This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS400909.roa File: AS400909.roa (raw, json) Hash identifier: 8OQjjatuG0wYSMjSPC4+vpVbCev5qZX3qMymNG8Z3tQ= Subject key identifier: 8C:03:17:68:BB:48:C4:A5:3A:64:C2:ED:F1:DF:EF:02:9E:FF:9A:F3 Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Certificate serial: 4E3BF6D730D11E797FCC16CE68BEAAF21A1B5651 Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS400909.roa Signing time: Thu 08 Jan 2026 00:00:29 +0000 ROA not before: Wed 07 Jan 2026 23:55:29 +0000 ROA not after: Thu 07 Jan 2027 00:00:29 +0000 asID: 400909 IP address blocks: 82.29.110.0/23 maxlen: 23 82.29.118.0/23 maxlen: 23 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 19 Jan 2026 04:45:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:3b:f6:d7:30:d1:1e:79:7f:cc:16:ce:68:be:aa:f2:1a:1b:56:51 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Validity Not Before: Jan 7 23:55:29 2026 GMT Not After : Jan 7 00:00:29 2027 GMT Subject: CN=8C031768BB48C4A53A64C2EDF1DFEF029EFF9AF3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:9d:de:ff:ee:9d:7d:20:28:7e:b3:ce:56:52: ec:f5:01:e1:63:ae:bb:ca:1c:e4:2f:0c:99:b1:49: b3:7e:95:69:6b:07:d7:0c:68:ff:dd:42:7d:41:8c: 3a:30:51:da:ce:95:69:9b:4f:0e:0c:87:1a:b2:ff: 10:61:7e:de:68:c1:c3:6a:46:57:a9:89:6b:9b:28: 9e:f2:3f:fb:a0:95:01:63:94:c2:ab:09:5d:6c:bc: bb:aa:ba:43:8e:6f:bb:9a:fb:1f:8c:f6:76:51:74: 83:dd:73:ef:90:28:58:41:da:2f:32:1e:cc:61:80: bf:b6:05:5e:f3:43:52:d5:94:77:0c:c9:20:e5:8a: 5a:9e:fe:02:b2:ce:59:b3:2e:46:02:ca:6d:e3:63: 86:a7:d3:df:03:64:34:b7:a1:35:eb:c6:87:98:31: 6e:7d:cd:03:5f:9b:a6:ea:eb:9a:e0:22:15:3c:78: df:07:b8:12:3f:9a:33:02:1e:d3:d0:0f:5f:51:33: 0f:ae:e1:4e:8d:ad:a8:54:f4:60:fc:ff:14:e9:dc: 7b:e1:39:3b:f6:20:5c:ba:da:57:9c:a4:76:ce:ac: 37:0a:6d:8d:1a:96:53:a4:e6:d7:79:03:27:4a:e0: 10:89:99:49:9a:92:f2:95:fc:d4:25:60:a1:d3:36: 9a:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:03:17:68:BB:48:C4:A5:3A:64:C2:ED:F1:DF:EF:02:9E:FF:9A:F3 X509v3 Authority Key Identifier: keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS400909.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 82.29.110.0/23 82.29.118.0/23 Signature Algorithm: sha256WithRSAEncryption 2d:3a:32:c2:73:eb:7d:d6:5f:1d:2e:bf:02:73:91:88:c6:87: 4f:0c:91:98:fe:06:67:6c:42:6b:79:42:75:36:57:ce:c6:38: 61:c9:d5:ef:ec:85:bf:7d:c1:e7:6a:9a:2d:20:72:7d:77:05: 4c:e7:60:cd:29:13:2d:27:30:a9:a9:1e:d9:78:91:b1:ab:a4: e5:50:bf:33:73:d7:9f:fa:f8:8a:41:bd:47:67:e4:1d:c8:aa: 2d:ac:61:f9:a0:09:ca:c5:6b:71:78:3d:f0:67:4f:c9:a3:76: 00:d2:04:da:2b:27:48:a7:e0:5f:16:fa:bc:3b:c3:5a:33:5f: 1e:1d:33:74:5d:e4:e7:85:8b:2e:0d:8f:b1:23:c7:0f:1a:c1: 80:14:4a:16:b4:51:44:5f:43:99:31:8d:38:68:3c:dd:6c:8a: df:64:17:a2:82:b2:99:5d:32:ed:63:c8:0d:56:aa:b6:5e:36: 40:73:fd:c4:8d:68:09:43:e9:a7:da:f0:2f:50:92:99:f8:b1: 40:b9:a8:6a:80:df:ce:d8:ff:54:51:84:99:2e:ea:03:46:b4: fc:0e:a9:4c:48:fa:91:bc:57:c0:bc:b3:29:c5:8d:a9:0f:9e: d4:ed:0d:14:bb:2b:e5:46:84:69:1a:bf:02:be:47:8f:1e:9f: 1f:b3:4c:d3 -----BEGIN CERTIFICATE----- MIIFBjCCA+6gAwIBAgIUTjv21zDRHnl/zBbOaL6q8hobVlEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjE4Y2M2ZTI0MTA1ZGU2YzVjOTAwM2Q2NTI0Mzg5M2Ni M2NmZGQwMTAeFw0yNjAxMDcyMzU1MjlaFw0yNzAxMDcwMDAwMjlaMDMxMTAvBgNV BAMTKDhDMDMxNzY4QkI0OEM0QTUzQTY0QzJFREYxREZFRjAyOUVGRjlBRjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrnd7/7p19ICh+s85WUuz1AeFj rrvKHOQvDJmxSbN+lWlrB9cMaP/dQn1BjDowUdrOlWmbTw4Mhxqy/xBhft5owcNq RlepiWubKJ7yP/uglQFjlMKrCV1svLuqukOOb7ua+x+M9nZRdIPdc++QKFhB2i8y HsxhgL+2BV7zQ1LVlHcMySDlilqe/gKyzlmzLkYCym3jY4an098DZDS3oTXrxoeY MW59zQNfm6bq65rgIhU8eN8HuBI/mjMCHtPQD19RMw+u4U6NrahU9GD8/xTp3Hvh OTv2IFy62lecpHbOrDcKbY0allOk5td5AydK4BCJmUmakvKV/NQlYKHTNpp9AgMB AAGjggIQMIICDDAdBgNVHQ4EFgQUjAMXaLtIxKU6ZMLt8d/vAp7/mvMwHwYDVR0j BBgwFoAUIYzG4kEF3mxckAPWUkOJPLPP3QEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYtYjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWEx YWY2LzAvMjE4Q0M2RTI0MTA1REU2QzVDOTAwM0Q2NTI0Mzg5M0NCM0NGREQwMS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0lZekc0a0VGM214Y2tBUFdVa09KUExQ UDNRRS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzcxOGExYjRmLWI2NGMt NDAyYy1iZTE1LWRkODJhNDFhMWFmNi8wL0FTNDAwOTA5LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQBUh1u AwQBUh12MA0GCSqGSIb3DQEBCwUAA4IBAQAtOjLCc+t91l8dLr8Cc5GIxodPDJGY /gZnbEJreUJ1NlfOxjhhydXv7IW/fcHnapotIHJ9dwVM52DNKRMtJzCpqR7ZeJGx q6TlUL8zc9ef+viKQb1HZ+QdyKotrGH5oAnKxWtxeD3wZ0/Jo3YA0gTaKydIp+Bf Fvq8O8NaM18eHTN0XeTnhYsuDY+xI8cPGsGAFEoWtFFEX0OZMY04aDzdbIrfZBei grKZXTLtY8gNVqq2XjZAc/3EjWgJQ+mn2vAvUJKZ+LFAuahqgN/O2P9UUYSZLuoD RrT8DqlMSPqRvFfAvLMpxY2pD57U7Q0UuyvlRoRpGr8CvkePHp8fs0zT -----END CERTIFICATE-----Generated at Sun Jan 18 08:57:01 2026 by rpki-client