This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS273408.roa File: AS273408.roa (raw, json) Hash identifier: XAYCyyAmwaRycX4ZlG4redvHht7rgRwExmje8Ky89nM= Subject key identifier: 8B:93:85:A2:ED:C8:D7:2F:0A:A9:C0:96:C1:10:7F:E1:C6:6B:8F:6F Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Certificate serial: 11DC1E48AFB5DBC8E0FD29070305FFFFA32F7775 Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS273408.roa Signing time: Tue 09 Dec 2025 13:52:16 +0000 ROA not before: Tue 09 Dec 2025 13:47:16 +0000 ROA not after: Tue 08 Dec 2026 13:52:16 +0000 asID: 273408 IP address blocks: 82.22.29.0/24 maxlen: 24 2a13:9500:112::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 07:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:dc:1e:48:af:b5:db:c8:e0:fd:29:07:03:05:ff:ff:a3:2f:77:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Validity Not Before: Dec 9 13:47:16 2025 GMT Not After : Dec 8 13:52:16 2026 GMT Subject: CN=8B9385A2EDC8D72F0AA9C096C1107FE1C66B8F6F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:c4:a3:c3:d8:32:34:df:68:4d:83:c7:05:fb: bc:70:37:e1:50:b9:aa:14:27:a7:57:42:9c:54:f0: 67:00:81:4e:35:2f:01:7e:e2:24:f1:0b:10:2e:10: 0d:f0:b9:02:eb:fe:38:b2:b2:5d:3d:b8:21:5d:93: eb:78:2f:5f:89:db:2a:82:b2:96:d6:41:28:bc:12: 08:aa:67:bd:36:d3:3f:0f:f2:2b:fc:49:e5:54:03: 4e:c8:5f:3f:62:84:e3:51:ed:96:a5:62:44:4b:af: 97:0e:21:98:a5:0c:28:ba:4a:5a:2c:84:95:f5:77: db:90:bd:22:ef:64:f9:55:9b:17:6d:26:63:b9:e0: 88:6d:f5:0f:87:c0:8f:68:5a:59:54:af:35:47:53: c8:b7:c8:23:48:8a:8d:76:30:9d:a5:02:96:a6:c6: 2c:40:b3:e8:24:f4:d3:fd:9f:63:b5:1b:b1:d3:45: 90:da:22:2f:5f:78:87:45:b5:f1:3d:23:79:ed:49: b2:92:74:c1:5a:89:53:65:33:1d:09:82:df:df:ae: 0a:b1:34:e8:18:bf:d2:13:46:73:7e:c2:65:da:c5: 8a:c4:04:eb:c9:1a:a4:9a:85:4a:45:85:c9:71:52: d2:75:b4:35:27:d0:b3:0d:67:2b:28:67:cf:13:40: fe:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:93:85:A2:ED:C8:D7:2F:0A:A9:C0:96:C1:10:7F:E1:C6:6B:8F:6F X509v3 Authority Key Identifier: keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS273408.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 82.22.29.0/24 IPv6: 2a13:9500:112::/48 Signature Algorithm: sha256WithRSAEncryption 3b:a3:4f:7a:85:31:df:50:54:94:e8:b3:04:ee:b7:34:64:1a: 67:3a:7c:18:f7:b5:0a:12:eb:58:aa:fb:da:5f:80:01:4a:3f: 0a:71:7d:db:26:62:d2:66:45:fb:f6:43:62:1c:a4:20:2e:10: ab:d6:d9:a8:f4:10:d3:25:d1:1d:b8:b6:02:0d:3c:2b:e9:57: 6c:6f:0e:fd:81:2d:c2:cf:7b:cf:7c:1e:cf:b4:70:c4:89:60: c2:03:e5:06:d4:c8:fc:f1:0c:27:57:96:0e:6b:ac:4c:af:77: e4:3e:4b:99:a6:33:59:08:1a:49:20:b5:20:93:80:2e:28:79: 9b:b1:a6:83:20:5a:b7:59:d4:77:6e:db:3d:2d:cf:73:07:74: 47:a5:d2:5e:72:56:1d:7d:65:21:7e:77:c9:52:b1:62:b8:ec: 73:34:1a:fa:10:00:e1:1d:2f:ed:e9:ca:ef:84:fd:dd:7b:83: 24:b6:f6:28:c6:85:b3:bd:ed:3c:34:1e:a9:1c:4f:bf:b4:56: bd:95:72:8e:cd:cc:1c:16:20:ef:cb:cb:94:c3:7e:de:d4:ff: 28:9e:fa:34:f1:bd:a5:68:34:e8:cc:ad:e9:dc:0d:f4:1f:51: ee:f9:af:c0:ce:22:c1:f6:e0:83:bf:7a:fc:14:d9:26:80:43: 0b:a6:f8:39 -----BEGIN CERTIFICATE----- MIIFETCCA/mgAwIBAgIUEdweSK+128jg/SkHAwX//6Mvd3UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjE4Y2M2ZTI0MTA1ZGU2YzVjOTAwM2Q2NTI0Mzg5M2Ni M2NmZGQwMTAeFw0yNTEyMDkxMzQ3MTZaFw0yNjEyMDgxMzUyMTZaMDMxMTAvBgNV BAMTKDhCOTM4NUEyRURDOEQ3MkYwQUE5QzA5NkMxMTA3RkUxQzY2QjhGNkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDuxKPD2DI032hNg8cF+7xwN+FQ uaoUJ6dXQpxU8GcAgU41LwF+4iTxCxAuEA3wuQLr/jiysl09uCFdk+t4L1+J2yqC spbWQSi8EgiqZ7020z8P8iv8SeVUA07IXz9ihONR7ZalYkRLr5cOIZilDCi6Slos hJX1d9uQvSLvZPlVmxdtJmO54Iht9Q+HwI9oWllUrzVHU8i3yCNIio12MJ2lApam xixAs+gk9NP9n2O1G7HTRZDaIi9feIdFtfE9I3ntSbKSdMFaiVNlMx0Jgt/frgqx NOgYv9ITRnN+wmXaxYrEBOvJGqSahUpFhclxUtJ1tDUn0LMNZysoZ88TQP4/AgMB AAGjggIbMIICFzAdBgNVHQ4EFgQUi5OFou3I1y8KqcCWwRB/4cZrj28wHwYDVR0j BBgwFoAUIYzG4kEF3mxckAPWUkOJPLPP3QEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYtYjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWEx YWY2LzAvMjE4Q0M2RTI0MTA1REU2QzVDOTAwM0Q2NTI0Mzg5M0NCM0NGREQwMS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0lZekc0a0VGM214Y2tBUFdVa09KUExQ UDNRRS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzcxOGExYjRmLWI2NGMt NDAyYy1iZTE1LWRkODJhNDFhMWFmNi8wL0FTMjczNDA4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAUhYd MA8EAgACMAkDBwAqE5UAARIwDQYJKoZIhvcNAQELBQADggEBADujT3qFMd9QVJTo swTutzRkGmc6fBj3tQoS61iq+9pfgAFKPwpxfdsmYtJmRfv2Q2IcpCAuEKvW2aj0 ENMl0R24tgINPCvpV2xvDv2BLcLPe898Hs+0cMSJYMID5QbUyPzxDCdXlg5rrEyv d+Q+S5mmM1kIGkkgtSCTgC4oeZuxpoMgWrdZ1Hdu2z0tz3MHdEel0l5yVh19ZSF+ d8lSsWK47HM0GvoQAOEdL+3pyu+E/d17gyS29ijGhbO97Tw0HqkcT7+0Vr2Vco7N zBwWIO/Ly5TDft7U/yie+jTxvaVoNOjMrencDfQfUe75r8DOIsH24IO/evwU2SaA Qwum+Dk= -----END CERTIFICATE-----Generated at Fri Dec 19 15:41:51 2025 by rpki-client