This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS215304.roa File: AS215304.roa (raw, json) Hash identifier: ZQe75Ogy4k03Q7k0L0F0ZLLtlk9VFTGiHtJQgeIpalE= Subject key identifier: 22:42:DF:5C:82:C7:EC:85:4D:AD:59:7D:E0:5F:3D:32:84:42:59:59 Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Certificate serial: 4A174A7C7BFB7FBEBB2B377A2985CA4132FD674E Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS215304.roa Signing time: Wed 03 Dec 2025 11:40:46 +0000 ROA not before: Wed 03 Dec 2025 11:35:46 +0000 ROA not after: Wed 02 Dec 2026 11:40:46 +0000 asID: 215304 IP address blocks: 82.25.46.0/23 maxlen: 24 82.26.72.0/23 maxlen: 24 82.26.78.0/23 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 05 Dec 2025 00:00:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:17:4a:7c:7b:fb:7f:be:bb:2b:37:7a:29:85:ca:41:32:fd:67:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Validity Not Before: Dec 3 11:35:46 2025 GMT Not After : Dec 2 11:40:46 2026 GMT Subject: CN=2242DF5C82C7EC854DAD597DE05F3D3284425959 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:8d:48:23:cc:57:be:25:cd:d4:c9:2b:8f:9a: a8:0b:45:15:33:84:86:b4:47:a9:af:1f:4b:05:bf: 6a:f8:44:29:fb:ff:f8:2a:60:87:04:5a:db:1c:a0: 23:7f:dd:6a:95:97:cd:5d:b9:34:94:c6:b9:ba:72: 75:98:ee:b1:af:6b:7f:05:0f:99:06:72:fa:ae:b1: 83:41:ae:1c:c1:8e:21:bf:26:29:fb:0e:a0:13:b7: 4a:e2:ea:fe:0e:d0:bc:69:5f:f8:69:79:ad:95:26: c5:83:da:86:b3:4a:54:9b:53:e0:52:a3:9e:7b:83: c2:41:69:fd:8b:b4:3f:7f:91:7d:d3:9a:3e:7e:c1: a4:ee:f3:74:e3:d4:27:d3:d7:01:16:b7:91:c0:be: 76:8a:c5:f4:72:34:a7:45:95:a5:70:3b:1e:5f:b6: f7:d9:5d:91:09:c6:ee:6e:e6:2d:1c:ae:14:db:18: fc:db:9b:45:16:bc:6f:f8:9d:d7:c6:86:44:6a:9b: 1b:aa:8c:8b:3b:76:35:aa:3a:0a:c2:ef:85:5e:f5: e4:7e:b5:a8:70:aa:83:4f:c9:06:48:a5:8e:31:7d: 50:c3:77:b7:76:3a:9c:c5:86:40:2c:e2:9a:78:02: 5b:16:2f:b2:a4:cb:40:9e:be:57:23:e5:b9:d0:ff: 3c:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:42:DF:5C:82:C7:EC:85:4D:AD:59:7D:E0:5F:3D:32:84:42:59:59 X509v3 Authority Key Identifier: keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS215304.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 82.25.46.0/23 82.26.72.0/23 82.26.78.0/23 Signature Algorithm: sha256WithRSAEncryption 14:e7:b7:69:8d:40:38:06:e5:c1:e7:89:90:81:4c:01:cf:f8: 15:e7:3d:f9:a0:7a:1c:60:8a:e0:3f:e4:b1:86:da:dd:22:c9: e9:a3:1a:4a:3e:89:73:26:14:f6:a0:04:cd:14:05:33:e7:5a: d0:60:d2:05:bb:83:f7:81:0f:d9:c2:fb:81:54:99:0f:bc:2d: f1:0c:a4:b8:63:b2:1c:c4:7a:1d:60:4e:14:69:60:b8:de:20: da:9e:28:ee:5f:1e:65:8d:d1:91:2d:f9:bc:ec:06:8f:59:65: a4:19:87:24:c2:18:8a:e0:c1:00:7f:d2:65:a9:6b:b6:35:c9: a6:22:0a:e4:3f:4a:56:f9:95:7c:9c:58:88:f9:6f:3b:4b:c3: c6:cb:e5:b1:d7:b5:52:bd:ee:30:9d:6e:a1:8c:03:ce:f8:55: 2a:ec:f2:5b:1d:e9:22:fa:75:1a:00:7b:70:2f:7a:5e:f0:2b: c0:f5:3f:3f:54:8f:85:3e:36:91:f7:5b:20:a4:41:8b:ed:60: 1d:d4:68:c9:d9:11:39:f5:ff:18:8d:24:4a:17:9b:24:f0:e3: 55:54:3c:d7:87:71:19:f4:ed:17:b4:a3:8b:f0:63:b4:96:10: 2c:7b:85:35:a4:8b:15:a2:e7:a3:61:1e:73:9a:a1:c4:53:d5: 8c:4c:83:77 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgIUShdKfHv7f767Kzd6KYXKQTL9Z04wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjE4Y2M2ZTI0MTA1ZGU2YzVjOTAwM2Q2NTI0Mzg5M2Ni M2NmZGQwMTAeFw0yNTEyMDMxMTM1NDZaFw0yNjEyMDIxMTQwNDZaMDMxMTAvBgNV BAMTKDIyNDJERjVDODJDN0VDODU0REFENTk3REUwNUYzRDMyODQ0MjU5NTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDojUgjzFe+Jc3UySuPmqgLRRUz hIa0R6mvH0sFv2r4RCn7//gqYIcEWtscoCN/3WqVl81duTSUxrm6cnWY7rGva38F D5kGcvqusYNBrhzBjiG/Jin7DqATt0ri6v4O0LxpX/hpea2VJsWD2oazSlSbU+BS o557g8JBaf2LtD9/kX3Tmj5+waTu83Tj1CfT1wEWt5HAvnaKxfRyNKdFlaVwOx5f tvfZXZEJxu5u5i0crhTbGPzbm0UWvG/4ndfGhkRqmxuqjIs7djWqOgrC74Ve9eR+ tahwqoNPyQZIpY4xfVDDd7d2OpzFhkAs4pp4AlsWL7Kky0Cevlcj5bnQ/zzLAgMB AAGjggIWMIICEjAdBgNVHQ4EFgQUIkLfXILH7IVNrVl94F89MoRCWVkwHwYDVR0j BBgwFoAUIYzG4kEF3mxckAPWUkOJPLPP3QEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYtYjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWEx YWY2LzAvMjE4Q0M2RTI0MTA1REU2QzVDOTAwM0Q2NTI0Mzg5M0NCM0NGREQwMS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0lZekc0a0VGM214Y2tBUFdVa09KUExQ UDNRRS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzcxOGExYjRmLWI2NGMt NDAyYy1iZTE1LWRkODJhNDFhMWFmNi8wL0FTMjE1MzA0LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQBUhku AwQBUhpIAwQBUhpOMA0GCSqGSIb3DQEBCwUAA4IBAQAU57dpjUA4BuXB54mQgUwB z/gV5z35oHocYIrgP+SxhtrdIsnpoxpKPolzJhT2oATNFAUz51rQYNIFu4P3gQ/Z wvuBVJkPvC3xDKS4Y7IcxHodYE4UaWC43iDanijuXx5ljdGRLfm87AaPWWWkGYck whiK4MEAf9JlqWu2NcmmIgrkP0pW+ZV8nFiI+W87S8PGy+Wx17VSve4wnW6hjAPO +FUq7PJbHeki+nUaAHtwL3pe8CvA9T8/VI+FPjaR91sgpEGL7WAd1GjJ2RE59f8Y jSRKF5sk8ONVVDzXh3EZ9O0XtKOL8GO0lhAse4U1pIsVouejYR5zmqHEU9WMTIN3 -----END CERTIFICATE-----Generated at Thu Dec 4 06:00:25 2025 by rpki-client