This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS64267.roa File: AS64267.roa (raw, json) Hash identifier: 9SalCSz0Mv6BqcxOrpeMif6lc9+vQ77X2osR8KD1hJs= Subject key identifier: 70:E5:CE:2D:01:CD:49:0D:97:98:18:13:32:97:D4:44:0D:BA:5E:A2 Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Certificate serial: 4D4D2E2D2F6264A917D8AAB42FD905C443CEA46F Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS64267.roa Signing time: Mon 15 Dec 2025 00:07:52 +0000 ROA not before: Mon 15 Dec 2025 00:02:52 +0000 ROA not after: Mon 14 Dec 2026 00:07:52 +0000 asID: 64267 IP address blocks: 82.23.160.0/24 maxlen: 24 82.23.161.0/24 maxlen: 24 82.24.58.0/24 maxlen: 24 82.29.98.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 16 Dec 2025 15:30:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:4d:2e:2d:2f:62:64:a9:17:d8:aa:b4:2f:d9:05:c4:43:ce:a4:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Validity Not Before: Dec 15 00:02:52 2025 GMT Not After : Dec 14 00:07:52 2026 GMT Subject: CN=70E5CE2D01CD490D979818133297D4440DBA5EA2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:b8:dd:fd:71:e0:96:c3:5a:ad:c3:8a:57:a2: cb:af:e4:5d:6b:49:11:2b:9c:2e:b1:83:92:30:48: 51:41:6c:b8:5d:b1:cc:66:f4:31:1e:4e:4f:64:bb: 6c:c8:9e:fc:f1:07:0d:de:f1:72:54:26:59:50:e6: 77:11:9f:97:44:44:71:73:ec:46:7f:95:b1:6e:fb: 32:20:c3:7e:51:97:c0:b7:b0:19:6e:8e:d4:b0:4a: 1c:64:da:83:79:ec:a6:e6:0c:82:8d:fe:bf:2e:62: ef:67:99:fc:06:16:cb:0e:6a:25:3a:ec:76:a1:79: 43:a5:63:79:18:8d:81:60:da:b8:8a:69:ff:b5:a9: 7d:a9:b9:cd:84:7a:f3:b9:5e:c8:0c:0b:81:67:de: 8a:34:f7:f4:43:ba:8d:52:9b:ba:fa:1c:9b:50:1d: 0c:0a:5b:7d:4e:0b:13:55:e0:fc:13:12:3d:70:b8: 43:ff:69:d1:0d:18:33:63:df:50:15:cf:7e:82:90: ec:fc:d1:44:fa:15:e8:8b:2b:e7:a5:c9:22:a4:f5: 7e:68:7d:22:a5:4f:61:01:4e:22:59:dc:da:1c:35: 71:9a:13:ff:81:7c:e1:6e:85:8b:49:8c:5c:83:28: 34:9d:f2:26:db:80:de:df:ab:88:e8:c3:08:11:54: 2f:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:E5:CE:2D:01:CD:49:0D:97:98:18:13:32:97:D4:44:0D:BA:5E:A2 X509v3 Authority Key Identifier: keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS64267.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 82.23.160.0/23 82.24.58.0/24 82.29.98.0/24 Signature Algorithm: sha256WithRSAEncryption 8e:db:08:c9:2c:bf:c5:09:5b:b1:3d:9c:6d:8d:8b:66:36:c7: bc:7a:19:23:ee:f0:19:6a:d7:8b:79:6d:2a:ed:2d:a7:29:eb: cc:d0:0d:c1:72:dd:f0:64:4e:7d:51:f9:93:37:b3:47:8e:30: a6:75:0e:5e:3f:2b:fd:3d:e7:b2:e9:ae:28:af:ec:61:89:64: cc:6b:e6:16:a3:2a:7b:99:41:3a:c0:92:a4:34:31:c9:a1:f8: b6:0d:9c:2a:b5:47:9b:95:a4:4b:21:6f:94:83:8c:27:90:ef: 15:81:e3:51:86:b9:b5:c7:44:30:4b:9d:b5:e0:fc:7c:a6:16: 5a:60:b0:86:3d:90:ce:f0:9f:78:ff:ea:c0:54:82:09:84:ef: 9b:03:02:63:4b:ba:90:54:19:b6:a2:92:d0:58:69:97:1c:7f: 10:60:28:ae:0f:ce:d8:e9:c2:c4:9c:b7:99:2f:7d:18:5c:e9: 6b:78:d4:55:03:aa:fd:af:6d:31:73:26:83:a0:de:aa:66:7a: 41:e2:96:c0:1b:6e:2d:59:99:0b:11:b2:3f:4b:99:2b:64:a4: 12:92:dc:f4:bc:53:dc:34:07:b4:dd:59:f1:ac:62:84:52:49: 51:3a:19:55:b7:3e:7e:a2:e3:10:90:34:73:64:50:f3:f6:72: b7:22:32:c6 -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgIUTU0uLS9iZKkX2Kq0L9kFxEPOpG8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjE4Y2M2ZTI0MTA1ZGU2YzVjOTAwM2Q2NTI0Mzg5M2Ni M2NmZGQwMTAeFw0yNTEyMTUwMDAyNTJaFw0yNjEyMTQwMDA3NTJaMDMxMTAvBgNV BAMTKDcwRTVDRTJEMDFDRDQ5MEQ5Nzk4MTgxMzMyOTdENDQ0MERCQTVFQTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCLuN39ceCWw1qtw4pXosuv5F1r SRErnC6xg5IwSFFBbLhdscxm9DEeTk9ku2zInvzxBw3e8XJUJllQ5ncRn5dERHFz 7EZ/lbFu+zIgw35Rl8C3sBlujtSwShxk2oN57KbmDIKN/r8uYu9nmfwGFssOaiU6 7HaheUOlY3kYjYFg2riKaf+1qX2puc2EevO5XsgMC4Fn3oo09/RDuo1Sm7r6HJtQ HQwKW31OCxNV4PwTEj1wuEP/adENGDNj31AVz36CkOz80UT6FeiLK+elySKk9X5o fSKlT2EBTiJZ3NocNXGaE/+BfOFuhYtJjFyDKDSd8ibbgN7fq4jowwgRVC9lAgMB AAGjggIVMIICETAdBgNVHQ4EFgQUcOXOLQHNSQ2XmBgTMpfURA26XqIwHwYDVR0j BBgwFoAUIYzG4kEF3mxckAPWUkOJPLPP3QEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYtYjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWEx YWY2LzAvMjE4Q0M2RTI0MTA1REU2QzVDOTAwM0Q2NTI0Mzg5M0NCM0NGREQwMS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0lZekc0a0VGM214Y2tBUFdVa09KUExQ UDNRRS5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzcxOGExYjRmLWI2NGMt NDAyYy1iZTE1LWRkODJhNDFhMWFmNi8wL0FTNjQyNjcucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwKwYIKwYBBQUHAQcBAf8EHDAaMBgEAgABMBIDBAFSF6AD BABSGDoDBABSHWIwDQYJKoZIhvcNAQELBQADggEBAI7bCMksv8UJW7E9nG2Ni2Y2 x7x6GSPu8Blq14t5bSrtLacp68zQDcFy3fBkTn1R+ZM3s0eOMKZ1Dl4/K/0957Lp riiv7GGJZMxr5hajKnuZQTrAkqQ0Mcmh+LYNnCq1R5uVpEshb5SDjCeQ7xWB41GG ubXHRDBLnbXg/HymFlpgsIY9kM7wn3j/6sBUggmE75sDAmNLupBUGbaiktBYaZcc fxBgKK4PztjpwsSct5kvfRhc6Wt41FUDqv2vbTFzJoOg3qpmekHilsAbbi1ZmQsR sj9LmStkpBKS3PS8U9w0B7TdWfGsYoRSSVE6GVW3Pn6i4xCQNHNkUPP2crciMsY= -----END CERTIFICATE-----Generated at Mon Dec 15 19:49:17 2025 by rpki-client