This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS5650.roa File: AS5650.roa (raw, json) Hash identifier: mu/Xu4DjoNHBZbRdpZbRSZk+NDtf0rzA7d1ddxe/eu0= Subject key identifier: 06:FE:0E:65:5D:EA:98:06:A0:6D:77:C9:90:01:89:2A:43:9F:84:B2 Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Certificate serial: 31E603D4D46A7780C4B2E5ED1A5805804CAC6E3F Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS5650.roa Signing time: Thu 04 Dec 2025 09:50:01 +0000 ROA not before: Thu 04 Dec 2025 09:45:01 +0000 ROA not after: Thu 03 Dec 2026 09:50:01 +0000 asID: 5650 IP address blocks: 82.24.10.0/23 maxlen: 24 82.24.44.0/23 maxlen: 24 82.24.50.0/23 maxlen: 24 82.24.102.0/23 maxlen: 24 82.24.184.0/22 maxlen: 24 82.24.204.0/23 maxlen: 24 82.25.18.0/23 maxlen: 24 82.25.128.0/22 maxlen: 24 82.25.206.0/23 maxlen: 24 82.26.102.0/23 maxlen: 24 82.27.80.0/21 maxlen: 24 82.27.112.0/22 maxlen: 24 82.27.192.0/22 maxlen: 24 82.38.36.0/23 maxlen: 24 82.39.112.0/23 maxlen: 24 82.41.192.0/23 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:e6:03:d4:d4:6a:77:80:c4:b2:e5:ed:1a:58:05:80:4c:ac:6e:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Validity Not Before: Dec 4 09:45:01 2025 GMT Not After : Dec 3 09:50:01 2026 GMT Subject: CN=06FE0E655DEA9806A06D77C99001892A439F84B2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:67:2a:6c:72:28:ed:5b:91:71:ae:e2:f7:09: c2:ec:7d:64:b5:1e:25:ee:87:2a:07:c1:bd:6e:90: 3c:a2:7f:f4:2d:5d:40:c5:eb:a8:e7:ae:43:10:c1: 72:d5:8a:db:fc:53:e4:47:ab:7d:63:fb:16:cf:33: 30:2a:a4:13:f1:0b:c6:dc:33:cd:b2:25:89:e5:b3: ca:bc:f4:cd:a7:e3:4d:d7:1e:73:72:88:2f:1f:8b: 60:63:d0:7c:84:da:b4:a4:f1:b2:bd:43:5e:8f:61: dd:54:cf:7d:05:b8:57:f5:70:c9:27:f5:fb:5d:af: 9e:b2:7e:24:5e:c5:9b:e7:30:7d:4c:73:ea:df:7e: b6:87:10:52:47:a5:8b:3b:83:03:fb:a0:cd:87:57: 98:78:da:69:0a:f5:67:2e:da:e9:9e:20:eb:0f:57: 7b:e5:2e:74:ad:b6:ee:40:62:d1:e7:0d:59:f1:df: aa:5f:58:83:f2:b3:96:0f:d4:1e:54:94:2e:e7:be: 73:54:ec:0b:7d:31:f6:b6:f6:55:65:d6:7f:b4:16: 27:1b:d8:6e:7c:7a:ba:78:71:fb:2b:67:9c:e5:48: ba:8f:93:05:0d:61:0d:63:d1:8a:3e:aa:5b:5f:06: 52:d3:f7:b5:11:6f:ef:0a:85:fc:9e:39:b5:0a:59: 0c:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:FE:0E:65:5D:EA:98:06:A0:6D:77:C9:90:01:89:2A:43:9F:84:B2 X509v3 Authority Key Identifier: keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS5650.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 82.24.10.0/23 82.24.44.0/23 82.24.50.0/23 82.24.102.0/23 82.24.184.0/22 82.24.204.0/23 82.25.18.0/23 82.25.128.0/22 82.25.206.0/23 82.26.102.0/23 82.27.80.0/21 82.27.112.0/22 82.27.192.0/22 82.38.36.0/23 82.39.112.0/23 82.41.192.0/23 Signature Algorithm: sha256WithRSAEncryption 71:0a:3f:37:2c:1d:dd:2b:55:f5:24:f2:ca:4d:3b:44:bf:8d: 05:94:9c:37:95:56:c8:cb:1b:8a:64:a3:b3:d1:f5:d7:c0:db: 82:f7:66:e7:19:97:b4:65:35:2e:f2:f9:52:41:65:42:3b:3a: 70:be:1b:6a:42:6d:37:b9:07:7e:27:cd:3a:a8:70:1c:7d:2b: d6:41:b8:1b:6a:ac:79:71:aa:82:cc:75:ff:d7:1b:c5:a4:02: f6:ca:7b:65:e6:01:13:23:6c:9f:3f:f6:88:a5:f3:b0:13:ef: 9b:80:73:95:21:17:74:33:e1:a9:4d:0c:38:93:a2:61:fe:ef: 47:cd:bb:cc:86:cb:61:db:70:4b:1e:0e:79:a9:d7:92:f6:c2: 11:92:8d:c1:65:65:f6:99:ba:63:71:86:6f:fc:3b:6a:47:42: c2:94:fc:a1:1b:c9:e6:51:ba:f3:c6:60:d1:2e:40:a7:1b:9c: b9:a7:90:1f:06:47:e0:b3:1a:3e:e7:8e:65:46:97:14:38:76: 77:21:36:b9:29:69:29:81:2c:04:f1:3d:3c:cb:df:9e:e7:5f: c8:1e:6f:2b:93:9d:dc:9b:c6:bb:e6:4d:79:b9:c2:ce:8f:fa: 2f:76:95:5d:4d:45:82:7e:51:7d:d7:47:20:0a:0e:64:04:1a: 8a:81:9b:f0 -----BEGIN CERTIFICATE----- MIIFWDCCBECgAwIBAgIUMeYD1NRqd4DEsuXtGlgFgEysbj8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjE4Y2M2ZTI0MTA1ZGU2YzVjOTAwM2Q2NTI0Mzg5M2Ni M2NmZGQwMTAeFw0yNTEyMDQwOTQ1MDFaFw0yNjEyMDMwOTUwMDFaMDMxMTAvBgNV BAMTKDA2RkUwRTY1NURFQTk4MDZBMDZENzdDOTkwMDE4OTJBNDM5Rjg0QjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXZypscijtW5FxruL3CcLsfWS1 HiXuhyoHwb1ukDyif/QtXUDF66jnrkMQwXLVitv8U+RHq31j+xbPMzAqpBPxC8bc M82yJYnls8q89M2n403XHnNyiC8fi2Bj0HyE2rSk8bK9Q16PYd1Uz30FuFf1cMkn 9ftdr56yfiRexZvnMH1Mc+rffraHEFJHpYs7gwP7oM2HV5h42mkK9Wcu2umeIOsP V3vlLnSttu5AYtHnDVnx36pfWIPys5YP1B5UlC7nvnNU7At9Mfa29lVl1n+0Ficb 2G58erp4cfsrZ5zlSLqPkwUNYQ1j0Yo+qltfBlLT97URb+8KhfyeObUKWQxfAgMB AAGjggJiMIICXjAdBgNVHQ4EFgQUBv4OZV3qmAagbXfJkAGJKkOfhLIwHwYDVR0j BBgwFoAUIYzG4kEF3mxckAPWUkOJPLPP3QEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYtYjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWEx YWY2LzAvMjE4Q0M2RTI0MTA1REU2QzVDOTAwM0Q2NTI0Mzg5M0NCM0NGREQwMS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0lZekc0a0VGM214Y2tBUFdVa09KUExQ UDNRRS5jZXIweQYIKwYBBQUHAQsEbTBrMGkGCCsGAQUFBzALhl1yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzcxOGExYjRmLWI2NGMt NDAyYy1iZTE1LWRkODJhNDFhMWFmNi8wL0FTNTY1MC5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjB5BggrBgEFBQcBBwEB/wRqMGgwZgQCAAEwYAMEAVIYCgME AVIYLAMEAVIYMgMEAVIYZgMEAlIYuAMEAVIYzAMEAVIZEgMEAlIZgAMEAVIZzgME AVIaZgMEA1IbUAMEAlIbcAMEAlIbwAMEAVImJAMEAVIncAMEAVIpwDANBgkqhkiG 9w0BAQsFAAOCAQEAcQo/Nywd3StV9STyyk07RL+NBZScN5VWyMsbimSjs9H118Db gvdm5xmXtGU1LvL5UkFlQjs6cL4bakJtN7kHfifNOqhwHH0r1kG4G2qseXGqgsx1 /9cbxaQC9sp7ZeYBEyNsnz/2iKXzsBPvm4BzlSEXdDPhqU0MOJOiYf7vR827zIbL YdtwSx4OeanXkvbCEZKNwWVl9pm6Y3GGb/w7akdCwpT8oRvJ5lG688Zg0S5Apxuc uaeQHwZH4LMaPueOZUaXFDh2dyE2uSlpKYEsBPE9PMvfnudfyB5vK5Od3JvGu+ZN ebnCzo/6L3aVXU1Fgn5RfddHIAoOZAQaioGb8A== -----END CERTIFICATE-----Generated at Sat Dec 6 11:47:16 2025 by rpki-client