This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS137897.roa File: AS137897.roa (raw, json) Hash identifier: +7D3e1coifj4cLsZ6sNF59gyYUnh0d+QnPxc7LDxGsE= Subject key identifier: 84:2B:5A:37:2B:A1:5B:FE:72:DE:87:B0:95:E2:59:D4:93:5E:7F:62 Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Certificate serial: 0EB97A913AD9A72094B0862028E9F923556F15C2 Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS137897.roa Signing time: Wed 17 Dec 2025 15:45:26 +0000 ROA not before: Wed 17 Dec 2025 15:40:26 +0000 ROA not after: Wed 16 Dec 2026 15:45:26 +0000 asID: 137897 IP address blocks: 82.22.26.0/24 maxlen: 24 82.38.12.0/24 maxlen: 24 2a13:9500:7c::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 19 Jan 2026 04:45:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:b9:7a:91:3a:d9:a7:20:94:b0:86:20:28:e9:f9:23:55:6f:15:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Validity Not Before: Dec 17 15:40:26 2025 GMT Not After : Dec 16 15:45:26 2026 GMT Subject: CN=842B5A372BA15BFE72DE87B095E259D4935E7F62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:e7:d6:64:07:9d:da:02:0e:4b:4d:7d:ef:64: 2b:5e:b1:45:ac:ff:24:5a:d9:32:1e:56:cb:b4:4f: a4:df:15:ff:96:3a:3c:81:6e:22:07:da:5a:63:00: e2:9e:91:9b:8a:a6:6b:7f:58:52:41:14:47:67:6c: 86:9c:7a:fe:d3:3f:15:b3:bf:69:14:f4:3e:01:fe: ca:9c:6c:87:c8:36:a5:3f:86:56:88:d6:ba:f3:bb: a5:08:cd:c7:d5:f1:7a:2c:b9:bb:2c:95:a2:b3:fd: fc:53:40:d4:9b:6d:f3:67:cd:ad:a3:64:aa:51:2d: 17:79:79:c8:69:26:02:f3:6a:96:a9:d3:07:dd:e3: cf:47:0a:e9:d6:36:0b:5c:00:28:2e:0c:cc:cb:aa: ab:d2:11:8e:13:50:4d:5b:91:aa:50:c8:e4:a3:aa: 0c:f5:b3:f2:11:b8:81:f3:83:b5:83:1a:12:39:ce: 63:b4:b4:f0:08:2e:11:97:53:9e:43:3c:9b:34:9e: 7b:76:96:8c:92:6f:37:60:d5:53:e4:e7:95:5b:68: 1b:23:dd:96:eb:c7:bf:30:75:77:57:80:aa:1f:9e: d6:76:b3:48:05:3d:64:9b:a2:4b:4b:e4:8c:c1:06: a8:e3:ca:ae:3a:04:7e:e2:69:ea:63:25:f7:5b:cc: 60:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:2B:5A:37:2B:A1:5B:FE:72:DE:87:B0:95:E2:59:D4:93:5E:7F:62 X509v3 Authority Key Identifier: keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS137897.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 82.22.26.0/24 82.38.12.0/24 IPv6: 2a13:9500:7c::/48 Signature Algorithm: sha256WithRSAEncryption 13:38:cd:1e:b9:db:56:48:45:38:b9:32:69:df:e5:4c:26:3b: 62:e7:57:83:ec:0e:dd:28:aa:7a:ce:e7:af:97:eb:39:5a:1c: 6f:ca:c2:de:bc:62:7f:58:d5:b7:c7:35:16:d6:8e:47:2e:cd: 39:6e:7a:be:6a:70:18:f5:71:42:02:7a:9e:bf:86:9f:1c:e9: 67:a1:86:9f:3e:c8:f8:f7:e5:b5:68:2c:9f:ea:fc:26:33:6a: 55:4d:cc:72:97:3c:13:0c:bd:1c:04:0f:f8:b1:1b:6c:39:76: 71:f4:4a:f5:bb:55:6e:6f:91:76:5c:62:0e:29:a0:79:9d:6d: 2d:9c:f2:a7:92:69:c4:9f:75:fd:92:58:e4:8b:aa:c3:74:ce: 91:79:11:14:a5:8c:3b:3e:85:ac:81:c2:1e:9a:5d:6a:82:41: eb:ad:c0:90:88:44:d0:5b:fc:63:24:e6:9a:18:b8:86:81:01: d3:a7:68:98:35:1d:88:90:4f:b4:d9:ed:9d:d5:61:88:27:23: 3e:1d:89:6a:18:79:4c:d2:40:34:02:25:e5:fc:1a:da:88:d2: 33:59:de:66:36:f8:37:b8:97:c1:50:82:46:cc:18:f4:6a:67: fb:a6:6d:09:90:02:43:14:54:ae:02:ba:81:75:08:b5:39:d9: c1:5d:1a:c6 -----BEGIN CERTIFICATE----- MIIFFzCCA/+gAwIBAgIUDrl6kTrZpyCUsIYgKOn5I1VvFcIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjE4Y2M2ZTI0MTA1ZGU2YzVjOTAwM2Q2NTI0Mzg5M2Ni M2NmZGQwMTAeFw0yNTEyMTcxNTQwMjZaFw0yNjEyMTYxNTQ1MjZaMDMxMTAvBgNV BAMTKDg0MkI1QTM3MkJBMTVCRkU3MkRFODdCMDk1RTI1OUQ0OTM1RTdGNjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC759ZkB53aAg5LTX3vZCtesUWs /yRa2TIeVsu0T6TfFf+WOjyBbiIH2lpjAOKekZuKpmt/WFJBFEdnbIacev7TPxWz v2kU9D4B/sqcbIfINqU/hlaI1rrzu6UIzcfV8XosubsslaKz/fxTQNSbbfNnza2j ZKpRLRd5echpJgLzapap0wfd489HCunWNgtcACguDMzLqqvSEY4TUE1bkapQyOSj qgz1s/IRuIHzg7WDGhI5zmO0tPAILhGXU55DPJs0nnt2loySbzdg1VPk55VbaBsj 3Zbrx78wdXdXgKofntZ2s0gFPWSboktL5IzBBqjjyq46BH7iaepjJfdbzGCFAgMB AAGjggIhMIICHTAdBgNVHQ4EFgQUhCtaNyuhW/5y3oewleJZ1JNef2IwHwYDVR0j BBgwFoAUIYzG4kEF3mxckAPWUkOJPLPP3QEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYtYjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWEx YWY2LzAvMjE4Q0M2RTI0MTA1REU2QzVDOTAwM0Q2NTI0Mzg5M0NCM0NGREQwMS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0lZekc0a0VGM214Y2tBUFdVa09KUExQ UDNRRS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzcxOGExYjRmLWI2NGMt NDAyYy1iZTE1LWRkODJhNDFhMWFmNi8wL0FTMTM3ODk3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMDYGCCsGAQUFBwEHAQH/BCcwJTASBAIAATAMAwQAUhYa AwQAUiYMMA8EAgACMAkDBwAqE5UAAHwwDQYJKoZIhvcNAQELBQADggEBABM4zR65 21ZIRTi5Mmnf5UwmO2LnV4PsDt0oqnrO56+X6zlaHG/Kwt68Yn9Y1bfHNRbWjkcu zTluer5qcBj1cUICep6/hp8c6Wehhp8+yPj35bVoLJ/q/CYzalVNzHKXPBMMvRwE D/ixG2w5dnH0SvW7VW5vkXZcYg4poHmdbS2c8qeSacSfdf2SWOSLqsN0zpF5ERSl jDs+hayBwh6aXWqCQeutwJCIRNBb/GMk5poYuIaBAdOnaJg1HYiQT7TZ7Z3VYYgn Iz4diWoYeUzSQDQCJeX8GtqI0jNZ3mY2+De4l8FQgkbMGPRqZ/umbQmQAkMUVK4C uoF1CLU52cFdGsY= -----END CERTIFICATE-----Generated at Sun Jan 18 08:56:35 2026 by rpki-client