This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS20326.roa File: AS20326.roa (raw, json) Hash identifier: mpM/BI7eA4KQqRAqLCR82KGoiDclfLkkwuBcl+3stTA= Subject key identifier: E9:C2:23:6E:CD:C7:A7:EF:6D:CD:0E:1E:78:65:4F:C8:6A:47:92:4E Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Certificate serial: 2369B9E80DD5F03ADC935B77DF80D6D4E21765A9 Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS20326.roa Signing time: Wed 26 Nov 2025 19:13:57 +0000 ROA not before: Wed 26 Nov 2025 19:08:57 +0000 ROA not after: Wed 25 Nov 2026 19:13:57 +0000 asID: 20326 IP address blocks: 82.21.43.0/24 maxlen: 24 82.25.13.0/24 maxlen: 24 82.25.58.0/24 maxlen: 24 82.26.96.0/22 maxlen: 24 82.38.144.0/21 maxlen: 21 82.39.135.0/24 maxlen: 24 82.39.136.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 05 Dec 2025 00:00:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:69:b9:e8:0d:d5:f0:3a:dc:93:5b:77:df:80:d6:d4:e2:17:65:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Validity Not Before: Nov 26 19:08:57 2025 GMT Not After : Nov 25 19:13:57 2026 GMT Subject: CN=E9C2236ECDC7A7EF6DCD0E1E78654FC86A47924E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:23:b5:3b:cf:a4:6a:94:97:6f:7d:0f:1a:86: 4b:08:69:e2:9b:0e:ba:74:ec:51:af:53:e2:20:75: fe:2b:1f:b5:d7:ee:41:e6:9d:a6:8b:70:71:0a:cf: eb:e4:c3:79:7f:3c:91:01:f2:45:15:ae:f6:c8:2f: 79:57:05:9c:8a:9c:c1:c9:d0:7a:fa:3b:1e:75:c6: 7b:1b:3b:d1:f9:f7:ab:ae:8e:8c:ff:32:a1:1d:5e: d9:f2:0d:7d:f2:6e:72:68:14:01:d7:46:d7:ae:64: 64:50:70:ed:9e:59:33:8e:03:19:5d:1f:f5:c1:a4: 74:76:e7:b2:93:75:24:bf:ee:2a:cd:5e:14:9b:0a: eb:7d:03:bd:4a:50:37:84:2e:3f:8f:f0:2b:b2:de: be:ac:5e:a8:44:1a:ca:2f:d8:f0:74:16:0d:a0:73: a8:3a:90:7e:f6:8b:35:85:9f:dd:35:41:82:4d:7f: 49:98:9f:94:c4:0c:be:80:9c:89:1b:18:4f:9d:57: a4:bb:55:a1:74:fa:ee:ef:be:2f:ad:31:6e:d5:31: 45:67:12:0b:b1:c3:e5:9e:33:3b:b9:75:ab:3d:4e: 60:e0:fa:31:58:77:76:26:b6:91:d7:f8:78:8d:8c: 32:c9:b8:9c:c6:3b:2c:a2:97:d1:40:cf:98:d1:22: 5d:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:C2:23:6E:CD:C7:A7:EF:6D:CD:0E:1E:78:65:4F:C8:6A:47:92:4E X509v3 Authority Key Identifier: keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS20326.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 82.21.43.0/24 82.25.13.0/24 82.25.58.0/24 82.26.96.0/22 82.38.144.0/21 82.39.135.0-82.39.136.255 Signature Algorithm: sha256WithRSAEncryption 66:3f:01:18:95:fc:d2:0a:72:38:1f:db:fb:20:41:17:16:f3: 3d:6c:28:05:53:1f:3d:bc:66:d0:58:cc:ea:b1:43:a0:68:c6: 9e:3c:16:bb:49:90:92:8d:ae:d1:6b:b7:f3:2f:64:8c:c7:c5: 40:83:e0:54:8e:44:38:61:04:ac:05:9b:f6:36:30:3f:ed:ab: 49:67:6e:1d:65:19:74:56:32:99:f5:86:ab:f9:d2:ca:78:60: 60:39:72:4f:c6:36:44:0e:5c:4e:57:93:0f:d4:2b:0a:75:a5: fe:81:ae:77:68:38:58:35:a0:fe:a5:5d:28:65:d0:81:ee:62: bf:44:4f:1f:83:06:54:00:80:dd:d0:7e:57:e6:ba:34:0b:ee: a4:04:ee:3e:d3:a5:16:0a:7f:f4:00:d1:6d:8c:b9:fb:fc:b7: cc:7e:0e:89:e8:e6:46:f4:cd:2d:d5:91:b3:26:68:b7:8f:54: e7:c1:5e:50:f2:64:e2:22:8c:bc:a8:25:e5:d6:6f:3c:85:fd: e0:b0:ae:ed:bf:fd:b7:ad:19:f0:c2:23:0b:06:34:33:e5:f2: e5:67:ba:24:6b:ed:0c:d4:d9:f1:0a:2c:9c:11:23:02:4d:8c: 9d:6a:79:59:c1:74:d4:15:00:6d:7a:bf:e2:5c:3c:ce:2d:6a: f8:14:98:c0 -----BEGIN CERTIFICATE----- MIIFJTCCBA2gAwIBAgIUI2m56A3V8Drck1t334DW1OIXZakwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjE4Y2M2ZTI0MTA1ZGU2YzVjOTAwM2Q2NTI0Mzg5M2Ni M2NmZGQwMTAeFw0yNTExMjYxOTA4NTdaFw0yNjExMjUxOTEzNTdaMDMxMTAvBgNV BAMTKEU5QzIyMzZFQ0RDN0E3RUY2RENEMEUxRTc4NjU0RkM4NkE0NzkyNEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7I7U7z6RqlJdvfQ8ahksIaeKb Drp07FGvU+Igdf4rH7XX7kHmnaaLcHEKz+vkw3l/PJEB8kUVrvbIL3lXBZyKnMHJ 0Hr6Ox51xnsbO9H596uujoz/MqEdXtnyDX3ybnJoFAHXRteuZGRQcO2eWTOOAxld H/XBpHR257KTdSS/7irNXhSbCut9A71KUDeELj+P8Cuy3r6sXqhEGsov2PB0Fg2g c6g6kH72izWFn901QYJNf0mYn5TEDL6AnIkbGE+dV6S7VaF0+u7vvi+tMW7VMUVn Eguxw+WeMzu5das9TmDg+jFYd3YmtpHX+HiNjDLJuJzGOyyil9FAz5jRIl0bAgMB AAGjggIvMIICKzAdBgNVHQ4EFgQU6cIjbs3Hp+9tzQ4eeGVPyGpHkk4wHwYDVR0j BBgwFoAUIYzG4kEF3mxckAPWUkOJPLPP3QEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYtYjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWEx YWY2LzAvMjE4Q0M2RTI0MTA1REU2QzVDOTAwM0Q2NTI0Mzg5M0NCM0NGREQwMS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0lZekc0a0VGM214Y2tBUFdVa09KUExQ UDNRRS5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzcxOGExYjRmLWI2NGMt NDAyYy1iZTE1LWRkODJhNDFhMWFmNi8wL0FTMjAzMjYucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwRQYIKwYBBQUHAQcBAf8ENjA0MDIEAgABMCwDBABSFSsD BABSGQ0DBABSGToDBAJSGmADBANSJpAwDAMEAFInhwMEAFIniDANBgkqhkiG9w0B AQsFAAOCAQEAZj8BGJX80gpyOB/b+yBBFxbzPWwoBVMfPbxm0FjM6rFDoGjGnjwW u0mQko2u0Wu38y9kjMfFQIPgVI5EOGEErAWb9jYwP+2rSWduHWUZdFYymfWGq/nS ynhgYDlyT8Y2RA5cTleTD9QrCnWl/oGud2g4WDWg/qVdKGXQge5iv0RPH4MGVACA 3dB+V+a6NAvupATuPtOlFgp/9ADRbYy5+/y3zH4OiejmRvTNLdWRsyZot49U58Fe UPJk4iKMvKgl5dZvPIX94LCu7b/9t60Z8MIjCwY0M+Xy5We6JGvtDNTZ8QosnBEj Ak2MnWp5WcF01BUAbXq/4lw8zi1q+BSYwA== -----END CERTIFICATE-----Generated at Thu Dec 4 06:01:58 2025 by rpki-client