This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS215152.roa File: AS215152.roa (raw, json) Hash identifier: 5OFI3HYJlzgOnRNOCJfEO0YsOtAPsphnImjuqOtOnX4= Subject key identifier: 32:E3:B6:8A:63:58:D1:AF:C1:74:7A:04:CF:8A:35:7F:62:77:9F:C4 Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Certificate serial: 37420EF43D0DD328CCAB027B381671E1FB1BA9AD Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS215152.roa Signing time: Mon 24 Nov 2025 08:56:15 +0000 ROA not before: Mon 24 Nov 2025 08:51:15 +0000 ROA not after: Mon 23 Nov 2026 08:56:15 +0000 asID: 215152 IP address blocks: 82.24.25.0/24 maxlen: 24 82.29.6.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 26 Nov 2025 14:08:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:42:0e:f4:3d:0d:d3:28:cc:ab:02:7b:38:16:71:e1:fb:1b:a9:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Validity Not Before: Nov 24 08:51:15 2025 GMT Not After : Nov 23 08:56:15 2026 GMT Subject: CN=32E3B68A6358D1AFC1747A04CF8A357F62779FC4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:3f:3a:5b:e5:76:84:55:a9:2c:0f:97:3a:3d: 4e:15:da:35:1a:36:ca:e9:c6:20:3a:0e:2d:66:75: 87:fd:1a:4f:d7:4a:a1:25:1a:c6:7d:73:c4:09:91: 92:f3:b7:d9:20:5d:b3:1c:9e:f2:be:a0:b3:0d:c7: 72:09:10:78:97:ee:c7:f9:a9:16:a7:cd:c3:74:85: c6:70:a9:d5:29:b7:26:28:7a:9b:cf:e8:e5:08:e6: 15:4c:19:7d:cd:9e:de:ca:08:6a:db:cf:c9:58:8b: 54:28:d3:df:28:2b:0c:b8:b0:da:e8:64:d4:d7:49: bb:71:fe:84:f1:46:5f:9e:aa:2f:fa:32:ef:a7:b5: c0:f1:f5:cb:f3:05:71:1a:c0:40:42:83:1a:19:ab: b0:8a:2e:8c:82:e9:e6:a7:9d:21:1e:c0:b2:df:c0: 38:03:28:56:84:16:f0:6f:b8:19:fa:f7:6c:46:42: 6c:f1:25:b9:b3:70:3e:6b:0f:5f:4a:0f:da:35:91: 90:7e:c8:74:05:1f:14:09:f7:12:46:99:e0:22:ff: bc:07:b1:6a:5f:e4:a9:93:e8:e4:90:2f:3a:ea:3c: 29:38:dd:4b:de:c0:81:66:d5:6d:52:e6:88:7f:21: 3c:56:92:6e:91:a6:7b:6e:bd:34:f6:e5:4c:2d:cc: 59:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:E3:B6:8A:63:58:D1:AF:C1:74:7A:04:CF:8A:35:7F:62:77:9F:C4 X509v3 Authority Key Identifier: keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS215152.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 82.24.25.0/24 82.29.6.0/24 Signature Algorithm: sha256WithRSAEncryption 8e:6d:10:ab:1c:0d:94:fb:05:53:a7:d2:6e:ce:36:e6:9f:8b: 55:fc:a1:82:80:2e:02:fb:8e:4b:96:67:26:bc:b0:ea:26:f5: d7:32:eb:35:1b:0d:d2:e2:73:0c:7d:1c:f9:12:24:ec:ae:64: 5e:92:e3:7b:18:15:a5:72:9b:29:05:9b:26:ba:2b:3d:a5:da: d1:71:67:8b:65:e9:32:c7:dd:9b:0b:92:ef:a2:26:3c:8b:44: 5e:61:c4:a7:6f:3e:aa:c8:67:eb:4f:50:ed:fb:c3:2f:00:3b: 7c:5f:5b:38:96:e6:1d:ba:be:c6:7c:92:2d:62:34:2a:1e:1b: 2e:61:ce:b1:8a:f5:df:32:cb:6a:1d:3b:e3:18:1f:f6:68:83: a4:be:a8:31:05:82:fc:de:95:0c:14:32:88:04:2c:e0:e1:52: f8:c5:db:03:01:37:02:83:c2:27:b4:41:a6:2c:e7:96:43:4c: ea:57:fd:c5:55:f0:7d:75:a4:7e:0b:75:e5:7c:c9:ab:e1:f7: de:97:d8:03:6c:77:a8:ad:85:ed:1c:56:b2:ce:bd:0a:f1:97: e7:92:7f:38:6b:97:be:94:c3:b8:b3:98:c5:65:b7:a3:a2:9b: 78:3b:69:2d:0e:86:6b:aa:03:12:6e:f4:f6:d0:3c:fa:92:9b: 7d:5b:85:cc -----BEGIN CERTIFICATE----- MIIFBjCCA+6gAwIBAgIUN0IO9D0N0yjMqwJ7OBZx4fsbqa0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjE4Y2M2ZTI0MTA1ZGU2YzVjOTAwM2Q2NTI0Mzg5M2Ni M2NmZGQwMTAeFw0yNTExMjQwODUxMTVaFw0yNjExMjMwODU2MTVaMDMxMTAvBgNV BAMTKDMyRTNCNjhBNjM1OEQxQUZDMTc0N0EwNENGOEEzNTdGNjI3NzlGQzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYPzpb5XaEVaksD5c6PU4V2jUa NsrpxiA6Di1mdYf9Gk/XSqElGsZ9c8QJkZLzt9kgXbMcnvK+oLMNx3IJEHiX7sf5 qRanzcN0hcZwqdUptyYoepvP6OUI5hVMGX3Nnt7KCGrbz8lYi1Qo098oKwy4sNro ZNTXSbtx/oTxRl+eqi/6Mu+ntcDx9cvzBXEawEBCgxoZq7CKLoyC6eannSEewLLf wDgDKFaEFvBvuBn692xGQmzxJbmzcD5rD19KD9o1kZB+yHQFHxQJ9xJGmeAi/7wH sWpf5KmT6OSQLzrqPCk43UvewIFm1W1S5oh/ITxWkm6RpntuvTT25UwtzFm1AgMB AAGjggIQMIICDDAdBgNVHQ4EFgQUMuO2imNY0a/BdHoEz4o1f2J3n8QwHwYDVR0j BBgwFoAUIYzG4kEF3mxckAPWUkOJPLPP3QEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYtYjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWEx YWY2LzAvMjE4Q0M2RTI0MTA1REU2QzVDOTAwM0Q2NTI0Mzg5M0NCM0NGREQwMS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0lZekc0a0VGM214Y2tBUFdVa09KUExQ UDNRRS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzcxOGExYjRmLWI2NGMt NDAyYy1iZTE1LWRkODJhNDFhMWFmNi8wL0FTMjE1MTUyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAUhgZ AwQAUh0GMA0GCSqGSIb3DQEBCwUAA4IBAQCObRCrHA2U+wVTp9Juzjbmn4tV/KGC gC4C+45LlmcmvLDqJvXXMus1Gw3S4nMMfRz5EiTsrmRekuN7GBWlcpspBZsmuis9 pdrRcWeLZekyx92bC5LvoiY8i0ReYcSnbz6qyGfrT1Dt+8MvADt8X1s4luYdur7G fJItYjQqHhsuYc6xivXfMstqHTvjGB/2aIOkvqgxBYL83pUMFDKIBCzg4VL4xdsD ATcCg8IntEGmLOeWQ0zqV/3FVfB9daR+C3XlfMmr4ffel9gDbHeorYXtHFayzr0K 8Zfnkn84a5e+lMO4s5jFZbejopt4O2ktDoZrqgMSbvT20Dz6kpt9W4XM -----END CERTIFICATE-----Generated at Tue Nov 25 17:36:05 2025 by rpki-client