This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS21859.roa File: AS21859.roa (raw, json) Hash identifier: ze5UoY5IGbzW4+olTQqgnyco1D2JqDHvgkbmSiCs+CM= Subject key identifier: A9:EA:79:3A:96:33:09:62:89:91:39:56:13:48:B0:6D:6D:7E:AC:5D Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Certificate serial: 05797C188A880957D2DAE4958C57B44E83B04830 Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS21859.roa Signing time: Thu 18 Dec 2025 02:19:16 +0000 ROA not before: Thu 18 Dec 2025 02:14:16 +0000 ROA not after: Thu 17 Dec 2026 02:19:16 +0000 asID: 21859 IP address blocks: 82.21.188.0/24 maxlen: 24 82.22.45.0/24 maxlen: 24 82.22.187.0/24 maxlen: 24 82.22.193.0/24 maxlen: 24 82.23.172.0/24 maxlen: 24 82.25.35.0/24 maxlen: 24 82.27.197.0/24 maxlen: 24 82.38.43.0/24 maxlen: 24 82.38.180.0/24 maxlen: 24 82.38.200.0/24 maxlen: 24 82.39.148.0/24 maxlen: 24 82.39.155.0/24 maxlen: 24 82.39.208.0/24 maxlen: 24 82.40.59.0/24 maxlen: 24 2a13:9500:aa::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 13:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:79:7c:18:8a:88:09:57:d2:da:e4:95:8c:57:b4:4e:83:b0:48:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Validity Not Before: Dec 18 02:14:16 2025 GMT Not After : Dec 17 02:19:16 2026 GMT Subject: CN=A9EA793A96330962899139561348B06D6D7EAC5D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:c5:9f:45:32:4b:aa:be:d8:57:11:fb:81:50: 38:a7:66:5b:16:a9:9f:5d:49:52:3b:f0:3c:69:fd: 9a:67:60:fb:d8:3f:34:99:2b:9f:6c:75:a9:44:ce: c5:28:2d:ed:37:09:a9:79:63:a5:9f:6c:3d:1d:2b: cd:3c:57:4c:4b:bd:e4:91:bd:0e:15:db:b6:1f:f4: a6:2d:e1:4f:04:d2:e3:8f:ac:ed:1a:2b:c7:29:41: 39:cf:be:d9:d0:1c:fc:49:75:c2:4e:f8:9f:ac:d7: 2e:11:11:74:da:27:0e:65:da:69:b2:3e:6f:d4:63: 3a:96:61:c5:08:53:bd:15:d8:c1:cd:fa:9a:fb:a0: 72:43:4d:1f:46:a3:12:5a:de:43:8a:6f:7c:a0:78: 4e:b7:f1:0b:a5:af:b4:3d:2d:39:19:e5:3c:33:86: 75:2e:0d:6f:89:04:33:6c:08:5c:28:cf:86:7d:8a: c9:b4:3f:b0:91:cc:a2:13:8b:3a:7a:e4:27:b3:eb: 67:09:49:38:b6:f0:ef:9c:ba:54:f0:de:42:50:53: db:bb:e4:6d:52:7b:0d:f8:03:1b:bf:59:50:ec:65: 72:17:94:45:d7:19:bd:ce:d9:6b:f7:f6:0e:7e:ac: a1:10:7f:3a:ba:f7:16:e5:95:75:f6:06:28:7c:1f: b5:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:EA:79:3A:96:33:09:62:89:91:39:56:13:48:B0:6D:6D:7E:AC:5D X509v3 Authority Key Identifier: keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS21859.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 82.21.188.0/24 82.22.45.0/24 82.22.187.0/24 82.22.193.0/24 82.23.172.0/24 82.25.35.0/24 82.27.197.0/24 82.38.43.0/24 82.38.180.0/24 82.38.200.0/24 82.39.148.0/24 82.39.155.0/24 82.39.208.0/24 82.40.59.0/24 IPv6: 2a13:9500:aa::/48 Signature Algorithm: sha256WithRSAEncryption 69:61:06:64:7b:a4:f1:65:57:6d:5c:ba:8c:86:9b:98:a7:71: a0:6a:bb:8e:eb:a7:4e:f5:6c:b8:3a:0a:e9:aa:4e:fe:28:51: 09:06:66:27:eb:74:03:d2:1f:5b:41:49:ff:46:4c:6e:09:e1: 25:64:c0:e8:a3:83:70:83:dd:6b:bd:42:3d:4d:32:14:b6:16: 25:76:00:d4:69:2a:df:fc:15:a5:fb:7d:5f:fa:d0:a3:a0:d2: 04:d4:be:d9:b2:0d:2f:94:e1:0a:ba:b7:86:7c:e6:a7:eb:e0: c2:3b:2e:93:40:04:e1:d7:1d:20:19:27:c9:15:f4:b1:53:78: b2:bf:91:5e:e2:38:7f:f6:fe:15:a6:8e:bc:5d:67:42:05:0e: 6b:7d:f0:fb:dc:f2:ac:ae:33:fa:64:92:94:59:16:81:64:b4: bd:89:29:3c:0a:3b:0a:24:ed:22:fd:b1:ae:f9:08:3a:8b:80: d6:6f:3f:5a:1d:e8:3a:60:ab:47:c3:b9:a7:b0:93:e2:f2:10: 2a:3f:ad:c1:8d:8a:a8:07:c1:18:bb:85:78:04:2c:2d:b7:1b: 28:44:25:c5:7e:fa:70:df:a3:79:74:3c:01:1a:3a:8a:59:8b: 0d:bd:89:a3:40:f9:da:45:2d:c2:53:af:b1:c1:93:d6:b4:ba: 5b:26:36:0b -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgIUBXl8GIqICVfS2uSVjFe0ToOwSDAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjE4Y2M2ZTI0MTA1ZGU2YzVjOTAwM2Q2NTI0Mzg5M2Ni M2NmZGQwMTAeFw0yNTEyMTgwMjE0MTZaFw0yNjEyMTcwMjE5MTZaMDMxMTAvBgNV BAMTKEE5RUE3OTNBOTYzMzA5NjI4OTkxMzk1NjEzNDhCMDZENkQ3RUFDNUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCoxZ9FMkuqvthXEfuBUDinZlsW qZ9dSVI78Dxp/ZpnYPvYPzSZK59sdalEzsUoLe03Cal5Y6WfbD0dK808V0xLveSR vQ4V27Yf9KYt4U8E0uOPrO0aK8cpQTnPvtnQHPxJdcJO+J+s1y4REXTaJw5l2mmy Pm/UYzqWYcUIU70V2MHN+pr7oHJDTR9GoxJa3kOKb3ygeE638Qulr7Q9LTkZ5Twz hnUuDW+JBDNsCFwoz4Z9ism0P7CRzKITizp65Cez62cJSTi28O+culTw3kJQU9u7 5G1Sew34Axu/WVDsZXIXlEXXGb3O2Wv39g5+rKEQfzq69xbllXX2Bih8H7WJAgMB AAGjggJoMIICZDAdBgNVHQ4EFgQUqep5OpYzCWKJkTlWE0iwbW1+rF0wHwYDVR0j BBgwFoAUIYzG4kEF3mxckAPWUkOJPLPP3QEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYtYjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWEx YWY2LzAvMjE4Q0M2RTI0MTA1REU2QzVDOTAwM0Q2NTI0Mzg5M0NCM0NGREQwMS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0lZekc0a0VGM214Y2tBUFdVa09KUExQ UDNRRS5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzcxOGExYjRmLWI2NGMt NDAyYy1iZTE1LWRkODJhNDFhMWFmNi8wL0FTMjE4NTkucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwfgYIKwYBBQUHAQcBAf8EbzBtMFoEAgABMFQDBABSFbwD BABSFi0DBABSFrsDBABSFsEDBABSF6wDBABSGSMDBABSG8UDBABSJisDBABSJrQD BABSJsgDBABSJ5QDBABSJ5sDBABSJ9ADBABSKDswDwQCAAIwCQMHACoTlQAAqjAN BgkqhkiG9w0BAQsFAAOCAQEAaWEGZHuk8WVXbVy6jIabmKdxoGq7juunTvVsuDoK 6apO/ihRCQZmJ+t0A9IfW0FJ/0ZMbgnhJWTA6KODcIPda71CPU0yFLYWJXYA1Gkq 3/wVpft9X/rQo6DSBNS+2bINL5ThCrq3hnzmp+vgwjsuk0AE4dcdIBknyRX0sVN4 sr+RXuI4f/b+FaaOvF1nQgUOa33w+9zyrK4z+mSSlFkWgWS0vYkpPAo7CiTtIv2x rvkIOouA1m8/Wh3oOmCrR8O5p7CT4vIQKj+twY2KqAfBGLuFeAQsLbcbKEQlxX76 cN+jeXQ8ARo6ilmLDb2Jo0D52kUtwlOvscGT1rS6WyY2Cw== -----END CERTIFICATE-----Generated at Sun Dec 21 18:54:30 2025 by rpki-client