This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS834.roa File: AS834.roa (raw, json) Hash identifier: BzYaaFKK6qRiiCKUyU/jCOQTVf8H/wlbY65VSvb1Vfs= Subject key identifier: C4:6B:BB:74:EF:93:56:70:D6:CB:59:B8:55:88:DB:42:E4:54:A7:FE Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Certificate serial: 630AD832A7AE016C9A8C50075627F2D588FFD6C3 Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS834.roa Signing time: Mon 15 Dec 2025 10:47:58 +0000 ROA not before: Mon 15 Dec 2025 10:42:58 +0000 ROA not after: Mon 14 Dec 2026 10:47:58 +0000 asID: 834 IP address blocks: 82.21.5.0/24 maxlen: 24 82.21.53.0/24 maxlen: 24 82.21.153.0/24 maxlen: 24 82.22.4.0/24 maxlen: 24 82.22.28.0/24 maxlen: 24 82.22.49.0/24 maxlen: 24 82.22.54.0/24 maxlen: 24 82.22.61.0/24 maxlen: 24 82.22.205.0/24 maxlen: 24 82.23.171.0/24 maxlen: 24 82.23.249.0/24 maxlen: 24 82.24.24.0/24 maxlen: 24 82.24.31.0/24 maxlen: 24 82.24.33.0/24 maxlen: 24 82.24.59.0/24 maxlen: 24 82.24.76.0/24 maxlen: 24 82.24.79.0/24 maxlen: 24 82.24.107.0/24 maxlen: 24 82.24.126.0/24 maxlen: 24 82.24.181.0/24 maxlen: 24 82.24.189.0/24 maxlen: 24 82.25.41.0/24 maxlen: 24 82.25.59.0/24 maxlen: 24 82.25.143.0/24 maxlen: 24 82.25.145.0/24 maxlen: 24 82.25.187.0/24 maxlen: 24 82.25.190.0/24 maxlen: 24 82.26.65.0/24 maxlen: 24 82.26.87.0/24 maxlen: 24 82.26.136.0/24 maxlen: 24 82.26.152.0/24 maxlen: 24 82.26.194.0/24 maxlen: 24 82.26.198.0/24 maxlen: 24 82.27.106.0/24 maxlen: 24 82.27.129.0/24 maxlen: 24 82.29.126.0/24 maxlen: 24 82.38.4.0/22 maxlen: 24 82.38.15.0/24 maxlen: 24 82.38.35.0/24 maxlen: 24 82.38.96.0/24 maxlen: 24 82.38.124.0/22 maxlen: 24 82.38.136.0/23 maxlen: 24 82.38.140.0/22 maxlen: 24 82.38.152.0/21 maxlen: 24 82.38.160.0/21 maxlen: 24 82.38.168.0/23 maxlen: 24 82.38.170.0/24 maxlen: 24 82.38.172.0/24 maxlen: 24 82.38.175.0/24 maxlen: 24 82.38.176.0/20 maxlen: 24 82.38.196.0/23 maxlen: 24 82.38.198.0/24 maxlen: 24 82.38.224.0/19 maxlen: 24 82.39.149.0/24 maxlen: 24 82.39.156.0/22 maxlen: 24 82.39.168.0/23 maxlen: 24 82.39.172.0/23 maxlen: 24 82.39.176.0/21 maxlen: 24 82.39.190.0/24 maxlen: 24 82.39.208.0/24 maxlen: 24 82.39.210.0/23 maxlen: 24 82.39.216.0/22 maxlen: 24 82.39.221.0/24 maxlen: 24 82.39.222.0/23 maxlen: 24 82.39.224.0/22 maxlen: 24 82.39.228.0/23 maxlen: 24 82.39.240.0/22 maxlen: 24 82.40.0.0/20 maxlen: 24 82.40.16.0/22 maxlen: 24 82.40.21.0/24 maxlen: 24 82.40.22.0/23 maxlen: 24 82.40.24.0/21 maxlen: 24 82.40.32.0/21 maxlen: 24 82.40.48.0/21 maxlen: 24 82.40.56.0/23 maxlen: 24 82.40.58.0/24 maxlen: 24 82.40.60.0/22 maxlen: 24 82.40.128.0/17 maxlen: 24 82.41.0.0/24 maxlen: 24 82.41.4.0/24 maxlen: 24 82.41.16.0/22 maxlen: 24 82.41.20.0/23 maxlen: 24 82.41.26.0/23 maxlen: 24 82.41.30.0/23 maxlen: 24 82.41.34.0/23 maxlen: 24 82.41.36.0/23 maxlen: 24 82.41.40.0/24 maxlen: 24 82.41.43.0/24 maxlen: 24 82.41.44.0/22 maxlen: 24 82.41.50.0/23 maxlen: 24 82.41.52.0/22 maxlen: 24 82.41.56.0/22 maxlen: 24 82.41.64.0/21 maxlen: 24 82.41.72.0/22 maxlen: 24 82.41.80.0/22 maxlen: 24 82.41.88.0/22 maxlen: 24 82.41.97.0/24 maxlen: 24 82.41.98.0/23 maxlen: 24 82.41.100.0/22 maxlen: 24 82.41.104.0/21 maxlen: 24 82.41.117.0/24 maxlen: 24 82.41.118.0/23 maxlen: 24 82.41.120.0/23 maxlen: 24 82.41.122.0/24 maxlen: 24 82.41.124.0/22 maxlen: 24 82.41.144.0/23 maxlen: 24 82.41.147.0/24 maxlen: 24 82.41.148.0/22 maxlen: 24 82.41.152.0/22 maxlen: 24 82.41.156.0/24 maxlen: 24 82.41.158.0/23 maxlen: 24 82.41.160.0/21 maxlen: 24 82.41.168.0/24 maxlen: 24 82.41.170.0/23 maxlen: 24 82.41.172.0/22 maxlen: 24 82.41.176.0/22 maxlen: 24 82.41.180.0/24 maxlen: 24 82.41.183.0/24 maxlen: 24 82.41.184.0/21 maxlen: 24 82.41.194.0/23 maxlen: 24 82.41.196.0/23 maxlen: 24 82.41.198.0/24 maxlen: 24 82.41.200.0/21 maxlen: 24 82.41.208.0/24 maxlen: 24 82.41.210.0/23 maxlen: 24 82.41.212.0/22 maxlen: 24 82.41.221.0/24 maxlen: 24 82.41.222.0/23 maxlen: 24 82.41.224.0/21 maxlen: 24 82.41.232.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 16 Dec 2025 15:30:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:0a:d8:32:a7:ae:01:6c:9a:8c:50:07:56:27:f2:d5:88:ff:d6:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Validity Not Before: Dec 15 10:42:58 2025 GMT Not After : Dec 14 10:47:58 2026 GMT Subject: CN=C46BBB74EF935670D6CB59B85588DB42E454A7FE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:a4:20:e5:2e:99:6d:82:a0:80:3c:79:d3:c6: fc:d0:fb:8f:75:dd:e2:fa:e8:f5:33:5e:72:7f:39: 1c:82:08:c3:d8:7c:0c:a5:7a:38:a9:8f:e3:94:53: 2d:ec:37:58:39:69:ae:97:49:c8:f5:e9:7d:4d:c1: 2f:e7:6f:b0:fb:a9:cd:bf:89:64:78:8d:9d:0f:e9: 3c:a2:1f:d9:14:26:d8:d9:0a:4c:f1:02:8c:c1:6e: 44:42:82:1b:21:ab:20:82:0c:1c:d0:31:80:d5:b2: 54:5e:b8:65:0b:3d:12:46:f0:61:cb:f0:2a:16:c6: d8:54:79:9f:81:8c:fa:9f:10:c7:13:ee:a1:b7:f3: 0f:1f:23:24:36:88:52:3c:18:96:e6:b4:de:cb:c4: 2d:af:0b:d1:f5:ae:58:95:a0:42:6d:33:14:38:9e: 4c:c4:3a:16:b0:00:f8:81:d1:0f:60:54:f5:ee:7e: 86:d0:b2:4f:69:45:57:7d:d8:b1:57:64:95:ce:b1: c4:bd:88:b8:ed:49:e9:a7:bd:e5:02:21:99:c7:80: 5b:36:20:60:95:e2:ec:70:e0:8c:a6:ec:f6:85:fe: f8:32:f8:ab:20:47:5c:e7:6b:67:ac:67:30:0d:37: 22:8f:34:fe:28:28:95:bb:4a:4a:e8:c9:b4:f3:7f: d0:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:6B:BB:74:EF:93:56:70:D6:CB:59:B8:55:88:DB:42:E4:54:A7:FE X509v3 Authority Key Identifier: keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS834.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 82.21.5.0/24 82.21.53.0/24 82.21.153.0/24 82.22.4.0/24 82.22.28.0/24 82.22.49.0/24 82.22.54.0/24 82.22.61.0/24 82.22.205.0/24 82.23.171.0/24 82.23.249.0/24 82.24.24.0/24 82.24.31.0/24 82.24.33.0/24 82.24.59.0/24 82.24.76.0/24 82.24.79.0/24 82.24.107.0/24 82.24.126.0/24 82.24.181.0/24 82.24.189.0/24 82.25.41.0/24 82.25.59.0/24 82.25.143.0/24 82.25.145.0/24 82.25.187.0/24 82.25.190.0/24 82.26.65.0/24 82.26.87.0/24 82.26.136.0/24 82.26.152.0/24 82.26.194.0/24 82.26.198.0/24 82.27.106.0/24 82.27.129.0/24 82.29.126.0/24 82.38.4.0/22 82.38.15.0/24 82.38.35.0/24 82.38.96.0/24 82.38.124.0/22 82.38.136.0/23 82.38.140.0/22 82.38.152.0-82.38.170.255 82.38.172.0/24 82.38.175.0-82.38.191.255 82.38.196.0-82.38.198.255 82.38.224.0/19 82.39.149.0/24 82.39.156.0/22 82.39.168.0/23 82.39.172.0/23 82.39.176.0/21 82.39.190.0/24 82.39.208.0/24 82.39.210.0/23 82.39.216.0/22 82.39.221.0-82.39.229.255 82.39.240.0/22 82.40.0.0-82.40.19.255 82.40.21.0-82.40.39.255 82.40.48.0-82.40.58.255 82.40.60.0/22 82.40.128.0-82.41.0.255 82.41.4.0/24 82.41.16.0-82.41.21.255 82.41.26.0/23 82.41.30.0/23 82.41.34.0-82.41.37.255 82.41.40.0/24 82.41.43.0-82.41.47.255 82.41.50.0-82.41.59.255 82.41.64.0-82.41.75.255 82.41.80.0/22 82.41.88.0/22 82.41.97.0-82.41.111.255 82.41.117.0-82.41.122.255 82.41.124.0/22 82.41.144.0/23 82.41.147.0-82.41.156.255 82.41.158.0-82.41.168.255 82.41.170.0-82.41.180.255 82.41.183.0-82.41.191.255 82.41.194.0-82.41.198.255 82.41.200.0-82.41.208.255 82.41.210.0-82.41.215.255 82.41.221.0-82.41.232.255 Signature Algorithm: sha256WithRSAEncryption 24:78:31:5d:15:83:90:09:2f:4d:d7:74:d2:a0:02:f1:f4:aa: 7d:41:37:aa:86:d8:ca:0f:ed:2a:22:57:46:5c:0b:9f:97:92: 7b:8a:00:54:0f:b2:95:ed:b5:be:e3:77:e3:19:98:ba:97:3b: 36:70:db:ed:49:db:b0:68:89:17:36:6a:0d:d7:c9:02:70:7d: 44:e2:c1:82:37:dd:5b:8b:e1:84:87:30:d3:b3:b5:c0:a5:92: 0a:7b:41:46:11:dc:4f:bc:bc:2d:58:cd:4b:5d:43:7c:ed:47: db:29:c8:17:18:63:10:83:bb:1e:28:1d:05:a3:60:d4:ed:f2: c0:f6:dd:26:ff:ea:88:4b:31:c0:27:d4:ac:b7:a6:7b:d1:32: 8b:50:2b:01:57:7b:bb:de:4b:2b:c9:8d:12:75:c8:b8:39:64: 19:c2:39:2d:77:27:bf:69:d9:88:be:33:20:e6:53:73:e9:6e: 04:d6:77:45:7c:0e:66:82:5e:aa:07:88:00:6e:a9:59:2e:29: 4b:1f:53:63:09:79:2a:59:ab:6a:71:38:d2:58:b4:1d:bb:20: c0:e9:48:4e:e1:22:ce:7c:ae:eb:e3:58:fe:b7:f8:af:ad:12: 17:fa:25:78:5e:13:fd:76:6e:bd:94:c4:ca:fe:0c:48:69:46: 1f:6f:9a:3f -----BEGIN CERTIFICATE----- MIIHwjCCBqqgAwIBAgIUYwrYMqeuAWyajFAHVify1Yj/1sMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjE4Y2M2ZTI0MTA1ZGU2YzVjOTAwM2Q2NTI0Mzg5M2Ni M2NmZGQwMTAeFw0yNTEyMTUxMDQyNThaFw0yNjEyMTQxMDQ3NThaMDMxMTAvBgNV BAMTKEM0NkJCQjc0RUY5MzU2NzBENkNCNTlCODU1ODhEQjQyRTQ1NEE3RkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDfpCDlLpltgqCAPHnTxvzQ+491 3eL66PUzXnJ/ORyCCMPYfAylejipj+OUUy3sN1g5aa6XScj16X1NwS/nb7D7qc2/ iWR4jZ0P6TyiH9kUJtjZCkzxAozBbkRCghshqyCCDBzQMYDVslReuGULPRJG8GHL 8CoWxthUeZ+BjPqfEMcT7qG38w8fIyQ2iFI8GJbmtN7LxC2vC9H1rliVoEJtMxQ4 nkzEOhawAPiB0Q9gVPXufobQsk9pRVd92LFXZJXOscS9iLjtSemnveUCIZnHgFs2 IGCV4uxw4Iym7PaF/vgy+KsgR1zna2esZzANNyKPNP4oKJW7SkroybTzf9AZAgMB AAGjggTMMIIEyDAdBgNVHQ4EFgQUxGu7dO+TVnDWy1m4VYjbQuRUp/4wHwYDVR0j BBgwFoAUIYzG4kEF3mxckAPWUkOJPLPP3QEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYtYjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWEx YWY2LzAvMjE4Q0M2RTI0MTA1REU2QzVDOTAwM0Q2NTI0Mzg5M0NCM0NGREQwMS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0lZekc0a0VGM214Y2tBUFdVa09KUExQ UDNRRS5jZXIweAYIKwYBBQUHAQsEbDBqMGgGCCsGAQUFBzALhlxyc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzcxOGExYjRmLWI2NGMt NDAyYy1iZTE1LWRkODJhNDFhMWFmNi8wL0FTODM0LnJvYTAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMIIC4gYIKwYBBQUHAQcBAf8EggLRMIICzTCCAskEAgABMIIC wQMEAFIVBQMEAFIVNQMEAFIVmQMEAFIWBAMEAFIWHAMEAFIWMQMEAFIWNgMEAFIW PQMEAFIWzQMEAFIXqwMEAFIX+QMEAFIYGAMEAFIYHwMEAFIYIQMEAFIYOwMEAFIY TAMEAFIYTwMEAFIYawMEAFIYfgMEAFIYtQMEAFIYvQMEAFIZKQMEAFIZOwMEAFIZ jwMEAFIZkQMEAFIZuwMEAFIZvgMEAFIaQQMEAFIaVwMEAFIaiAMEAFIamAMEAFIa wgMEAFIaxgMEAFIbagMEAFIbgQMEAFIdfgMEAlImBAMEAFImDwMEAFImIwMEAFIm YAMEAlImfAMEAVImiAMEAlImjDAMAwQDUiaYAwQAUiaqAwQAUiasMAwDBABSJq8D BAZSJoAwDAMEAlImxAMEAFImxgMEBVIm4AMEAFInlQMEAlInnAMEAVInqAMEAVIn rAMEA1InsAMEAFInvgMEAFIn0AMEAVIn0gMEAlIn2DAMAwQAUifdAwQBUifkAwQC UifwMAsDAwNSKAMEAlIoEDAMAwQAUigVAwQDUiggMAwDBARSKDADBABSKDoDBAJS KDwwDAMEB1IogAMEAFIpAAMEAFIpBDAMAwQEUikQAwQBUikUAwQBUikaAwQBUike MAwDBAFSKSIDBAFSKSQDBABSKSgwDAMEAFIpKwMEBFIpIDAMAwQBUikyAwQCUik4 MAwDBAZSKUADBAJSKUgDBAJSKVADBAJSKVgwDAMEAFIpYQMEBFIpYDAMAwQAUil1 AwQAUil6AwQCUil8AwQBUimQMAwDBABSKZMDBABSKZwwDAMEAVIpngMEAFIpqDAM AwQBUimqAwQAUim0MAwDBABSKbcDBAZSKYAwDAMEAVIpwgMEAFIpxjAMAwQDUinI AwQAUinQMAwDBAFSKdIDBANSKdAwDAMEAFIp3QMEAFIp6DANBgkqhkiG9w0BAQsF AAOCAQEAJHgxXRWDkAkvTdd00qAC8fSqfUE3qobYyg/tKiJXRlwLn5eSe4oAVA+y le21vuN34xmYupc7NnDb7UnbsGiJFzZqDdfJAnB9ROLBgjfdW4vhhIcw07O1wKWS CntBRhHcT7y8LVjNS11DfO1H2ynIFxhjEIO7HigdBaNg1O3ywPbdJv/qiEsxwCfU rLeme9Eyi1ArAVd7u95LK8mNEnXIuDlkGcI5LXcnv2nZiL4zIOZTc+luBNZ3RXwO ZoJeqgeIAG6pWS4pSx9TYwl5KlmranE40li0HbsgwOlITuEiznyu6+NY/rf4r60S F/oleF4T/XZuvZTEyv4MSGlGH2+aPw== -----END CERTIFICATE-----Generated at Mon Dec 15 19:47:40 2025 by rpki-client