ba:3b:14:b1:57:c6:f2:22:57:37:db:f4: 54:fa:5f:63:f9:4c:19:fc:ac:34:27:32:a3:2b:f5: b8:d1:d0:77:a9:47:f3:13:ec:48:f9:27:57:7a:31: d7:f7:54:df:53:de:a5:69:d7:66:1f:d3:af:b2:ed: c2:29:ff:e0:6b:94:68:7e:3b:5a:bb:fa:9d:33:87: 9f:8a:c5:1f:8d:5f:94:ff:8c:cf:ab:3d:45:9e:36: 80:6e:89:b9:68:e2:f5:6d:9d:cd:9c:1e:99:d9:1f: 8b:77:a0:c7:c2:a1:20:ef:b6:de:f9:b5:18:24:ee: 8e:b7:50:de:e8:90:f7:15:9f:04:f1:cc:43:e0:56: a5:9e:64:0a:7a:7f:20:df:39:a9:9d:7b:67:9c:d6: c5:cc:0f:74:65:ac:bf:ba:38:cf:1d:b2:06:d9:1b: 48:48:f1:5c:51:47:be:aa:a9:2b:64:cc:1c:32:a0: 03:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:13:14:90:C9:3A:21:79:20:34:73:8B:FA:72:FD:66:79:06:64:D1 X509v3 Authority Key Identifier: keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS3320.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 82.21.57.0/24 82.21.184.0/24 82.22.102.0/24 82.22.105.0/24 82.22.108.0/24 82.22.161.0/24 82.22.191.0/24 82.22.194.0/24 82.23.168.0/24 82.23.197.0/24 82.24.4.0/24 82.24.14.0/24 82.24.21.0/24 82.24.30.0/24 82.24.41.0/24 82.24.52.0/24 82.24.55.0/24 82.24.72.0/24 82.24.78.0/24 82.24.86.0/24 82.24.109.0/24 82.24.114.0/24 82.24.125.0/24 82.24.190.0/24 82.24.203.0/24 82.25.4.0/22 82.25.9.0/24 82.25.14.0/24 82.25.16.0/24 82.25.133.0/24 82.25.138.0/24 82.25.140.0/24 82.25.191.0/24 82.25.197.0/24 82.25.202.0/24 82.26.70.0/24 82.26.88.0/24 82.26.100.0/24 82.26.108.0/24 82.26.111.0/24 82.26.123.0/24 82.26.128.0/24 82.26.135.0/24 82.26.141.0/24 82.26.147.0/24 82.26.155.0/24 82.26.161.0/24 82.26.168.0/24 82.26.175.0/24 82.26.197.0/24 82.27.10.0/24 82.27.22.0/24 82.27.105.0/24 82.27.119.0/24 82.27.198.0/24 82.29.23.0/24 82.29.29.0/24 82.29.36.0/24 82.29.39.0/24 82.29.45.0/24 82.29.49.0/24 82.29.51.0/24 82.29.65.0/24 82.29.70.0/24 82.29.73.0/24 82.29.76.0/24 82.29.79.0/24 82.29.120.0/23 82.38.220.0-82.38.222.255 82.39.251.0/24 82.39.254.0/23 82.41.244.0/23 Signature Algorithm: sha256WithRSAEncryption 31:17:7a:af:29:a1:b0:b1:08:53:f5:72:4c:88:56:82:c5:9a: 78:51:71:52:aa:cb:47:e0:d8:ea:b7:58:17:a3:8f:c4:d9:6b: 34:dc:bf:02:48:12:89:3c:58:b5:45:12:15:52:55:ad:64:72: ee:b5:69:f8:3c:91:a2:f0:ee:7b:ba:cc:8e:85:c3:69:34:c0: ad:a7:63:95:85:5e:61:38:24:7f:54:65:a0:65:be:8f:c5:28: da:94:38:87:f0:1a:52:cb:6a:5c:a9:1a:f0:a3:a5:83:61:91: 08:66:31:35:0c:15:2d:c2:64:22:e4:85:9b:63:9d:ed:17:dc: a2:04:49:91:fe:c3:7d:de:9f:21:d1:ca:14:c0:12:c4:7a:d7: 76:a3:f3:05:11:14:82:92:13:53:44:bc:19:01:f9:c4:00:60: 2b:f3:49:3c:3f:48:a6:fd:96:b5:51:86:d0:8f:fb:23:de:fe: 90:3f:ae:03:48:50:c7:f5:12:df:de:64:b5:be:65:8e:d0:75: ed:28:ca:d7:4f:ba:ac:b1:92:9d:7a:37:e6:d5:e7:9a:aa:36: 82:87:c5:8f:c1:33:3d:83:4d:dd:9c:2e:b1:f8:02:2b:6f:7d: b8:e0:a4:bf:f1:27:dc:d9:ea:14:16:2e:88:c6:47:19:e8:ee: 94:bc:3d:e1 -----BEGIN CERTIFICATE----- MIIGujCCBaKgAwIBAgIUFRRee6KwryzjE3GjGrKYhEeY7AMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjE4Y2M2ZTI0MTA1ZGU2YzVjOTAwM2Q2NTI0Mzg5M2Ni M2NmZGQwMTAeFw0yNTEyMDEwNjUwMDNaFw0yNjExMzAwNjU1MDNaMDMxMTAvBgNV BAMTKEQ1MTMxNDkwQzkzQTIxNzkyMDM0NzM4QkZBNzJGRDY2NzkwNjY0RDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+xFenEJrGiCnbI5LGL1hNzYMR 77+6gwPRqymm15qMw9EiFGw/iCtRbGPFeJf4zP6mxWD3UyK9Z77Vvx5GVg1geFTZ kqFmFGkWr7MVsLo7FLFXxvIiVzfb9FT6X2P5TBn8rDQnMqMr9bjR0HepR/MT7Ej5 J1d6Mdf3VN9T3qVp12Yf06+y7cIp/+BrlGh+O1q7+p0zh5+KxR+NX5T/jM+rPUWe NoBuiblo4vVtnc2cHpnZH4t3oMfCoSDvtt75tRgk7o63UN7okPcVnwTxzEPgVqWe ZAp6fyDfOamde2ec1sXMD3RlrL+6OM8dsgbZG0hI8VxRR76qqStkzBwyoAOzAgMB AAGjggPEMIIDwDAdBgNVHQ4EFgQU1RMUkMk6IXkgNHOL+nL9ZnkGZNEwHwYDVR0j BBgwFoAUIYzG4kEF3mxckAPWUkOJPLPP3QEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYtYjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWEx YWY2LzAvMjE4Q0M2RTI0MTA1REU2QzVDOTAwM0Q2NTI0Mzg5M0NCM0NGREQwMS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0lZekc0a0VGM214Y2tBUFdVa09KUExQ UDNRRS5jZXIweQYIKwYBBQUHAQsEbTBrMGkGCCsGAQUFBzALhl1yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzcxOGExYjRmLWI2NGMt NDAyYy1iZTE1LWRkODJhNDFhMWFmNi8wL0FTMzMyMC5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjCCAdkGCCsGAQUFBwEHAQH/BIIByDCCAcQwggHABAIAATCC AbgDBABSFTkDBABSFbgDBABSFmYDBABSFmkDBABSFmwDBABSFqEDBABSFr8DBABS FsIDBABSF6gDBABSF8UDBABSGAQDBABSGA4DBABSGBUDBABSGB4DBABSGCkDBABS GDQDBABSGDcDBABSGEgDBABSGE4DBABSGFYDBABSGG0DBABSGHIDBABSGH0DBABS GL4DBABSGMsDBAJSGQQDBABSGQkDBABSGQ4DBABSGRADBABSGYUDBABSGYoDBABS GYwDBABSGb8DBABSGcUDBABSGcoDBABSGkYDBABSGlgDBABSGmQDBABSGmwDBABS Gm8DBABSGnsDBABSGoADBABSGocDBABSGo0DBABSGpMDBABSGpsDBABSGqEDBABS GqgDBABSGq8DBABSGsUDBABSGwoDBABSGxYDBABSG2kDBABSG3cDBABSG8YDBABS HRcDBABSHR0DBABSHSQDBABSHScDBABSHS0DBABSHTEDBABSHTMDBABSHUEDBABS HUYDBABSHUkDBABSHUwDBABSHU8DBAFSHXgwDAMEAlIm3AMEAFIm3gMEAFIn+wME AVIn/gMEAVIp9DANBgkqhkiG9w0BAQsFAAOCAQEAMRd6rymhsLEIU/VyTIhWgsWa eFFxUqrLR+DY6rdYF6OPxNlrNNy/AkgSiTxYtUUSFVJVrWRy7rVp+DyRovDue7rM joXDaTTAradjlYVeYTgkf1RloGW+j8Uo2pQ4h/AaUstqXKka8KOlg2GRCGYxNQwV LcJkIuSFm2Od7RfcogRJkf7Dfd6fIdHKFMASxHrXdqPzBREUgpITU0S8GQH5xABg K/NJPD9Ipv2WtVGG0I/7I97+kD+uA0hQx/US395ktb5ljtB17SjK10+6rLGSnXo3 5tXnmqo2gofFj8EzPYNN3ZwusfgCK299uOCkv/En3NnqFBYuiMZHGejulLw94Q== -----END CERTIFICATE-----Generated at Sat Dec 6 11:47:49 2025 by rpki-client