This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS39521.roa File: AS39521.roa (raw, json) Hash identifier: bz49oNzpSYQ/upJsdjYJgr+RPSMc5ePVHle+fvRlFmw= Subject key identifier: B7:46:68:94:58:0A:5A:64:01:14:ED:36:6B:1A:27:DC:17:3D:9C:31 Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Certificate serial: 08865FE64B8A3CC09DFAC84AAF803591C502AFD0 Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS39521.roa Signing time: Sun 28 Dec 2025 00:04:35 +0000 ROA not before: Sat 27 Dec 2025 23:59:35 +0000 ROA not after: Sun 27 Dec 2026 00:04:35 +0000 asID: 39521 IP address blocks: 82.21.58.0/24 maxlen: 24 82.21.112.0/24 maxlen: 24 82.21.116.0/24 maxlen: 24 82.21.126.0/24 maxlen: 24 82.21.165.0/24 maxlen: 24 82.22.143.0/24 maxlen: 24 82.22.157.0/24 maxlen: 24 82.22.186.0/24 maxlen: 24 82.23.188.0/24 maxlen: 24 82.23.191.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 23:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:86:5f:e6:4b:8a:3c:c0:9d:fa:c8:4a:af:80:35:91:c5:02:af:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Validity Not Before: Dec 27 23:59:35 2025 GMT Not After : Dec 27 00:04:35 2026 GMT Subject: CN=B7466894580A5A640114ED366B1A27DC173D9C31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:de:f0:ba:6e:1d:fe:f7:8a:25:5f:7f:79:1e: 33:8a:cb:e0:c9:9a:e6:a9:88:60:ca:a6:b6:06:21: 69:10:8d:79:08:27:ab:70:50:6b:34:65:f9:81:19: 1e:f0:b9:a8:10:07:c4:13:35:c6:24:6e:31:d7:75: 00:0b:ef:00:b0:37:ae:f6:f6:8f:b0:92:f9:aa:8c: b0:7e:fc:48:6e:32:1f:65:e7:0a:ce:fa:80:39:b5: 1c:ec:2b:b0:04:fe:9f:3b:30:43:f3:53:03:89:42: 57:96:c7:b4:a3:f5:b5:15:fb:f1:d3:58:a6:d7:33: fb:b5:44:05:d8:df:d9:01:aa:fd:59:44:90:94:55: 86:4a:47:a5:b9:ff:75:b2:0b:3d:93:22:ea:f7:6d: d0:9e:08:f4:29:bb:4c:81:a5:00:99:de:17:b1:d2: c7:02:86:d0:d7:94:99:15:94:a8:28:79:fa:fe:32: c6:4f:6b:59:80:c4:de:7f:6e:e8:3d:d7:be:6c:45: 0d:91:4c:e1:aa:b3:c3:9a:56:04:36:f3:db:ef:f5: 8f:5b:a7:a8:72:c2:c3:c8:bf:ea:15:dc:ab:af:11: 17:0e:84:ef:5f:d8:30:78:24:82:f0:6d:5f:9c:ee: d5:bf:f4:72:c9:f7:00:c3:07:7b:de:fe:dd:23:6b: 47:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:46:68:94:58:0A:5A:64:01:14:ED:36:6B:1A:27:DC:17:3D:9C:31 X509v3 Authority Key Identifier: keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS39521.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 82.21.58.0/24 82.21.112.0/24 82.21.116.0/24 82.21.126.0/24 82.21.165.0/24 82.22.143.0/24 82.22.157.0/24 82.22.186.0/24 82.23.188.0/24 82.23.191.0/24 Signature Algorithm: sha256WithRSAEncryption 83:4a:0f:6b:e8:56:1d:e1:f0:bc:e2:37:6a:b0:ba:06:f2:04: 27:f7:05:69:4d:2e:f4:ee:7a:a6:cd:43:6d:64:1c:05:95:82: dc:62:25:f9:64:e5:3a:de:c2:43:60:24:e8:19:c9:77:29:a3: fc:f6:98:ae:f6:9a:88:3d:c0:80:e0:2e:b0:c9:7a:fd:ea:ba: 35:77:9b:f2:e7:c8:27:9b:04:75:18:bd:74:a2:bd:18:8e:4a: 2f:6e:ed:76:ec:a8:ff:4c:8e:fb:76:e4:7b:38:cb:45:65:17: 6a:78:2c:6b:f3:8a:ed:c8:87:1f:b1:8f:31:b9:83:bd:08:c1: ed:88:dc:4a:c3:c1:3d:b6:57:93:17:a2:fb:5e:11:45:9c:06: a3:c3:e7:a3:ef:2e:66:a9:b2:d1:6c:e6:25:5c:16:7b:46:69: 5f:13:c9:e6:b9:6e:ef:25:e3:58:bb:6e:c5:c0:a4:b4:0c:65: f7:8c:26:64:90:16:35:e8:54:f7:d8:35:a3:f7:12:0d:3d:ff: 4a:43:d2:e5:02:a7:87:36:d5:50:66:ef:5f:23:16:6d:96:94: b0:26:a4:65:23:57:08:29:4e:7d:be:44:6d:91:e0:08:b9:d4: cf:e8:98:75:69:74:8d:bc:64:fe:3d:83:e8:63:e3:c9:d2:77: e0:12:9d:51 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUCIZf5kuKPMCd+shKr4A1kcUCr9AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjE4Y2M2ZTI0MTA1ZGU2YzVjOTAwM2Q2NTI0Mzg5M2Ni M2NmZGQwMTAeFw0yNTEyMjcyMzU5MzVaFw0yNjEyMjcwMDA0MzVaMDMxMTAvBgNV BAMTKEI3NDY2ODk0NTgwQTVBNjQwMTE0RUQzNjZCMUEyN0RDMTczRDlDMzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC13vC6bh3+94olX395HjOKy+DJ muapiGDKprYGIWkQjXkIJ6twUGs0ZfmBGR7wuagQB8QTNcYkbjHXdQAL7wCwN672 9o+wkvmqjLB+/EhuMh9l5wrO+oA5tRzsK7AE/p87MEPzUwOJQleWx7Sj9bUV+/HT WKbXM/u1RAXY39kBqv1ZRJCUVYZKR6W5/3WyCz2TIur3bdCeCPQpu0yBpQCZ3hex 0scChtDXlJkVlKgoefr+MsZPa1mAxN5/bug9175sRQ2RTOGqs8OaVgQ289vv9Y9b p6hywsPIv+oV3KuvERcOhO9f2DB4JILwbV+c7tW/9HLJ9wDDB3ve/t0ja0fXAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUt0ZolFgKWmQBFO02axon3Bc9nDEwHwYDVR0j BBgwFoAUIYzG4kEF3mxckAPWUkOJPLPP3QEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYtYjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWEx YWY2LzAvMjE4Q0M2RTI0MTA1REU2QzVDOTAwM0Q2NTI0Mzg5M0NCM0NGREQwMS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0lZekc0a0VGM214Y2tBUFdVa09KUExQ UDNRRS5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzcxOGExYjRmLWI2NGMt NDAyYy1iZTE1LWRkODJhNDFhMWFmNi8wL0FTMzk1MjEucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwVQYIKwYBBQUHAQcBAf8ERjBEMEIEAgABMDwDBABSFToD BABSFXADBABSFXQDBABSFX4DBABSFaUDBABSFo8DBABSFp0DBABSFroDBABSF7wD BABSF78wDQYJKoZIhvcNAQELBQADggEBAINKD2voVh3h8LziN2qwugbyBCf3BWlN LvTueqbNQ21kHAWVgtxiJflk5TrewkNgJOgZyXcpo/z2mK72mog9wIDgLrDJev3q ujV3m/LnyCebBHUYvXSivRiOSi9u7XbsqP9Mjvt25Hs4y0VlF2p4LGvziu3Ihx+x jzG5g70Iwe2I3ErDwT22V5MXovteEUWcBqPD56PvLmapstFs5iVcFntGaV8Tyea5 bu8l41i7bsXApLQMZfeMJmSQFjXoVPfYNaP3Eg09/0pD0uUCp4c21VBm718jFm2W lLAmpGUjVwgpTn2+RG2R4Ai51M/omHVpdI28ZP49g+hj48nSd+ASnVE= -----END CERTIFICATE-----Generated at Sun Jan 25 11:05:29 2026 by rpki-client