This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS20473.roa File: AS20473.roa (raw, json) Hash identifier: 96wPV4QKHhUS0n4fzkXY9S3PHXx+mUE8JnAY6PNlmio= Subject key identifier: 3E:F9:B1:2E:60:3B:3C:E3:8F:8B:36:5F:BD:C5:E7:3D:55:3D:B1:50 Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Certificate serial: 498626AA1C1641B1AE9418A895BFB390A62973B3 Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS20473.roa Signing time: Wed 19 Nov 2025 14:28:06 +0000 ROA not before: Wed 19 Nov 2025 14:23:06 +0000 ROA not after: Wed 18 Nov 2026 14:28:06 +0000 asID: 20473 IP address blocks: 82.27.129.0/24 maxlen: 24 82.38.41.0/24 maxlen: 24 2a13:9500:61::/48 maxlen: 48 2a13:9500:ae::/48 maxlen: 48 2a13:9500:cf::/48 maxlen: 48 2a13:9500:dd::/48 maxlen: 48 2a13:9500:10c::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 28 Nov 2025 20:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:86:26:aa:1c:16:41:b1:ae:94:18:a8:95:bf:b3:90:a6:29:73:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Validity Not Before: Nov 19 14:23:06 2025 GMT Not After : Nov 18 14:28:06 2026 GMT Subject: CN=3EF9B12E603B3CE38F8B365FBDC5E73D553DB150 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:71:6c:9e:68:3c:36:46:6a:86:23:2a:5f:a2: 84:b1:44:3f:89:ba:fe:25:36:83:1c:43:f1:46:8a: 92:3f:35:27:ed:ca:6f:65:29:a4:d4:b8:41:2d:dc: 65:8f:f4:10:5d:28:1c:23:f1:27:b9:37:b4:ac:44: 7a:56:a0:cf:67:22:9e:10:3e:dc:8d:49:b8:da:e2: fd:34:be:d5:fa:0f:b0:c9:6e:0c:dd:9a:21:b7:80: 14:c5:86:7e:6f:76:99:fd:c4:84:5a:dc:dc:7c:77: e5:a0:0e:f9:ee:f5:a7:39:ca:ea:c8:54:ef:f1:30: 00:fe:e8:3d:02:a8:b1:72:70:50:ec:44:39:e5:d7: 49:a5:34:df:bc:ec:25:b0:bc:a3:4a:af:d5:83:ef: 75:7e:69:01:55:03:21:55:62:50:ea:ff:0a:82:f8: 33:be:96:f2:9d:de:fe:4e:a7:98:44:58:e0:17:cd: 18:4a:dd:6e:99:82:e1:0e:d9:51:64:c0:7b:4d:cd: 51:c1:27:5d:b5:3d:f3:ab:13:c6:68:18:47:65:e4: d8:e9:e1:3e:ea:80:5b:ae:60:ab:ce:7b:08:fd:55: 22:4e:cb:ee:a2:11:97:96:d7:ff:fc:10:0b:b6:03: 52:90:fe:0c:e5:42:1d:80:4b:8e:94:64:b4:a9:48: 24:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:F9:B1:2E:60:3B:3C:E3:8F:8B:36:5F:BD:C5:E7:3D:55:3D:B1:50 X509v3 Authority Key Identifier: keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS20473.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 82.27.129.0/24 82.38.41.0/24 IPv6: 2a13:9500:61::/48 2a13:9500:ae::/48 2a13:9500:cf::/48 2a13:9500:dd::/48 2a13:9500:10c::/48 Signature Algorithm: sha256WithRSAEncryption a7:cd:0e:33:a7:ee:2d:c9:1c:ae:dc:e4:bd:20:f1:87:f8:cb: 74:66:22:e5:d9:f6:a0:4f:5b:c5:b9:01:53:b1:a0:32:71:ad: f3:3c:5a:44:e5:5a:ea:55:4b:0c:26:e9:0a:7c:c0:15:5f:18: 78:9f:29:e0:3d:43:a4:7f:25:70:af:bf:9e:ea:43:31:e4:b8: 77:21:64:df:97:61:e0:69:b5:b7:4f:e8:a8:3b:6c:09:06:81: 2c:25:a2:7a:8b:65:95:4a:9f:10:5b:05:d6:b9:35:e0:ed:c0: 25:58:64:86:58:81:7b:e8:a7:5d:95:0e:ba:bb:33:17:3c:3b: 63:f1:09:fe:3b:84:53:03:7f:6f:fb:47:30:11:16:9b:1b:c4: 5c:35:f8:1c:74:61:b7:53:85:1e:e9:8e:87:91:92:81:e1:c3: 78:d2:f0:53:11:04:2b:b1:0d:19:58:a1:3f:8f:75:bc:28:34: 21:ac:72:84:d6:76:0d:a6:fd:36:f5:a6:66:d3:f7:e6:79:54: af:92:a5:db:6e:9b:b8:c4:a5:4f:ef:5f:ed:01:ed:33:65:27: a4:f8:94:50:38:18:fa:f7:7f:da:c4:ea:52:9c:60:39:af:52: 1d:3f:8d:15:ca:d4:f3:86:2f:28:9d:30:e2:e9:7b:7e:e1:88: b9:43:f5:8e -----BEGIN CERTIFICATE----- MIIFOjCCBCKgAwIBAgIUSYYmqhwWQbGulBiolb+zkKYpc7MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjE4Y2M2ZTI0MTA1ZGU2YzVjOTAwM2Q2NTI0Mzg5M2Ni M2NmZGQwMTAeFw0yNTExMTkxNDIzMDZaFw0yNjExMTgxNDI4MDZaMDMxMTAvBgNV BAMTKDNFRjlCMTJFNjAzQjNDRTM4RjhCMzY1RkJEQzVFNzNENTUzREIxNTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwcWyeaDw2RmqGIypfooSxRD+J uv4lNoMcQ/FGipI/NSftym9lKaTUuEEt3GWP9BBdKBwj8Se5N7SsRHpWoM9nIp4Q PtyNSbja4v00vtX6D7DJbgzdmiG3gBTFhn5vdpn9xIRa3Nx8d+WgDvnu9ac5yurI VO/xMAD+6D0CqLFycFDsRDnl10mlNN+87CWwvKNKr9WD73V+aQFVAyFVYlDq/wqC +DO+lvKd3v5Op5hEWOAXzRhK3W6ZguEO2VFkwHtNzVHBJ121PfOrE8ZoGEdl5Njp 4T7qgFuuYKvOewj9VSJOy+6iEZeW1//8EAu2A1KQ/gzlQh2AS46UZLSpSCSfAgMB AAGjggJEMIICQDAdBgNVHQ4EFgQUPvmxLmA7POOPizZfvcXnPVU9sVAwHwYDVR0j BBgwFoAUIYzG4kEF3mxckAPWUkOJPLPP3QEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYtYjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWEx YWY2LzAvMjE4Q0M2RTI0MTA1REU2QzVDOTAwM0Q2NTI0Mzg5M0NCM0NGREQwMS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0lZekc0a0VGM214Y2tBUFdVa09KUExQ UDNRRS5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzcxOGExYjRmLWI2NGMt NDAyYy1iZTE1LWRkODJhNDFhMWFmNi8wL0FTMjA0NzMucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwWgYIKwYBBQUHAQcBAf8ESzBJMBIEAgABMAwDBABSG4ED BABSJikwMwQCAAIwLQMHACoTlQAAYQMHACoTlQAArgMHACoTlQAAzwMHACoTlQAA 3QMHACoTlQABDDANBgkqhkiG9w0BAQsFAAOCAQEAp80OM6fuLckcrtzkvSDxh/jL dGYi5dn2oE9bxbkBU7GgMnGt8zxaROVa6lVLDCbpCnzAFV8YeJ8p4D1DpH8lcK+/ nupDMeS4dyFk35dh4Gm1t0/oqDtsCQaBLCWieotllUqfEFsF1rk14O3AJVhkhliB e+inXZUOurszFzw7Y/EJ/juEUwN/b/tHMBEWmxvEXDX4HHRht1OFHumOh5GSgeHD eNLwUxEEK7ENGVihP491vCg0IaxyhNZ2Dab9NvWmZtP35nlUr5Kl226buMSlT+9f 7QHtM2UnpPiUUDgY+vd/2sTqUpxgOa9SHT+NFcrU84YvKJ0w4ul7fuGIuUP1jg== -----END CERTIFICATE-----Generated at Fri Nov 28 05:01:33 2025 by rpki-client