This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS401776.roa File: AS401776.roa (raw, json) Hash identifier: 2i4os9wxq97ybEJOQQooH3wjUky5Ugvn02EyFigz9BE= Subject key identifier: 94:D6:81:96:DF:95:ED:29:9B:B6:9A:FF:D5:16:E6:7A:82:D4:C3:89 Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Certificate serial: 4F383D541FB0C624498600FE7A5F5CCFAC2FE75F Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS401776.roa Signing time: Fri 05 Dec 2025 13:48:59 +0000 ROA not before: Fri 05 Dec 2025 13:43:59 +0000 ROA not after: Fri 04 Dec 2026 13:48:59 +0000 asID: 401776 IP address blocks: 82.21.199.0/24 maxlen: 24 82.24.144.0/24 maxlen: 24 82.25.39.0/24 maxlen: 24 82.27.3.0/24 maxlen: 24 82.29.103.0/24 maxlen: 24 82.39.170.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:38:3d:54:1f:b0:c6:24:49:86:00:fe:7a:5f:5c:cf:ac:2f:e7:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Validity Not Before: Dec 5 13:43:59 2025 GMT Not After : Dec 4 13:48:59 2026 GMT Subject: CN=94D68196DF95ED299BB69AFFD516E67A82D4C389 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:66:3f:ba:07:d1:c8:15:01:54:78:98:71:00: 67:e5:b6:f4:ed:c5:17:4c:4f:79:d2:69:5e:5f:7b: 72:55:b8:d2:a9:c9:8c:9a:67:f9:45:f3:77:39:ca: b1:d8:7f:5a:23:a6:ce:1e:1d:7b:1b:ca:b2:f7:34: 2d:8e:13:b2:c6:a7:1c:59:d2:f8:8b:da:92:8e:5d: ef:94:03:4e:a2:76:11:c9:85:29:00:c4:2e:7a:fb: 19:e7:21:ec:a7:5e:e5:85:7e:d7:dd:93:dc:c3:d1: 1a:ef:89:04:6b:d2:c7:10:c6:8b:8c:0c:13:d9:84: fc:3f:d3:97:76:f4:13:f9:fe:53:2a:39:d0:7d:da: d2:3e:73:47:df:3c:bb:25:21:f2:f7:d6:2f:d8:08: 00:53:af:a1:00:5a:68:b9:26:38:a9:e1:de:8e:6d: 51:a3:ee:22:e6:c9:da:cd:c2:52:08:fd:ce:9f:0d: 23:32:99:7a:95:b7:eb:20:6f:67:55:f1:da:67:39: cb:ea:9b:25:4b:e6:a3:2a:c3:11:d3:54:ea:e8:f9: a6:b9:ce:33:3b:07:74:55:a5:dc:8e:1f:15:ee:1f: 83:32:a1:07:ab:49:ff:4f:08:ab:33:be:b5:90:f5: 60:a9:5d:39:7a:e5:ef:4d:a6:5d:a7:05:d8:de:18: 7f:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:D6:81:96:DF:95:ED:29:9B:B6:9A:FF:D5:16:E6:7A:82:D4:C3:89 X509v3 Authority Key Identifier: keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS401776.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 82.21.199.0/24 82.24.144.0/24 82.25.39.0/24 82.27.3.0/24 82.29.103.0/24 82.39.170.0/24 Signature Algorithm: sha256WithRSAEncryption 23:38:55:8e:08:10:cd:d2:51:60:6f:ff:ec:be:aa:e4:51:23: cf:ba:8a:1c:7d:2e:96:7c:42:83:a7:89:d6:cd:9f:2d:2b:d8: 6a:45:8d:cb:f1:6c:69:93:ee:77:83:23:92:83:f4:2b:4f:77: 9f:fc:71:e2:6b:52:e7:08:6f:45:82:d2:3c:0d:77:59:2c:f9: 25:a7:61:4d:bd:9b:d0:d5:33:49:d2:34:63:7f:d8:89:14:c2: 05:de:18:db:1f:2e:ef:04:c2:09:b3:c6:d5:2e:13:6b:3c:b4: 18:66:f9:1c:7a:26:78:64:ff:0a:d2:f9:52:6e:e4:c6:f1:1f: 6f:9c:76:49:fe:c7:b7:52:28:bb:a4:31:b8:09:4a:48:66:e7: d7:d9:b4:04:03:9f:aa:a6:4b:bd:12:0b:c2:ee:47:7e:b8:ec: b5:f8:f8:c1:73:6f:5f:5b:23:02:e1:3c:e6:dc:63:62:8e:df: 76:37:16:ad:a7:83:2f:81:58:a9:61:df:17:10:e0:5f:08:a5: cd:e8:fe:bf:43:3d:ed:21:33:1e:f1:1c:69:86:4e:ef:4b:80: a4:06:e0:48:d1:42:5c:29:d3:92:53:84:90:e6:ca:57:11:15: f5:60:73:f2:8e:c8:ee:e4:87:63:0e:23:d2:75:8e:10:83:79: 21:72:9f:64 -----BEGIN CERTIFICATE----- MIIFHjCCBAagAwIBAgIUTzg9VB+wxiRJhgD+el9cz6wv518wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjE4Y2M2ZTI0MTA1ZGU2YzVjOTAwM2Q2NTI0Mzg5M2Ni M2NmZGQwMTAeFw0yNTEyMDUxMzQzNTlaFw0yNjEyMDQxMzQ4NTlaMDMxMTAvBgNV BAMTKDk0RDY4MTk2REY5NUVEMjk5QkI2OUFGRkQ1MTZFNjdBODJENEMzODkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvZj+6B9HIFQFUeJhxAGfltvTt xRdMT3nSaV5fe3JVuNKpyYyaZ/lF83c5yrHYf1ojps4eHXsbyrL3NC2OE7LGpxxZ 0viL2pKOXe+UA06idhHJhSkAxC56+xnnIeynXuWFftfdk9zD0RrviQRr0scQxouM DBPZhPw/05d29BP5/lMqOdB92tI+c0ffPLslIfL31i/YCABTr6EAWmi5Jjip4d6O bVGj7iLmydrNwlII/c6fDSMymXqVt+sgb2dV8dpnOcvqmyVL5qMqwxHTVOro+aa5 zjM7B3RVpdyOHxXuH4MyoQerSf9PCKszvrWQ9WCpXTl65e9Npl2nBdjeGH95AgMB AAGjggIoMIICJDAdBgNVHQ4EFgQUlNaBlt+V7Smbtpr/1RbmeoLUw4kwHwYDVR0j BBgwFoAUIYzG4kEF3mxckAPWUkOJPLPP3QEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYtYjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWEx YWY2LzAvMjE4Q0M2RTI0MTA1REU2QzVDOTAwM0Q2NTI0Mzg5M0NCM0NGREQwMS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0lZekc0a0VGM214Y2tBUFdVa09KUExQ UDNRRS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzcxOGExYjRmLWI2NGMt NDAyYy1iZTE1LWRkODJhNDFhMWFmNi8wL0FTNDAxNzc2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMD0GCCsGAQUFBwEHAQH/BC4wLDAqBAIAATAkAwQAUhXH AwQAUhiQAwQAUhknAwQAUhsDAwQAUh1nAwQAUieqMA0GCSqGSIb3DQEBCwUAA4IB AQAjOFWOCBDN0lFgb//svqrkUSPPuoocfS6WfEKDp4nWzZ8tK9hqRY3L8Wxpk+53 gyOSg/QrT3ef/HHia1LnCG9FgtI8DXdZLPklp2FNvZvQ1TNJ0jRjf9iJFMIF3hjb Hy7vBMIJs8bVLhNrPLQYZvkceiZ4ZP8K0vlSbuTG8R9vnHZJ/se3Uii7pDG4CUpI ZufX2bQEA5+qpku9EgvC7kd+uOy1+PjBc29fWyMC4Tzm3GNijt92Nxatp4MvgVip Yd8XEOBfCKXN6P6/Qz3tITMe8Rxphk7vS4CkBuBI0UJcKdOSU4SQ5spXERX1YHPy jsju5IdjDiPSdY4Qg3khcp9k -----END CERTIFICATE-----Generated at Sat Dec 6 11:47:16 2025 by rpki-client