This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS215955.roa File: AS215955.roa (raw, json) Hash identifier: uIgf+YYVk5/L0baXmxu5f7Di7l0xD5lxrXZSdfMRFlU= Subject key identifier: 43:DC:20:E9:42:58:97:C2:D6:89:29:AF:3C:44:C0:EE:80:5C:D7:53 Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Certificate serial: 7D8C4038229A70C87A440BDFDC7CD2A05004A154 Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS215955.roa Signing time: Wed 17 Dec 2025 11:15:33 +0000 ROA not before: Wed 17 Dec 2025 11:10:33 +0000 ROA not after: Wed 16 Dec 2026 11:15:33 +0000 asID: 215955 IP address blocks: 82.39.149.0/24 maxlen: 24 2a13:9500:ed::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 19 Jan 2026 04:45:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:8c:40:38:22:9a:70:c8:7a:44:0b:df:dc:7c:d2:a0:50:04:a1:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Validity Not Before: Dec 17 11:10:33 2025 GMT Not After : Dec 16 11:15:33 2026 GMT Subject: CN=43DC20E9425897C2D68929AF3C44C0EE805CD753 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:95:d3:36:2b:30:71:04:3c:18:52:4b:97:a1: 78:db:6e:02:f8:73:66:5d:ea:47:95:85:14:8c:32: ae:49:59:2a:bf:58:5f:f9:4e:ff:ea:de:f5:74:c0: 2f:34:67:48:45:1e:3b:14:2e:a6:a7:88:a8:43:9d: 49:25:ac:b9:f8:fe:48:69:02:e3:98:96:4d:3e:b3: ef:f3:c6:be:cc:b1:8e:4a:dc:b6:ff:03:c0:5b:bd: a2:fc:71:22:89:16:9f:8a:d6:97:2c:c1:15:11:37: e9:bf:6a:39:57:5f:bb:4c:03:74:c2:45:71:c5:68: ca:46:2f:28:e8:29:ba:8e:ae:ed:b7:6c:45:75:08: 9c:23:e0:3d:4c:ac:47:0b:b1:a6:92:4d:72:18:0a: 1c:f9:c8:c2:9b:a7:c4:e5:e4:fe:0f:ba:d6:fa:29: f1:fe:d4:59:28:fd:3b:e9:16:91:62:13:a7:a1:e5: c4:ae:7f:43:40:54:63:d5:93:cb:05:60:fa:2e:14: 2c:d4:5e:e9:6c:c9:e7:f9:b7:6c:d9:0e:3a:31:ca: f2:f7:52:78:d3:e4:e3:01:a7:57:b6:26:fc:61:93: e6:dd:e3:23:1d:44:3b:3c:76:78:20:a6:b4:dd:0f: 3c:b5:9a:87:51:0b:2d:e1:c9:82:61:70:4d:ae:e2: ff:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:DC:20:E9:42:58:97:C2:D6:89:29:AF:3C:44:C0:EE:80:5C:D7:53 X509v3 Authority Key Identifier: keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS215955.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 82.39.149.0/24 IPv6: 2a13:9500:ed::/48 Signature Algorithm: sha256WithRSAEncryption 7c:c1:7e:f1:69:43:87:90:f3:89:fe:f9:90:1e:b6:2f:8e:eb: 34:70:6d:23:b2:f4:6f:e0:9d:12:8a:ab:62:d0:f3:17:d8:a3: 5a:cf:c1:41:d2:1b:9d:e5:d5:08:9a:bd:29:56:2d:5a:ed:12: 70:87:e8:7b:d2:0d:5f:52:6b:b9:ea:21:af:6f:ba:ad:f7:79: 43:36:fb:f0:96:3e:0c:d5:28:6c:b0:52:0e:e3:83:8d:1d:f8: 30:4d:b7:1a:3c:a4:6b:ba:71:fd:72:ea:50:ca:7c:74:ec:94: 80:59:ac:99:38:e3:4a:63:a5:7d:91:d3:80:9e:7f:3e:95:f0: 5a:72:e0:1a:be:4b:b3:43:52:ae:6f:e5:49:3b:51:12:8a:b3: d9:cc:7f:6a:33:42:87:63:33:f8:5a:8b:b6:81:32:8f:6e:25: 7c:3e:9e:5c:8a:5b:29:9e:44:37:69:bc:c0:1a:2a:3f:9a:9c: 6a:63:29:28:f8:a6:cc:0f:6a:ba:25:72:eb:6e:46:4f:69:fb: a5:2d:ca:20:f0:18:33:1d:7f:1e:9a:13:55:04:51:0c:a5:bd: d2:e4:ad:ad:17:a5:e1:41:b8:55:06:23:f7:7a:7f:d9:b3:a6: a2:6d:ba:ea:b2:15:95:ea:ef:9d:d5:ac:a0:70:a2:5f:d6:1d: e4:b3:5f:5e -----BEGIN CERTIFICATE----- MIIFETCCA/mgAwIBAgIUfYxAOCKacMh6RAvf3HzSoFAEoVQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjE4Y2M2ZTI0MTA1ZGU2YzVjOTAwM2Q2NTI0Mzg5M2Ni M2NmZGQwMTAeFw0yNTEyMTcxMTEwMzNaFw0yNjEyMTYxMTE1MzNaMDMxMTAvBgNV BAMTKDQzREMyMEU5NDI1ODk3QzJENjg5MjlBRjNDNDRDMEVFODA1Q0Q3NTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCeldM2KzBxBDwYUkuXoXjbbgL4 c2Zd6keVhRSMMq5JWSq/WF/5Tv/q3vV0wC80Z0hFHjsULqaniKhDnUklrLn4/khp AuOYlk0+s+/zxr7MsY5K3Lb/A8BbvaL8cSKJFp+K1pcswRURN+m/ajlXX7tMA3TC RXHFaMpGLyjoKbqOru23bEV1CJwj4D1MrEcLsaaSTXIYChz5yMKbp8Tl5P4Putb6 KfH+1Fko/TvpFpFiE6eh5cSuf0NAVGPVk8sFYPouFCzUXulsyef5t2zZDjoxyvL3 UnjT5OMBp1e2Jvxhk+bd4yMdRDs8dnggprTdDzy1modRCy3hyYJhcE2u4v+xAgMB AAGjggIbMIICFzAdBgNVHQ4EFgQUQ9wg6UJYl8LWiSmvPETA7oBc11MwHwYDVR0j BBgwFoAUIYzG4kEF3mxckAPWUkOJPLPP3QEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYtYjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWEx YWY2LzAvMjE4Q0M2RTI0MTA1REU2QzVDOTAwM0Q2NTI0Mzg5M0NCM0NGREQwMS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0lZekc0a0VGM214Y2tBUFdVa09KUExQ UDNRRS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzcxOGExYjRmLWI2NGMt NDAyYy1iZTE1LWRkODJhNDFhMWFmNi8wL0FTMjE1OTU1LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAUieV MA8EAgACMAkDBwAqE5UAAO0wDQYJKoZIhvcNAQELBQADggEBAHzBfvFpQ4eQ84n+ +ZAeti+O6zRwbSOy9G/gnRKKq2LQ8xfYo1rPwUHSG53l1QiavSlWLVrtEnCH6HvS DV9Sa7nqIa9vuq33eUM2+/CWPgzVKGywUg7jg40d+DBNtxo8pGu6cf1y6lDKfHTs lIBZrJk440pjpX2R04Cefz6V8Fpy4Bq+S7NDUq5v5Uk7URKKs9nMf2ozQodjM/ha i7aBMo9uJXw+nlyKWymeRDdpvMAaKj+anGpjKSj4pswParolcutuRk9p+6UtyiDw GDMdfx6aE1UEUQylvdLkra0XpeFBuFUGI/d6f9mzpqJtuuqyFZXq753VrKBwol/W HeSzX14= -----END CERTIFICATE-----Generated at Sun Jan 18 08:55:51 2026 by rpki-client