This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS13335.roa File: AS13335.roa (raw, json) Hash identifier: dv6q1mseJ586VUqQCNjjTLDHDu7WtWBBMfgA/YzWu28= Subject key identifier: 9E:02:10:FF:AB:05:AC:B7:54:0A:F6:85:56:EB:41:71:1D:FA:D0:9B Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Certificate serial: 0A61D39A058606B39764216F7BC6C9A6D171999F Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS13335.roa Signing time: Thu 27 Nov 2025 11:30:12 +0000 ROA not before: Thu 27 Nov 2025 11:25:12 +0000 ROA not after: Thu 26 Nov 2026 11:30:12 +0000 asID: 13335 IP address blocks: 82.21.82.0/24 maxlen: 24 82.24.40.0/24 maxlen: 24 82.26.156.0/24 maxlen: 24 82.39.142.0/24 maxlen: 24 2a13:9500:3e::/48 maxlen: 48 2a13:9500:b7::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 05 Dec 2025 00:00:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:61:d3:9a:05:86:06:b3:97:64:21:6f:7b:c6:c9:a6:d1:71:99:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Validity Not Before: Nov 27 11:25:12 2025 GMT Not After : Nov 26 11:30:12 2026 GMT Subject: CN=9E0210FFAB05ACB7540AF68556EB41711DFAD09B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:d9:92:2b:59:2b:4a:bc:4a:2f:92:08:ef:de: 5d:db:eb:e6:1e:7c:f4:52:e2:cb:5f:1e:1d:af:14: c9:bd:ee:ff:5d:72:14:27:12:b6:31:39:f0:2a:86: 27:b0:f5:86:9c:95:a4:d8:7a:3a:10:55:9b:a3:63: a6:06:e0:40:b5:e2:cb:c3:cd:4f:77:fd:d1:da:97: 5b:93:5b:ee:a1:2b:c5:90:ce:5e:1b:94:10:27:e3: 57:39:5f:1f:81:c1:a3:3a:8d:a2:f6:da:c7:5b:94: 79:aa:0d:01:d9:fc:af:ca:4f:0a:f2:41:24:38:4a: 17:f3:e0:1d:d2:6c:4e:84:92:cc:50:86:d5:7e:20: 75:05:d7:12:58:8f:26:75:b0:e2:f5:d8:f0:7e:79: 02:5d:90:97:04:fb:da:b3:d6:06:9e:f4:07:5d:e7: f1:4d:84:24:5e:8e:71:56:f4:6a:c3:b4:01:82:5d: d1:4a:c9:54:93:15:f2:23:bc:29:5c:df:3c:ad:4e: bc:bf:bd:67:5a:5e:94:96:fd:24:74:c0:41:6e:d9: 23:25:40:93:37:41:73:16:e8:78:a4:fa:52:ed:1f: 35:db:0e:e6:37:af:1b:b7:c2:a7:58:d2:c1:db:8d: 0c:a2:6b:20:bc:8e:02:7b:0e:8a:cc:4e:ab:a9:e6: f1:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:02:10:FF:AB:05:AC:B7:54:0A:F6:85:56:EB:41:71:1D:FA:D0:9B X509v3 Authority Key Identifier: keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS13335.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 82.21.82.0/24 82.24.40.0/24 82.26.156.0/24 82.39.142.0/24 IPv6: 2a13:9500:3e::/48 2a13:9500:b7::/48 Signature Algorithm: sha256WithRSAEncryption 84:af:40:81:34:c4:9a:e6:55:b5:48:2e:d5:ce:f0:6e:38:a1: 84:f0:59:1c:49:29:96:aa:a6:23:09:df:fe:00:cb:0b:b4:5b: 78:2a:1a:56:47:76:ec:2a:11:d5:16:24:cc:5f:b4:f3:7a:02: 15:64:fa:58:86:0e:13:fd:c2:7d:e1:62:96:3a:98:95:da:8f: f4:63:df:ba:5d:a3:47:ce:dd:3a:84:5d:b4:ee:72:d0:09:99: 77:d5:07:f4:2c:73:d8:b6:7c:3b:7e:36:c2:d8:35:da:bc:af: 45:83:48:77:28:66:e6:9b:e6:1c:37:7a:d8:50:67:43:00:d9: 47:a5:b4:aa:fd:88:f7:8a:81:1b:63:e1:b9:99:9e:3b:72:67: 1d:56:4c:55:19:31:94:6f:10:d7:f7:5d:6f:3b:19:cd:11:9c: df:63:68:10:17:25:66:ae:86:e4:a8:9a:b3:03:97:cf:02:99: 48:90:6b:ef:26:9b:63:a7:01:87:f3:74:e1:a9:a5:aa:9d:b4: 88:66:ec:75:98:a0:ad:ec:af:02:1e:eb:91:1a:ee:e7:e9:3f: 5b:9a:81:b0:f0:76:1a:b9:96:11:19:b7:7e:dc:03:7a:f7:2e: dc:c5:46:fd:5f:1e:74:b6:d9:82:05:5b:00:5e:50:5b:4a:61: 70:84:9e:f7 -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgIUCmHTmgWGBrOXZCFve8bJptFxmZ8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjE4Y2M2ZTI0MTA1ZGU2YzVjOTAwM2Q2NTI0Mzg5M2Ni M2NmZGQwMTAeFw0yNTExMjcxMTI1MTJaFw0yNjExMjYxMTMwMTJaMDMxMTAvBgNV BAMTKDlFMDIxMEZGQUIwNUFDQjc1NDBBRjY4NTU2RUI0MTcxMURGQUQwOUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCd2ZIrWStKvEovkgjv3l3b6+Ye fPRS4stfHh2vFMm97v9dchQnErYxOfAqhiew9YaclaTYejoQVZujY6YG4EC14svD zU93/dHal1uTW+6hK8WQzl4blBAn41c5Xx+BwaM6jaL22sdblHmqDQHZ/K/KTwry QSQ4Shfz4B3SbE6EksxQhtV+IHUF1xJYjyZ1sOL12PB+eQJdkJcE+9qz1gae9Add 5/FNhCRejnFW9GrDtAGCXdFKyVSTFfIjvClc3zytTry/vWdaXpSW/SR0wEFu2SMl QJM3QXMW6Hik+lLtHzXbDuY3rxu3wqdY0sHbjQyiayC8jgJ7DorMTqup5vFtAgMB AAGjggI1MIICMTAdBgNVHQ4EFgQUngIQ/6sFrLdUCvaFVutBcR360JswHwYDVR0j BBgwFoAUIYzG4kEF3mxckAPWUkOJPLPP3QEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYtYjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWEx YWY2LzAvMjE4Q0M2RTI0MTA1REU2QzVDOTAwM0Q2NTI0Mzg5M0NCM0NGREQwMS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0lZekc0a0VGM214Y2tBUFdVa09KUExQ UDNRRS5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzcxOGExYjRmLWI2NGMt NDAyYy1iZTE1LWRkODJhNDFhMWFmNi8wL0FTMTMzMzUucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwSwYIKwYBBQUHAQcBAf8EPDA6MB4EAgABMBgDBABSFVID BABSGCgDBABSGpwDBABSJ44wGAQCAAIwEgMHACoTlQAAPgMHACoTlQAAtzANBgkq hkiG9w0BAQsFAAOCAQEAhK9AgTTEmuZVtUgu1c7wbjihhPBZHEkplqqmIwnf/gDL C7RbeCoaVkd27CoR1RYkzF+083oCFWT6WIYOE/3CfeFiljqYldqP9GPful2jR87d OoRdtO5y0AmZd9UH9Cxz2LZ8O342wtg12ryvRYNIdyhm5pvmHDd62FBnQwDZR6W0 qv2I94qBG2PhuZmeO3JnHVZMVRkxlG8Q1/ddbzsZzRGc32NoEBclZq6G5KiaswOX zwKZSJBr7yabY6cBh/N04amlqp20iGbsdZigreyvAh7rkRru5+k/W5qBsPB2GrmW ERm3ftwDevcu3MVG/V8edLbZggVbAF5QW0phcISe9w== -----END CERTIFICATE-----Generated at Thu Dec 4 06:00:02 2025 by rpki-client