This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS64289.roa File: AS64289.roa (raw, json) Hash identifier: v8/4EqjALqqbB0ueyAb8+tyX/DTNPLlEAVQmIWX1hCM= Subject key identifier: 56:22:52:8B:C6:49:39:33:19:58:FF:4F:46:29:15:B3:1A:F4:B4:BD Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Certificate serial: 52A2C7D809501A794C4FEC34BB31C0BA9FE9C53E Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS64289.roa Signing time: Sun 11 Jan 2026 00:00:23 +0000 ROA not before: Sat 10 Jan 2026 23:55:23 +0000 ROA not after: Sun 10 Jan 2027 00:00:23 +0000 asID: 64289 IP address blocks: 82.21.43.0/24 maxlen: 24 82.22.175.0/24 maxlen: 24 82.24.8.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 05:21:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:a2:c7:d8:09:50:1a:79:4c:4f:ec:34:bb:31:c0:ba:9f:e9:c5:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Validity Not Before: Jan 10 23:55:23 2026 GMT Not After : Jan 10 00:00:23 2027 GMT Subject: CN=5622528BC64939331958FF4F462915B31AF4B4BD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:2e:26:99:5a:e3:15:27:02:f0:23:b5:d9:3a: ef:6a:92:cf:e7:e0:14:2e:0d:d8:02:6b:4c:12:8d: 89:c1:22:8d:47:ea:4a:93:85:f0:35:c5:76:ad:cb: 1e:9d:0c:e2:77:b9:89:3f:10:03:a0:35:0f:e7:a3: 2a:fa:cd:69:dc:27:57:f3:99:01:17:71:a7:4e:c3: 30:72:70:dc:d5:b2:0b:0a:82:3a:ea:ff:ac:7e:75: 9c:eb:af:41:76:d8:e6:be:31:ad:29:57:d3:cb:99: 8e:c0:c2:d6:a0:af:08:01:df:9a:e0:6f:7e:83:d1: 07:d1:1e:9f:6d:11:46:b1:a5:50:bb:b0:c3:31:2b: 04:6e:91:84:08:82:be:46:df:d9:43:dc:df:66:a0: c7:17:b5:e8:21:8d:80:ec:1a:39:8c:8b:84:f5:bc: eb:f8:72:42:c6:b2:7a:82:f5:3f:69:21:c0:7e:33: a8:76:e2:fb:ba:2e:e1:87:aa:24:ec:68:32:72:5b: 88:7e:52:58:b9:99:a2:61:cc:69:47:3e:25:65:3d: f9:c5:33:38:86:df:92:01:d6:c2:ef:8d:e4:a7:5d: 82:a2:4e:14:d6:22:6d:a0:23:22:8a:19:7e:45:9d: 99:f3:1a:60:0a:76:e6:d9:21:9d:bc:1a:d9:d4:16: b1:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:22:52:8B:C6:49:39:33:19:58:FF:4F:46:29:15:B3:1A:F4:B4:BD X509v3 Authority Key Identifier: keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS64289.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 82.21.43.0/24 82.22.175.0/24 82.24.8.0/24 Signature Algorithm: sha256WithRSAEncryption 3c:f8:f7:a9:c7:18:84:8d:2f:ad:9b:9d:1d:06:f7:11:69:6b: 2b:1b:d4:ce:b2:41:58:f7:8b:2d:e8:34:e9:d4:37:36:2e:8f: c3:1f:13:cc:a6:e7:31:20:f2:cf:95:e4:2a:33:b5:96:ec:a8: ca:9e:67:fa:55:1e:f3:43:84:06:2d:c2:2d:32:ce:05:7f:c9: f6:00:85:61:bf:70:b7:bd:f5:65:58:87:f2:10:66:a5:22:cd: 0a:26:80:3f:f2:6e:86:32:1f:92:8c:c1:f8:d5:72:c9:be:eb: 29:67:f0:e4:cf:eb:5f:f3:fe:db:ca:6f:bd:77:aa:0d:f6:fb: 8f:e1:37:a2:50:1a:42:06:08:5f:71:5b:46:55:36:c2:64:c1: a2:ae:2e:05:30:12:7e:27:84:81:dc:f4:fa:74:ca:e7:62:04: 0f:55:8a:fd:0b:a8:4f:bd:96:2c:1a:6b:e2:5e:3f:75:9a:31: 53:f6:0d:ab:18:1d:57:06:81:5c:79:94:19:84:78:75:77:5f: d3:ae:d3:db:6e:b5:bc:1d:ba:0d:1e:11:83:76:22:ff:31:48: b1:43:63:e0:13:4c:27:d3:06:1c:ae:c7:5c:82:cc:8a:e5:99: 9c:d9:d0:44:8b:f9:a0:94:6e:67:2b:6a:f6:27:65:fc:91:7d: 10:df:fe:20 -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgIUUqLH2AlQGnlMT+w0uzHAup/pxT4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjE4Y2M2ZTI0MTA1ZGU2YzVjOTAwM2Q2NTI0Mzg5M2Ni M2NmZGQwMTAeFw0yNjAxMTAyMzU1MjNaFw0yNzAxMTAwMDAwMjNaMDMxMTAvBgNV BAMTKDU2MjI1MjhCQzY0OTM5MzMxOTU4RkY0RjQ2MjkxNUIzMUFGNEI0QkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXLiaZWuMVJwLwI7XZOu9qks/n 4BQuDdgCa0wSjYnBIo1H6kqThfA1xXatyx6dDOJ3uYk/EAOgNQ/noyr6zWncJ1fz mQEXcadOwzBycNzVsgsKgjrq/6x+dZzrr0F22Oa+Ma0pV9PLmY7AwtagrwgB35rg b36D0QfRHp9tEUaxpVC7sMMxKwRukYQIgr5G39lD3N9moMcXteghjYDsGjmMi4T1 vOv4ckLGsnqC9T9pIcB+M6h24vu6LuGHqiTsaDJyW4h+Uli5maJhzGlHPiVlPfnF MziG35IB1sLvjeSnXYKiThTWIm2gIyKKGX5FnZnzGmAKdubZIZ28GtnUFrFrAgMB AAGjggIVMIICETAdBgNVHQ4EFgQUViJSi8ZJOTMZWP9PRikVsxr0tL0wHwYDVR0j BBgwFoAUIYzG4kEF3mxckAPWUkOJPLPP3QEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYtYjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWEx YWY2LzAvMjE4Q0M2RTI0MTA1REU2QzVDOTAwM0Q2NTI0Mzg5M0NCM0NGREQwMS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0lZekc0a0VGM214Y2tBUFdVa09KUExQ UDNRRS5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzcxOGExYjRmLWI2NGMt NDAyYy1iZTE1LWRkODJhNDFhMWFmNi8wL0FTNjQyODkucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwKwYIKwYBBQUHAQcBAf8EHDAaMBgEAgABMBIDBABSFSsD BABSFq8DBABSGAgwDQYJKoZIhvcNAQELBQADggEBADz496nHGISNL62bnR0G9xFp aysb1M6yQVj3iy3oNOnUNzYuj8MfE8ym5zEg8s+V5CoztZbsqMqeZ/pVHvNDhAYt wi0yzgV/yfYAhWG/cLe99WVYh/IQZqUizQomgD/yboYyH5KMwfjVcsm+6yln8OTP 61/z/tvKb713qg32+4/hN6JQGkIGCF9xW0ZVNsJkwaKuLgUwEn4nhIHc9Pp0yudi BA9Viv0LqE+9liwaa+JeP3WaMVP2DasYHVcGgVx5lBmEeHV3X9Ou09tutbwdug0e EYN2Iv8xSLFDY+ATTCfTBhyux1yCzIrlmZzZ0ESL+aCUbmcravYnZfyRfRDf/iA= -----END CERTIFICATE-----Generated at Sun Jan 25 12:30:25 2026 by rpki-client