This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS215294.roa File: AS215294.roa (raw, json) Hash identifier: bTCFLh7tyEtgH97mdLFIn+aHZv8LEh8Dq5BE4EzA9rs= Subject key identifier: BA:03:4F:61:D3:35:0A:4E:D8:42:54:C4:9B:D1:3D:08:09:66:6D:A8 Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Certificate serial: 2584973E7EB09D5693F395E4D3BB862FEC7345E4 Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS215294.roa Signing time: Wed 10 Dec 2025 08:40:28 +0000 ROA not before: Wed 10 Dec 2025 08:35:28 +0000 ROA not after: Wed 09 Dec 2026 08:40:28 +0000 asID: 215294 IP address blocks: 82.39.66.0/24 maxlen: 24 82.39.67.0/24 maxlen: 24 82.39.68.0/24 maxlen: 24 82.39.69.0/24 maxlen: 24 82.39.70.0/24 maxlen: 24 82.39.71.0/24 maxlen: 24 82.39.72.0/24 maxlen: 24 82.39.73.0/24 maxlen: 24 82.39.74.0/24 maxlen: 24 82.39.75.0/24 maxlen: 24 82.39.76.0/24 maxlen: 24 82.39.77.0/24 maxlen: 24 82.39.78.0/24 maxlen: 24 82.39.79.0/24 maxlen: 24 82.39.80.0/24 maxlen: 24 82.41.246.0/24 maxlen: 24 82.41.247.0/24 maxlen: 24 82.41.248.0/24 maxlen: 24 82.41.249.0/24 maxlen: 24 82.41.250.0/24 maxlen: 24 82.41.251.0/24 maxlen: 24 82.41.252.0/24 maxlen: 24 82.41.253.0/24 maxlen: 24 82.41.254.0/24 maxlen: 24 82.41.255.0/24 maxlen: 24 2a13:9500:115::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 04:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:84:97:3e:7e:b0:9d:56:93:f3:95:e4:d3:bb:86:2f:ec:73:45:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Validity Not Before: Dec 10 08:35:28 2025 GMT Not After : Dec 9 08:40:28 2026 GMT Subject: CN=BA034F61D3350A4ED84254C49BD13D0809666DA8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:40:82:95:62:9d:95:41:74:f8:25:ca:6e:0a: c9:51:1f:f2:5a:2a:38:74:3f:dc:31:e8:f8:32:5c: 21:b1:13:9a:2f:85:d0:91:7d:66:2e:3c:69:5e:7f: 79:ad:87:0b:95:9f:86:da:7a:14:f3:20:ad:96:09: de:36:46:c5:ab:03:95:7f:63:c4:51:fa:3b:e5:76: b1:8c:c1:09:9f:60:20:bf:d4:03:95:41:34:e4:8d: 84:1d:83:e1:4c:6d:6e:fe:10:5e:5c:bf:6c:37:1e: 52:af:e3:d0:e0:b6:0f:09:1a:df:61:77:84:52:38: 3e:df:41:be:eb:7c:80:a9:06:61:53:0c:d5:34:26: 03:6f:3c:6d:aa:aa:91:17:90:c8:36:27:77:5e:cc: 9c:1f:38:e3:23:2e:6b:40:79:50:17:14:bd:a8:9e: 0e:4f:22:07:f2:f3:fd:06:74:62:85:5d:39:aa:0f: 56:3d:01:5a:a3:c5:d9:ea:86:ac:65:9e:88:2e:e9: 29:f7:19:ca:2c:d0:b1:bc:1a:eb:f1:c2:a7:f4:2e: 64:74:e2:41:10:cb:b7:42:bd:66:13:f0:d4:3a:fc: 3b:c2:b0:a0:22:a8:a1:5e:3c:55:6f:62:5e:11:14: e5:b4:2d:0b:4a:7e:2c:6f:ab:a5:86:56:39:ae:0e: 96:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:03:4F:61:D3:35:0A:4E:D8:42:54:C4:9B:D1:3D:08:09:66:6D:A8 X509v3 Authority Key Identifier: keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS215294.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 82.39.66.0-82.39.80.255 82.41.246.0-82.41.255.255 IPv6: 2a13:9500:115::/48 Signature Algorithm: sha256WithRSAEncryption 6e:51:80:3f:98:43:7d:1f:8f:2d:fa:f4:da:5a:8c:5a:ae:bb: 03:55:8b:14:4e:d7:1d:9c:f0:73:e9:e3:8c:f9:8a:1f:04:d9: f9:0c:46:54:54:2a:16:d5:50:ec:3d:82:7c:bd:40:e5:1d:13: 86:a4:2d:6b:7a:5c:c4:40:ea:9c:19:0c:2f:0a:72:98:bc:7e: 87:db:47:b9:a4:0a:a2:32:ab:c9:02:64:05:e7:47:b8:1e:73: d0:74:80:15:6d:36:ca:8d:b4:88:d9:23:cd:f0:46:03:20:2f: 15:38:5f:00:5d:20:9a:cb:0a:5d:66:29:38:34:0a:18:28:f5: 3f:07:0a:66:9a:2b:d9:8e:e7:e2:b0:42:8e:e3:b3:fe:68:db: 75:ba:17:1e:30:2e:64:2c:54:4f:48:03:cc:21:95:f0:47:cc: 4e:ae:b0:7f:9e:36:20:5d:b8:42:4a:14:8b:e3:d6:26:cc:13: 6b:53:a3:30:38:ed:3f:1a:15:cf:86:7d:46:e1:58:9f:20:eb: e2:cf:7c:15:b3:d1:32:5f:c9:3b:b9:04:b0:68:8d:97:2b:99: e7:2b:b6:6b:65:38:b0:cc:32:30:2f:9d:ca:f1:70:96:87:f8: 20:95:1e:49:bf:a9:02:92:e7:e1:71:3f:fa:16:0b:c1:a7:b0: 54:e2:f9:79 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUJYSXPn6wnVaT85Xk07uGL+xzReQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjE4Y2M2ZTI0MTA1ZGU2YzVjOTAwM2Q2NTI0Mzg5M2Ni M2NmZGQwMTAeFw0yNTEyMTAwODM1MjhaFw0yNjEyMDkwODQwMjhaMDMxMTAvBgNV BAMTKEJBMDM0RjYxRDMzNTBBNEVEODQyNTRDNDlCRDEzRDA4MDk2NjZEQTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVQIKVYp2VQXT4JcpuCslRH/Ja Kjh0P9wx6PgyXCGxE5ovhdCRfWYuPGlef3mthwuVn4baehTzIK2WCd42RsWrA5V/ Y8RR+jvldrGMwQmfYCC/1AOVQTTkjYQdg+FMbW7+EF5cv2w3HlKv49Dgtg8JGt9h d4RSOD7fQb7rfICpBmFTDNU0JgNvPG2qqpEXkMg2J3dezJwfOOMjLmtAeVAXFL2o ng5PIgfy8/0GdGKFXTmqD1Y9AVqjxdnqhqxlnogu6Sn3Gcos0LG8Guvxwqf0LmR0 4kEQy7dCvWYT8NQ6/DvCsKAiqKFePFVvYl4RFOW0LQtKfixvq6WGVjmuDpZDAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUugNPYdM1Ck7YQlTEm9E9CAlmbagwHwYDVR0j BBgwFoAUIYzG4kEF3mxckAPWUkOJPLPP3QEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYtYjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWEx YWY2LzAvMjE4Q0M2RTI0MTA1REU2QzVDOTAwM0Q2NTI0Mzg5M0NCM0NGREQwMS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0lZekc0a0VGM214Y2tBUFdVa09KUExQ UDNRRS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzcxOGExYjRmLWI2NGMt NDAyYy1iZTE1LWRkODJhNDFhMWFmNi8wL0FTMjE1Mjk0LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMEUGCCsGAQUFBwEHAQH/BDYwNDAhBAIAATAbMAwDBAFS J0IDBABSJ1AwCwMEAVIp9gMDAVIoMA8EAgACMAkDBwAqE5UAARUwDQYJKoZIhvcN AQELBQADggEBAG5RgD+YQ30fjy369NpajFquuwNVixRO1x2c8HPp44z5ih8E2fkM RlRUKhbVUOw9gny9QOUdE4akLWt6XMRA6pwZDC8Kcpi8fofbR7mkCqIyq8kCZAXn R7gec9B0gBVtNsqNtIjZI83wRgMgLxU4XwBdIJrLCl1mKTg0Chgo9T8HCmaaK9mO 5+KwQo7js/5o23W6Fx4wLmQsVE9IA8whlfBHzE6usH+eNiBduEJKFIvj1ibME2tT ozA47T8aFc+GfUbhWJ8g6+LPfBWz0TJfyTu5BLBojZcrmecrtmtlOLDMMjAvncrx cJaH+CCVHkm/qQKS5+FxP/oWC8GnsFTi+Xk= -----END CERTIFICATE-----Generated at Sun Dec 21 12:04:44 2025 by rpki-client