This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS21840.roa File: AS21840.roa (raw, json) Hash identifier: b6dO2o07vjnz8gjvSebCp9AdsGsp1p8obz9vIe+SrdE= Subject key identifier: F7:C7:FE:64:4E:8A:16:62:EA:17:77:15:14:26:26:56:B8:93:75:58 Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f Certificate serial: 133A0CEEF69C1496D2EFC41A23338ECFD960978C Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS21840.roa Signing time: Tue 20 Jan 2026 13:25:02 +0000 ROA not before: Tue 20 Jan 2026 13:20:02 +0000 ROA not after: Tue 19 Jan 2027 13:25:02 +0000 asID: 21840 IP address blocks: 92.112.37.0/24 maxlen: 24 95.135.109.0/24 maxlen: 24 95.135.199.0/24 maxlen: 24 178.92.184.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 03:44:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:3a:0c:ee:f6:9c:14:96:d2:ef:c4:1a:23:33:8e:cf:d9:60:97:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f Validity Not Before: Jan 20 13:20:02 2026 GMT Not After : Jan 19 13:25:02 2027 GMT Subject: CN=F7C7FE644E8A1662EA17771514262656B8937558 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:12:6b:dc:5e:76:2f:0d:5d:1d:d7:94:bd:9e: 84:d3:ca:45:7d:e5:c3:f7:2a:1d:7f:20:81:ba:48: e1:30:c5:d5:9b:04:bf:67:12:0d:a8:c6:5e:82:13: 86:14:0c:5d:23:ad:68:37:f9:9f:c6:07:ca:e2:34: 2f:74:fe:88:84:dc:67:b5:d2:80:e2:4e:52:95:58: 8d:c8:3b:2d:d5:44:df:86:f8:80:1d:78:fe:97:c5: c7:96:ba:28:77:5e:7b:4d:79:34:46:cb:31:48:27: ae:7f:75:d5:4d:60:3c:f3:04:24:7f:58:6b:58:14: eb:ad:13:13:c3:ed:25:10:a4:24:6c:60:8b:b2:26: a3:42:c3:a8:20:4f:a8:a6:9a:48:e3:15:03:da:63: a9:59:e6:9e:64:7d:0d:3a:9f:c4:51:91:6b:b5:a2: ec:ed:13:8c:1e:96:88:52:4f:64:bd:c8:3f:ca:b2: f6:d9:92:b6:42:7b:8f:64:3b:bc:48:c4:9f:63:99: af:16:25:00:21:df:c1:b2:55:02:41:30:89:9c:3e: 25:ff:c4:a7:0b:76:c7:d7:c5:33:31:ae:77:22:f7: bf:ca:04:4c:3b:7b:6d:fe:c1:e0:f2:64:5e:e8:8d: b8:1d:f0:ee:e6:cf:e4:f7:a9:ec:e5:92:f2:4a:90: f1:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:C7:FE:64:4E:8A:16:62:EA:17:77:15:14:26:26:56:B8:93:75:58 X509v3 Authority Key Identifier: keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS21840.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 92.112.37.0/24 95.135.109.0/24 95.135.199.0/24 178.92.184.0/24 Signature Algorithm: sha256WithRSAEncryption 5d:14:52:14:30:bc:a1:37:fb:05:a2:8b:94:7f:45:b5:1c:67: ee:f6:ad:8f:80:47:69:55:61:c6:93:91:22:c5:8a:de:ff:08: fc:e5:87:29:46:ab:97:e6:15:86:11:c4:66:8c:7c:f6:21:6c: de:5e:f9:3c:b2:32:3b:29:73:6e:e0:a0:cc:59:d5:a8:0b:09: 96:72:7d:a0:c1:66:75:41:5a:5e:56:17:20:45:67:ca:8f:85: e8:3e:b7:70:91:3c:ed:48:d1:49:36:86:bb:8d:d1:14:15:48: 27:a9:20:22:5c:b0:fa:ee:09:39:4b:86:51:dc:a8:11:87:17: 46:bf:99:92:0e:b5:b4:28:b4:37:2c:50:0c:39:69:fb:ae:53: cd:72:be:cf:0f:c3:9a:70:1c:e4:4d:bb:67:ea:f5:2e:ec:b1: be:f4:3b:04:97:6e:dc:43:9c:43:f7:30:f9:4f:3c:86:db:ef: 6f:dc:55:7c:61:c8:f9:60:10:af:32:5f:98:d1:b4:44:c3:6d: 31:ab:9b:df:d9:d6:52:5c:5a:c3:05:31:02:4f:e2:3d:63:80: e0:af:5b:86:6c:35:d6:fb:fd:ff:88:d2:b3:db:7b:ea:a6:1b: 3c:52:25:e8:b1:55:a1:96:00:6b:da:ed:ac:cd:fc:59:66:dd: f3:ee:b5:bf -----BEGIN CERTIFICATE----- MIIFETCCA/mgAwIBAgIUEzoM7vacFJbS78QaIzOOz9lgl4wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOWJkODEzMzkxZTRhZjJhZTMxMDNjMTg5MWIyMjcyZDRk NWMxM2I1ZjAeFw0yNjAxMjAxMzIwMDJaFw0yNzAxMTkxMzI1MDJaMDMxMTAvBgNV BAMTKEY3QzdGRTY0NEU4QTE2NjJFQTE3NzcxNTE0MjYyNjU2Qjg5Mzc1NTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNEmvcXnYvDV0d15S9noTTykV9 5cP3Kh1/IIG6SOEwxdWbBL9nEg2oxl6CE4YUDF0jrWg3+Z/GB8riNC90/oiE3Ge1 0oDiTlKVWI3IOy3VRN+G+IAdeP6XxceWuih3XntNeTRGyzFIJ65/ddVNYDzzBCR/ WGtYFOutExPD7SUQpCRsYIuyJqNCw6ggT6immkjjFQPaY6lZ5p5kfQ06n8RRkWu1 ouztE4welohST2S9yD/KsvbZkrZCe49kO7xIxJ9jma8WJQAh38GyVQJBMImcPiX/ xKcLdsfXxTMxrnci97/KBEw7e23+weDyZF7ojbgd8O7mz+T3qezlkvJKkPFNAgMB AAGjggIbMIICFzAdBgNVHQ4EFgQU98f+ZE6KFmLqF3cVFCYmVriTdVgwHwYDVR0j BBgwFoAUm9gTOR5K8q4xA8GJGyJy1NXBO18wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYzQ3OGY2ZjUtNDQ5YS00ODI3LTk5ZDUtYmY2YjkzYThm NmI0LzAvOUJEODEzMzkxRTRBRjJBRTMxMDNDMTg5MUIyMjcyRDRENUMxM0I1Ri5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL205Z1RPUjVLOHE0eEE4R0pHeUp5MU5Y Qk8xOC5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2M0NzhmNmY1LTQ0OWEt NDgyNy05OWQ1LWJmNmI5M2E4ZjZiNC8wL0FTMjE4NDAucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwMQYIKwYBBQUHAQcBAf8EIjAgMB4EAgABMBgDBABccCUD BABfh20DBABfh8cDBACyXLgwDQYJKoZIhvcNAQELBQADggEBAF0UUhQwvKE3+wWi i5R/RbUcZ+72rY+AR2lVYcaTkSLFit7/CPzlhylGq5fmFYYRxGaMfPYhbN5e+Tyy Mjspc27goMxZ1agLCZZyfaDBZnVBWl5WFyBFZ8qPheg+t3CRPO1I0Uk2hruN0RQV SCepICJcsPruCTlLhlHcqBGHF0a/mZIOtbQotDcsUAw5afuuU81yvs8Pw5pwHORN u2fq9S7ssb70OwSXbtxDnEP3MPlPPIbb72/cVXxhyPlgEK8yX5jRtETDbTGrm9/Z 1lJcWsMFMQJP4j1jgOCvW4ZsNdb7/f+I0rPbe+qmGzxSJeixVaGWAGva7azN/Flm 3fPutb8= -----END CERTIFICATE-----Generated at Sun Jan 25 16:43:59 2026 by rpki-client