This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS215152.roa File: AS215152.roa (raw, json) Hash identifier: Z53pcR5zAJyt3W9+YhmjAYizYnUP7yo8wlgdV5sWuck= Subject key identifier: F4:F9:9C:D9:AD:E4:76:D6:C5:6D:6A:3B:98:28:72:3D:AE:28:8F:0D Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Certificate serial: 19656580767FCECEABFBD0C8103E730E8B4E1AC4 Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS215152.roa Signing time: Fri 26 Dec 2025 06:21:16 +0000 ROA not before: Fri 26 Dec 2025 06:16:16 +0000 ROA not after: Fri 25 Dec 2026 06:21:16 +0000 asID: 215152 IP address blocks: 82.24.25.0/24 maxlen: 24 82.29.6.0/24 maxlen: 24 82.38.61.0/24 maxlen: 24 82.39.165.0/24 maxlen: 24 82.41.75.0/24 maxlen: 24 82.41.122.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 11 Jan 2026 13:16:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:65:65:80:76:7f:ce:ce:ab:fb:d0:c8:10:3e:73:0e:8b:4e:1a:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Validity Not Before: Dec 26 06:16:16 2025 GMT Not After : Dec 25 06:21:16 2026 GMT Subject: CN=F4F99CD9ADE476D6C56D6A3B9828723DAE288F0D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:b4:85:ae:79:5c:41:59:3b:aa:8b:07:a5:e9: 80:bf:da:5e:be:44:ed:cc:a0:27:f9:1b:33:63:6e: d6:82:b6:b0:a8:7d:98:69:e8:f3:56:7b:1b:3f:4a: 14:c9:95:07:92:1b:7b:57:9e:c7:9f:19:ef:3b:98: 06:5f:b9:ca:d4:06:47:c6:c8:cd:80:da:42:f9:7b: 8a:73:4b:b4:a8:49:29:a0:9d:0b:90:35:ab:36:26: 57:6b:ac:c1:e6:d9:f1:ca:41:9c:c5:db:23:7d:6a: ee:aa:b4:e2:ea:af:07:32:c0:83:9c:2f:0d:6e:fd: ce:d8:5b:bf:e8:af:f0:3c:98:68:95:4d:4b:99:91: 29:55:16:fe:47:7d:4d:f2:16:72:83:e3:be:a6:c3: f4:28:22:5f:df:03:81:85:d0:ca:80:40:3c:d0:1a: bf:a6:51:85:d8:fa:73:a3:2d:7a:39:76:5b:b8:66: 0d:84:18:bc:4a:28:bd:b7:9d:46:7f:8f:40:79:03: 2d:ab:d0:34:98:7c:91:5f:80:ed:8a:79:f1:8a:6b: 47:94:e7:f4:dc:4f:f4:34:e9:d3:db:ea:84:89:3d: 95:c5:fa:74:19:18:13:a9:1a:3d:f6:f1:27:63:3e: ec:ef:9c:f6:24:f0:d0:92:e4:67:1d:7a:c5:85:33: 1c:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:F9:9C:D9:AD:E4:76:D6:C5:6D:6A:3B:98:28:72:3D:AE:28:8F:0D X509v3 Authority Key Identifier: keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS215152.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 82.24.25.0/24 82.29.6.0/24 82.38.61.0/24 82.39.165.0/24 82.41.75.0/24 82.41.122.0/24 Signature Algorithm: sha256WithRSAEncryption 75:e6:64:05:6c:1e:46:25:e3:26:71:4c:75:8e:28:2e:e3:c0: b2:39:4e:7e:b2:27:d1:19:64:78:3e:aa:34:28:1d:93:de:b6: 95:c7:e6:32:48:8f:86:ca:90:a6:f2:41:81:e2:ae:b4:ce:0b: 72:aa:cb:1e:a2:f0:f8:d4:b1:89:5f:66:d6:72:8c:3e:08:d6: 36:4b:f4:32:f8:09:92:eb:11:76:8d:72:86:ed:fe:dd:30:dd: 9b:2f:96:16:eb:a5:79:af:aa:4f:5f:42:85:39:f1:2c:3c:09: 4e:26:15:90:64:59:53:5c:19:cc:d2:98:fd:f3:10:7a:db:69: dd:a2:19:a9:b5:0d:42:db:f7:aa:37:54:18:bc:29:6b:fc:17: e6:05:46:9a:87:93:59:a2:e0:63:08:87:35:de:d6:c4:17:b0: a3:1b:e2:74:5f:c6:68:52:af:3b:be:5f:06:b8:57:ff:21:b6: b8:de:f0:0a:92:79:6c:5d:d4:52:8a:29:86:d3:76:a7:82:5d: 33:86:58:7b:15:c6:ef:df:b6:6a:ee:f3:ec:a8:47:27:3b:ab: 12:99:1b:90:18:40:a3:39:f9:0d:49:fa:19:08:c6:ac:62:e9: b1:c0:81:92:95:6d:37:7a:b4:5f:fc:99:6b:56:01:fd:d6:1f: 1b:85:8a:fa -----BEGIN CERTIFICATE----- MIIFHjCCBAagAwIBAgIUGWVlgHZ/zs6r+9DIED5zDotOGsQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjE4Y2M2ZTI0MTA1ZGU2YzVjOTAwM2Q2NTI0Mzg5M2Ni M2NmZGQwMTAeFw0yNTEyMjYwNjE2MTZaFw0yNjEyMjUwNjIxMTZaMDMxMTAvBgNV BAMTKEY0Rjk5Q0Q5QURFNDc2RDZDNTZENkEzQjk4Mjg3MjNEQUUyODhGMEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMtIWueVxBWTuqiwel6YC/2l6+ RO3MoCf5GzNjbtaCtrCofZhp6PNWexs/ShTJlQeSG3tXnsefGe87mAZfucrUBkfG yM2A2kL5e4pzS7SoSSmgnQuQNas2JldrrMHm2fHKQZzF2yN9au6qtOLqrwcywIOc Lw1u/c7YW7/or/A8mGiVTUuZkSlVFv5HfU3yFnKD476mw/QoIl/fA4GF0MqAQDzQ Gr+mUYXY+nOjLXo5dlu4Zg2EGLxKKL23nUZ/j0B5Ay2r0DSYfJFfgO2KefGKa0eU 5/TcT/Q06dPb6oSJPZXF+nQZGBOpGj328SdjPuzvnPYk8NCS5GcdesWFMxxrAgMB AAGjggIoMIICJDAdBgNVHQ4EFgQU9Pmc2a3kdtbFbWo7mChyPa4ojw0wHwYDVR0j BBgwFoAUIYzG4kEF3mxckAPWUkOJPLPP3QEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYtYjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWEx YWY2LzAvMjE4Q0M2RTI0MTA1REU2QzVDOTAwM0Q2NTI0Mzg5M0NCM0NGREQwMS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0lZekc0a0VGM214Y2tBUFdVa09KUExQ UDNRRS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzcxOGExYjRmLWI2NGMt NDAyYy1iZTE1LWRkODJhNDFhMWFmNi8wL0FTMjE1MTUyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMD0GCCsGAQUFBwEHAQH/BC4wLDAqBAIAATAkAwQAUhgZ AwQAUh0GAwQAUiY9AwQAUielAwQAUilLAwQAUil6MA0GCSqGSIb3DQEBCwUAA4IB AQB15mQFbB5GJeMmcUx1jigu48CyOU5+sifRGWR4Pqo0KB2T3raVx+YySI+GypCm 8kGB4q60zgtyqsseovD41LGJX2bWcow+CNY2S/Qy+AmS6xF2jXKG7f7dMN2bL5YW 66V5r6pPX0KFOfEsPAlOJhWQZFlTXBnM0pj98xB622ndohmptQ1C2/eqN1QYvClr /BfmBUaah5NZouBjCIc13tbEF7CjG+J0X8ZoUq87vl8GuFf/Iba43vAKknlsXdRS iimG03angl0zhlh7Fcbv37Zq7vPsqEcnO6sSmRuQGECjOfkNSfoZCMasYumxwIGS lW03erRf/JlrVgH91h8bhYr6 -----END CERTIFICATE-----Generated at Sat Jan 10 22:51:57 2026 by rpki-client