This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS36530.roa File: AS36530.roa (raw, json) Hash identifier: RQ/MO6r3tjh8AnKQ5F0bSl59IAZyJkL89gJimdRPW+g= Subject key identifier: 49:B5:12:0C:A9:B3:5A:21:CB:FF:4A:77:BE:D7:AD:D8:6B:9D:94:78 Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Certificate serial: 1E4D1D87BA63A25F48B49230A50DC2DF0B8B7B9F Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS36530.roa Signing time: Wed 24 Dec 2025 17:11:47 +0000 ROA not before: Wed 24 Dec 2025 17:06:47 +0000 ROA not after: Wed 23 Dec 2026 17:11:47 +0000 asID: 36530 IP address blocks: 82.21.200.0/23 maxlen: 24 82.25.37.0/24 maxlen: 24 82.25.46.0/23 maxlen: 24 82.26.72.0/23 maxlen: 24 82.26.78.0/23 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 21 Jan 2026 15:30:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:4d:1d:87:ba:63:a2:5f:48:b4:92:30:a5:0d:c2:df:0b:8b:7b:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Validity Not Before: Dec 24 17:06:47 2025 GMT Not After : Dec 23 17:11:47 2026 GMT Subject: CN=49B5120CA9B35A21CBFF4A77BED7ADD86B9D9478 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:cd:39:51:21:0e:9b:38:e2:52:60:1f:62:5d: ce:2f:7a:79:90:d1:64:79:a7:a0:4d:b7:22:5c:ef: 0a:b9:a6:aa:85:ee:3e:fe:8c:d1:74:90:e2:eb:6c: 68:68:79:ae:37:10:57:c8:6b:71:74:cd:5f:0b:21: c9:e2:86:bc:3c:9b:a3:ae:ea:96:3a:7e:c4:95:af: 8f:ce:ed:63:8a:2b:eb:78:c1:db:74:ee:62:ba:19: 93:30:11:27:b8:ef:7a:96:7e:19:d4:98:05:fa:f8: c2:16:bf:6a:38:32:b4:a3:74:5c:39:a0:77:c9:f8: 61:ae:66:7a:3e:15:8b:b9:88:e3:e4:4d:a0:1c:b2: 29:ca:5f:14:d0:8f:d0:01:59:82:38:39:dd:ba:21: 28:e2:80:99:c5:e3:32:48:3f:13:d6:37:4d:c2:00: ef:3a:0f:59:b9:27:9f:fc:63:4c:b5:44:9e:95:58: e1:45:b2:77:38:97:d3:9a:06:6e:1f:9d:52:82:6e: 9a:39:2c:3c:1f:04:b2:17:2e:2d:7d:a2:cb:ac:64: 34:30:1d:df:39:c2:f2:a9:e2:29:dc:0c:5f:f5:dc: 55:17:18:fe:54:0f:05:00:93:ec:88:1e:5a:6c:b1: 96:56:d7:ae:c7:47:05:2b:06:94:9e:bf:9f:e6:03: 3f:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:B5:12:0C:A9:B3:5A:21:CB:FF:4A:77:BE:D7:AD:D8:6B:9D:94:78 X509v3 Authority Key Identifier: keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS36530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 82.21.200.0/23 82.25.37.0/24 82.25.46.0/23 82.26.72.0/23 82.26.78.0/23 Signature Algorithm: sha256WithRSAEncryption 07:65:6f:4b:54:bb:f6:a0:0b:4b:03:71:b3:6c:b5:ae:f3:7b: 91:e5:e7:c2:f8:c1:34:dd:ce:9c:bc:c8:73:64:4c:29:8d:0b: 2c:db:93:da:00:b0:2d:da:ce:0e:b3:23:c8:a5:c1:ff:45:7e: dc:60:6a:f9:ff:05:5e:3b:11:5e:af:36:15:17:61:8b:31:f9: e5:3c:22:54:12:89:73:76:48:78:17:75:ca:df:14:93:52:76: 7c:af:24:15:c9:03:55:d7:55:94:59:18:33:16:d7:fb:bd:fc: bc:bb:e0:a2:9c:1a:c6:5e:16:c5:e9:93:2b:ca:56:0d:0e:3f: f8:0c:c5:f8:e3:74:59:a8:37:08:e5:dc:97:a9:36:f3:01:53: 3e:5b:58:e7:3a:8e:b7:9f:65:cd:19:e5:67:26:db:9d:61:42: f9:aa:d9:b8:57:fb:c5:e7:5a:19:27:47:11:c5:60:cd:e3:2d: d8:71:da:39:44:f0:21:9a:2a:d5:fc:a2:f6:ae:a4:fe:ce:0b: bf:b2:f0:f1:4a:a4:21:37:6a:16:10:93:24:70:09:95:83:52: 0e:a3:1d:da:10:28:ae:8d:fe:4b:42:d3:af:77:3f:0d:49:8c: d9:62:82:26:f7:df:4f:12:aa:86:14:18:dc:66:76:c6:71:4a: b8:15:25:e1 -----BEGIN CERTIFICATE----- MIIFFzCCA/+gAwIBAgIUHk0dh7pjol9ItJIwpQ3C3wuLe58wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjE4Y2M2ZTI0MTA1ZGU2YzVjOTAwM2Q2NTI0Mzg5M2Ni M2NmZGQwMTAeFw0yNTEyMjQxNzA2NDdaFw0yNjEyMjMxNzExNDdaMDMxMTAvBgNV BAMTKDQ5QjUxMjBDQTlCMzVBMjFDQkZGNEE3N0JFRDdBREQ4NkI5RDk0NzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCczTlRIQ6bOOJSYB9iXc4venmQ 0WR5p6BNtyJc7wq5pqqF7j7+jNF0kOLrbGhoea43EFfIa3F0zV8LIcnihrw8m6Ou 6pY6fsSVr4/O7WOKK+t4wdt07mK6GZMwESe473qWfhnUmAX6+MIWv2o4MrSjdFw5 oHfJ+GGuZno+FYu5iOPkTaAcsinKXxTQj9ABWYI4Od26ISjigJnF4zJIPxPWN03C AO86D1m5J5/8Y0y1RJ6VWOFFsnc4l9OaBm4fnVKCbpo5LDwfBLIXLi19osusZDQw Hd85wvKp4incDF/13FUXGP5UDwUAk+yIHlpssZZW167HRwUrBpSev5/mAz+NAgMB AAGjggIhMIICHTAdBgNVHQ4EFgQUSbUSDKmzWiHL/0p3vtet2GudlHgwHwYDVR0j BBgwFoAUIYzG4kEF3mxckAPWUkOJPLPP3QEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYtYjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWEx YWY2LzAvMjE4Q0M2RTI0MTA1REU2QzVDOTAwM0Q2NTI0Mzg5M0NCM0NGREQwMS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0lZekc0a0VGM214Y2tBUFdVa09KUExQ UDNRRS5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzcxOGExYjRmLWI2NGMt NDAyYy1iZTE1LWRkODJhNDFhMWFmNi8wL0FTMzY1MzAucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwNwYIKwYBBQUHAQcBAf8EKDAmMCQEAgABMB4DBAFSFcgD BABSGSUDBAFSGS4DBAFSGkgDBAFSGk4wDQYJKoZIhvcNAQELBQADggEBAAdlb0tU u/agC0sDcbNsta7ze5Hl58L4wTTdzpy8yHNkTCmNCyzbk9oAsC3azg6zI8ilwf9F ftxgavn/BV47EV6vNhUXYYsx+eU8IlQSiXN2SHgXdcrfFJNSdnyvJBXJA1XXVZRZ GDMW1/u9/Ly74KKcGsZeFsXpkyvKVg0OP/gMxfjjdFmoNwjl3JepNvMBUz5bWOc6 jrefZc0Z5Wcm251hQvmq2bhX+8XnWhknRxHFYM3jLdhx2jlE8CGaKtX8ovaupP7O C7+y8PFKpCE3ahYQkyRwCZWDUg6jHdoQKK6N/ktC0693Pw1JjNligib3308SqoYU GNxmdsZxSrgVJeE= -----END CERTIFICATE-----Generated at Wed Jan 21 00:42:04 2026 by rpki-client