This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS30058.roa File: AS30058.roa (raw, json) Hash identifier: xeZKj/lq20bMzi4Ve02wjxnVCm0Trxh41a+gxt1XnEs= Subject key identifier: 63:C7:FC:64:7E:08:B5:3D:2D:85:14:2A:50:05:97:F4:F0:EF:EE:9A Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Certificate serial: 75ED98E8F4664AE9D4B0F3BDCB4906DBEB83534D Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS30058.roa Signing time: Wed 17 Dec 2025 12:02:50 +0000 ROA not before: Wed 17 Dec 2025 11:57:50 +0000 ROA not after: Wed 16 Dec 2026 12:02:50 +0000 asID: 30058 IP address blocks: 82.21.1.0/24 maxlen: 24 82.26.78.0/23 maxlen: 24 82.26.169.0/24 maxlen: 24 2a13:9500:10a::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 25 Dec 2025 00:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:ed:98:e8:f4:66:4a:e9:d4:b0:f3:bd:cb:49:06:db:eb:83:53:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Validity Not Before: Dec 17 11:57:50 2025 GMT Not After : Dec 16 12:02:50 2026 GMT Subject: CN=63C7FC647E08B53D2D85142A500597F4F0EFEE9A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:00:9d:60:81:ec:17:1a:84:31:88:52:15:20: 67:5d:c3:bc:36:0d:ee:ac:0f:e9:b8:c9:20:95:fa: d4:46:2d:ee:5d:3b:ea:10:f3:f5:d2:bb:c9:9b:bd: 40:ce:3a:60:ca:c2:11:16:06:c2:b7:79:08:58:13: 71:8d:5a:22:67:1f:71:d5:7f:27:a2:55:3a:a2:45: 71:31:3e:32:c3:b0:98:05:b7:62:6a:42:bc:04:5c: 36:3d:bb:17:60:41:a9:f1:bf:50:94:83:c4:42:4e: 8a:a4:99:cb:9c:21:76:49:e1:b1:0d:63:2e:41:f3: e1:37:e3:7f:57:37:c5:50:93:f4:dc:4d:34:92:08: 87:8d:2e:21:8a:c2:9a:c1:d6:c9:57:67:cc:4e:06: 84:20:25:64:e1:85:a1:e6:5b:87:16:1f:10:fa:01: fc:e8:89:3a:d9:a0:94:77:09:31:e4:01:02:f2:d3: d1:95:8b:ca:1c:e3:28:f6:b4:3f:3e:4d:ab:e2:8d: 6a:60:21:a2:44:21:fb:80:d8:97:3f:22:8d:ef:03: b7:fa:a3:60:0e:76:f8:98:12:a8:68:79:48:2b:d9: a3:18:69:71:00:ae:70:d9:19:da:bc:0c:51:b0:d9: 26:e1:c9:93:53:46:8f:e4:a8:ab:c1:a8:2f:9b:d8: 26:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:C7:FC:64:7E:08:B5:3D:2D:85:14:2A:50:05:97:F4:F0:EF:EE:9A X509v3 Authority Key Identifier: keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS30058.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 82.21.1.0/24 82.26.78.0/23 82.26.169.0/24 IPv6: 2a13:9500:10a::/48 Signature Algorithm: sha256WithRSAEncryption 53:27:78:2f:7a:ac:2c:09:54:02:4c:68:00:d2:9b:d1:6c:22: 2a:19:e6:74:63:30:5b:5f:27:b3:a9:07:0f:dd:73:0e:bc:71: ba:6a:44:3f:28:84:c0:22:4a:f5:1b:f7:ae:e8:ad:af:4c:7e: d0:4d:29:72:b0:af:be:ef:c6:1f:f1:87:16:5e:5d:22:9d:b2: 30:e0:12:04:ce:42:40:98:31:d9:80:59:21:3a:c5:80:9e:43: fa:ee:9a:b4:a7:0e:22:e1:77:14:10:16:45:27:c1:07:e7:3d: 7b:4a:48:d4:1b:92:96:af:23:df:2a:67:8f:5f:b1:34:22:79: bb:a8:2f:bf:43:f6:7a:bd:15:7d:87:cf:34:cc:58:03:b3:a2: df:9e:e4:11:4c:09:91:d3:72:cf:19:10:5c:0a:6b:1e:bf:1b: ab:9b:b5:b8:48:d0:ef:a1:76:6f:f0:96:0b:35:6f:e0:65:b6: 45:a6:39:93:2e:57:8e:e8:95:a8:23:d0:5a:6c:c0:b4:eb:5d: 4b:59:2a:66:d2:c9:30:b5:95:82:39:97:6f:03:e4:0d:3b:0a: 84:b5:cd:a6:45:6c:aa:69:dd:43:4b:13:88:d3:79:67:b6:f4: e0:2a:aa:c0:bb:ce:07:84:43:10:fc:81:9d:7e:13:c7:25:11: b2:98:52:51 -----BEGIN CERTIFICATE----- MIIFHDCCBASgAwIBAgIUde2Y6PRmSunUsPO9y0kG2+uDU00wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjE4Y2M2ZTI0MTA1ZGU2YzVjOTAwM2Q2NTI0Mzg5M2Ni M2NmZGQwMTAeFw0yNTEyMTcxMTU3NTBaFw0yNjEyMTYxMjAyNTBaMDMxMTAvBgNV BAMTKDYzQzdGQzY0N0UwOEI1M0QyRDg1MTQyQTUwMDU5N0Y0RjBFRkVFOUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyAJ1ggewXGoQxiFIVIGddw7w2 De6sD+m4ySCV+tRGLe5dO+oQ8/XSu8mbvUDOOmDKwhEWBsK3eQhYE3GNWiJnH3HV fyeiVTqiRXExPjLDsJgFt2JqQrwEXDY9uxdgQanxv1CUg8RCToqkmcucIXZJ4bEN Yy5B8+E3439XN8VQk/TcTTSSCIeNLiGKwprB1slXZ8xOBoQgJWThhaHmW4cWHxD6 AfzoiTrZoJR3CTHkAQLy09GVi8oc4yj2tD8+TavijWpgIaJEIfuA2Jc/Io3vA7f6 o2AOdviYEqhoeUgr2aMYaXEArnDZGdq8DFGw2SbhyZNTRo/kqKvBqC+b2CYvAgMB AAGjggImMIICIjAdBgNVHQ4EFgQUY8f8ZH4ItT0thRQqUAWX9PDv7powHwYDVR0j BBgwFoAUIYzG4kEF3mxckAPWUkOJPLPP3QEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYtYjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWEx YWY2LzAvMjE4Q0M2RTI0MTA1REU2QzVDOTAwM0Q2NTI0Mzg5M0NCM0NGREQwMS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0lZekc0a0VGM214Y2tBUFdVa09KUExQ UDNRRS5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzcxOGExYjRmLWI2NGMt NDAyYy1iZTE1LWRkODJhNDFhMWFmNi8wL0FTMzAwNTgucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwPAYIKwYBBQUHAQcBAf8ELTArMBgEAgABMBIDBABSFQED BAFSGk4DBABSGqkwDwQCAAIwCQMHACoTlQABCjANBgkqhkiG9w0BAQsFAAOCAQEA Uyd4L3qsLAlUAkxoANKb0WwiKhnmdGMwW18ns6kHD91zDrxxumpEPyiEwCJK9Rv3 ruitr0x+0E0pcrCvvu/GH/GHFl5dIp2yMOASBM5CQJgx2YBZITrFgJ5D+u6atKcO IuF3FBAWRSfBB+c9e0pI1BuSlq8j3ypnj1+xNCJ5u6gvv0P2er0VfYfPNMxYA7Oi 357kEUwJkdNyzxkQXAprHr8bq5u1uEjQ76F2b/CWCzVv4GW2RaY5ky5XjuiVqCPQ WmzAtOtdS1kqZtLJMLWVgjmXbwPkDTsKhLXNpkVsqmndQ0sTiNN5Z7b04CqqwLvO B4RDEPyBnX4TxyURsphSUQ== -----END CERTIFICATE-----Generated at Wed Dec 24 08:44:48 2025 by rpki-client