This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS30860.roa File: AS30860.roa (raw, json) Hash identifier: 9jJ8C9M91LhO7r6B/NinYYefc6YLOVqOUkb0sYwzbuw= Subject key identifier: 4B:07:EF:7B:75:78:13:D7:51:11:AC:D7:F0:81:7C:A6:08:77:7E:15 Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Certificate serial: 7BA0A94CA78CDBB3719AB3971802B3BE3D0EFC64 Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS30860.roa Signing time: Fri 09 Jan 2026 08:55:33 +0000 ROA not before: Fri 09 Jan 2026 08:50:33 +0000 ROA not after: Fri 08 Jan 2027 08:55:33 +0000 asID: 30860 IP address blocks: 82.21.219.0/24 maxlen: 24 82.21.223.0/24 maxlen: 24 82.21.224.0/24 maxlen: 24 82.21.236.0/24 maxlen: 24 82.22.210.0/24 maxlen: 24 82.22.216.0/24 maxlen: 24 82.22.217.0/24 maxlen: 24 82.22.220.0/24 maxlen: 24 82.22.227.0/24 maxlen: 24 82.23.209.0/24 maxlen: 24 82.24.210.0/24 maxlen: 24 82.24.224.0/24 maxlen: 24 82.24.225.0/24 maxlen: 24 82.24.234.0/24 maxlen: 24 82.25.216.0/24 maxlen: 24 82.25.228.0/24 maxlen: 24 82.25.237.0/24 maxlen: 24 82.25.238.0/24 maxlen: 24 82.26.221.0/24 maxlen: 24 82.26.226.0/24 maxlen: 24 82.26.239.0/24 maxlen: 24 82.27.214.0/24 maxlen: 24 82.27.233.0/24 maxlen: 24 82.27.235.0/24 maxlen: 24 82.27.239.0/24 maxlen: 24 82.29.221.0/24 maxlen: 24 82.29.225.0/24 maxlen: 24 82.29.226.0/24 maxlen: 24 82.29.229.0/24 maxlen: 24 82.29.230.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 19 Jan 2026 04:45:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:a0:a9:4c:a7:8c:db:b3:71:9a:b3:97:18:02:b3:be:3d:0e:fc:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Validity Not Before: Jan 9 08:50:33 2026 GMT Not After : Jan 8 08:55:33 2027 GMT Subject: CN=4B07EF7B757813D75111ACD7F0817CA608777E15 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:88:03:5c:ed:26:81:fb:da:c4:3c:de:bd:0d:bd: 35:50:ea:8a:ff:7e:0e:42:69:a9:07:b4:41:4b:af: 79:4b:6f:c4:35:59:21:81:11:c0:42:ee:95:c5:72: 3e:02:ec:13:88:d0:51:6f:fd:7e:61:7b:10:cc:e6: 0b:a9:72:56:b9:4b:4c:db:43:60:7e:ab:ca:9b:1d: 67:df:fe:be:a2:32:67:b9:3d:37:eb:6e:fb:1a:02: 15:9a:4c:6f:57:0c:0a:39:89:2f:02:f7:d4:e4:c5: 2e:fd:2b:dd:f9:87:13:d7:4c:16:33:d8:be:59:c2: cf:65:5a:aa:fc:56:b5:25:21:c7:48:5f:db:ae:e3: a6:32:77:90:19:47:90:18:13:68:b8:73:61:e2:14: e2:06:5f:f8:29:88:b7:21:80:30:b2:71:1d:9c:61: 81:76:a1:76:e2:97:2d:20:4f:a7:2d:60:a1:be:2e: 11:02:75:2e:fa:dc:4b:9a:ab:0b:e1:6e:52:95:f2: 7d:30:f9:b7:d2:e2:3b:ee:43:fa:10:b3:e9:63:a3: 36:94:9a:b5:4d:48:35:4b:5e:cc:1f:bc:55:43:1c: d8:37:16:58:3c:5a:c1:c8:bd:54:a5:90:5c:94:10: 94:15:85:35:f9:1d:b0:7e:ae:32:cd:77:dd:8a:1b: 03:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:07:EF:7B:75:78:13:D7:51:11:AC:D7:F0:81:7C:A6:08:77:7E:15 X509v3 Authority Key Identifier: keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS30860.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 82.21.219.0/24 82.21.223.0-82.21.224.255 82.21.236.0/24 82.22.210.0/24 82.22.216.0/23 82.22.220.0/24 82.22.227.0/24 82.23.209.0/24 82.24.210.0/24 82.24.224.0/23 82.24.234.0/24 82.25.216.0/24 82.25.228.0/24 82.25.237.0-82.25.238.255 82.26.221.0/24 82.26.226.0/24 82.26.239.0/24 82.27.214.0/24 82.27.233.0/24 82.27.235.0/24 82.27.239.0/24 82.29.221.0/24 82.29.225.0-82.29.226.255 82.29.229.0-82.29.230.255 Signature Algorithm: sha256WithRSAEncryption 03:a3:c6:26:c7:a2:14:2c:75:ac:4a:1a:a6:49:d8:4a:9a:f3: 14:d0:27:57:80:b0:b7:b5:95:cd:78:2a:4f:a9:53:88:62:12: 01:23:3c:a4:75:e9:40:29:f9:c0:02:4d:b4:e7:52:9b:15:b0: 78:40:cf:02:19:c2:28:66:ff:31:8a:7f:60:ae:e8:47:a9:9c: a2:dc:8d:c1:7f:b3:34:43:50:dd:10:2e:50:df:13:1b:fe:4b: 4e:90:a9:9f:a8:ce:1a:a6:61:80:49:09:fc:f3:93:fd:d9:65: 1a:d0:45:0f:3f:1c:ed:be:d8:81:79:18:65:0e:ca:2b:13:48: 85:85:4e:81:4c:cb:64:38:cc:9f:72:b3:b7:41:cc:40:5c:ac: e2:6c:87:de:ad:8a:0e:2c:74:a6:06:17:7a:43:6f:87:d7:51: 1c:cd:5c:3b:97:43:54:a1:2f:ed:82:61:b3:6b:26:1b:1c:2a: d5:5f:99:72:d7:37:7a:12:e3:1e:62:9a:43:1d:c6:62:53:35: 75:6d:bf:fa:17:5d:95:24:ff:79:b5:db:73:d2:59:31:8e:d4: cf:22:70:9c:3e:f2:b4:c8:2c:d7:dd:88:2d:02:59:67:9f:db: 93:0f:47:2c:dd:2f:3b:25:0f:fe:53:0c:17:d7:99:d1:ff:cc: 83:b5:4b:52 -----BEGIN CERTIFICATE----- MIIFrjCCBJagAwIBAgIUe6CpTKeM27NxmrOXGAKzvj0O/GQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjE4Y2M2ZTI0MTA1ZGU2YzVjOTAwM2Q2NTI0Mzg5M2Ni M2NmZGQwMTAeFw0yNjAxMDkwODUwMzNaFw0yNzAxMDgwODU1MzNaMDMxMTAvBgNV BAMTKDRCMDdFRjdCNzU3ODEzRDc1MTExQUNEN0YwODE3Q0E2MDg3NzdFMTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCIA1ztJoH72sQ83r0NvTVQ6or/ fg5CaakHtEFLr3lLb8Q1WSGBEcBC7pXFcj4C7BOI0FFv/X5hexDM5gupcla5S0zb Q2B+q8qbHWff/r6iMme5PTfrbvsaAhWaTG9XDAo5iS8C99TkxS79K935hxPXTBYz 2L5Zws9lWqr8VrUlIcdIX9uu46Yyd5AZR5AYE2i4c2HiFOIGX/gpiLchgDCycR2c YYF2oXbily0gT6ctYKG+LhECdS763EuaqwvhblKV8n0w+bfS4jvuQ/oQs+ljozaU mrVNSDVLXswfvFVDHNg3Flg8WsHIvVSlkFyUEJQVhTX5HbB+rjLNd92KGwOTAgMB AAGjggK4MIICtDAdBgNVHQ4EFgQUSwfve3V4E9dREazX8IF8pgh3fhUwHwYDVR0j BBgwFoAUIYzG4kEF3mxckAPWUkOJPLPP3QEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYtYjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWEx YWY2LzAvMjE4Q0M2RTI0MTA1REU2QzVDOTAwM0Q2NTI0Mzg5M0NCM0NGREQwMS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0lZekc0a0VGM214Y2tBUFdVa09KUExQ UDNRRS5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzcxOGExYjRmLWI2NGMt NDAyYy1iZTE1LWRkODJhNDFhMWFmNi8wL0FTMzA4NjAucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwgc0GCCsGAQUFBwEHAQH/BIG9MIG6MIG3BAIAATCBsAME AFIV2zAMAwQAUhXfAwQAUhXgAwQAUhXsAwQAUhbSAwQBUhbYAwQAUhbcAwQAUhbj AwQAUhfRAwQAUhjSAwQBUhjgAwQAUhjqAwQAUhnYAwQAUhnkMAwDBABSGe0DBABS Ge4DBABSGt0DBABSGuIDBABSGu8DBABSG9YDBABSG+kDBABSG+sDBABSG+8DBABS Hd0wDAMEAFId4QMEAFId4jAMAwQAUh3lAwQAUh3mMA0GCSqGSIb3DQEBCwUAA4IB AQADo8Ymx6IULHWsShqmSdhKmvMU0CdXgLC3tZXNeCpPqVOIYhIBIzykdelAKfnA Ak2051KbFbB4QM8CGcIoZv8xin9gruhHqZyi3I3Bf7M0Q1DdEC5Q3xMb/ktOkKmf qM4apmGASQn885P92WUa0EUPPxztvtiBeRhlDsorE0iFhU6BTMtkOMyfcrO3QcxA XKzibIferYoOLHSmBhd6Q2+H11EczVw7l0NUoS/tgmGzayYbHCrVX5ly1zd6EuMe YppDHcZiUzV1bb/6F12VJP95tdtz0lkxjtTPInCcPvK0yCzX3YgtAllnn9uTD0cs 3S87JQ/+UwwX15nR/8yDtUtS -----END CERTIFICATE-----Generated at Sun Jan 18 08:55:45 2026 by rpki-client