This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS49981.roa File: AS49981.roa (raw, json) Hash identifier: sHr1366wJ4pSr+pbkWC4GLI0wPCgxzO+NRrT8hafCr0= Subject key identifier: BE:03:F2:CC:BD:8D:16:08:85:17:C8:30:2D:E2:7D:63:AB:EF:C4:91 Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Certificate serial: 1A976446875F5DD739C4DC750A55E24B2ABA5D2A Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS49981.roa Signing time: Fri 12 Dec 2025 11:43:02 +0000 ROA not before: Fri 12 Dec 2025 11:38:02 +0000 ROA not after: Fri 11 Dec 2026 11:43:02 +0000 asID: 49981 IP address blocks: 82.25.43.0/24 maxlen: 24 82.29.108.0/24 maxlen: 24 2a13:9500:ac::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 16 Dec 2025 15:30:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:97:64:46:87:5f:5d:d7:39:c4:dc:75:0a:55:e2:4b:2a:ba:5d:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Validity Not Before: Dec 12 11:38:02 2025 GMT Not After : Dec 11 11:43:02 2026 GMT Subject: CN=BE03F2CCBD8D16088517C8302DE27D63ABEFC491 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:f4:42:2b:4f:2d:7c:c4:c3:66:e8:49:2b:24: 80:73:c2:ff:7f:51:8c:31:bf:dd:8d:70:fc:6b:06: 2a:2a:1c:b5:e4:d1:11:fb:e6:61:c9:a7:7f:a7:c2: b2:24:3c:aa:ac:e7:ab:39:90:8c:06:bc:a7:d3:4a: 49:6b:79:95:ed:51:c7:1c:51:ee:1e:f3:f4:8a:fc: a4:03:e5:a7:1b:16:82:57:f6:bc:d2:9b:d3:c8:e0: b3:24:80:74:ac:49:66:55:a6:6f:4e:3c:52:60:65: 70:81:c0:a4:05:08:bc:fb:64:d6:8e:15:77:1a:45: 1e:99:d5:63:88:35:e9:15:81:48:bb:ee:43:e1:6d: 47:be:dc:fe:73:5f:33:dd:b7:86:8b:bb:0f:01:a9: 79:9f:b7:ef:f3:22:05:f8:6e:71:1d:2b:87:63:b3: c0:b5:26:8a:8c:51:71:a1:d3:66:07:65:77:a6:0f: 2f:fe:a1:68:ba:36:7b:8f:45:69:a7:11:73:d4:fd: 15:55:de:ce:0b:d7:f7:4e:ec:62:dc:43:02:c5:7b: b6:37:20:c4:3c:47:d7:69:80:70:b4:03:32:0a:90: f5:b9:46:9b:7f:6d:2f:5a:11:55:43:db:e9:68:00: 7a:92:c4:9b:1d:8b:02:70:48:fa:34:7f:31:2c:d9: 23:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:03:F2:CC:BD:8D:16:08:85:17:C8:30:2D:E2:7D:63:AB:EF:C4:91 X509v3 Authority Key Identifier: keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS49981.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 82.25.43.0/24 82.29.108.0/24 IPv6: 2a13:9500:ac::/48 Signature Algorithm: sha256WithRSAEncryption 43:54:b0:80:12:0b:80:3e:bc:84:57:15:ef:0b:ae:ea:b4:6b: 56:c1:17:c9:e4:37:ba:88:28:ba:d5:ee:3a:89:1c:83:58:6f: af:6b:79:e9:c4:78:ad:c2:fc:88:23:d1:81:d0:6b:77:3c:8b: 2f:14:ac:5a:0b:89:82:17:b2:ef:8c:4c:ce:ca:50:7a:8b:4a: ba:fe:67:8c:37:7c:22:4c:2a:52:d2:94:6c:0b:cb:c8:0a:55: e6:45:a9:ed:3b:46:59:ca:ba:70:a8:c3:77:cd:f6:e4:2e:b9: 5c:96:86:7a:06:0e:69:7f:47:44:70:d7:e5:e6:98:15:3d:6d: d4:95:02:57:de:33:15:ba:c1:93:7f:54:c9:df:d2:cc:76:91: f3:62:3d:3d:e6:31:b3:3f:15:76:8c:ba:01:d2:85:e2:e4:bd: 7d:bd:ba:02:70:39:95:c4:34:61:02:a8:8b:0f:ee:c9:f3:b0: 60:0b:70:c9:8f:c2:6d:71:c9:a4:f6:61:a8:f5:e6:86:64:43: 2e:7d:48:56:19:6b:45:73:a8:28:1e:8c:4f:b7:f1:c3:a7:fd: e5:f5:3d:c3:eb:e2:40:64:ad:04:03:cf:51:74:af:df:9a:48: 17:d5:73:bf:31:1f:f3:45:be:cb:c3:c7:7f:6d:c2:bc:6e:52: 6e:0d:ce:ec -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgIUGpdkRodfXdc5xNx1ClXiSyq6XSowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjE4Y2M2ZTI0MTA1ZGU2YzVjOTAwM2Q2NTI0Mzg5M2Ni M2NmZGQwMTAeFw0yNTEyMTIxMTM4MDJaFw0yNjEyMTExMTQzMDJaMDMxMTAvBgNV BAMTKEJFMDNGMkNDQkQ4RDE2MDg4NTE3QzgzMDJERTI3RDYzQUJFRkM0OTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC89EIrTy18xMNm6EkrJIBzwv9/ UYwxv92NcPxrBioqHLXk0RH75mHJp3+nwrIkPKqs56s5kIwGvKfTSklreZXtUccc Ue4e8/SK/KQD5acbFoJX9rzSm9PI4LMkgHSsSWZVpm9OPFJgZXCBwKQFCLz7ZNaO FXcaRR6Z1WOINekVgUi77kPhbUe+3P5zXzPdt4aLuw8BqXmft+/zIgX4bnEdK4dj s8C1JoqMUXGh02YHZXemDy/+oWi6NnuPRWmnEXPU/RVV3s4L1/dO7GLcQwLFe7Y3 IMQ8R9dpgHC0AzIKkPW5Rpt/bS9aEVVD2+loAHqSxJsdiwJwSPo0fzEs2SONAgMB AAGjggIgMIICHDAdBgNVHQ4EFgQUvgPyzL2NFgiFF8gwLeJ9Y6vvxJEwHwYDVR0j BBgwFoAUIYzG4kEF3mxckAPWUkOJPLPP3QEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYtYjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWEx YWY2LzAvMjE4Q0M2RTI0MTA1REU2QzVDOTAwM0Q2NTI0Mzg5M0NCM0NGREQwMS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0lZekc0a0VGM214Y2tBUFdVa09KUExQ UDNRRS5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzcxOGExYjRmLWI2NGMt NDAyYy1iZTE1LWRkODJhNDFhMWFmNi8wL0FTNDk5ODEucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwNgYIKwYBBQUHAQcBAf8EJzAlMBIEAgABMAwDBABSGSsD BABSHWwwDwQCAAIwCQMHACoTlQAArDANBgkqhkiG9w0BAQsFAAOCAQEAQ1SwgBIL gD68hFcV7wuu6rRrVsEXyeQ3uogoutXuOokcg1hvr2t56cR4rcL8iCPRgdBrdzyL LxSsWguJghey74xMzspQeotKuv5njDd8IkwqUtKUbAvLyApV5kWp7TtGWcq6cKjD d8325C65XJaGegYOaX9HRHDX5eaYFT1t1JUCV94zFbrBk39Uyd/SzHaR82I9PeYx sz8Vdoy6AdKF4uS9fb26AnA5lcQ0YQKoiw/uyfOwYAtwyY/CbXHJpPZhqPXmhmRD Ln1IVhlrRXOoKB6MT7fxw6f95fU9w+viQGStBAPPUXSv35pIF9VzvzEf80W+y8PH f23CvG5Sbg3O7A== -----END CERTIFICATE-----Generated at Mon Dec 15 19:49:17 2025 by rpki-client