This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS834.roa File: AS834.roa (raw, json) Hash identifier: I07mXuhtbc9LLkYAddyOuypQabo5kQ070EzdQHduaVA= Subject key identifier: DB:86:80:3E:BB:74:4A:26:48:11:77:08:D8:4F:52:83:B7:69:B4:0F Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Certificate serial: 5B3F8A58003BDE119B36DFC647D12E2BC94A01A9 Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS834.roa Signing time: Sun 25 Jan 2026 03:36:39 +0000 ROA not before: Sun 25 Jan 2026 03:31:39 +0000 ROA not after: Sun 24 Jan 2027 03:36:39 +0000 asID: 834 IP address blocks: 82.22.28.0/24 maxlen: 24 82.23.143.0/24 maxlen: 24 82.24.107.0/24 maxlen: 24 82.24.181.0/24 maxlen: 24 82.25.11.0/24 maxlen: 24 82.25.60.0/24 maxlen: 24 82.26.65.0/24 maxlen: 24 82.26.136.0/24 maxlen: 24 82.29.126.0/24 maxlen: 24 82.38.121.0/24 maxlen: 24 82.38.139.0/24 maxlen: 24 82.38.168.0/24 maxlen: 24 82.38.171.0/24 maxlen: 24 82.39.102.0/23 maxlen: 24 82.39.114.0/24 maxlen: 24 82.39.164.0/23 maxlen: 24 82.39.194.0/23 maxlen: 24 82.39.228.0/23 maxlen: 24 82.39.240.0/22 maxlen: 24 82.40.36.0/24 maxlen: 24 82.41.0.0/24 maxlen: 24 82.41.27.0/24 maxlen: 24 178.83.0.0/22 maxlen: 24 178.83.22.0/23 maxlen: 24 178.83.24.0/23 maxlen: 24 178.83.32.0/24 maxlen: 24 178.83.35.0/24 maxlen: 24 178.83.37.0/24 maxlen: 24 178.83.39.0/24 maxlen: 24 178.83.40.0/22 maxlen: 24 178.83.44.0/23 maxlen: 24 178.83.47.0/24 maxlen: 24 178.83.48.0/22 maxlen: 24 178.83.53.0/24 maxlen: 24 178.83.54.0/23 maxlen: 24 178.83.57.0/24 maxlen: 24 178.83.58.0/24 maxlen: 24 178.83.60.0/22 maxlen: 24 178.83.64.0/23 maxlen: 24 178.83.68.0/22 maxlen: 24 178.83.72.0/23 maxlen: 24 178.83.74.0/24 maxlen: 24 178.83.76.0/22 maxlen: 24 178.83.81.0/24 maxlen: 24 178.83.82.0/24 maxlen: 24 178.83.84.0/22 maxlen: 24 178.83.88.0/23 maxlen: 24 178.83.90.0/24 maxlen: 24 178.83.92.0/24 maxlen: 24 178.83.94.0/23 maxlen: 24 178.83.97.0/24 maxlen: 24 178.83.98.0/24 maxlen: 24 178.83.104.0/24 maxlen: 24 178.83.124.0/22 maxlen: 24 178.83.128.0/22 maxlen: 24 178.83.142.0/24 maxlen: 24 178.83.148.0/24 maxlen: 24 178.83.152.0/24 maxlen: 24 178.83.156.0/24 maxlen: 24 178.83.158.0/24 maxlen: 24 178.83.161.0/24 maxlen: 24 178.83.163.0/24 maxlen: 24 178.83.165.0/24 maxlen: 24 178.83.167.0/24 maxlen: 24 178.83.168.0/22 maxlen: 24 178.83.173.0/24 maxlen: 24 178.83.174.0/23 maxlen: 24 178.83.176.0/23 maxlen: 24 178.83.179.0/24 maxlen: 24 178.83.181.0/24 maxlen: 24 178.83.182.0/23 maxlen: 24 178.83.184.0/22 maxlen: 24 178.83.188.0/24 maxlen: 24 178.83.190.0/23 maxlen: 24 178.83.192.0/23 maxlen: 24 178.83.195.0/24 maxlen: 24 178.83.196.0/23 maxlen: 24 178.83.198.0/24 maxlen: 24 178.83.200.0/23 maxlen: 24 178.83.203.0/24 maxlen: 24 178.83.204.0/23 maxlen: 24 178.83.206.0/24 maxlen: 24 178.83.208.0/24 maxlen: 24 178.83.216.0/22 maxlen: 24 178.83.224.0/24 maxlen: 24 178.83.226.0/23 maxlen: 24 178.83.228.0/23 maxlen: 24 178.83.232.0/22 maxlen: 24 178.83.236.0/24 maxlen: 24 178.83.238.0/23 maxlen: 24 178.83.240.0/24 maxlen: 24 178.83.242.0/23 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 05:21:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:3f:8a:58:00:3b:de:11:9b:36:df:c6:47:d1:2e:2b:c9:4a:01:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Validity Not Before: Jan 25 03:31:39 2026 GMT Not After : Jan 24 03:36:39 2027 GMT Subject: CN=DB86803EBB744A2648117708D84F5283B769B40F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:b9:b3:d8:40:25:50:cb:f6:02:56:bd:a0:d7: 0e:c6:b9:c9:bf:29:9d:61:46:39:a4:1a:4e:7d:66: df:20:a4:35:14:ea:1f:dd:be:80:5f:2d:51:0c:20: 79:3f:e7:7b:23:e1:75:55:49:fd:e1:e0:ca:0e:76: 29:49:5d:be:1d:51:4c:d6:f7:85:2f:99:21:fc:3b: 83:f1:ac:44:28:95:30:a3:d6:49:68:d8:7d:2a:61: 25:b9:28:c3:ca:bf:33:3e:d2:4a:2e:f5:4a:52:02: 93:7a:c1:c6:3a:fc:b0:49:15:b2:60:bc:81:d6:43: 17:af:75:89:34:d1:bf:31:b9:4a:46:21:1a:43:d4: 3d:01:68:aa:6e:7c:c7:f1:39:32:ca:1d:a8:64:ba: af:1f:31:42:13:a1:e6:18:b9:f0:b1:2d:79:41:19: a4:26:4f:e5:80:ee:b0:0a:1a:6b:c7:49:0a:aa:c3: fd:bf:b1:03:ee:29:63:1f:f1:f3:ad:17:20:c3:e8: 07:93:c5:72:1b:0f:d4:32:9d:95:38:56:a5:3f:09: 55:80:47:ce:58:68:a3:da:63:da:c3:3d:c6:44:db: d8:43:8a:8a:7a:11:57:ea:f5:98:b4:5d:92:4c:a3: a5:1d:92:d4:43:32:f5:22:47:3c:7f:4e:c3:bc:ca: 3c:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:86:80:3E:BB:74:4A:26:48:11:77:08:D8:4F:52:83:B7:69:B4:0F X509v3 Authority Key Identifier: keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS834.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 82.22.28.0/24 82.23.143.0/24 82.24.107.0/24 82.24.181.0/24 82.25.11.0/24 82.25.60.0/24 82.26.65.0/24 82.26.136.0/24 82.29.126.0/24 82.38.121.0/24 82.38.139.0/24 82.38.168.0/24 82.38.171.0/24 82.39.102.0/23 82.39.114.0/24 82.39.164.0/23 82.39.194.0/23 82.39.228.0/23 82.39.240.0/22 82.40.36.0/24 82.41.0.0/24 82.41.27.0/24 178.83.0.0/22 178.83.22.0-178.83.25.255 178.83.32.0/24 178.83.35.0/24 178.83.37.0/24 178.83.39.0-178.83.45.255 178.83.47.0-178.83.51.255 178.83.53.0-178.83.55.255 178.83.57.0-178.83.58.255 178.83.60.0-178.83.65.255 178.83.68.0-178.83.74.255 178.83.76.0/22 178.83.81.0-178.83.82.255 178.83.84.0-178.83.90.255 178.83.92.0/24 178.83.94.0/23 178.83.97.0-178.83.98.255 178.83.104.0/24 178.83.124.0-178.83.131.255 178.83.142.0/24 178.83.148.0/24 178.83.152.0/24 178.83.156.0/24 178.83.158.0/24 178.83.161.0/24 178.83.163.0/24 178.83.165.0/24 178.83.167.0-178.83.171.255 178.83.173.0-178.83.177.255 178.83.179.0/24 178.83.181.0-178.83.188.255 178.83.190.0-178.83.193.255 178.83.195.0-178.83.198.255 178.83.200.0/23 178.83.203.0-178.83.206.255 178.83.208.0/24 178.83.216.0/22 178.83.224.0/24 178.83.226.0-178.83.229.255 178.83.232.0-178.83.236.255 178.83.238.0-178.83.240.255 178.83.242.0/23 Signature Algorithm: sha256WithRSAEncryption 1d:de:36:2a:ca:3d:b4:c5:c4:ea:4d:41:0c:e4:51:b4:05:3b: 96:97:62:5d:f7:74:a2:1a:04:a0:0a:54:51:15:86:70:13:9d: 3c:c8:82:55:59:f2:4b:ed:f0:4b:d2:ba:ba:f6:0b:57:d3:d9: 42:35:e3:15:2c:23:aa:1e:d1:0a:bc:85:f3:2f:d0:f3:99:f4: 30:a3:6d:04:06:61:ed:7c:7a:88:b4:8b:2b:1f:c7:e7:0c:0a: 6c:d8:8c:24:a8:f9:98:e9:9e:41:76:71:f3:72:97:b8:d9:90: aa:a4:81:de:17:eb:29:ce:73:a1:47:de:85:4e:7c:90:e4:7b: 93:dd:6a:92:d2:a7:fd:fa:f1:f0:80:34:28:ea:45:6e:16:26: 41:7b:c5:a4:9d:8a:9b:95:a6:55:d6:79:00:4a:fc:71:8c:0d: 6f:c9:91:8c:06:8f:08:17:f7:ee:ce:7a:e8:47:f7:cc:dd:be: f8:30:35:16:71:08:54:21:f6:b7:b3:1c:6e:ec:94:ad:ec:63: 4a:a9:a3:55:0d:c6:8c:c8:65:64:4a:5c:61:9d:f4:85:0f:8e: 63:e8:eb:a4:e8:85:50:80:6d:3f:55:40:25:b2:d5:80:c0:86: cd:12:2f:85:e2:13:a3:ac:2c:a2:22:9d:e8:25:b0:ac:ec:d5: 41:be:fd:d1 -----BEGIN CERTIFICATE----- MIIHITCCBgmgAwIBAgIUWz+KWAA73hGbNt/GR9EuK8lKAakwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjE4Y2M2ZTI0MTA1ZGU2YzVjOTAwM2Q2NTI0Mzg5M2Ni M2NmZGQwMTAeFw0yNjAxMjUwMzMxMzlaFw0yNzAxMjQwMzM2MzlaMDMxMTAvBgNV BAMTKERCODY4MDNFQkI3NDRBMjY0ODExNzcwOEQ4NEY1MjgzQjc2OUI0MEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDkubPYQCVQy/YCVr2g1w7Gucm/ KZ1hRjmkGk59Zt8gpDUU6h/dvoBfLVEMIHk/53sj4XVVSf3h4MoOdilJXb4dUUzW 94UvmSH8O4PxrEQolTCj1klo2H0qYSW5KMPKvzM+0kou9UpSApN6wcY6/LBJFbJg vIHWQxevdYk00b8xuUpGIRpD1D0BaKpufMfxOTLKHahkuq8fMUIToeYYufCxLXlB GaQmT+WA7rAKGmvHSQqqw/2/sQPuKWMf8fOtFyDD6AeTxXIbD9QynZU4VqU/CVWA R85YaKPaY9rDPcZE29hDiop6EVfq9Zi0XZJMo6UdktRDMvUiRzx/TsO8yjzdAgMB AAGjggQrMIIEJzAdBgNVHQ4EFgQU24aAPrt0SiZIEXcI2E9Sg7dptA8wHwYDVR0j BBgwFoAUIYzG4kEF3mxckAPWUkOJPLPP3QEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYtYjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWEx YWY2LzAvMjE4Q0M2RTI0MTA1REU2QzVDOTAwM0Q2NTI0Mzg5M0NCM0NGREQwMS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0lZekc0a0VGM214Y2tBUFdVa09KUExQ UDNRRS5jZXIweAYIKwYBBQUHAQsEbDBqMGgGCCsGAQUFBzALhlxyc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzcxOGExYjRmLWI2NGMt NDAyYy1iZTE1LWRkODJhNDFhMWFmNi8wL0FTODM0LnJvYTAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMIICQQYIKwYBBQUHAQcBAf8EggIwMIICLDCCAigEAgABMIIC IAMEAFIWHAMEAFIXjwMEAFIYawMEAFIYtQMEAFIZCwMEAFIZPAMEAFIaQQMEAFIa iAMEAFIdfgMEAFImeQMEAFImiwMEAFImqAMEAFImqwMEAVInZgMEAFIncgMEAVIn pAMEAVInwgMEAVIn5AMEAlIn8AMEAFIoJAMEAFIpAAMEAFIpGwMEArJTADAMAwQB slMWAwQBslMYAwQAslMgAwQAslMjAwQAslMlMAwDBACyUycDBAGyUywwDAMEALJT LwMEArJTMDAMAwQAslM1AwQDslMwMAwDBACyUzkDBACyUzowDAMEArJTPAMEAbJT QDAMAwQCslNEAwQAslNKAwQCslNMMAwDBACyU1EDBACyU1IwDAMEArJTVAMEALJT WgMEALJTXAMEAbJTXjAMAwQAslNhAwQAslNiAwQAslNoMAwDBAKyU3wDBAKyU4AD BACyU44DBACyU5QDBACyU5gDBACyU5wDBACyU54DBACyU6EDBACyU6MDBACyU6Uw DAMEALJTpwMEArJTqDAMAwQAslOtAwQBslOwAwQAslOzMAwDBACyU7UDBACyU7ww DAMEAbJTvgMEAbJTwDAMAwQAslPDAwQAslPGAwQBslPIMAwDBACyU8sDBACyU84D BACyU9ADBAKyU9gDBACyU+AwDAMEAbJT4gMEAbJT5DAMAwQDslPoAwQAslPsMAwD BAGyU+4DBACyU/ADBAGyU/IwDQYJKoZIhvcNAQELBQADggEBAB3eNirKPbTFxOpN QQzkUbQFO5aXYl33dKIaBKAKVFEVhnATnTzIglVZ8kvt8EvSurr2C1fT2UI14xUs I6oe0Qq8hfMv0POZ9DCjbQQGYe18eoi0iysfx+cMCmzYjCSo+ZjpnkF2cfNyl7jZ kKqkgd4X6ynOc6FH3oVOfJDke5PdapLSp/368fCANCjqRW4WJkF7xaSdipuVplXW eQBK/HGMDW/JkYwGjwgX9+7OeuhH98zdvvgwNRZxCFQh9rezHG7slK3sY0qpo1UN xozIZWRKXGGd9IUPjmPo66TohVCAbT9VQCWy1YDAhs0SL4XiE6OsLKIineglsKzs 1UG+/dE= -----END CERTIFICATE-----Generated at Sun Jan 25 14:06:37 2026 by rpki-client