This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS215703.roa File: AS215703.roa (raw, json) Hash identifier: c6NOHNy6fY6GQKF0dt0Hk1XNlRyAnvqbPuQfVKPwspA= Subject key identifier: AB:63:8E:E7:26:5A:C5:32:CE:4A:36:30:6D:65:A9:A2:D6:35:79:DF Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Certificate serial: 4EFF3B511079934CD478E060C3B2AAD484C8D210 Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS215703.roa Signing time: Thu 06 Nov 2025 22:36:21 +0000 ROA not before: Thu 06 Nov 2025 22:31:21 +0000 ROA not after: Thu 05 Nov 2026 22:36:21 +0000 asID: 215703 IP address blocks: 82.22.23.0/24 maxlen: 24 82.22.174.0/24 maxlen: 24 82.22.184.0/24 maxlen: 24 82.23.183.0/24 maxlen: 24 82.27.2.0/24 maxlen: 24 82.29.1.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 05 Dec 2025 00:00:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:ff:3b:51:10:79:93:4c:d4:78:e0:60:c3:b2:aa:d4:84:c8:d2:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Validity Not Before: Nov 6 22:31:21 2025 GMT Not After : Nov 5 22:36:21 2026 GMT Subject: CN=AB638EE7265AC532CE4A36306D65A9A2D63579DF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:87:66:39:4b:62:ed:94:cb:54:17:2a:db:c4:a7: 05:fc:fc:a0:d4:2d:43:0d:f2:d1:78:56:38:68:bb: 5d:96:43:5a:43:af:84:ba:4f:ea:2d:77:7d:cd:70: fb:17:9f:02:a8:eb:c0:86:60:37:2f:4c:9e:3b:d1: 2f:cf:da:3a:db:e0:99:60:19:08:10:49:6f:e4:7e: 02:bf:29:03:45:e0:a6:0a:24:7a:10:02:5e:d0:e0: c8:80:96:ab:2b:dc:e7:56:48:aa:96:38:3c:fd:eb: ee:60:40:4f:a3:f3:16:e8:a4:86:83:9b:ad:70:e2: 87:b5:53:c9:c1:bc:34:cd:5e:92:7f:05:e9:45:93: 5c:1a:60:4d:34:36:1c:16:d9:6e:b2:e8:b1:f0:be: 75:f3:93:25:c6:76:28:73:f8:7e:03:21:8f:cc:7a: 2a:e3:c4:c3:e6:9a:ff:c2:08:36:9e:ac:a4:f5:99: e3:33:36:f0:0a:00:b1:73:e8:2a:37:82:e1:96:b9: 8e:68:8f:fa:3e:2e:6a:0f:e0:7c:d8:32:72:11:e9: d6:4f:86:f5:b3:29:49:c9:22:ac:40:1e:29:e8:10: 52:07:0d:60:e1:a5:2e:b7:d7:c6:4c:4e:4d:98:60: 82:33:b1:3c:cb:cf:e0:56:23:71:a1:e7:41:12:41: 5d:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:63:8E:E7:26:5A:C5:32:CE:4A:36:30:6D:65:A9:A2:D6:35:79:DF X509v3 Authority Key Identifier: keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS215703.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 82.22.23.0/24 82.22.174.0/24 82.22.184.0/24 82.23.183.0/24 82.27.2.0/24 82.29.1.0/24 Signature Algorithm: sha256WithRSAEncryption 93:e7:0c:5d:29:b4:17:31:c3:6c:7e:cd:19:66:cb:93:d6:e8: 4e:b1:ff:d7:c9:03:73:1c:26:ea:f8:44:85:28:fc:fd:4d:ee: 9d:3a:01:93:a3:ec:5b:00:15:8c:83:9d:f1:eb:9c:ca:8f:9e: 37:88:e3:a4:f4:31:65:74:3b:ff:85:02:0c:86:42:dd:81:43: 6a:05:59:f7:9d:1e:54:bc:13:e2:33:4f:41:a0:3b:0b:6b:a5: f1:42:f6:31:51:27:f0:73:e5:16:48:6b:86:86:57:f9:fb:5b: 66:88:49:62:ac:28:10:c8:f7:40:66:9e:a9:66:79:71:6b:1f: 25:ec:d5:34:65:f4:bb:75:49:e5:26:32:73:19:0f:d1:88:1c: 5e:ef:d8:96:47:04:73:cc:d2:cf:78:5f:24:4f:b7:89:81:2f: 0f:1c:55:e2:8e:89:46:a2:80:e2:63:b7:a3:ff:d7:f0:b7:04: b8:4c:26:c8:1c:55:21:5a:e3:1b:4b:15:47:dc:83:c7:95:b3: dd:11:7b:e5:a5:0d:cf:a6:80:a9:1c:92:9d:e2:b7:eb:ee:ab: 28:d8:a0:19:35:c3:81:2d:06:3e:d7:53:37:b1:84:27:98:bf: fa:c9:5f:53:d7:9d:26:f0:8d:73:9b:32:11:be:34:19:7c:a9: 30:4c:45:1b -----BEGIN CERTIFICATE----- MIIFHjCCBAagAwIBAgIUTv87URB5k0zUeOBgw7Kq1ITI0hAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjE4Y2M2ZTI0MTA1ZGU2YzVjOTAwM2Q2NTI0Mzg5M2Ni M2NmZGQwMTAeFw0yNTExMDYyMjMxMjFaFw0yNjExMDUyMjM2MjFaMDMxMTAvBgNV BAMTKEFCNjM4RUU3MjY1QUM1MzJDRTRBMzYzMDZENjVBOUEyRDYzNTc5REYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCHZjlLYu2Uy1QXKtvEpwX8/KDU LUMN8tF4Vjhou12WQ1pDr4S6T+otd33NcPsXnwKo68CGYDcvTJ470S/P2jrb4Jlg GQgQSW/kfgK/KQNF4KYKJHoQAl7Q4MiAlqsr3OdWSKqWODz96+5gQE+j8xbopIaD m61w4oe1U8nBvDTNXpJ/BelFk1waYE00NhwW2W6y6LHwvnXzkyXGdihz+H4DIY/M eirjxMPmmv/CCDaerKT1meMzNvAKALFz6Co3guGWuY5oj/o+LmoP4HzYMnIR6dZP hvWzKUnJIqxAHinoEFIHDWDhpS6318ZMTk2YYIIzsTzLz+BWI3Gh50ESQV33AgMB AAGjggIoMIICJDAdBgNVHQ4EFgQUq2OO5yZaxTLOSjYwbWWpotY1ed8wHwYDVR0j BBgwFoAUIYzG4kEF3mxckAPWUkOJPLPP3QEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYtYjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWEx YWY2LzAvMjE4Q0M2RTI0MTA1REU2QzVDOTAwM0Q2NTI0Mzg5M0NCM0NGREQwMS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0lZekc0a0VGM214Y2tBUFdVa09KUExQ UDNRRS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzcxOGExYjRmLWI2NGMt NDAyYy1iZTE1LWRkODJhNDFhMWFmNi8wL0FTMjE1NzAzLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMD0GCCsGAQUFBwEHAQH/BC4wLDAqBAIAATAkAwQAUhYX AwQAUhauAwQAUha4AwQAUhe3AwQAUhsCAwQAUh0BMA0GCSqGSIb3DQEBCwUAA4IB AQCT5wxdKbQXMcNsfs0ZZsuT1uhOsf/XyQNzHCbq+ESFKPz9Te6dOgGTo+xbABWM g53x65zKj543iOOk9DFldDv/hQIMhkLdgUNqBVn3nR5UvBPiM09BoDsLa6XxQvYx USfwc+UWSGuGhlf5+1tmiElirCgQyPdAZp6pZnlxax8l7NU0ZfS7dUnlJjJzGQ/R iBxe79iWRwRzzNLPeF8kT7eJgS8PHFXijolGooDiY7ej/9fwtwS4TCbIHFUhWuMb SxVH3IPHlbPdEXvlpQ3PpoCpHJKd4rfr7qso2KAZNcOBLQY+11M3sYQnmL/6yV9T 150m8I1zmzIRvjQZfKkwTEUb -----END CERTIFICATE-----Generated at Thu Dec 4 06:00:27 2025 by rpki-client