This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS21840.roa File: AS21840.roa (raw, json) Hash identifier: r/fYTeNEuh5cshJQZ64jQbXa8JsDSFd6RsIGL2kVWTA= Subject key identifier: B5:66:D1:25:8F:D8:A2:FE:A9:E0:9A:A3:50:02:ED:E2:77:96:CF:C3 Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Certificate serial: 78ED5F341269BEB873E3B08142E3A6F1ED87ED8D Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS21840.roa Signing time: Wed 03 Dec 2025 02:30:02 +0000 ROA not before: Wed 03 Dec 2025 02:25:02 +0000 ROA not after: Wed 02 Dec 2026 02:30:02 +0000 asID: 21840 IP address blocks: 82.24.33.0/24 maxlen: 24 82.26.160.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 17:38:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:ed:5f:34:12:69:be:b8:73:e3:b0:81:42:e3:a6:f1:ed:87:ed:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Validity Not Before: Dec 3 02:25:02 2025 GMT Not After : Dec 2 02:30:02 2026 GMT Subject: CN=B566D1258FD8A2FEA9E09AA35002EDE27796CFC3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:10:c6:30:e2:8f:38:54:24:d3:26:53:c0:f2: da:3a:60:9d:b1:9e:0b:29:30:53:aa:85:50:48:7d: ec:17:b7:33:0f:a4:f0:07:fa:a9:01:68:70:d5:bf: 71:9c:b6:b7:c5:4e:ac:71:97:4b:5b:d3:93:f7:f1: 3a:28:41:27:ea:f0:43:a4:77:8e:e0:1a:51:ca:ae: ec:a6:33:ad:41:63:40:84:62:30:d5:8f:04:b8:63: 7a:1a:65:86:98:2c:d5:2d:69:bb:83:3a:4b:1a:1c: 22:5c:b2:54:98:b5:02:3a:b2:41:9c:df:3d:e1:e6: c0:34:bb:6b:74:26:e9:cf:71:61:b2:a7:bf:95:63: b3:0f:bb:ac:c7:b8:9b:83:81:19:8e:5c:f6:73:a8: 23:50:0c:f6:ca:e8:9a:dc:9a:9e:a6:7f:e5:5f:db: 92:63:6a:2b:85:82:46:e1:ad:61:0b:d6:8a:12:18: e7:cb:96:3c:ce:70:75:c4:da:8a:73:79:10:48:4f: 74:ad:f7:14:50:24:88:c5:47:c0:fa:d4:9f:bd:87: 09:c9:74:e0:73:0c:79:d3:c9:7c:34:70:9f:dd:53: c9:4c:2b:63:98:e7:19:92:3b:31:dc:da:43:25:e1: 21:46:92:e5:68:f2:5c:42:b0:d9:33:11:62:f6:82: 52:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:66:D1:25:8F:D8:A2:FE:A9:E0:9A:A3:50:02:ED:E2:77:96:CF:C3 X509v3 Authority Key Identifier: keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS21840.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 82.24.33.0/24 82.26.160.0/24 Signature Algorithm: sha256WithRSAEncryption a6:5c:c1:6a:1c:8b:53:36:72:ba:07:00:15:cd:ad:3c:6f:6c: 58:d9:ff:11:b4:3c:75:aa:33:4c:ef:9e:e2:43:ba:ca:54:dc: 22:8a:31:19:fe:c6:36:0d:d7:d5:b0:56:17:12:a9:19:c9:33: 9b:bc:bf:f8:77:e9:ef:28:fc:5b:2c:08:8f:5e:71:59:43:72: bc:4e:57:9b:a8:ea:03:75:75:0a:bb:48:98:55:ab:78:37:c5: 4a:2c:19:26:1a:eb:f0:f8:27:ad:4f:73:32:8d:48:42:ca:28: c9:6a:6a:3e:14:3a:0e:c9:23:0b:ff:73:ec:1d:09:6b:5a:ff: b8:80:2d:d3:a0:ce:73:cd:2a:f9:75:9c:7c:fb:c7:a1:66:38: 88:fe:9a:23:f9:de:f6:11:76:48:e5:d1:d1:43:20:47:fb:2d: 49:57:ab:95:6f:0d:ea:44:7c:21:c8:cf:9d:80:89:90:76:e0: 38:92:1a:22:9b:1b:45:14:74:af:86:7b:40:c7:08:dd:58:c7: 52:df:5a:fb:b0:48:e5:62:50:18:61:62:51:7d:20:07:99:9b: de:55:01:d3:87:34:4c:de:20:23:62:90:41:fe:3c:d2:34:cd: 8f:81:9a:9d:0b:bc:6f:29:23:34:bf:38:d0:e6:a3:50:7e:c6: 0b:81:01:e8 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIUeO1fNBJpvrhz47CBQuOm8e2H7Y0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjE4Y2M2ZTI0MTA1ZGU2YzVjOTAwM2Q2NTI0Mzg5M2Ni M2NmZGQwMTAeFw0yNTEyMDMwMjI1MDJaFw0yNjEyMDIwMjMwMDJaMDMxMTAvBgNV BAMTKEI1NjZEMTI1OEZEOEEyRkVBOUUwOUFBMzUwMDJFREUyNzc5NkNGQzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdEMYw4o84VCTTJlPA8to6YJ2x ngspMFOqhVBIfewXtzMPpPAH+qkBaHDVv3GctrfFTqxxl0tb05P38TooQSfq8EOk d47gGlHKruymM61BY0CEYjDVjwS4Y3oaZYaYLNUtabuDOksaHCJcslSYtQI6skGc 3z3h5sA0u2t0JunPcWGyp7+VY7MPu6zHuJuDgRmOXPZzqCNQDPbK6Jrcmp6mf+Vf 25JjaiuFgkbhrWEL1ooSGOfLljzOcHXE2opzeRBIT3St9xRQJIjFR8D61J+9hwnJ dOBzDHnTyXw0cJ/dU8lMK2OY5xmSOzHc2kMl4SFGkuVo8lxCsNkzEWL2glKZAgMB AAGjggIPMIICCzAdBgNVHQ4EFgQUtWbRJY/Yov6p4JqjUALt4neWz8MwHwYDVR0j BBgwFoAUIYzG4kEF3mxckAPWUkOJPLPP3QEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYtYjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWEx YWY2LzAvMjE4Q0M2RTI0MTA1REU2QzVDOTAwM0Q2NTI0Mzg5M0NCM0NGREQwMS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0lZekc0a0VGM214Y2tBUFdVa09KUExQ UDNRRS5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzcxOGExYjRmLWI2NGMt NDAyYy1iZTE1LWRkODJhNDFhMWFmNi8wL0FTMjE4NDAucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwJQYIKwYBBQUHAQcBAf8EFjAUMBIEAgABMAwDBABSGCED BABSGqAwDQYJKoZIhvcNAQELBQADggEBAKZcwWoci1M2croHABXNrTxvbFjZ/xG0 PHWqM0zvnuJDuspU3CKKMRn+xjYN19WwVhcSqRnJM5u8v/h36e8o/FssCI9ecVlD crxOV5uo6gN1dQq7SJhVq3g3xUosGSYa6/D4J61PczKNSELKKMlqaj4UOg7JIwv/ c+wdCWta/7iALdOgznPNKvl1nHz7x6FmOIj+miP53vYRdkjl0dFDIEf7LUlXq5Vv DepEfCHIz52AiZB24DiSGiKbG0UUdK+Ge0DHCN1Yx1LfWvuwSOViUBhhYlF9IAeZ m95VAdOHNEzeICNikEH+PNI0zY+Bmp0LvG8pIzS/ONDmo1B+xguBAeg= -----END CERTIFICATE-----Generated at Sat Dec 6 06:43:04 2025 by rpki-client