This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS20326.roa File: AS20326.roa (raw, json) Hash identifier: iCBadBUDZ7jh8rVXaQ/wyHlf/lc9M/cYASLU9dV2KN4= Subject key identifier: 59:B2:AE:D4:49:9A:C4:0D:58:82:D5:BF:FA:BC:92:73:56:4B:46:CE Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Certificate serial: 76B0ED6D55D80CB135BDD204F3C06BDA8ECEC9A6 Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS20326.roa Signing time: Mon 15 Dec 2025 07:32:51 +0000 ROA not before: Mon 15 Dec 2025 07:27:51 +0000 ROA not after: Mon 14 Dec 2026 07:32:51 +0000 asID: 20326 IP address blocks: 82.21.43.0/24 maxlen: 24 82.21.125.0/24 maxlen: 24 82.22.124.0/23 maxlen: 23 82.25.13.0/24 maxlen: 24 82.25.58.0/24 maxlen: 24 82.26.96.0/22 maxlen: 24 82.38.144.0/21 maxlen: 21 82.39.135.0/24 maxlen: 24 82.39.136.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 25 Dec 2025 14:30:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:b0:ed:6d:55:d8:0c:b1:35:bd:d2:04:f3:c0:6b:da:8e:ce:c9:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Validity Not Before: Dec 15 07:27:51 2025 GMT Not After : Dec 14 07:32:51 2026 GMT Subject: CN=59B2AED4499AC40D5882D5BFFABC9273564B46CE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:91:83:bd:29:91:88:85:11:e5:10:70:88:8e: 3f:92:a0:ea:cc:b1:eb:59:20:96:85:82:9a:cb:3a: 59:fc:0b:1a:3b:1b:7b:15:a7:04:d6:eb:99:1d:86: 34:83:e0:6d:86:05:34:19:ff:97:eb:7e:a8:f2:1d: db:ce:ef:1d:a3:fd:02:f1:de:bc:b7:ca:b9:da:ea: 70:18:e3:89:1c:c3:db:f6:8e:ce:c3:2a:33:d7:b7: cb:a2:d9:12:55:1c:46:65:08:01:11:81:8d:d4:9f: ed:e6:a3:dc:fc:20:72:9e:ea:86:25:0f:b8:4f:40: 41:67:75:e5:24:39:9b:23:38:7e:c1:c9:50:73:ce: 0a:7f:51:05:36:3c:77:d0:ce:01:92:6c:c2:36:18: 49:05:6e:b7:ce:78:8b:41:e6:92:93:44:53:48:b2: 60:7b:76:2d:0f:ba:0d:db:a4:a6:5a:80:b4:3a:a2: fd:fc:b4:bf:00:a8:e9:6d:fc:8a:cb:51:24:c6:13: fb:06:c2:26:8f:f0:f2:0f:22:ad:a6:f9:3d:fd:96: 02:9d:2b:4d:93:a5:a6:c7:6d:62:e2:82:57:c9:26: a5:32:cc:47:a2:91:9c:f4:f4:6a:32:63:da:4d:d2: 07:94:6b:43:63:d0:23:35:ca:fe:34:cc:16:70:88: c5:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:B2:AE:D4:49:9A:C4:0D:58:82:D5:BF:FA:BC:92:73:56:4B:46:CE X509v3 Authority Key Identifier: keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS20326.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 82.21.43.0/24 82.21.125.0/24 82.22.124.0/23 82.25.13.0/24 82.25.58.0/24 82.26.96.0/22 82.38.144.0/21 82.39.135.0-82.39.136.255 Signature Algorithm: sha256WithRSAEncryption 30:43:1d:cd:0f:f3:d6:8f:97:ce:70:0f:51:ba:29:1d:0a:73: 87:e1:1b:0f:38:36:9f:11:0d:65:d0:66:e3:3c:d8:57:a9:82: 7c:16:c4:ba:bf:0f:00:82:ef:86:0d:ac:34:41:37:4a:a9:87: 1d:04:23:24:f1:4b:e9:7c:c6:a7:df:44:eb:c4:74:26:06:51: fb:ee:6c:0b:ab:e0:07:0b:ec:f2:21:12:32:d8:8d:6e:4f:68: bd:9d:e8:b3:9f:b6:d3:e0:cc:2e:fb:58:ff:24:a4:77:1d:34: 9e:b8:80:ec:1b:a2:2e:a2:4d:f2:66:56:8e:e2:1c:d6:eb:67: de:7d:3f:ed:a2:a5:e4:93:d9:3a:96:89:49:be:64:71:28:0e: d8:38:8e:f2:65:0a:f0:74:b6:e3:19:3c:a2:33:33:c4:ce:ca: e6:0a:32:43:9a:d8:0e:85:a1:4c:44:cc:61:b4:8e:67:f3:da: 53:e0:07:36:aa:56:c1:57:7e:7e:b9:b8:dd:08:b7:54:53:78: 23:00:08:b4:4d:b5:f2:8b:13:76:34:c3:86:cb:1f:01:c2:00: 3b:33:01:4d:9e:82:e9:9c:5c:04:8b:6d:12:6c:07:06:4d:a9: 69:1f:26:0a:ae:fa:d4:a7:c9:ea:bc:42:ed:be:f1:5a:b4:c2: a3:8f:d1:19 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUdrDtbVXYDLE1vdIE88Br2o7OyaYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjE4Y2M2ZTI0MTA1ZGU2YzVjOTAwM2Q2NTI0Mzg5M2Ni M2NmZGQwMTAeFw0yNTEyMTUwNzI3NTFaFw0yNjEyMTQwNzMyNTFaMDMxMTAvBgNV BAMTKDU5QjJBRUQ0NDk5QUM0MEQ1ODgyRDVCRkZBQkM5MjczNTY0QjQ2Q0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPkYO9KZGIhRHlEHCIjj+SoOrM setZIJaFgprLOln8Cxo7G3sVpwTW65kdhjSD4G2GBTQZ/5frfqjyHdvO7x2j/QLx 3ry3yrna6nAY44kcw9v2js7DKjPXt8ui2RJVHEZlCAERgY3Un+3mo9z8IHKe6oYl D7hPQEFndeUkOZsjOH7ByVBzzgp/UQU2PHfQzgGSbMI2GEkFbrfOeItB5pKTRFNI smB7di0Pug3bpKZagLQ6ov38tL8AqOlt/IrLUSTGE/sGwiaP8PIPIq2m+T39lgKd K02TpabHbWLiglfJJqUyzEeikZz09GoyY9pN0geUa0Nj0CM1yv40zBZwiMX9AgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUWbKu1EmaxA1YgtW/+rySc1ZLRs4wHwYDVR0j BBgwFoAUIYzG4kEF3mxckAPWUkOJPLPP3QEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYtYjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWEx YWY2LzAvMjE4Q0M2RTI0MTA1REU2QzVDOTAwM0Q2NTI0Mzg5M0NCM0NGREQwMS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0lZekc0a0VGM214Y2tBUFdVa09KUExQ UDNRRS5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzcxOGExYjRmLWI2NGMt NDAyYy1iZTE1LWRkODJhNDFhMWFmNi8wL0FTMjAzMjYucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwUQYIKwYBBQUHAQcBAf8EQjBAMD4EAgABMDgDBABSFSsD BABSFX0DBAFSFnwDBABSGQ0DBABSGToDBAJSGmADBANSJpAwDAMEAFInhwMEAFIn iDANBgkqhkiG9w0BAQsFAAOCAQEAMEMdzQ/z1o+XznAPUbopHQpzh+EbDzg2nxEN ZdBm4zzYV6mCfBbEur8PAILvhg2sNEE3SqmHHQQjJPFL6XzGp99E68R0JgZR++5s C6vgBwvs8iESMtiNbk9ovZ3os5+20+DMLvtY/ySkdx00nriA7BuiLqJN8mZWjuIc 1utn3n0/7aKl5JPZOpaJSb5kcSgO2DiO8mUK8HS24xk8ojMzxM7K5goyQ5rYDoWh TETMYbSOZ/PaU+AHNqpWwVd+frm43Qi3VFN4IwAItE218osTdjTDhssfAcIAOzMB TZ6C6ZxcBIttEmwHBk2paR8mCq761KfJ6rxC7b7xWrTCo4/RGQ== -----END CERTIFICATE-----Generated at Wed Dec 24 20:20:58 2025 by rpki-client