This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS395374.roa File: AS395374.roa (raw, json) Hash identifier: 58MFyzi6Z39HuFdxiFgAz7HIOKo51WdQ/jtgz+ZCIkE= Subject key identifier: 66:8F:11:25:7D:B5:3F:7A:0F:C9:82:47:C2:91:65:04:04:A4:16:8B Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Certificate serial: 3E2ACE2539C9765BD5B077DAFD9A2D4F60BAD719 Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS395374.roa Signing time: Wed 03 Dec 2025 07:56:27 +0000 ROA not before: Wed 03 Dec 2025 07:51:27 +0000 ROA not after: Wed 02 Dec 2026 07:56:27 +0000 asID: 395374 IP address blocks: 82.22.27.0/24 maxlen: 24 82.22.49.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:2a:ce:25:39:c9:76:5b:d5:b0:77:da:fd:9a:2d:4f:60:ba:d7:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Validity Not Before: Dec 3 07:51:27 2025 GMT Not After : Dec 2 07:56:27 2026 GMT Subject: CN=668F11257DB53F7A0FC98247C291650404A4168B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:70:05:80:ef:a5:66:18:1f:47:1a:24:fa:c3: 68:26:32:0a:10:da:e0:04:81:0c:99:be:54:e5:2b: 62:5f:f0:42:96:62:7e:8a:b2:e6:a7:ef:ed:38:ff: a7:01:af:ca:de:9d:20:32:b2:f2:f4:6b:ed:a2:93: 34:7b:42:75:4d:7f:85:33:c3:48:be:15:77:b9:11: 54:85:aa:45:f6:e2:b1:ca:74:0b:6d:62:5e:f8:16: 65:02:9f:d4:e6:70:11:1f:34:c0:4a:95:68:77:0e: 36:56:31:bb:c5:bb:59:ed:e0:1c:fb:81:24:46:7a: 06:1b:c5:e8:d7:de:ba:63:ab:56:ab:6c:b0:b0:ee: 8b:da:df:5a:89:e1:fa:fc:c8:75:89:bc:5d:48:06: e2:c2:85:6f:51:d4:2c:84:bc:82:c4:f1:8f:2a:b1: 3e:3f:60:4e:2a:39:3f:28:0a:f0:77:ec:28:7d:71: c0:f0:6e:8d:4e:7d:96:23:8a:95:f7:3f:3c:0f:30: d5:4e:a2:3c:30:a7:fd:3d:d5:f3:a8:81:2d:5b:0d: 48:50:5b:24:72:c7:ef:ca:af:fa:8e:48:0a:72:60: dd:96:1f:21:dc:aa:18:e5:33:4d:d0:52:e6:f4:f3: 45:c2:0d:f0:7f:d8:9c:25:b2:4d:9a:45:77:12:04: 91:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:8F:11:25:7D:B5:3F:7A:0F:C9:82:47:C2:91:65:04:04:A4:16:8B X509v3 Authority Key Identifier: keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS395374.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 82.22.27.0/24 82.22.49.0/24 Signature Algorithm: sha256WithRSAEncryption 2e:32:cf:1f:39:95:5f:0c:dd:a4:f5:aa:6b:9c:31:12:21:d9: 44:61:f3:dc:07:05:82:8f:b7:86:84:b5:e9:5c:3b:82:d5:41: 83:5f:65:b1:ec:3a:06:6c:10:2a:ef:a5:cd:59:c1:e7:f3:15: aa:a2:f7:1f:44:42:b1:d9:a2:ed:8c:92:4c:ba:06:e9:2f:70: c0:ba:fd:5d:e4:37:62:b3:9f:41:c3:f8:74:1c:df:c2:bc:80: f1:c3:b3:5e:ee:83:71:6d:30:b6:3b:c4:d9:28:4d:0a:42:63: d6:28:c6:b0:46:0d:49:98:60:22:d7:35:98:07:98:25:f1:76: 57:1a:8d:50:ce:ce:76:15:73:26:ee:ec:fe:2c:cd:63:7b:cf: 6b:e3:e4:f0:51:06:33:a3:ab:60:38:6b:7a:40:e8:0a:82:bc: 7a:60:c2:85:ff:90:ea:e4:a9:52:4f:f4:4d:e6:a6:bb:82:4d: 4d:21:88:aa:28:cc:ef:0c:f8:e8:fa:5f:f4:ab:cf:21:5e:89: 0f:9b:d9:46:51:00:84:41:d2:6a:f8:d7:34:37:12:bc:26:4c: 07:55:3c:5d:3f:0a:4a:02:cc:0e:f6:69:27:e3:0f:1b:56:4b: 8d:94:a0:7b:cc:e9:4a:18:21:a3:44:f4:14:7e:d6:b7:bc:cd: 42:f8:b2:e2 -----BEGIN CERTIFICATE----- MIIFBjCCA+6gAwIBAgIUPirOJTnJdlvVsHfa/ZotT2C61xkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjE4Y2M2ZTI0MTA1ZGU2YzVjOTAwM2Q2NTI0Mzg5M2Ni M2NmZGQwMTAeFw0yNTEyMDMwNzUxMjdaFw0yNjEyMDIwNzU2MjdaMDMxMTAvBgNV BAMTKDY2OEYxMTI1N0RCNTNGN0EwRkM5ODI0N0MyOTE2NTA0MDRBNDE2OEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3cAWA76VmGB9HGiT6w2gmMgoQ 2uAEgQyZvlTlK2Jf8EKWYn6Ksuan7+04/6cBr8renSAysvL0a+2ikzR7QnVNf4Uz w0i+FXe5EVSFqkX24rHKdAttYl74FmUCn9TmcBEfNMBKlWh3DjZWMbvFu1nt4Bz7 gSRGegYbxejX3rpjq1arbLCw7ova31qJ4fr8yHWJvF1IBuLChW9R1CyEvILE8Y8q sT4/YE4qOT8oCvB37Ch9ccDwbo1OfZYjipX3PzwPMNVOojwwp/091fOogS1bDUhQ WyRyx+/Kr/qOSApyYN2WHyHcqhjlM03QUub080XCDfB/2Jwlsk2aRXcSBJF3AgMB AAGjggIQMIICDDAdBgNVHQ4EFgQUZo8RJX21P3oPyYJHwpFlBASkFoswHwYDVR0j BBgwFoAUIYzG4kEF3mxckAPWUkOJPLPP3QEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYtYjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWEx YWY2LzAvMjE4Q0M2RTI0MTA1REU2QzVDOTAwM0Q2NTI0Mzg5M0NCM0NGREQwMS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0lZekc0a0VGM214Y2tBUFdVa09KUExQ UDNRRS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzcxOGExYjRmLWI2NGMt NDAyYy1iZTE1LWRkODJhNDFhMWFmNi8wL0FTMzk1Mzc0LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAUhYb AwQAUhYxMA0GCSqGSIb3DQEBCwUAA4IBAQAuMs8fOZVfDN2k9aprnDESIdlEYfPc BwWCj7eGhLXpXDuC1UGDX2Wx7DoGbBAq76XNWcHn8xWqovcfREKx2aLtjJJMugbp L3DAuv1d5Ddis59Bw/h0HN/CvIDxw7Ne7oNxbTC2O8TZKE0KQmPWKMawRg1JmGAi 1zWYB5gl8XZXGo1Qzs52FXMm7uz+LM1je89r4+TwUQYzo6tgOGt6QOgKgrx6YMKF /5Dq5KlST/RN5qa7gk1NIYiqKMzvDPjo+l/0q88hXokPm9lGUQCEQdJq+Nc0NxK8 JkwHVTxdPwpKAswO9mkn4w8bVkuNlKB7zOlKGCGjRPQUfta3vM1C+LLi -----END CERTIFICATE-----Generated at Sat Dec 6 11:47:28 2025 by rpki-client