This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS36530.roa File: AS36530.roa (raw, json) Hash identifier: i5ma0W0nfRuLQCK8MfJCjoA08Io1VVX2V97AP1M0d74= Subject key identifier: 88:78:94:68:56:ED:97:EA:9F:30:95:56:A7:BD:46:59:B8:35:5B:25 Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Certificate serial: 6FB4540DA28AEB0F04BB13B3CC09189EB4A51FD4 Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS36530.roa Signing time: Wed 03 Dec 2025 11:40:46 +0000 ROA not before: Wed 03 Dec 2025 11:35:46 +0000 ROA not after: Wed 02 Dec 2026 11:40:46 +0000 asID: 36530 IP address blocks: 82.21.200.0/23 maxlen: 24 82.25.46.0/23 maxlen: 24 82.26.72.0/23 maxlen: 24 82.26.78.0/23 maxlen: 24 82.39.114.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 17:27:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:b4:54:0d:a2:8a:eb:0f:04:bb:13:b3:cc:09:18:9e:b4:a5:1f:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Validity Not Before: Dec 3 11:35:46 2025 GMT Not After : Dec 2 11:40:46 2026 GMT Subject: CN=8878946856ED97EA9F309556A7BD4659B8355B25 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:7e:b3:f5:65:16:19:71:63:af:7c:60:db:34: cb:5c:f5:be:1e:63:fe:ce:50:1f:ef:32:b5:4d:25: fb:c5:a3:c8:88:b7:fc:2f:0f:02:b0:d5:74:18:57: 6d:9a:99:84:74:97:fe:e2:13:b5:d9:b4:80:f3:b3: 0c:38:43:63:17:22:7b:19:ec:b3:db:75:60:b4:6f: 43:d0:a3:46:92:c1:8e:4a:fd:dd:1f:be:4d:2e:08: b2:02:f3:89:59:10:9c:1a:72:7d:3b:07:aa:29:fe: 58:d4:97:8b:e1:2d:22:bc:cd:23:91:74:1d:56:0a: 93:c4:71:ab:dc:fe:d2:b3:42:09:cd:bb:bd:a4:fe: 2d:6a:2d:03:3f:eb:d3:d4:7a:45:03:53:c9:cb:88: b2:82:f0:59:dd:8f:80:d6:cf:6f:5c:b0:f3:cc:c9: a2:64:d8:7a:d5:e9:7e:32:9a:33:0d:2f:48:dc:2a: 50:c6:cc:06:08:0f:5d:c4:bd:fa:85:4a:2c:68:b3: 09:10:bd:73:42:2e:14:9a:bb:10:ba:70:4f:61:1b: 43:61:5b:85:72:84:c2:13:5b:11:df:54:01:67:fb: 45:ee:a0:f9:c1:90:9a:08:66:cd:2c:f0:41:f6:a6: 9a:92:45:30:9f:7c:b8:ca:fa:55:3d:84:aa:51:c1: 17:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:78:94:68:56:ED:97:EA:9F:30:95:56:A7:BD:46:59:B8:35:5B:25 X509v3 Authority Key Identifier: keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS36530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 82.21.200.0/23 82.25.46.0/23 82.26.72.0/23 82.26.78.0/23 82.39.114.0/24 Signature Algorithm: sha256WithRSAEncryption 93:8b:9c:93:15:4b:1e:70:5d:e7:bf:26:9f:8b:d0:f2:ef:64: 77:d8:8b:0c:b6:32:35:3a:52:be:09:5d:15:16:26:40:b8:4e: 39:fa:f1:5c:34:d2:e5:1d:b0:d0:ca:02:40:df:11:49:9d:0d: 7a:d6:45:43:d8:ff:92:1c:33:d6:0a:a0:08:32:6a:f0:fd:c4: 26:69:b9:3c:c1:aa:d0:45:61:39:ce:d8:f8:39:4b:8e:0b:25: 18:85:46:2d:e0:7b:8c:47:e4:a4:ca:ac:0a:43:d1:71:ec:6e: fd:ed:b0:c2:fb:6b:3f:f2:9e:1f:b0:2e:6b:ac:93:ae:86:58: 3d:73:6e:1a:30:2c:32:e3:3a:d7:1b:d7:17:69:8b:b0:b8:fa: 05:35:fa:38:45:ed:44:a4:d1:27:01:f4:b1:1e:36:32:7a:5a: e8:d3:37:22:90:c7:e7:0e:fb:de:db:e6:eb:c3:fe:8f:2f:51: b3:c9:e0:b4:94:60:82:94:ce:be:1b:cd:4e:90:49:b0:2f:e1: cf:51:4d:a9:a6:bd:da:a6:62:7d:95:ae:cb:d8:a6:fe:84:98: d1:a0:3d:36:c5:ac:47:84:ec:81:67:62:61:3a:e9:6d:69:7c: 24:33:85:2f:35:ac:ca:71:95:4c:dd:fd:96:79:cf:53:47:49: d9:06:10:d8 -----BEGIN CERTIFICATE----- MIIFFzCCA/+gAwIBAgIUb7RUDaKK6w8EuxOzzAkYnrSlH9QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjE4Y2M2ZTI0MTA1ZGU2YzVjOTAwM2Q2NTI0Mzg5M2Ni M2NmZGQwMTAeFw0yNTEyMDMxMTM1NDZaFw0yNjEyMDIxMTQwNDZaMDMxMTAvBgNV BAMTKDg4Nzg5NDY4NTZFRDk3RUE5RjMwOTU1NkE3QkQ0NjU5QjgzNTVCMjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSfrP1ZRYZcWOvfGDbNMtc9b4e Y/7OUB/vMrVNJfvFo8iIt/wvDwKw1XQYV22amYR0l/7iE7XZtIDzsww4Q2MXInsZ 7LPbdWC0b0PQo0aSwY5K/d0fvk0uCLIC84lZEJwacn07B6op/ljUl4vhLSK8zSOR dB1WCpPEcavc/tKzQgnNu72k/i1qLQM/69PUekUDU8nLiLKC8Fndj4DWz29csPPM yaJk2HrV6X4ymjMNL0jcKlDGzAYID13EvfqFSixoswkQvXNCLhSauxC6cE9hG0Nh W4VyhMITWxHfVAFn+0XuoPnBkJoIZs0s8EH2ppqSRTCffLjK+lU9hKpRwRdBAgMB AAGjggIhMIICHTAdBgNVHQ4EFgQUiHiUaFbtl+qfMJVWp71GWbg1WyUwHwYDVR0j BBgwFoAUIYzG4kEF3mxckAPWUkOJPLPP3QEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYtYjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWEx YWY2LzAvMjE4Q0M2RTI0MTA1REU2QzVDOTAwM0Q2NTI0Mzg5M0NCM0NGREQwMS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0lZekc0a0VGM214Y2tBUFdVa09KUExQ UDNRRS5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzcxOGExYjRmLWI2NGMt NDAyYy1iZTE1LWRkODJhNDFhMWFmNi8wL0FTMzY1MzAucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwNwYIKwYBBQUHAQcBAf8EKDAmMCQEAgABMB4DBAFSFcgD BAFSGS4DBAFSGkgDBAFSGk4DBABSJ3IwDQYJKoZIhvcNAQELBQADggEBAJOLnJMV Sx5wXee/Jp+L0PLvZHfYiwy2MjU6Ur4JXRUWJkC4Tjn68Vw00uUdsNDKAkDfEUmd DXrWRUPY/5IcM9YKoAgyavD9xCZpuTzBqtBFYTnO2Pg5S44LJRiFRi3ge4xH5KTK rApD0XHsbv3tsML7az/ynh+wLmusk66GWD1zbhowLDLjOtcb1xdpi7C4+gU1+jhF 7USk0ScB9LEeNjJ6WujTNyKQx+cO+97b5uvD/o8vUbPJ4LSUYIKUzr4bzU6QSbAv 4c9RTammvdqmYn2VrsvYpv6EmNGgPTbFrEeE7IFnYmE66W1pfCQzhS81rMpxlUzd /ZZ5z1NHSdkGENg= -----END CERTIFICATE-----Generated at Sat Dec 6 01:49:58 2025 by rpki-client