This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS25198.roa File: AS25198.roa (raw, json) Hash identifier: gRe+Fp9h+jrkNBgpx304CtqFVDv1x499ZFjk1qimE9I= Subject key identifier: 9D:4D:8D:58:1C:2B:E8:0E:F2:5C:D6:B0:1D:C1:F5:35:16:D2:4A:C8 Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Certificate serial: 2FF9C95F3103674200E7E6D2374F1AEB26B5D3AE Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS25198.roa Signing time: Sat 17 Jan 2026 04:46:32 +0000 ROA not before: Sat 17 Jan 2026 04:41:32 +0000 ROA not after: Sat 16 Jan 2027 04:46:32 +0000 asID: 25198 IP address blocks: 82.21.7.0/24 maxlen: 24 82.21.153.0/24 maxlen: 24 82.21.199.0/24 maxlen: 24 82.22.126.0/24 maxlen: 24 82.22.162.0/24 maxlen: 24 82.23.163.0/24 maxlen: 24 82.23.248.0/24 maxlen: 24 82.24.81.0/24 maxlen: 24 82.24.144.0/24 maxlen: 24 82.25.60.0/24 maxlen: 24 82.26.202.0/24 maxlen: 24 82.27.117.0/24 maxlen: 24 82.38.17.0/24 maxlen: 24 82.38.40.0/24 maxlen: 24 82.38.44.0/24 maxlen: 24 82.39.221.0/24 maxlen: 24 82.41.73.0/24 maxlen: 24 82.41.170.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 19 Jan 2026 04:45:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:f9:c9:5f:31:03:67:42:00:e7:e6:d2:37:4f:1a:eb:26:b5:d3:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Validity Not Before: Jan 17 04:41:32 2026 GMT Not After : Jan 16 04:46:32 2027 GMT Subject: CN=9D4D8D581C2BE80EF25CD6B01DC1F53516D24AC8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:0c:e4:ca:30:cc:19:47:f6:63:a4:51:04:84: 67:85:c9:67:f3:bb:51:21:d3:8e:ff:a3:26:de:40: c8:46:ba:27:71:4b:18:44:9a:cf:50:b9:71:3c:ab: 4c:3b:b3:1b:3d:02:7f:6b:fd:00:91:72:a1:2b:8e: 0d:b1:3c:68:6f:bb:88:e3:d7:3b:25:ba:dc:5c:de: 78:72:81:af:d9:69:42:7b:48:3b:21:21:6f:e1:a0: 18:ae:ca:6b:41:54:a8:8f:6c:91:03:93:73:e9:c4: ff:68:3d:33:18:65:19:ff:77:60:30:cf:da:c4:41: 86:b8:30:5f:96:2d:2a:72:e0:44:7e:c1:b8:d7:90: 07:23:23:11:26:49:53:c9:b6:7b:1e:23:97:58:71: 87:f6:45:a2:f1:ef:e9:d4:cd:75:bd:1a:22:00:b2: e0:e0:bd:58:c0:24:dd:a7:6c:6f:47:53:26:27:99: dc:c8:a2:84:c0:45:e9:62:c5:f1:ad:26:bf:e2:60: 0e:b2:11:cc:f0:29:6d:8c:34:23:ae:76:42:39:0b: 07:ea:a8:9f:fe:d9:0e:45:c1:57:54:37:af:a9:b9: fb:bb:79:eb:cb:f0:db:39:a6:b6:3d:0a:95:2b:64: e5:6d:db:c1:58:c3:8a:94:b4:8f:12:2a:46:f3:be: 38:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:4D:8D:58:1C:2B:E8:0E:F2:5C:D6:B0:1D:C1:F5:35:16:D2:4A:C8 X509v3 Authority Key Identifier: keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS25198.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 82.21.7.0/24 82.21.153.0/24 82.21.199.0/24 82.22.126.0/24 82.22.162.0/24 82.23.163.0/24 82.23.248.0/24 82.24.81.0/24 82.24.144.0/24 82.25.60.0/24 82.26.202.0/24 82.27.117.0/24 82.38.17.0/24 82.38.40.0/24 82.38.44.0/24 82.39.221.0/24 82.41.73.0/24 82.41.170.0/24 Signature Algorithm: sha256WithRSAEncryption 41:ff:1a:71:fe:69:54:5c:f2:05:8f:f7:83:46:1f:6a:24:14: 6b:94:57:7e:4a:84:c1:b7:cf:32:d8:2c:80:db:a4:a4:9e:3f: 92:e9:5a:02:91:69:21:ab:f0:ea:2c:66:c9:b5:0b:06:6a:ad: 99:96:ef:f6:6d:7c:8d:33:05:bb:ff:b4:8e:24:9a:07:40:65: 35:f2:91:08:f1:9c:7d:dd:2b:2d:b0:ef:5a:96:fa:2f:e0:28: a5:16:96:3a:41:ed:51:5a:f2:4a:74:31:10:a1:b6:9a:38:09: 2e:75:a6:60:c7:cc:69:26:6b:92:74:33:6c:c3:72:b8:37:b9: d0:22:fd:ee:64:08:fe:97:84:14:0c:4c:50:ad:ff:01:70:57: f2:99:92:31:1f:98:a4:cb:37:01:d9:84:4e:d6:69:3e:2b:15: 86:fd:7a:eb:19:80:07:12:04:bf:03:9d:fc:8b:63:88:67:1e: 36:f4:95:cf:97:2f:13:11:3d:67:f3:64:50:72:e6:8d:6d:82: 70:56:ba:9d:27:23:3d:74:37:a6:0c:c5:43:1d:b2:76:35:c0: 4a:b4:fa:0b:71:e0:08:60:ae:c0:c2:27:05:7d:74:44:83:d9: 6d:29:58:24:5e:6d:4e:49:86:3b:67:6d:17:32:66:52:3e:2f: d1:37:67:e6 -----BEGIN CERTIFICATE----- MIIFZjCCBE6gAwIBAgIUL/nJXzEDZ0IA5+bSN08a6ya1064wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjE4Y2M2ZTI0MTA1ZGU2YzVjOTAwM2Q2NTI0Mzg5M2Ni M2NmZGQwMTAeFw0yNjAxMTcwNDQxMzJaFw0yNzAxMTYwNDQ2MzJaMDMxMTAvBgNV BAMTKDlENEQ4RDU4MUMyQkU4MEVGMjVDRDZCMDFEQzFGNTM1MTZEMjRBQzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrDOTKMMwZR/ZjpFEEhGeFyWfz u1Eh047/oybeQMhGuidxSxhEms9QuXE8q0w7sxs9An9r/QCRcqErjg2xPGhvu4jj 1zslutxc3nhyga/ZaUJ7SDshIW/hoBiuymtBVKiPbJEDk3PpxP9oPTMYZRn/d2Aw z9rEQYa4MF+WLSpy4ER+wbjXkAcjIxEmSVPJtnseI5dYcYf2RaLx7+nUzXW9GiIA suDgvVjAJN2nbG9HUyYnmdzIooTARelixfGtJr/iYA6yEczwKW2MNCOudkI5Cwfq qJ/+2Q5FwVdUN6+pufu7eevL8Ns5prY9CpUrZOVt28FYw4qUtI8SKkbzvjijAgMB AAGjggJwMIICbDAdBgNVHQ4EFgQUnU2NWBwr6A7yXNawHcH1NRbSSsgwHwYDVR0j BBgwFoAUIYzG4kEF3mxckAPWUkOJPLPP3QEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYtYjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWEx YWY2LzAvMjE4Q0M2RTI0MTA1REU2QzVDOTAwM0Q2NTI0Mzg5M0NCM0NGREQwMS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0lZekc0a0VGM214Y2tBUFdVa09KUExQ UDNRRS5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzcxOGExYjRmLWI2NGMt NDAyYy1iZTE1LWRkODJhNDFhMWFmNi8wL0FTMjUxOTgucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwgYUGCCsGAQUFBwEHAQH/BHYwdDByBAIAATBsAwQAUhUH AwQAUhWZAwQAUhXHAwQAUhZ+AwQAUhaiAwQAUhejAwQAUhf4AwQAUhhRAwQAUhiQ AwQAUhk8AwQAUhrKAwQAUht1AwQAUiYRAwQAUiYoAwQAUiYsAwQAUifdAwQAUilJ AwQAUimqMA0GCSqGSIb3DQEBCwUAA4IBAQBB/xpx/mlUXPIFj/eDRh9qJBRrlFd+ SoTBt88y2CyA26Sknj+S6VoCkWkhq/DqLGbJtQsGaq2Zlu/2bXyNMwW7/7SOJJoH QGU18pEI8Zx93SstsO9alvov4CilFpY6Qe1RWvJKdDEQobaaOAkudaZgx8xpJmuS dDNsw3K4N7nQIv3uZAj+l4QUDExQrf8BcFfymZIxH5ikyzcB2YRO1mk+KxWG/Xrr GYAHEgS/A538i2OIZx429JXPly8TET1n82RQcuaNbYJwVrqdJyM9dDemDMVDHbJ2 NcBKtPoLceAIYK7AwicFfXREg9ltKVgkXm1OSYY7Z20XMmZSPi/RN2fm -----END CERTIFICATE-----Generated at Sun Jan 18 08:56:45 2026 by rpki-client