This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS137517.roa File: AS137517.roa (raw, json) Hash identifier: m5V3A+fWgcDfwOKhqISGgf8NWqF0kQDKqA9T3+n5QJo= Subject key identifier: 72:0F:11:A4:67:15:F7:92:61:A4:27:B8:24:38:47:D7:FE:4C:21:79 Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Certificate serial: 1602B7AF3FFE20B39BEA26B2BBCAA17D131348AD Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS137517.roa Signing time: Mon 24 Nov 2025 03:25:21 +0000 ROA not before: Mon 24 Nov 2025 03:20:21 +0000 ROA not after: Mon 23 Nov 2026 03:25:21 +0000 asID: 137517 IP address blocks: 82.21.65.0/24 maxlen: 24 82.29.74.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 11:00:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:02:b7:af:3f:fe:20:b3:9b:ea:26:b2:bb:ca:a1:7d:13:13:48:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Validity Not Before: Nov 24 03:20:21 2025 GMT Not After : Nov 23 03:25:21 2026 GMT Subject: CN=720F11A46715F79261A427B8243847D7FE4C2179 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:4a:ad:70:eb:1a:1d:60:13:f5:5d:a4:9f:4f: f1:a9:51:b5:63:bd:17:6d:a3:60:7b:3f:8b:45:f3: 69:b3:11:9b:b3:b6:48:1a:b1:9a:55:43:62:bc:c5: df:91:a6:12:41:52:fd:1a:6f:da:38:7d:b5:e1:0e: 88:86:74:3d:09:12:7a:07:69:d5:17:c7:2e:23:d3: 82:41:14:3f:d9:78:81:8a:94:35:c4:ad:78:5c:3a: 9b:29:83:6d:9a:32:f2:11:e2:fe:aa:30:72:35:3b: 69:86:37:5d:d0:78:ee:02:29:00:5d:26:75:57:ac: 98:45:3f:4a:36:3b:62:82:a1:77:14:dc:4d:ef:c2: f3:2f:1a:9e:41:df:c1:20:a8:f3:f5:d3:81:1e:6e: 1b:f6:45:fa:2e:ad:59:26:a4:fa:34:8e:22:9d:b4: 35:96:1e:30:76:87:8f:21:86:95:a8:84:5d:c7:57: fe:af:9e:f5:34:32:f7:d5:9c:be:e3:db:3e:a0:c8: 8b:14:58:74:b8:e4:f0:31:fa:7c:65:32:7a:a2:fa: ff:6b:93:2a:bd:18:f8:f2:ef:e6:65:65:30:b5:b2: cc:6b:7c:10:ca:70:b2:7d:11:d7:33:fc:f9:99:89: 3e:3a:b1:7f:df:87:9c:66:e9:99:fb:e7:f1:b1:fe: f9:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:0F:11:A4:67:15:F7:92:61:A4:27:B8:24:38:47:D7:FE:4C:21:79 X509v3 Authority Key Identifier: keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS137517.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 82.21.65.0/24 82.29.74.0/24 Signature Algorithm: sha256WithRSAEncryption 33:ef:f5:4e:4b:96:c8:77:8f:3d:ba:d3:10:8f:81:17:77:dc: e6:45:13:ad:f6:b8:c8:a0:17:c8:92:6d:83:87:b9:3a:fe:87: 3e:2c:88:8c:ca:47:db:3c:cb:12:b8:69:54:8f:14:73:20:8d: 7c:72:ae:2a:15:09:bd:d5:e1:4f:fa:5f:95:7e:00:8f:b0:40: ee:6c:93:49:99:96:a4:f4:4b:78:20:20:c8:b8:1a:4f:1f:63: e0:38:ad:6e:28:8f:14:8b:cb:fe:8a:2f:7d:38:96:ea:df:47: e5:31:bc:0e:f1:07:5d:b3:9a:9e:4f:28:9b:10:42:c6:8a:9f: 8e:b7:4d:7d:01:29:4f:7d:ae:26:f8:13:18:0d:4d:47:3e:a8: d2:29:5a:18:4d:7d:de:88:74:77:51:9a:0f:ff:c3:78:0d:a2: 7d:1e:b8:b7:ff:12:31:a8:97:8b:60:69:fd:fd:be:33:71:c8: 34:9c:73:e0:72:fb:e2:38:78:e9:ff:e5:5f:0d:f6:83:f3:c2: c5:bc:2d:d2:ba:b2:e4:ad:e8:b0:1e:2c:c2:03:7a:1a:34:02: d9:81:1d:42:d5:21:3b:15:12:81:5b:c2:a8:7f:f3:3c:2c:a2: 41:08:05:2a:4f:c7:ef:3e:8e:5b:3e:88:64:91:0d:9f:d5:87: 8d:79:ac:c4 -----BEGIN CERTIFICATE----- MIIFBjCCA+6gAwIBAgIUFgK3rz/+ILOb6iayu8qhfRMTSK0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjE4Y2M2ZTI0MTA1ZGU2YzVjOTAwM2Q2NTI0Mzg5M2Ni M2NmZGQwMTAeFw0yNTExMjQwMzIwMjFaFw0yNjExMjMwMzI1MjFaMDMxMTAvBgNV BAMTKDcyMEYxMUE0NjcxNUY3OTI2MUE0MjdCODI0Mzg0N0Q3RkU0QzIxNzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9Sq1w6xodYBP1XaSfT/GpUbVj vRdto2B7P4tF82mzEZuztkgasZpVQ2K8xd+RphJBUv0ab9o4fbXhDoiGdD0JEnoH adUXxy4j04JBFD/ZeIGKlDXErXhcOpspg22aMvIR4v6qMHI1O2mGN13QeO4CKQBd JnVXrJhFP0o2O2KCoXcU3E3vwvMvGp5B38EgqPP104Eebhv2RfourVkmpPo0jiKd tDWWHjB2h48hhpWohF3HV/6vnvU0MvfVnL7j2z6gyIsUWHS45PAx+nxlMnqi+v9r kyq9GPjy7+ZlZTC1ssxrfBDKcLJ9Edcz/PmZiT46sX/fh5xm6Zn75/Gx/vk1AgMB AAGjggIQMIICDDAdBgNVHQ4EFgQUcg8RpGcV95JhpCe4JDhH1/5MIXkwHwYDVR0j BBgwFoAUIYzG4kEF3mxckAPWUkOJPLPP3QEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYtYjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWEx YWY2LzAvMjE4Q0M2RTI0MTA1REU2QzVDOTAwM0Q2NTI0Mzg5M0NCM0NGREQwMS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0lZekc0a0VGM214Y2tBUFdVa09KUExQ UDNRRS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzcxOGExYjRmLWI2NGMt NDAyYy1iZTE1LWRkODJhNDFhMWFmNi8wL0FTMTM3NTE3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAUhVB AwQAUh1KMA0GCSqGSIb3DQEBCwUAA4IBAQAz7/VOS5bId489utMQj4EXd9zmRROt 9rjIoBfIkm2Dh7k6/oc+LIiMykfbPMsSuGlUjxRzII18cq4qFQm91eFP+l+VfgCP sEDubJNJmZak9Et4ICDIuBpPH2PgOK1uKI8Ui8v+ii99OJbq30flMbwO8Qdds5qe TyibEELGip+Ot019ASlPfa4m+BMYDU1HPqjSKVoYTX3eiHR3UZoP/8N4DaJ9Hri3 /xIxqJeLYGn9/b4zccg0nHPgcvviOHjp/+VfDfaD88LFvC3SurLkreiwHizCA3oa NALZgR1C1SE7FRKBW8Kof/M8LKJBCAUqT8fvPo5bPohkkQ2f1YeNeazE -----END CERTIFICATE-----Generated at Fri Dec 5 15:39:02 2025 by rpki-client