This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS3356.roa File: AS3356.roa (raw, json) Hash identifier: 1zvRkJmQ3HOzSObkTMu6xd1vEOgksKeX4QXdqfoiaVE= Subject key identifier: C5:34:23:78:92:D7:FE:08:B4:AC:82:E7:5D:AC:A8:57:1D:71:AC:10 Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Certificate serial: 117E73A455331480A50AD2870879CE430DB5984A Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS3356.roa Signing time: Mon 24 Nov 2025 14:54:38 +0000 ROA not before: Mon 24 Nov 2025 14:49:38 +0000 ROA not after: Mon 23 Nov 2026 14:54:38 +0000 asID: 3356 IP address blocks: 82.21.78.0/24 maxlen: 24 82.21.79.0/24 maxlen: 24 82.21.246.0/24 maxlen: 24 82.21.247.0/24 maxlen: 24 82.22.64.0/24 maxlen: 24 82.22.66.0/24 maxlen: 24 82.22.67.0/24 maxlen: 24 82.22.68.0/24 maxlen: 24 82.22.69.0/24 maxlen: 24 82.22.70.0/24 maxlen: 24 82.22.71.0/24 maxlen: 24 82.22.72.0/24 maxlen: 24 82.22.73.0/24 maxlen: 24 82.22.74.0/24 maxlen: 24 82.22.75.0/24 maxlen: 24 82.22.89.0/24 maxlen: 24 82.22.93.0/24 maxlen: 24 82.22.142.0/24 maxlen: 24 82.22.164.0/24 maxlen: 24 82.22.188.0/24 maxlen: 24 82.22.189.0/24 maxlen: 24 82.22.202.0/24 maxlen: 24 82.22.203.0/24 maxlen: 24 82.22.219.0/24 maxlen: 24 82.22.244.0/24 maxlen: 24 82.22.246.0/24 maxlen: 24 82.23.19.0/24 maxlen: 24 82.23.20.0/24 maxlen: 24 82.23.23.0/24 maxlen: 24 82.23.24.0/24 maxlen: 24 82.23.59.0/24 maxlen: 24 82.23.60.0/24 maxlen: 24 82.23.139.0/24 maxlen: 24 82.23.164.0/24 maxlen: 24 82.23.169.0/24 maxlen: 24 82.23.175.0/24 maxlen: 24 82.23.185.0/24 maxlen: 24 82.23.196.0/24 maxlen: 24 82.23.234.0/24 maxlen: 24 82.23.236.0/24 maxlen: 24 82.24.5.0/24 maxlen: 24 82.24.6.0/24 maxlen: 24 82.24.7.0/24 maxlen: 24 82.24.9.0/24 maxlen: 24 82.24.12.0/24 maxlen: 24 82.24.13.0/24 maxlen: 24 82.24.15.0/24 maxlen: 24 82.24.18.0/24 maxlen: 24 82.24.43.0/24 maxlen: 24 82.24.54.0/24 maxlen: 24 82.24.65.0/24 maxlen: 24 82.24.66.0/24 maxlen: 24 82.24.67.0/24 maxlen: 24 82.24.73.0/24 maxlen: 24 82.24.74.0/24 maxlen: 24 82.24.75.0/24 maxlen: 24 82.24.80.0/24 maxlen: 24 82.24.87.0/24 maxlen: 24 82.24.89.0/24 maxlen: 24 82.24.104.0/24 maxlen: 24 82.24.108.0/24 maxlen: 24 82.24.115.0/24 maxlen: 24 82.24.124.0/24 maxlen: 24 82.24.147.0/24 maxlen: 24 82.24.173.0/24 maxlen: 24 82.24.180.0/24 maxlen: 24 82.24.202.0/24 maxlen: 24 82.25.136.0/24 maxlen: 24 82.25.160.0/24 maxlen: 24 82.25.174.0/24 maxlen: 24 82.25.185.0/24 maxlen: 24 82.25.186.0/24 maxlen: 24 82.26.71.0/24 maxlen: 24 82.26.86.0/24 maxlen: 24 82.26.95.0/24 maxlen: 24 82.26.129.0/24 maxlen: 24 82.26.146.0/24 maxlen: 24 82.27.111.0/24 maxlen: 24 82.27.231.0/24 maxlen: 24 82.27.244.0/24 maxlen: 24 82.27.248.0/24 maxlen: 24 82.29.246.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:7e:73:a4:55:33:14:80:a5:0a:d2:87:08:79:ce:43:0d:b5:98:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Validity Not Before: Nov 24 14:49:38 2025 GMT Not After : Nov 23 14:54:38 2026 GMT Subject: CN=C534237892D7FE08B4AC82E75DACA8571D71AC10 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:b7:6a:f8:e9:fd:27:bd:3f:3e:c5:3e:b6:2b: 74:9d:2e:35:f5:8a:38:34:65:ec:da:ac:92:03:40: 86:b6:e3:b3:ea:0b:98:33:26:1f:1f:f8:ee:9b:36: 11:0b:0f:4f:30:e5:78:a2:0b:5d:a0:8a:e6:10:e4: c7:b2:7e:6a:70:8a:20:8a:bb:db:46:dd:8d:1c:1b: 81:a6:1e:b7:65:47:1a:1d:40:2c:1e:8d:69:6b:56: 13:45:d7:c8:7f:d6:3b:77:58:ab:f6:c1:c2:4e:d1: ca:c3:33:1a:49:a1:de:85:84:e4:6f:e3:41:bd:f7: 1c:69:fd:00:fa:b1:13:9a:ee:9c:9e:b5:81:b3:c7: 3e:9f:e5:96:31:56:f7:ff:dc:5d:da:57:9a:bf:c4: 20:a3:f1:85:2d:0d:04:37:2f:66:06:7d:bd:3e:ef: 76:ef:f1:a0:1c:17:af:ea:ad:e9:0f:d9:cf:1d:47: 2a:06:e3:30:f5:df:14:f9:10:05:83:e6:ef:8a:90: a6:a3:74:cd:f1:e7:ae:09:0c:50:3f:1f:f1:f7:43: 53:33:c0:83:5f:ba:80:fd:31:ed:f6:00:e8:1c:c9: d7:a1:7d:a7:b7:02:bb:8d:0f:0a:e6:69:d4:af:a8: 8b:34:f2:65:34:40:a1:06:24:df:9a:9f:32:6f:a9: 7c:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:34:23:78:92:D7:FE:08:B4:AC:82:E7:5D:AC:A8:57:1D:71:AC:10 X509v3 Authority Key Identifier: keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS3356.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 82.21.78.0/23 82.21.246.0/23 82.22.64.0/24 82.22.66.0-82.22.75.255 82.22.89.0/24 82.22.93.0/24 82.22.142.0/24 82.22.164.0/24 82.22.188.0/23 82.22.202.0/23 82.22.219.0/24 82.22.244.0/24 82.22.246.0/24 82.23.19.0-82.23.20.255 82.23.23.0-82.23.24.255 82.23.59.0-82.23.60.255 82.23.139.0/24 82.23.164.0/24 82.23.169.0/24 82.23.175.0/24 82.23.185.0/24 82.23.196.0/24 82.23.234.0/24 82.23.236.0/24 82.24.5.0-82.24.7.255 82.24.9.0/24 82.24.12.0/23 82.24.15.0/24 82.24.18.0/24 82.24.43.0/24 82.24.54.0/24 82.24.65.0-82.24.67.255 82.24.73.0-82.24.75.255 82.24.80.0/24 82.24.87.0/24 82.24.89.0/24 82.24.104.0/24 82.24.108.0/24 82.24.115.0/24 82.24.124.0/24 82.24.147.0/24 82.24.173.0/24 82.24.180.0/24 82.24.202.0/24 82.25.136.0/24 82.25.160.0/24 82.25.174.0/24 82.25.185.0-82.25.186.255 82.26.71.0/24 82.26.86.0/24 82.26.95.0/24 82.26.129.0/24 82.26.146.0/24 82.27.111.0/24 82.27.231.0/24 82.27.244.0/24 82.27.248.0/24 82.29.246.0/24 Signature Algorithm: sha256WithRSAEncryption 77:34:ae:52:3d:ad:d9:68:36:b2:74:8b:b8:1c:55:fc:03:bf: c7:03:f3:00:ed:8f:ad:36:71:b5:dc:15:67:dd:90:08:65:44: f7:f8:e3:c3:51:b1:b6:8a:be:71:d8:e9:a9:dd:ae:82:5e:5e: 5d:ab:14:78:41:41:eb:b1:59:3c:fc:ef:98:c5:37:e1:8b:1b: f0:92:92:2c:23:21:3d:ee:79:8f:83:b1:6a:0c:ed:01:eb:b6: 9e:64:9a:12:02:69:28:3a:50:8e:13:1e:16:f8:89:ec:61:f3: 55:04:b1:ea:37:9e:dc:e5:08:fb:1e:3f:98:4e:6e:54:0d:57: 84:85:59:b2:2d:ee:01:e8:1e:c1:c4:4a:b9:f9:fa:9d:61:c0: 64:e1:37:9b:7b:37:d9:30:e2:1a:a2:0e:59:af:d6:1b:25:f8: 33:f8:74:98:28:10:c5:2f:10:b1:3a:6d:c8:83:b5:8f:47:9f: c0:06:70:63:68:68:cb:b0:0c:82:fa:f4:a6:b6:89:26:59:94: 9c:46:6e:bd:ff:84:37:de:c9:d6:a1:81:4d:10:b0:fb:39:00: 20:af:c1:83:a3:d8:52:a6:f1:37:cb:4e:26:aa:45:6e:ce:20: 06:42:ee:58:5d:9c:bd:38:3f:a3:f1:51:44:d5:6e:1b:47:e5: ea:8d:0d:74 -----BEGIN CERTIFICATE----- MIIGnjCCBYagAwIBAgIUEX5zpFUzFIClCtKHCHnOQw21mEowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjE4Y2M2ZTI0MTA1ZGU2YzVjOTAwM2Q2NTI0Mzg5M2Ni M2NmZGQwMTAeFw0yNTExMjQxNDQ5MzhaFw0yNjExMjMxNDU0MzhaMDMxMTAvBgNV BAMTKEM1MzQyMzc4OTJEN0ZFMDhCNEFDODJFNzVEQUNBODU3MUQ3MUFDMTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCMt2r46f0nvT8+xT62K3SdLjX1 ijg0ZezarJIDQIa247PqC5gzJh8f+O6bNhELD08w5XiiC12giuYQ5MeyfmpwiiCK u9tG3Y0cG4GmHrdlRxodQCwejWlrVhNF18h/1jt3WKv2wcJO0crDMxpJod6FhORv 40G99xxp/QD6sROa7pyetYGzxz6f5ZYxVvf/3F3aV5q/xCCj8YUtDQQ3L2YGfb0+ 73bv8aAcF6/qrekP2c8dRyoG4zD13xT5EAWD5u+KkKajdM3x564JDFA/H/H3Q1Mz wINfuoD9Me32AOgcydehfae3AruNDwrmadSvqIs08mU0QKEGJN+anzJvqXybAgMB AAGjggOoMIIDpDAdBgNVHQ4EFgQUxTQjeJLX/gi0rILnXayoVx1xrBAwHwYDVR0j BBgwFoAUIYzG4kEF3mxckAPWUkOJPLPP3QEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYtYjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWEx YWY2LzAvMjE4Q0M2RTI0MTA1REU2QzVDOTAwM0Q2NTI0Mzg5M0NCM0NGREQwMS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0lZekc0a0VGM214Y2tBUFdVa09KUExQ UDNRRS5jZXIweQYIKwYBBQUHAQsEbTBrMGkGCCsGAQUFBzALhl1yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzcxOGExYjRmLWI2NGMt NDAyYy1iZTE1LWRkODJhNDFhMWFmNi8wL0FTMzM1Ni5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjCCAb0GCCsGAQUFBwEHAQH/BIIBrDCCAagwggGkBAIAATCC AZwDBAFSFU4DBAFSFfYDBABSFkAwDAMEAVIWQgMEAlIWSAMEAFIWWQMEAFIWXQME AFIWjgMEAFIWpAMEAVIWvAMEAVIWygMEAFIW2wMEAFIW9AMEAFIW9jAMAwQAUhcT AwQAUhcUMAwDBABSFxcDBABSFxgwDAMEAFIXOwMEAFIXPAMEAFIXiwMEAFIXpAME AFIXqQMEAFIXrwMEAFIXuQMEAFIXxAMEAFIX6gMEAFIX7DAMAwQAUhgFAwQDUhgA AwQAUhgJAwQBUhgMAwQAUhgPAwQAUhgSAwQAUhgrAwQAUhg2MAwDBABSGEEDBAJS GEAwDAMEAFIYSQMEAlIYSAMEAFIYUAMEAFIYVwMEAFIYWQMEAFIYaAMEAFIYbAME AFIYcwMEAFIYfAMEAFIYkwMEAFIYrQMEAFIYtAMEAFIYygMEAFIZiAMEAFIZoAME AFIZrjAMAwQAUhm5AwQAUhm6AwQAUhpHAwQAUhpWAwQAUhpfAwQAUhqBAwQAUhqS AwQAUhtvAwQAUhvnAwQAUhv0AwQAUhv4AwQAUh32MA0GCSqGSIb3DQEBCwUAA4IB AQB3NK5SPa3ZaDaydIu4HFX8A7/HA/MA7Y+tNnG13BVn3ZAIZUT3+OPDUbG2ir5x 2Omp3a6CXl5dqxR4QUHrsVk8/O+YxTfhixvwkpIsIyE97nmPg7FqDO0B67aeZJoS AmkoOlCOEx4W+InsYfNVBLHqN57c5Qj7Hj+YTm5UDVeEhVmyLe4B6B7BxEq5+fqd YcBk4TebezfZMOIaog5Zr9YbJfgz+HSYKBDFLxCxOm3Ig7WPR5/ABnBjaGjLsAyC +vSmtokmWZScRm69/4Q33snWoYFNELD7OQAgr8GDo9hSpvE3y04mqkVuziAGQu5Y XZy9OD+j8VFE1W4bR+XqjQ10 -----END CERTIFICATE-----Generated at Sat Dec 6 11:47:39 2025 by rpki-client