This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS40605.roa File: AS40605.roa (raw, json) Hash identifier: jGT9rLsMgF59idMUNRUjLXeMdfI6jbRcrs1qXCc9GlA= Subject key identifier: 92:EE:17:53:BB:FE:B4:96:07:8D:2A:75:6A:07:9A:A2:0E:E9:6A:1D Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Certificate serial: 0965A191E66F81719BB8A773A2F582EF9902F4AE Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS40605.roa Signing time: Tue 09 Dec 2025 10:26:16 +0000 ROA not before: Tue 09 Dec 2025 10:21:16 +0000 ROA not after: Tue 08 Dec 2026 10:26:16 +0000 asID: 40605 IP address blocks: 82.25.33.0/24 maxlen: 24 82.25.40.0/24 maxlen: 24 82.39.150.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 08:51:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:65:a1:91:e6:6f:81:71:9b:b8:a7:73:a2:f5:82:ef:99:02:f4:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Validity Not Before: Dec 9 10:21:16 2025 GMT Not After : Dec 8 10:26:16 2026 GMT Subject: CN=92EE1753BBFEB496078D2A756A079AA20EE96A1D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:ec:fe:99:fe:90:30:ab:98:27:64:61:ca:51: 24:0d:97:bb:de:a2:0c:dd:d5:3d:e4:99:bc:0b:bc: 73:3b:75:b6:05:1b:5d:ec:25:e5:b8:b6:6a:06:ab: ee:c7:dc:37:46:ca:57:a1:62:03:fe:9b:10:91:a7: ae:6b:e4:39:3b:ae:e7:5b:4c:a6:72:5c:1e:d8:5f: a1:09:5b:e5:83:d6:25:a0:c9:82:8f:22:c5:ab:e5: a8:6c:5b:34:29:18:ab:ac:1e:5c:ef:4c:2c:89:c8: a3:83:7b:2a:f6:b1:4c:ed:27:1e:39:5d:ec:49:72: 44:6b:d1:e0:6a:56:05:7f:6b:60:99:aa:95:f3:a7: 2e:1f:a1:52:e3:6c:68:a0:b3:43:4c:d5:e6:64:e7: a5:23:c9:2d:9f:9e:e1:c3:92:5e:6e:b2:d1:ef:28: 5b:84:75:00:dc:96:77:f8:44:29:c3:b3:81:16:7a: d4:74:e6:26:a7:f4:f7:99:ba:98:01:6b:9d:a4:db: 4b:92:dc:76:65:5b:68:b4:86:23:46:8a:39:9d:de: 47:b1:34:7a:14:1d:78:30:0a:dd:69:a2:24:9f:ce: 46:f3:7a:0a:67:9d:cb:f2:67:63:fa:5c:30:bb:a0: 19:ba:19:97:b8:6d:39:02:a9:09:5d:5f:90:f3:f8: 62:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:EE:17:53:BB:FE:B4:96:07:8D:2A:75:6A:07:9A:A2:0E:E9:6A:1D X509v3 Authority Key Identifier: keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS40605.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 82.25.33.0/24 82.25.40.0/24 82.39.150.0/24 Signature Algorithm: sha256WithRSAEncryption 33:44:4a:71:95:cd:b6:d0:51:a0:2a:bc:0d:c7:9f:cd:c4:a5: 18:85:d4:21:cf:09:de:d7:04:b5:75:90:e4:19:33:1f:aa:20: af:ff:ee:23:bf:5f:f8:c2:28:be:c7:e5:ea:f7:b5:b8:6e:db: dc:49:f5:85:79:ef:29:93:71:23:61:95:15:12:64:0b:bf:45: dc:3c:e9:bc:50:42:5e:eb:21:2e:09:ea:aa:ef:62:09:95:0b: 3a:1b:c7:02:0b:af:e5:0e:1c:7e:c2:4f:7b:9a:c4:fd:fb:a6: 5e:ee:82:80:db:15:88:18:21:ac:bc:c4:c6:30:7e:6e:43:8f: 70:5e:c8:88:71:77:01:9a:a8:37:4c:6e:db:6b:08:11:63:18: 31:f5:ea:3e:57:27:de:25:04:64:cc:f6:b6:ff:4b:66:70:04: 9f:81:2b:89:29:4d:2c:ee:d7:c9:3d:88:02:30:9a:43:8f:f0: 61:b0:4a:6b:1e:9a:e1:89:75:e6:3e:6e:fd:b9:e8:54:09:2c: 11:a4:c1:63:3e:79:6a:4c:7a:8b:b0:af:34:11:c3:8f:7e:ff: c7:4e:ff:9f:12:b3:83:7b:93:c9:52:f2:e4:26:6e:08:8c:4a: 0a:29:f1:dd:95:01:7c:11:5a:28:80:a7:ee:34:58:c5:27:15: 19:14:bd:29 -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgIUCWWhkeZvgXGbuKdzovWC75kC9K4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjE4Y2M2ZTI0MTA1ZGU2YzVjOTAwM2Q2NTI0Mzg5M2Ni M2NmZGQwMTAeFw0yNTEyMDkxMDIxMTZaFw0yNjEyMDgxMDI2MTZaMDMxMTAvBgNV BAMTKDkyRUUxNzUzQkJGRUI0OTYwNzhEMkE3NTZBMDc5QUEyMEVFOTZBMUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC97P6Z/pAwq5gnZGHKUSQNl7ve ogzd1T3kmbwLvHM7dbYFG13sJeW4tmoGq+7H3DdGylehYgP+mxCRp65r5Dk7rudb TKZyXB7YX6EJW+WD1iWgyYKPIsWr5ahsWzQpGKusHlzvTCyJyKODeyr2sUztJx45 XexJckRr0eBqVgV/a2CZqpXzpy4foVLjbGigs0NM1eZk56UjyS2fnuHDkl5ustHv KFuEdQDclnf4RCnDs4EWetR05ian9PeZupgBa52k20uS3HZlW2i0hiNGijmd3kex NHoUHXgwCt1poiSfzkbzegpnncvyZ2P6XDC7oBm6GZe4bTkCqQldX5Dz+GKVAgMB AAGjggIVMIICETAdBgNVHQ4EFgQUku4XU7v+tJYHjSp1ageaog7pah0wHwYDVR0j BBgwFoAUIYzG4kEF3mxckAPWUkOJPLPP3QEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYtYjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWEx YWY2LzAvMjE4Q0M2RTI0MTA1REU2QzVDOTAwM0Q2NTI0Mzg5M0NCM0NGREQwMS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0lZekc0a0VGM214Y2tBUFdVa09KUExQ UDNRRS5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzcxOGExYjRmLWI2NGMt NDAyYy1iZTE1LWRkODJhNDFhMWFmNi8wL0FTNDA2MDUucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwKwYIKwYBBQUHAQcBAf8EHDAaMBgEAgABMBIDBABSGSED BABSGSgDBABSJ5YwDQYJKoZIhvcNAQELBQADggEBADNESnGVzbbQUaAqvA3Hn83E pRiF1CHPCd7XBLV1kOQZMx+qIK//7iO/X/jCKL7H5er3tbhu29xJ9YV57ymTcSNh lRUSZAu/Rdw86bxQQl7rIS4J6qrvYgmVCzobxwILr+UOHH7CT3uaxP37pl7ugoDb FYgYIay8xMYwfm5Dj3BeyIhxdwGaqDdMbttrCBFjGDH16j5XJ94lBGTM9rb/S2Zw BJ+BK4kpTSzu18k9iAIwmkOP8GGwSmsemuGJdeY+bv256FQJLBGkwWM+eWpMeouw rzQRw49+/8dO/58Ss4N7k8lS8uQmbgiMSgop8d2VAXwRWiiAp+40WMUnFRkUvSk= -----END CERTIFICATE-----Generated at Sat Dec 20 15:25:13 2025 by rpki-client