This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS20473.roa File: AS20473.roa (raw, json) Hash identifier: sxFXw1K0e05n3VIk443BwVooDzUIz9MtLns6TYvpEIA= Subject key identifier: F1:F6:15:F8:0B:A0:00:D2:9D:CE:75:4A:D9:78:75:3A:39:75:19:38 Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Certificate serial: 10B76AA04B33E99F78808E7D4F9D259B74BF1306 Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS20473.roa Signing time: Fri 02 Jan 2026 12:32:26 +0000 ROA not before: Fri 02 Jan 2026 12:27:26 +0000 ROA not after: Fri 01 Jan 2027 12:32:26 +0000 asID: 20473 IP address blocks: 82.38.41.0/24 maxlen: 24 2a13:9500:61::/48 maxlen: 48 2a13:9500:ae::/48 maxlen: 48 2a13:9500:cf::/48 maxlen: 48 2a13:9500:dd::/48 maxlen: 48 2a13:9500:10c::/48 maxlen: 48 2a13:9500:120::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 19 Jan 2026 04:45:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:b7:6a:a0:4b:33:e9:9f:78:80:8e:7d:4f:9d:25:9b:74:bf:13:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Validity Not Before: Jan 2 12:27:26 2026 GMT Not After : Jan 1 12:32:26 2027 GMT Subject: CN=F1F615F80BA000D29DCE754AD978753A39751938 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:32:3a:41:0a:5f:8d:64:63:c0:31:25:f8:b0: c0:09:af:3e:02:c8:cc:ee:39:17:a9:38:6c:01:6d: 4b:3f:bc:80:82:47:16:52:fc:20:16:dd:8c:23:61: a1:1b:ed:cd:85:2d:14:62:a2:8a:4e:af:8e:84:39: 98:86:23:55:a8:9c:92:2a:8d:c3:d7:59:d5:3a:da: 17:10:ab:7d:25:b5:e4:5f:04:b4:53:be:48:cb:82: e5:6f:0b:0b:e0:36:3a:77:ce:da:61:18:57:89:c5: 82:c7:35:bc:4f:0a:22:80:b4:40:c8:ee:da:b0:cf: c3:6d:32:98:46:03:d5:79:47:66:46:b5:a3:88:39: 07:9c:67:5d:c2:53:0a:ad:81:08:5f:72:bf:88:5e: eb:8d:2f:0e:ab:8e:f9:86:7d:d2:dc:15:6f:68:38: a3:db:8c:47:00:43:ac:65:86:78:ab:be:d9:1b:f9: 80:d2:02:26:3a:10:6e:7d:72:35:78:b0:67:c0:0f: 46:64:3a:ff:15:18:c6:99:53:56:01:03:5d:27:17: 30:7d:50:a6:71:43:05:0c:1b:42:46:bf:eb:ef:ef: 1c:be:a9:f9:2d:ed:bc:5a:7a:f5:8b:2d:5b:81:61: 99:7b:49:4d:18:1e:13:67:55:b4:86:75:04:e1:af: 99:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:F6:15:F8:0B:A0:00:D2:9D:CE:75:4A:D9:78:75:3A:39:75:19:38 X509v3 Authority Key Identifier: keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS20473.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 82.38.41.0/24 IPv6: 2a13:9500:61::/48 2a13:9500:ae::/48 2a13:9500:cf::/48 2a13:9500:dd::/48 2a13:9500:10c::/48 2a13:9500:120::/48 Signature Algorithm: sha256WithRSAEncryption 87:e0:6a:59:5d:36:85:78:69:c7:12:0b:f3:fb:b7:9c:91:dc: e2:8e:63:3c:91:52:fb:d1:a3:0a:fc:33:d3:9a:39:81:9e:72: c9:05:73:cd:0e:68:05:d3:49:f7:e8:d9:a5:cd:b8:fd:c2:0a: f9:37:fe:af:bb:5e:12:cb:61:2e:60:d2:b6:6d:26:c0:37:f6: 17:bb:87:1a:39:a6:03:73:d0:b4:72:0e:99:a4:34:ef:d7:2a: 8c:c8:ca:81:90:6b:a1:f3:78:67:0f:cf:44:d2:38:09:c8:2f: 9c:19:39:b0:fe:98:98:37:01:31:48:2d:55:e0:c8:43:93:3f: 4a:39:d9:af:f4:84:8c:73:8e:eb:ae:99:68:ee:62:05:c9:61: 85:d0:50:46:2e:43:ba:86:b8:d6:ef:19:ff:e2:7f:f9:16:b9: fe:a7:60:3c:08:a0:49:39:46:70:15:e2:a2:37:cd:62:3c:22: ba:5b:f1:bd:a8:0c:2a:a2:c0:1e:88:58:ad:67:7a:cf:06:8f: 23:d1:f3:5f:ba:52:ff:4a:25:a1:bb:c5:ec:77:91:fd:fe:29: 92:86:21:20:13:c4:5a:fa:86:86:3e:45:5f:05:7b:15:31:ea: 13:5f:41:9a:06:38:16:db:80:d6:26:66:9e:61:41:4e:2e:5b: ce:e9:a9:38 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUELdqoEsz6Z94gI59T50lm3S/EwYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjE4Y2M2ZTI0MTA1ZGU2YzVjOTAwM2Q2NTI0Mzg5M2Ni M2NmZGQwMTAeFw0yNjAxMDIxMjI3MjZaFw0yNzAxMDExMjMyMjZaMDMxMTAvBgNV BAMTKEYxRjYxNUY4MEJBMDAwRDI5RENFNzU0QUQ5Nzg3NTNBMzk3NTE5MzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCgMjpBCl+NZGPAMSX4sMAJrz4C yMzuORepOGwBbUs/vICCRxZS/CAW3YwjYaEb7c2FLRRioopOr46EOZiGI1WonJIq jcPXWdU62hcQq30lteRfBLRTvkjLguVvCwvgNjp3ztphGFeJxYLHNbxPCiKAtEDI 7tqwz8NtMphGA9V5R2ZGtaOIOQecZ13CUwqtgQhfcr+IXuuNLw6rjvmGfdLcFW9o OKPbjEcAQ6xlhnirvtkb+YDSAiY6EG59cjV4sGfAD0ZkOv8VGMaZU1YBA10nFzB9 UKZxQwUMG0JGv+vv7xy+qfkt7bxaevWLLVuBYZl7SU0YHhNnVbSGdQThr5kXAgMB AAGjggJHMIICQzAdBgNVHQ4EFgQU8fYV+AugANKdznVK2Xh1Ojl1GTgwHwYDVR0j BBgwFoAUIYzG4kEF3mxckAPWUkOJPLPP3QEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYtYjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWEx YWY2LzAvMjE4Q0M2RTI0MTA1REU2QzVDOTAwM0Q2NTI0Mzg5M0NCM0NGREQwMS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0lZekc0a0VGM214Y2tBUFdVa09KUExQ UDNRRS5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzcxOGExYjRmLWI2NGMt NDAyYy1iZTE1LWRkODJhNDFhMWFmNi8wL0FTMjA0NzMucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwXQYIKwYBBQUHAQcBAf8ETjBMMAwEAgABMAYDBABSJikw PAQCAAIwNgMHACoTlQAAYQMHACoTlQAArgMHACoTlQAAzwMHACoTlQAA3QMHACoT lQABDAMHACoTlQABIDANBgkqhkiG9w0BAQsFAAOCAQEAh+BqWV02hXhpxxIL8/u3 nJHc4o5jPJFS+9GjCvwz05o5gZ5yyQVzzQ5oBdNJ9+jZpc24/cIK+Tf+r7teEsth LmDStm0mwDf2F7uHGjmmA3PQtHIOmaQ079cqjMjKgZBrofN4Zw/PRNI4CcgvnBk5 sP6YmDcBMUgtVeDIQ5M/SjnZr/SEjHOO666ZaO5iBclhhdBQRi5Duoa41u8Z/+J/ +Ra5/qdgPAigSTlGcBXiojfNYjwiulvxvagMKqLAHohYrWd6zwaPI9HzX7pS/0ol obvF7HeR/f4pkoYhIBPEWvqGhj5FXwV7FTHqE19BmgY4FtuA1iZmnmFBTi5bzump OA== -----END CERTIFICATE-----Generated at Sun Jan 18 08:56:48 2026 by rpki-client