This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS14618.roa File: AS14618.roa (raw, json) Hash identifier: YEfmYl1i0Sx/FWqwVKO3bYNWTNaULRJp6TUlWfSQ3Bg= Subject key identifier: 8B:2E:58:49:D0:1D:F4:9B:C1:0A:02:6E:C8:31:BC:D6:C1:A7:35:54 Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Certificate serial: 65CA32D0DE5BC33C95FB80D75BE26C36D2F7AA0D Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS14618.roa Signing time: Fri 21 Nov 2025 15:23:46 +0000 ROA not before: Fri 21 Nov 2025 15:18:46 +0000 ROA not after: Fri 20 Nov 2026 15:23:46 +0000 asID: 14618 IP address blocks: 82.21.28.0/22 maxlen: 24 82.24.100.0/24 maxlen: 24 82.26.154.0/24 maxlen: 24 82.26.201.0/24 maxlen: 24 82.29.0.0/24 maxlen: 24 82.29.2.0/24 maxlen: 24 82.29.3.0/24 maxlen: 24 82.29.4.0/24 maxlen: 24 82.29.102.0/24 maxlen: 24 82.29.104.0/24 maxlen: 24 82.29.105.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 23 Nov 2025 12:00:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:ca:32:d0:de:5b:c3:3c:95:fb:80:d7:5b:e2:6c:36:d2:f7:aa:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Validity Not Before: Nov 21 15:18:46 2025 GMT Not After : Nov 20 15:23:46 2026 GMT Subject: CN=8B2E5849D01DF49BC10A026EC831BCD6C1A73554 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:db:45:96:a0:f3:b2:25:6a:0f:55:df:65:f5: b5:50:f7:df:3a:ec:3f:de:d8:4f:7f:d3:17:22:22: 96:ee:0e:88:58:2d:6d:18:d3:f4:1a:9a:97:65:3d: a6:8d:58:5f:ce:46:77:bf:28:22:55:bf:f0:f2:7d: b1:21:76:40:91:21:f8:d4:5e:2f:9b:8b:a3:cf:cc: 44:51:6e:bb:25:6c:87:8c:6f:ed:50:da:8a:fc:8d: f9:a6:0a:1c:59:20:35:7c:c3:94:d9:09:21:b7:de: 84:3f:e6:68:72:bf:2b:f3:de:92:cc:c8:a6:44:2a: de:c2:97:67:e4:86:bb:bd:ff:bb:c5:f1:c5:c0:9a: 40:16:01:72:0e:4e:f0:1a:6b:83:eb:b9:45:ae:df: 1a:5d:e9:f2:25:eb:f1:ec:56:c4:4a:42:07:b3:b2: 83:46:ed:f1:c8:a7:6f:93:ac:34:65:44:a4:42:5e: 68:45:ea:f0:38:cf:59:42:28:f6:a5:76:60:81:ab: 29:68:09:b1:cd:fa:bb:4c:88:8e:0a:d7:8a:96:fb: 19:e6:ce:b1:f0:0c:0b:05:5d:8d:57:bd:9c:c7:f5: 57:b0:9c:34:cc:9f:e9:19:e0:f0:da:0c:37:1c:6a: 93:ae:77:94:e2:30:f4:e5:81:f0:e3:c8:fe:f2:d7: 16:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:2E:58:49:D0:1D:F4:9B:C1:0A:02:6E:C8:31:BC:D6:C1:A7:35:54 X509v3 Authority Key Identifier: keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS14618.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 82.21.28.0/22 82.24.100.0/24 82.26.154.0/24 82.26.201.0/24 82.29.0.0/24 82.29.2.0-82.29.4.255 82.29.102.0/24 82.29.104.0/23 Signature Algorithm: sha256WithRSAEncryption 84:a3:44:e1:8a:f4:55:bb:8e:2b:c3:6e:77:46:7a:88:a9:e4: c0:3a:20:e8:07:e0:2b:a5:26:d1:c9:91:39:3e:2e:c0:fd:8c: 6d:d2:77:6a:27:0e:bf:b3:51:85:81:bd:14:3f:92:5c:16:b3: c7:e9:42:fb:89:45:25:78:00:ab:1f:21:ca:a0:2c:f7:88:a2: e9:f2:e3:14:c3:49:ab:64:c4:df:d7:1d:5b:24:36:27:58:1a: 74:02:84:86:cb:da:99:82:89:1e:7d:07:b8:98:6f:fd:4b:c6: 5b:de:08:8f:4b:0c:2a:e9:38:90:1d:d0:51:d7:a8:69:8d:4b: 29:47:46:b0:5b:b9:42:bd:74:f0:74:04:aa:18:55:24:65:69: ff:a6:39:3a:93:ae:22:1c:02:e7:52:19:6f:3d:44:02:60:88: 0d:10:57:22:42:61:3b:e3:41:46:95:c4:00:1b:85:44:7d:65: 4a:d6:91:bf:c8:53:bf:d6:fb:49:6e:ae:a7:b0:d1:6d:4d:10: 8c:5d:4e:95:b1:68:0f:dd:45:34:0d:55:41:5a:40:68:12:59: 41:b3:50:dc:91:e9:f3:80:b2:93:75:3d:f4:b5:f6:f1:9d:88: 1c:7d:52:f8:7e:df:c7:dc:20:14:d8:b9:1b:ac:1a:c3:8b:b5: 2d:83:cf:09 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUZcoy0N5bwzyV+4DXW+JsNtL3qg0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjE4Y2M2ZTI0MTA1ZGU2YzVjOTAwM2Q2NTI0Mzg5M2Ni M2NmZGQwMTAeFw0yNTExMjExNTE4NDZaFw0yNjExMjAxNTIzNDZaMDMxMTAvBgNV BAMTKDhCMkU1ODQ5RDAxREY0OUJDMTBBMDI2RUM4MzFCQ0Q2QzFBNzM1NTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDW20WWoPOyJWoPVd9l9bVQ9986 7D/e2E9/0xciIpbuDohYLW0Y0/QampdlPaaNWF/ORne/KCJVv/DyfbEhdkCRIfjU Xi+bi6PPzERRbrslbIeMb+1Q2or8jfmmChxZIDV8w5TZCSG33oQ/5mhyvyvz3pLM yKZEKt7Cl2fkhru9/7vF8cXAmkAWAXIOTvAaa4PruUWu3xpd6fIl6/HsVsRKQgez soNG7fHIp2+TrDRlRKRCXmhF6vA4z1lCKPaldmCBqyloCbHN+rtMiI4K14qW+xnm zrHwDAsFXY1XvZzH9VewnDTMn+kZ4PDaDDccapOud5TiMPTlgfDjyP7y1xYnAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUiy5YSdAd9JvBCgJuyDG81sGnNVQwHwYDVR0j BBgwFoAUIYzG4kEF3mxckAPWUkOJPLPP3QEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYtYjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWEx YWY2LzAvMjE4Q0M2RTI0MTA1REU2QzVDOTAwM0Q2NTI0Mzg5M0NCM0NGREQwMS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0lZekc0a0VGM214Y2tBUFdVa09KUExQ UDNRRS5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzcxOGExYjRmLWI2NGMt NDAyYy1iZTE1LWRkODJhNDFhMWFmNi8wL0FTMTQ2MTgucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwUQYIKwYBBQUHAQcBAf8EQjBAMD4EAgABMDgDBAJSFRwD BABSGGQDBABSGpoDBABSGskDBABSHQAwDAMEAVIdAgMEAFIdBAMEAFIdZgMEAVId aDANBgkqhkiG9w0BAQsFAAOCAQEAhKNE4Yr0VbuOK8Nud0Z6iKnkwDog6AfgK6Um 0cmROT4uwP2MbdJ3aicOv7NRhYG9FD+SXBazx+lC+4lFJXgAqx8hyqAs94ii6fLj FMNJq2TE39cdWyQ2J1gadAKEhsvamYKJHn0HuJhv/UvGW94Ij0sMKuk4kB3QUdeo aY1LKUdGsFu5Qr108HQEqhhVJGVp/6Y5OpOuIhwC51IZbz1EAmCIDRBXIkJhO+NB RpXEABuFRH1lStaRv8hTv9b7SW6up7DRbU0QjF1OlbFoD91FNA1VQVpAaBJZQbNQ 3JHp84Cyk3U99LX28Z2IHH1S+H7fx9wgFNi5G6waw4u1LYPPCQ== -----END CERTIFICATE-----Generated at Sat Nov 22 21:42:35 2025 by rpki-client