This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS212238.roa File: AS212238.roa (raw, json) Hash identifier: h4gIiNZD60o/fwf1UExFkz/r7Wi1Z2pLUS7v/g6/lIE= Subject key identifier: F8:ED:53:11:1B:E2:CB:6B:43:4C:48:2A:F5:E5:E6:50:FB:08:7E:21 Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Certificate serial: 3C3A1A92635C48E814945A35DFD428911CEB8B7D Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS212238.roa Signing time: Fri 21 Nov 2025 15:38:57 +0000 ROA not before: Fri 21 Nov 2025 15:33:57 +0000 ROA not after: Fri 20 Nov 2026 15:38:57 +0000 asID: 212238 IP address blocks: 82.21.2.0/24 maxlen: 24 82.21.56.0/24 maxlen: 24 82.21.59.0/24 maxlen: 24 82.21.68.0/24 maxlen: 24 82.21.70.0/24 maxlen: 24 82.21.87.0/24 maxlen: 24 82.21.108.0/24 maxlen: 24 82.21.133.0/24 maxlen: 24 82.21.141.0/24 maxlen: 24 82.21.142.0/24 maxlen: 24 82.21.151.0/24 maxlen: 24 82.21.158.0/24 maxlen: 24 82.21.159.0/24 maxlen: 24 82.21.168.0/24 maxlen: 24 82.21.175.0/24 maxlen: 24 82.21.189.0/24 maxlen: 24 82.21.191.0/24 maxlen: 24 82.21.193.0/24 maxlen: 24 82.21.211.0/24 maxlen: 24 82.21.243.0/24 maxlen: 24 82.22.65.0/24 maxlen: 24 82.22.79.0/24 maxlen: 24 82.22.85.0/24 maxlen: 24 82.22.87.0/24 maxlen: 24 82.22.147.0/24 maxlen: 24 82.22.212.0/24 maxlen: 24 82.22.243.0/24 maxlen: 24 82.22.253.0/24 maxlen: 24 82.23.17.0/24 maxlen: 24 82.23.18.0/24 maxlen: 24 82.23.21.0/24 maxlen: 24 82.23.22.0/24 maxlen: 24 82.23.37.0/24 maxlen: 24 82.23.38.0/24 maxlen: 24 82.23.119.0/24 maxlen: 24 82.23.120.0/24 maxlen: 24 82.23.121.0/24 maxlen: 24 82.23.122.0/24 maxlen: 24 82.23.126.0/24 maxlen: 24 82.23.145.0/24 maxlen: 24 82.23.146.0/24 maxlen: 24 82.23.217.0/24 maxlen: 24 82.23.229.0/24 maxlen: 24 82.23.233.0/24 maxlen: 24 82.23.243.0/24 maxlen: 24 82.23.253.0/24 maxlen: 24 82.23.254.0/24 maxlen: 24 82.23.255.0/24 maxlen: 24 82.24.34.0/24 maxlen: 24 82.24.46.0/24 maxlen: 24 82.24.112.0/24 maxlen: 24 82.24.126.0/24 maxlen: 24 82.24.182.0/24 maxlen: 24 82.24.215.0/24 maxlen: 24 82.24.239.0/24 maxlen: 24 82.24.243.0/24 maxlen: 24 82.24.253.0/24 maxlen: 24 82.25.34.0/24 maxlen: 24 82.25.243.0/24 maxlen: 24 82.25.253.0/24 maxlen: 24 82.26.237.0/24 maxlen: 24 82.26.253.0/24 maxlen: 24 82.27.130.0/24 maxlen: 24 82.27.225.0/24 maxlen: 24 82.27.238.0/24 maxlen: 24 82.27.253.0/24 maxlen: 24 82.29.92.0/24 maxlen: 24 82.29.94.0/24 maxlen: 24 82.29.96.0/24 maxlen: 24 82.29.97.0/24 maxlen: 24 82.29.100.0/24 maxlen: 24 82.29.101.0/24 maxlen: 24 82.29.125.0/24 maxlen: 24 82.29.202.0/24 maxlen: 24 82.29.215.0/24 maxlen: 24 82.29.217.0/24 maxlen: 24 82.29.228.0/24 maxlen: 24 82.29.233.0/24 maxlen: 24 82.29.242.0/24 maxlen: 24 82.29.243.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 04 Dec 2025 09:57:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:3a:1a:92:63:5c:48:e8:14:94:5a:35:df:d4:28:91:1c:eb:8b:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Validity Not Before: Nov 21 15:33:57 2025 GMT Not After : Nov 20 15:38:57 2026 GMT Subject: CN=F8ED53111BE2CB6B434C482AF5E5E650FB087E21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:8c:36:b7:23:2e:18:19:91:1f:80:d2:1f:25: dc:3a:51:ba:da:dc:0e:bc:93:2e:5c:24:a5:ec:61: b4:92:c1:f1:44:48:22:80:b1:d5:3b:79:aa:85:8a: 7e:a1:26:80:e7:2a:d0:0c:94:da:5f:d2:88:a6:a2: e5:df:d3:ac:11:89:b2:a2:92:d9:df:2c:e0:75:d3: b7:46:7e:40:3a:97:5d:1f:9c:e8:4d:88:74:07:5c: 21:cf:73:70:4a:33:04:de:50:ec:23:c0:8d:03:43: a9:99:99:e0:a8:e7:bf:14:c1:d6:7f:21:ae:10:5d: 39:6e:ed:30:3e:cb:61:2a:70:76:55:75:af:25:7c: 23:2d:66:cd:0a:49:6b:cf:50:2b:73:d7:44:b8:bb: e1:57:f8:7b:94:0c:20:11:ae:ed:2d:f5:e2:ef:cb: cc:b7:00:fb:cf:5d:aa:89:4e:79:dc:fa:91:49:c8: da:b9:a1:e2:4d:70:0c:c3:f1:1f:12:26:8e:68:29: b1:0f:76:dc:97:ed:d8:3b:b6:a6:7e:d0:22:40:df: 87:a2:79:9c:4e:d6:00:a6:d7:2f:55:fc:73:8d:20: 39:6c:5d:ac:a7:3b:fb:1e:0a:5f:e0:e1:9f:1b:62: 1c:cd:f4:ac:f3:c2:ab:d5:16:1b:aa:75:8b:d6:2a: 3d:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:ED:53:11:1B:E2:CB:6B:43:4C:48:2A:F5:E5:E6:50:FB:08:7E:21 X509v3 Authority Key Identifier: keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS212238.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 82.21.2.0/24 82.21.56.0/24 82.21.59.0/24 82.21.68.0/24 82.21.70.0/24 82.21.87.0/24 82.21.108.0/24 82.21.133.0/24 82.21.141.0-82.21.142.255 82.21.151.0/24 82.21.158.0/23 82.21.168.0/24 82.21.175.0/24 82.21.189.0/24 82.21.191.0/24 82.21.193.0/24 82.21.211.0/24 82.21.243.0/24 82.22.65.0/24 82.22.79.0/24 82.22.85.0/24 82.22.87.0/24 82.22.147.0/24 82.22.212.0/24 82.22.243.0/24 82.22.253.0/24 82.23.17.0-82.23.18.255 82.23.21.0-82.23.22.255 82.23.37.0-82.23.38.255 82.23.119.0-82.23.122.255 82.23.126.0/24 82.23.145.0-82.23.146.255 82.23.217.0/24 82.23.229.0/24 82.23.233.0/24 82.23.243.0/24 82.23.253.0-82.23.255.255 82.24.34.0/24 82.24.46.0/24 82.24.112.0/24 82.24.126.0/24 82.24.182.0/24 82.24.215.0/24 82.24.239.0/24 82.24.243.0/24 82.24.253.0/24 82.25.34.0/24 82.25.243.0/24 82.25.253.0/24 82.26.237.0/24 82.26.253.0/24 82.27.130.0/24 82.27.225.0/24 82.27.238.0/24 82.27.253.0/24 82.29.92.0/24 82.29.94.0/24 82.29.96.0/23 82.29.100.0/23 82.29.125.0/24 82.29.202.0/24 82.29.215.0/24 82.29.217.0/24 82.29.228.0/24 82.29.233.0/24 82.29.242.0/23 Signature Algorithm: sha256WithRSAEncryption 13:00:de:63:08:38:44:c8:df:0c:cc:1e:f2:67:77:e5:40:45: 36:70:d0:60:23:96:1b:74:18:9e:95:73:7e:13:92:17:8c:5c: b4:4f:8d:dd:4d:da:d9:3f:03:51:83:61:ca:a1:60:d7:f3:ee: f9:e7:06:d8:93:15:c5:b8:db:36:c5:6d:ca:51:44:6c:05:a9: 49:6d:27:fd:89:14:bd:6b:c7:0c:3b:64:bc:cb:74:22:f5:a4: 14:f4:f1:a9:55:80:b5:60:a5:fc:82:76:af:bc:e7:6d:5c:8d: fb:b8:9a:79:c2:0f:d1:48:46:ea:aa:04:03:a0:b6:f6:0d:b0: 5a:aa:13:49:d6:38:5a:19:6d:37:79:5b:20:e1:9e:d1:5f:e2: 0a:ca:80:87:80:69:57:b3:2b:8d:26:51:d6:8a:2d:15:d8:32: 6f:ea:27:fe:90:5b:e5:97:a8:27:df:8a:5d:ba:44:56:11:eb: c4:5a:39:c0:de:35:ed:fc:6c:ef:b7:b0:97:84:a3:e9:ba:cd: 84:b9:33:de:d8:d2:1d:f2:60:4a:bd:1d:d9:ab:78:7b:57:49: 99:5b:1e:e7:64:6f:0f:dd:2a:d1:ab:6c:bc:9f:05:e3:0c:00: 99:6b:b8:e7:4e:72:fa:50:48:ce:7a:bd:4d:b0:9a:54:88:13: 61:cc:f1:1c -----BEGIN CERTIFICATE----- MIIGxzCCBa+gAwIBAgIUPDoakmNcSOgUlFo139QokRzri30wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjE4Y2M2ZTI0MTA1ZGU2YzVjOTAwM2Q2NTI0Mzg5M2Ni M2NmZGQwMTAeFw0yNTExMjExNTMzNTdaFw0yNjExMjAxNTM4NTdaMDMxMTAvBgNV BAMTKEY4RUQ1MzExMUJFMkNCNkI0MzRDNDgyQUY1RTVFNjUwRkIwODdFMjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFjDa3Iy4YGZEfgNIfJdw6Ubra 3A68ky5cJKXsYbSSwfFESCKAsdU7eaqFin6hJoDnKtAMlNpf0oimouXf06wRibKi ktnfLOB107dGfkA6l10fnOhNiHQHXCHPc3BKMwTeUOwjwI0DQ6mZmeCo578UwdZ/ Ia4QXTlu7TA+y2EqcHZVda8lfCMtZs0KSWvPUCtz10S4u+FX+HuUDCARru0t9eLv y8y3APvPXaqJTnnc+pFJyNq5oeJNcAzD8R8SJo5oKbEPdtyX7dg7tqZ+0CJA34ei eZxO1gCm1y9V/HONIDlsXaynO/seCl/g4Z8bYhzN9KzzwqvVFhuqdYvWKj0NAgMB AAGjggPRMIIDzTAdBgNVHQ4EFgQU+O1TERviy2tDTEgq9eXmUPsIfiEwHwYDVR0j BBgwFoAUIYzG4kEF3mxckAPWUkOJPLPP3QEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYtYjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWEx YWY2LzAvMjE4Q0M2RTI0MTA1REU2QzVDOTAwM0Q2NTI0Mzg5M0NCM0NGREQwMS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0lZekc0a0VGM214Y2tBUFdVa09KUExQ UDNRRS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzcxOGExYjRmLWI2NGMt NDAyYy1iZTE1LWRkODJhNDFhMWFmNi8wL0FTMjEyMjM4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMIIB5AYIKwYBBQUHAQcBAf8EggHTMIIBzzCCAcsEAgAB MIIBwwMEAFIVAgMEAFIVOAMEAFIVOwMEAFIVRAMEAFIVRgMEAFIVVwMEAFIVbAME AFIVhTAMAwQAUhWNAwQAUhWOAwQAUhWXAwQBUhWeAwQAUhWoAwQAUhWvAwQAUhW9 AwQAUhW/AwQAUhXBAwQAUhXTAwQAUhXzAwQAUhZBAwQAUhZPAwQAUhZVAwQAUhZX AwQAUhaTAwQAUhbUAwQAUhbzAwQAUhb9MAwDBABSFxEDBABSFxIwDAMEAFIXFQME AFIXFjAMAwQAUhclAwQAUhcmMAwDBABSF3cDBABSF3oDBABSF34wDAMEAFIXkQME AFIXkgMEAFIX2QMEAFIX5QMEAFIX6QMEAFIX8zALAwQAUhf9AwMDUhADBABSGCID BABSGC4DBABSGHADBABSGH4DBABSGLYDBABSGNcDBABSGO8DBABSGPMDBABSGP0D BABSGSIDBABSGfMDBABSGf0DBABSGu0DBABSGv0DBABSG4IDBABSG+EDBABSG+4D BABSG/0DBABSHVwDBABSHV4DBAFSHWADBAFSHWQDBABSHX0DBABSHcoDBABSHdcD BABSHdkDBABSHeQDBABSHekDBAFSHfIwDQYJKoZIhvcNAQELBQADggEBABMA3mMI OETI3wzMHvJnd+VARTZw0GAjlht0GJ6Vc34TkheMXLRPjd1N2tk/A1GDYcqhYNfz 7vnnBtiTFcW42zbFbcpRRGwFqUltJ/2JFL1rxww7ZLzLdCL1pBT08alVgLVgpfyC dq+8521cjfu4mnnCD9FIRuqqBAOgtvYNsFqqE0nWOFoZbTd5WyDhntFf4grKgIeA aVezK40mUdaKLRXYMm/qJ/6QW+WXqCffil26RFYR68RaOcDeNe38bO+3sJeEo+m6 zYS5M97Y0h3yYEq9HdmreHtXSZlbHudkbw/dKtGrbLyfBeMMAJlruOdOcvpQSM56 vU2wmlSIE2HM8Rw= -----END CERTIFICATE-----Generated at Wed Dec 3 12:02:58 2025 by rpki-client