This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS20326.roa File: AS20326.roa (raw, json) Hash identifier: JB4zZfsPYRNwwXUUZET0Vd9Pzw5n0e334le884+9f7M= Subject key identifier: 74:C4:19:92:2A:CA:BA:46:FC:C7:E3:62:76:71:E8:29:C0:CF:5A:1C Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Certificate serial: 1DA44642BB046F08E092BE60E04A70F00745CDF8 Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS20326.roa Signing time: Tue 06 Jan 2026 21:04:31 +0000 ROA not before: Tue 06 Jan 2026 20:59:31 +0000 ROA not after: Tue 05 Jan 2027 21:04:31 +0000 asID: 20326 IP address blocks: 82.21.43.0/24 maxlen: 24 82.21.125.0/24 maxlen: 24 82.22.124.0/23 maxlen: 23 82.22.160.0/24 maxlen: 24 82.25.13.0/24 maxlen: 24 82.25.58.0/24 maxlen: 24 82.26.96.0/22 maxlen: 24 82.38.144.0/21 maxlen: 21 82.39.135.0/24 maxlen: 24 82.39.136.0/24 maxlen: 24 82.39.232.0/23 maxlen: 24 82.40.61.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 19 Jan 2026 04:45:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:a4:46:42:bb:04:6f:08:e0:92:be:60:e0:4a:70:f0:07:45:cd:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Validity Not Before: Jan 6 20:59:31 2026 GMT Not After : Jan 5 21:04:31 2027 GMT Subject: CN=74C419922ACABA46FCC7E3627671E829C0CF5A1C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:f4:b9:63:f3:20:09:70:6e:b0:e2:e3:ef:2a: ff:bc:fb:b3:e6:53:f3:0d:e6:70:38:3a:1d:8a:a2: f4:93:64:a6:fe:e6:86:ef:6d:2b:10:5b:ee:8a:42: a5:f1:3b:53:60:b8:b1:6c:58:67:49:86:e7:46:97: c5:32:43:b7:51:62:f6:71:0e:8f:5c:5b:80:60:ba: 03:84:44:e3:5d:52:2b:69:fe:5f:60:8a:31:91:b7: 6b:9f:63:18:9e:6c:88:6e:82:c1:c6:26:36:fc:2f: be:b4:d5:e2:e6:22:c3:8f:18:a9:f9:52:fe:e6:89: ae:db:7a:78:97:e8:26:6f:54:c2:64:5b:3d:16:14: 79:54:85:c7:19:39:1e:f3:89:a7:28:28:a6:8a:7e: 1c:04:44:ad:93:8c:ce:9f:6e:af:bf:e7:6a:15:84: 4d:4c:b3:39:8d:f8:ed:e8:b4:23:d9:42:67:10:61: 69:a2:2d:14:f2:b9:2e:e9:ba:e5:f8:54:25:8c:df: 83:70:45:e9:57:29:be:49:b6:2a:78:a5:b4:f3:3c: 05:35:f0:93:ad:6e:98:d5:4b:f1:d4:2b:73:cc:65: 47:bb:12:ed:36:ca:17:22:aa:b4:a2:3e:e4:67:1d: f8:de:0b:4b:6a:92:bb:e4:f0:97:18:ec:c8:c3:37: 54:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:C4:19:92:2A:CA:BA:46:FC:C7:E3:62:76:71:E8:29:C0:CF:5A:1C X509v3 Authority Key Identifier: keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS20326.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 82.21.43.0/24 82.21.125.0/24 82.22.124.0/23 82.22.160.0/24 82.25.13.0/24 82.25.58.0/24 82.26.96.0/22 82.38.144.0/21 82.39.135.0-82.39.136.255 82.39.232.0/23 82.40.61.0/24 Signature Algorithm: sha256WithRSAEncryption 1a:f6:25:eb:55:d9:24:f1:80:f8:2a:93:bd:f9:20:33:d3:d1: de:b5:4a:18:3c:85:84:cb:1a:02:87:d8:9f:3c:83:f1:df:b5: 42:40:03:59:98:79:3b:f6:59:ca:c5:d6:68:7f:fd:65:0d:16: f5:0e:76:a9:1f:56:0e:d8:88:3c:66:a4:13:91:24:7d:ab:01: 73:d8:37:dd:96:a2:b1:38:28:6d:43:12:0d:9f:84:00:5d:90: 44:75:ae:31:7e:18:42:f3:43:21:04:32:e1:e7:72:1d:d5:8e: e3:7a:58:4c:62:e5:98:78:1c:a5:5e:a1:1a:a0:2b:e2:4f:8f: 6a:9b:f0:ff:3f:55:11:ea:84:48:5a:cf:09:95:97:e2:0a:80: 72:e9:7b:a6:12:cf:13:05:ec:6b:24:3f:ed:66:87:66:06:4a: be:11:c7:01:ee:53:91:38:e3:97:d4:b6:3a:91:70:ab:54:59: e1:e6:ef:ca:cc:05:0d:08:77:b5:36:af:ba:0c:4c:ef:97:61: a7:78:e1:16:79:e7:f9:d6:99:ab:ea:3f:d8:e3:92:31:f4:a1: d9:19:0b:0a:56:6c:1c:63:b8:ef:04:92:9a:20:f8:fc:e5:f1: 3f:dd:55:90:52:51:3b:e5:6b:4d:ce:20:4f:af:9e:99:1b:f4: 14:45:3b:a5 -----BEGIN CERTIFICATE----- MIIFQzCCBCugAwIBAgIUHaRGQrsEbwjgkr5g4Epw8AdFzfgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjE4Y2M2ZTI0MTA1ZGU2YzVjOTAwM2Q2NTI0Mzg5M2Ni M2NmZGQwMTAeFw0yNjAxMDYyMDU5MzFaFw0yNzAxMDUyMTA0MzFaMDMxMTAvBgNV BAMTKDc0QzQxOTkyMkFDQUJBNDZGQ0M3RTM2Mjc2NzFFODI5QzBDRjVBMUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/9Llj8yAJcG6w4uPvKv+8+7Pm U/MN5nA4Oh2KovSTZKb+5obvbSsQW+6KQqXxO1NguLFsWGdJhudGl8UyQ7dRYvZx Do9cW4BgugOERONdUitp/l9gijGRt2ufYxiebIhugsHGJjb8L7601eLmIsOPGKn5 Uv7mia7beniX6CZvVMJkWz0WFHlUhccZOR7ziacoKKaKfhwERK2TjM6fbq+/52oV hE1MszmN+O3otCPZQmcQYWmiLRTyuS7puuX4VCWM34NwRelXKb5Jtip4pbTzPAU1 8JOtbpjVS/HUK3PMZUe7Eu02yhciqrSiPuRnHfjeC0tqkrvk8JcY7MjDN1S9AgMB AAGjggJNMIICSTAdBgNVHQ4EFgQUdMQZkirKukb8x+NidnHoKcDPWhwwHwYDVR0j BBgwFoAUIYzG4kEF3mxckAPWUkOJPLPP3QEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYtYjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWEx YWY2LzAvMjE4Q0M2RTI0MTA1REU2QzVDOTAwM0Q2NTI0Mzg5M0NCM0NGREQwMS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0lZekc0a0VGM214Y2tBUFdVa09KUExQ UDNRRS5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzcxOGExYjRmLWI2NGMt NDAyYy1iZTE1LWRkODJhNDFhMWFmNi8wL0FTMjAzMjYucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwYwYIKwYBBQUHAQcBAf8EVDBSMFAEAgABMEoDBABSFSsD BABSFX0DBAFSFnwDBABSFqADBABSGQ0DBABSGToDBAJSGmADBANSJpAwDAMEAFIn hwMEAFIniAMEAVIn6AMEAFIoPTANBgkqhkiG9w0BAQsFAAOCAQEAGvYl61XZJPGA +CqTvfkgM9PR3rVKGDyFhMsaAofYnzyD8d+1QkADWZh5O/ZZysXWaH/9ZQ0W9Q52 qR9WDtiIPGakE5EkfasBc9g33ZaisTgobUMSDZ+EAF2QRHWuMX4YQvNDIQQy4edy HdWO43pYTGLlmHgcpV6hGqAr4k+Papvw/z9VEeqESFrPCZWX4gqAcul7phLPEwXs ayQ/7WaHZgZKvhHHAe5TkTjjl9S2OpFwq1RZ4ebvyswFDQh3tTavugxM75dhp3jh Fnnn+daZq+o/2OOSMfSh2RkLClZsHGO47wSSmiD4/OXxP91VkFJRO+VrTc4gT6+e mRv0FEU7pQ== -----END CERTIFICATE-----Generated at Sun Jan 18 08:56:36 2026 by rpki-client