This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS40403.roa File: AS40403.roa (raw, json) Hash identifier: 2TDFWRw9hBVRnHGFkk0y4vSKCBxmOXKiXI9+7LbYKBo= Subject key identifier: A3:F0:2F:9D:64:7E:33:5D:F4:B5:39:96:05:32:F8:6E:36:04:02:36 Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Certificate serial: 1A6F58899CE2059A6DAB9043FE4A69CB509C16D4 Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS40403.roa Signing time: Thu 11 Dec 2025 18:13:26 +0000 ROA not before: Thu 11 Dec 2025 18:08:26 +0000 ROA not after: Thu 10 Dec 2026 18:13:26 +0000 asID: 40403 IP address blocks: 82.40.64.0/20 maxlen: 24 82.40.80.0/20 maxlen: 24 82.40.96.0/20 maxlen: 24 82.40.112.0/20 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 07:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:6f:58:89:9c:e2:05:9a:6d:ab:90:43:fe:4a:69:cb:50:9c:16:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Validity Not Before: Dec 11 18:08:26 2025 GMT Not After : Dec 10 18:13:26 2026 GMT Subject: CN=A3F02F9D647E335DF4B539960532F86E36040236 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:f4:ed:78:6a:35:e7:ef:67:fc:4f:8a:cf:a3: e3:62:5b:21:32:49:1a:61:6f:54:7e:41:fe:ba:f0: 6c:06:f2:2b:74:8b:cd:af:74:7b:26:12:06:c7:b0: f4:a3:37:a4:cc:33:4a:f6:75:e6:58:fa:d8:a7:a8: 74:ca:a8:df:5b:55:18:1b:64:fa:4c:52:b6:d1:e8: 27:d9:9d:8e:ec:96:97:87:92:1c:1a:b7:1d:c3:1a: 0c:a8:19:19:ec:f8:c8:5c:0d:24:e4:d5:55:dc:52: 5b:dc:66:b2:2a:a1:ff:66:8c:60:53:8f:b7:25:4b: ae:74:45:9b:ff:fb:cd:cd:49:ab:d4:00:b6:ad:da: a1:6c:cb:42:d0:5e:dd:b1:1e:57:33:17:b0:38:23: 4f:74:9d:a5:ca:f8:7d:63:d7:28:b2:d1:30:e3:42: c3:37:cf:7c:da:49:c1:7a:6d:83:47:48:7f:ec:54: cf:8d:de:6a:88:9a:f9:12:e2:bc:b8:97:fc:f2:78: 3e:17:6b:65:84:7f:4a:40:f0:23:1a:2c:85:a6:6b: ea:72:98:a7:3c:27:c7:8c:78:21:63:31:11:c7:d4: 98:5f:b7:46:d2:37:22:fc:a7:90:58:46:06:86:e1: 88:cd:4f:13:3d:f2:01:78:44:f2:51:d1:25:b0:a7: 7a:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:F0:2F:9D:64:7E:33:5D:F4:B5:39:96:05:32:F8:6E:36:04:02:36 X509v3 Authority Key Identifier: keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS40403.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 82.40.64.0/18 Signature Algorithm: sha256WithRSAEncryption 0e:5b:be:ae:47:e3:44:a3:75:d6:2e:2f:30:89:39:a3:ca:13: f7:ce:c6:63:73:84:02:a0:63:ea:81:18:4d:47:67:5b:d2:b2: a7:01:58:02:0a:14:c5:91:ac:ae:1e:75:d1:56:1a:37:fb:04: 6f:2e:9b:51:c6:1f:b4:93:e8:36:05:ad:67:fa:41:e6:c3:81: 91:f5:e8:55:5b:92:3f:34:59:51:c9:e5:0b:34:a7:16:66:b1: a5:45:3d:87:78:4d:29:a8:7f:13:16:bb:92:98:90:6f:ac:cd: b2:e0:3f:ba:61:c0:6b:cb:9b:e9:4b:df:1a:7f:ac:ae:03:b6: ff:7e:d8:70:0b:92:3d:06:0e:1e:b6:59:cd:21:93:87:b5:ca: ca:28:29:58:86:c2:4b:3d:30:e9:ce:d7:eb:5a:81:02:d2:a2: ac:11:a6:c1:25:d9:24:24:a4:06:6a:d5:d2:3c:d0:1e:37:ca: 8c:ff:17:4d:f2:1a:42:f3:8a:0d:25:48:0c:26:c4:6c:89:25: a7:b6:80:35:3f:c2:07:d5:dc:38:f7:4e:2c:f3:a2:2f:ae:3f: 89:40:60:f7:ea:21:a7:c7:31:82:d3:db:99:30:9b:de:79:ea: 29:2d:a4:3c:f7:4d:ca:93:5e:e7:d1:1d:1c:59:26:ad:cc:27: 79:b7:1e:40 -----BEGIN CERTIFICATE----- MIIE/zCCA+egAwIBAgIUGm9YiZziBZptq5BD/kppy1CcFtQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjE4Y2M2ZTI0MTA1ZGU2YzVjOTAwM2Q2NTI0Mzg5M2Ni M2NmZGQwMTAeFw0yNTEyMTExODA4MjZaFw0yNjEyMTAxODEzMjZaMDMxMTAvBgNV BAMTKEEzRjAyRjlENjQ3RTMzNURGNEI1Mzk5NjA1MzJGODZFMzYwNDAyMzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC09O14ajXn72f8T4rPo+NiWyEy SRphb1R+Qf668GwG8it0i82vdHsmEgbHsPSjN6TMM0r2deZY+tinqHTKqN9bVRgb ZPpMUrbR6CfZnY7slpeHkhwatx3DGgyoGRns+MhcDSTk1VXcUlvcZrIqof9mjGBT j7clS650RZv/+83NSavUALat2qFsy0LQXt2xHlczF7A4I090naXK+H1j1yiy0TDj QsM3z3zaScF6bYNHSH/sVM+N3mqImvkS4ry4l/zyeD4Xa2WEf0pA8CMaLIWma+py mKc8J8eMeCFjMRHH1Jhft0bSNyL8p5BYRgaG4YjNTxM98gF4RPJR0SWwp3oTAgMB AAGjggIJMIICBTAdBgNVHQ4EFgQUo/AvnWR+M130tTmWBTL4bjYEAjYwHwYDVR0j BBgwFoAUIYzG4kEF3mxckAPWUkOJPLPP3QEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYtYjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWEx YWY2LzAvMjE4Q0M2RTI0MTA1REU2QzVDOTAwM0Q2NTI0Mzg5M0NCM0NGREQwMS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0lZekc0a0VGM214Y2tBUFdVa09KUExQ UDNRRS5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzcxOGExYjRmLWI2NGMt NDAyYy1iZTE1LWRkODJhNDFhMWFmNi8wL0FTNDA0MDMucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAZSKEAw DQYJKoZIhvcNAQELBQADggEBAA5bvq5H40SjddYuLzCJOaPKE/fOxmNzhAKgY+qB GE1HZ1vSsqcBWAIKFMWRrK4eddFWGjf7BG8um1HGH7ST6DYFrWf6QebDgZH16FVb kj80WVHJ5Qs0pxZmsaVFPYd4TSmofxMWu5KYkG+szbLgP7phwGvLm+lL3xp/rK4D tv9+2HALkj0GDh62Wc0hk4e1ysooKViGwks9MOnO1+tagQLSoqwRpsEl2SQkpAZq 1dI80B43yoz/F03yGkLzig0lSAwmxGyJJae2gDU/wgfV3Dj3Tizzoi+uP4lAYPfq IafHMYLT25kwm9556iktpDz3TcqTXufRHRxZJq3MJ3m3HkA= -----END CERTIFICATE-----Generated at Fri Dec 19 15:41:58 2025 by rpki-client