This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS3320.roa File: AS3320.roa (raw, json) Hash identifier: ALUGg4inWhGVw4Ju57PQvvMYpyVyiMl+I0f5RiitMzA= Subject key identifier: 5F:F0:2C:1E:10:D4:E4:8F:2C:D4:39:61:3C:EB:1D:03:2A:D9:A1:7C Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Certificate serial: 20154DA913CB5FBFA3A2436BFA5B7AE2BEC509DB Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS3320.roa Signing time: Mon 12 Jan 2026 15:36:05 +0000 ROA not before: Mon 12 Jan 2026 15:31:05 +0000 ROA not after: Mon 11 Jan 2027 15:36:05 +0000 asID: 3320 IP address blocks: 82.21.57.0/24 maxlen: 24 82.21.184.0/24 maxlen: 24 82.22.102.0/24 maxlen: 24 82.22.105.0/24 maxlen: 24 82.22.108.0/24 maxlen: 24 82.22.161.0/24 maxlen: 24 82.22.191.0/24 maxlen: 24 82.22.194.0/24 maxlen: 24 82.23.168.0/24 maxlen: 24 82.23.197.0/24 maxlen: 24 82.24.4.0/24 maxlen: 24 82.24.14.0/24 maxlen: 24 82.24.21.0/24 maxlen: 24 82.24.30.0/24 maxlen: 24 82.24.41.0/24 maxlen: 24 82.24.52.0/24 maxlen: 24 82.24.55.0/24 maxlen: 24 82.24.72.0/24 maxlen: 24 82.24.78.0/24 maxlen: 24 82.24.86.0/24 maxlen: 24 82.24.109.0/24 maxlen: 24 82.24.114.0/24 maxlen: 24 82.24.125.0/24 maxlen: 24 82.24.190.0/24 maxlen: 24 82.24.203.0/24 maxlen: 24 82.25.4.0/24 maxlen: 24 82.25.5.0/24 maxlen: 24 82.25.6.0/24 maxlen: 24 82.25.7.0/24 maxlen: 24 82.25.9.0/24 maxlen: 24 82.25.14.0/24 maxlen: 24 82.25.16.0/24 maxlen: 24 82.25.133.0/24 maxlen: 24 82.25.138.0/24 maxlen: 24 82.25.140.0/24 maxlen: 24 82.25.191.0/24 maxlen: 24 82.25.197.0/24 maxlen: 24 82.25.202.0/24 maxlen: 24 82.26.70.0/24 maxlen: 24 82.26.88.0/24 maxlen: 24 82.26.100.0/24 maxlen: 24 82.26.108.0/24 maxlen: 24 82.26.111.0/24 maxlen: 24 82.26.123.0/24 maxlen: 24 82.26.128.0/24 maxlen: 24 82.26.135.0/24 maxlen: 24 82.26.141.0/24 maxlen: 24 82.26.155.0/24 maxlen: 24 82.26.161.0/24 maxlen: 24 82.26.168.0/24 maxlen: 24 82.26.197.0/24 maxlen: 24 82.27.10.0/24 maxlen: 24 82.27.22.0/24 maxlen: 24 82.27.105.0/24 maxlen: 24 82.27.119.0/24 maxlen: 24 82.27.198.0/24 maxlen: 24 82.29.23.0/24 maxlen: 24 82.29.29.0/24 maxlen: 24 82.29.65.0/24 maxlen: 24 82.29.120.0/24 maxlen: 24 82.29.121.0/24 maxlen: 24 82.38.220.0/24 maxlen: 24 82.38.221.0/24 maxlen: 24 82.38.222.0/24 maxlen: 24 82.39.251.0/24 maxlen: 24 82.39.254.0/24 maxlen: 24 82.39.255.0/24 maxlen: 24 82.41.244.0/24 maxlen: 24 82.41.245.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 19 Jan 2026 04:45:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:15:4d:a9:13:cb:5f:bf:a3:a2:43:6b:fa:5b:7a:e2:be:c5:09:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Validity Not Before: Jan 12 15:31:05 2026 GMT Not After : Jan 11 15:36:05 2027 GMT Subject: CN=5FF02C1E10D4E48F2CD439613CEB1D032AD9A17C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:c0:b4:54:cc:67:8f:c3:fe:9a:ad:75:db:dd: 03:11:58:a9:74:0e:51:84:4d:5c:7e:36:99:31:4f: 48:5b:6a:e7:36:10:07:e3:54:60:03:eb:c5:94:c3: 82:92:31:e2:f5:04:8d:77:4f:d0:bd:7e:18:4f:b1: cf:65:cf:50:69:01:05:1f:21:b4:a5:42:f3:fc:e9: 7c:b3:70:8d:a0:1e:79:f1:84:5c:fc:00:b7:83:2a: d6:f5:b8:72:2b:8b:44:42:66:38:a4:10:de:d6:41: a9:55:f0:cf:5a:5f:bd:51:d2:a1:95:f2:e7:b3:85: 02:c2:7f:03:99:91:e9:48:02:17:eb:f3:3d:54:01: b2:f4:ff:e4:dc:b8:d0:b9:79:44:c0:fb:dc:fa:30: 42:7d:5a:b6:79:08:d0:a2:21:5a:31:58:ad:20:2a: a5:28:f1:7e:79:91:82:b0:db:99:f2:ac:35:21:27: 53:2e:77:43:d6:85:99:3f:e9:70:1a:28:10:9b:de: df:2e:53:28:90:1d:d2:8d:44:91:ae:32:ce:b2:99: 5f:b7:5f:d5:b0:42:20:a6:6a:ed:21:61:ca:99:46: bf:3a:77:e1:e1:9e:c1:2f:cc:92:ac:35:19:99:64: 9e:89:88:f4:3e:6c:a4:7b:a2:45:40:a8:3c:fe:64: a6:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:F0:2C:1E:10:D4:E4:8F:2C:D4:39:61:3C:EB:1D:03:2A:D9:A1:7C X509v3 Authority Key Identifier: keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS3320.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 82.21.57.0/24 82.21.184.0/24 82.22.102.0/24 82.22.105.0/24 82.22.108.0/24 82.22.161.0/24 82.22.191.0/24 82.22.194.0/24 82.23.168.0/24 82.23.197.0/24 82.24.4.0/24 82.24.14.0/24 82.24.21.0/24 82.24.30.0/24 82.24.41.0/24 82.24.52.0/24 82.24.55.0/24 82.24.72.0/24 82.24.78.0/24 82.24.86.0/24 82.24.109.0/24 82.24.114.0/24 82.24.125.0/24 82.24.190.0/24 82.24.203.0/24 82.25.4.0/22 82.25.9.0/24 82.25.14.0/24 82.25.16.0/24 82.25.133.0/24 82.25.138.0/24 82.25.140.0/24 82.25.191.0/24 82.25.197.0/24 82.25.202.0/24 82.26.70.0/24 82.26.88.0/24 82.26.100.0/24 82.26.108.0/24 82.26.111.0/24 82.26.123.0/24 82.26.128.0/24 82.26.135.0/24 82.26.141.0/24 82.26.155.0/24 82.26.161.0/24 82.26.168.0/24 82.26.197.0/24 82.27.10.0/24 82.27.22.0/24 82.27.105.0/24 82.27.119.0/24 82.27.198.0/24 82.29.23.0/24 82.29.29.0/24 82.29.65.0/24 82.29.120.0/23 82.38.220.0-82.38.222.255 82.39.251.0/24 82.39.254.0/23 82.41.244.0/23 Signature Algorithm: sha256WithRSAEncryption 70:92:0e:8c:5e:ce:2e:12:1c:a9:75:7f:8d:ce:be:d0:8a:95: b9:78:e2:c6:de:be:b8:54:11:92:a2:42:ea:73:da:e3:3d:49: f5:16:da:19:9c:1e:b3:0c:2e:71:2c:4b:f3:2e:67:c1:c1:af: ba:5a:00:80:e7:0c:2b:f6:b5:fc:ee:0f:72:96:6f:51:e9:2c: 88:ad:7c:b9:83:40:70:b8:ec:62:8f:40:40:19:7b:c3:d2:73: 33:c1:e0:c7:98:77:ff:71:94:2a:9b:9b:56:3c:af:60:1e:fc: a2:8c:42:65:0d:cb:a6:f5:ec:40:54:04:19:f8:1c:13:00:a2: 03:54:16:68:15:66:a5:be:cc:62:ca:41:c0:62:00:76:2f:f0: 32:eb:73:2b:3e:0a:69:ce:9f:49:25:15:54:c3:cc:b9:1e:ef: e9:09:23:9a:33:24:b6:f3:a2:9a:0d:0f:8c:b7:40:cf:8a:44: 0c:1b:2b:cf:2f:b4:5c:11:7d:3f:40:4e:99:23:bd:a1:e7:14: 4e:9b:d9:88:b9:71:34:0f:ba:4e:78:d2:44:1f:b1:b3:bf:21: 29:0f:6f:f5:b7:92:0c:81:5b:1b:17:0d:93:1e:35:36:8c:22: e0:6e:8c:96:3a:bc:a4:18:c8:b2:96:ad:d2:39:c8:bb:47:99: 1a:4a:f6:bb -----BEGIN CERTIFICATE----- MIIGeDCCBWCgAwIBAgIUIBVNqRPLX7+jokNr+lt64r7FCdswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjE4Y2M2ZTI0MTA1ZGU2YzVjOTAwM2Q2NTI0Mzg5M2Ni M2NmZGQwMTAeFw0yNjAxMTIxNTMxMDVaFw0yNzAxMTExNTM2MDVaMDMxMTAvBgNV BAMTKDVGRjAyQzFFMTBENEU0OEYyQ0Q0Mzk2MTNDRUIxRDAzMkFEOUExN0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxwLRUzGePw/6arXXb3QMRWKl0 DlGETVx+NpkxT0hbauc2EAfjVGAD68WUw4KSMeL1BI13T9C9fhhPsc9lz1BpAQUf IbSlQvP86XyzcI2gHnnxhFz8ALeDKtb1uHIri0RCZjikEN7WQalV8M9aX71R0qGV 8uezhQLCfwOZkelIAhfr8z1UAbL0/+TcuNC5eUTA+9z6MEJ9WrZ5CNCiIVoxWK0g KqUo8X55kYKw25nyrDUhJ1Mud0PWhZk/6XAaKBCb3t8uUyiQHdKNRJGuMs6ymV+3 X9WwQiCmau0hYcqZRr86d+HhnsEvzJKsNRmZZJ6JiPQ+bKR7okVAqDz+ZKZRAgMB AAGjggOCMIIDfjAdBgNVHQ4EFgQUX/AsHhDU5I8s1DlhPOsdAyrZoXwwHwYDVR0j BBgwFoAUIYzG4kEF3mxckAPWUkOJPLPP3QEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYtYjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWEx YWY2LzAvMjE4Q0M2RTI0MTA1REU2QzVDOTAwM0Q2NTI0Mzg5M0NCM0NGREQwMS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0lZekc0a0VGM214Y2tBUFdVa09KUExQ UDNRRS5jZXIweQYIKwYBBQUHAQsEbTBrMGkGCCsGAQUFBzALhl1yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzcxOGExYjRmLWI2NGMt NDAyYy1iZTE1LWRkODJhNDFhMWFmNi8wL0FTMzMyMC5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjCCAZcGCCsGAQUFBwEHAQH/BIIBhjCCAYIwggF+BAIAATCC AXYDBABSFTkDBABSFbgDBABSFmYDBABSFmkDBABSFmwDBABSFqEDBABSFr8DBABS FsIDBABSF6gDBABSF8UDBABSGAQDBABSGA4DBABSGBUDBABSGB4DBABSGCkDBABS GDQDBABSGDcDBABSGEgDBABSGE4DBABSGFYDBABSGG0DBABSGHIDBABSGH0DBABS GL4DBABSGMsDBAJSGQQDBABSGQkDBABSGQ4DBABSGRADBABSGYUDBABSGYoDBABS GYwDBABSGb8DBABSGcUDBABSGcoDBABSGkYDBABSGlgDBABSGmQDBABSGmwDBABS Gm8DBABSGnsDBABSGoADBABSGocDBABSGo0DBABSGpsDBABSGqEDBABSGqgDBABS GsUDBABSGwoDBABSGxYDBABSG2kDBABSG3cDBABSG8YDBABSHRcDBABSHR0DBABS HUEDBAFSHXgwDAMEAlIm3AMEAFIm3gMEAFIn+wMEAVIn/gMEAVIp9DANBgkqhkiG 9w0BAQsFAAOCAQEAcJIOjF7OLhIcqXV/jc6+0IqVuXjixt6+uFQRkqJC6nPa4z1J 9RbaGZweswwucSxL8y5nwcGvuloAgOcMK/a1/O4PcpZvUeksiK18uYNAcLjsYo9A QBl7w9JzM8Hgx5h3/3GUKpubVjyvYB78ooxCZQ3LpvXsQFQEGfgcEwCiA1QWaBVm pb7MYspBwGIAdi/wMutzKz4Kac6fSSUVVMPMuR7v6QkjmjMktvOimg0PjLdAz4pE DBsrzy+0XBF9P0BOmSO9oecUTpvZiLlxNA+6TnjSRB+xs78hKQ9v9beSDIFbGxcN kx41Nowi4G6Mljq8pBjIspat0jnIu0eZGkr2uw== -----END CERTIFICATE-----Generated at Sun Jan 18 08:55:09 2026 by rpki-client