This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS401818.roa File: AS401818.roa (raw, json) Hash identifier: j+yOSmYbINL8rOMGqdy4xPQqxgiQPoYXb3XpMbyXdZs= Subject key identifier: 6B:54:EC:99:81:4A:29:EE:B2:8A:10:0F:08:7D:F6:DB:D5:70:25:4D Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Certificate serial: 5D3F6D138812E30F96413965A197AEF7562C6365 Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS401818.roa Signing time: Thu 25 Dec 2025 09:47:59 +0000 ROA not before: Thu 25 Dec 2025 09:42:59 +0000 ROA not after: Thu 24 Dec 2026 09:47:59 +0000 asID: 401818 IP address blocks: 82.22.32.0/24 maxlen: 24 2a13:9500:e0::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 19 Jan 2026 04:45:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:3f:6d:13:88:12:e3:0f:96:41:39:65:a1:97:ae:f7:56:2c:63:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Validity Not Before: Dec 25 09:42:59 2025 GMT Not After : Dec 24 09:47:59 2026 GMT Subject: CN=6B54EC99814A29EEB28A100F087DF6DBD570254D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:1b:04:77:ec:b7:28:86:45:ec:32:31:50:03: c8:c7:8a:cd:e2:4d:f0:93:5e:d4:c0:8d:76:21:47: 7d:62:fd:69:3d:bd:a3:a6:96:b9:39:0e:20:49:7a: a8:12:ce:99:93:53:91:1f:cc:a5:01:45:1f:12:81: 71:c6:cd:c0:11:8d:c8:f2:39:6c:cf:d8:04:ef:c7: 47:d7:d5:34:77:56:27:43:25:bd:2a:03:08:f1:47: 6e:1b:be:4e:0d:05:8c:94:11:e7:f8:d0:a5:af:15: 50:0f:98:54:e2:f3:c9:08:b9:af:f5:fe:c2:c3:63: 27:62:a8:89:59:fd:74:12:b3:ed:3a:ff:50:91:94: 48:a5:ed:d7:78:ad:77:63:7e:39:15:c1:ac:39:5c: ad:93:65:a4:de:76:1f:43:4a:73:43:ee:b8:66:97: ff:f0:ad:61:7f:6f:0b:ff:34:02:86:66:e6:06:96: db:a8:d4:30:1c:6d:56:77:92:0f:d9:ca:ee:36:0a: 77:cc:41:b0:1b:52:81:91:4d:a2:bf:4e:e0:90:88: e7:ba:0b:86:b9:61:b9:94:52:a0:bc:c5:28:3d:43: a6:37:03:d2:d0:df:d6:cb:d8:94:0d:f0:8b:18:d9: 37:e6:fb:7e:4d:35:c7:ec:d8:e5:0f:47:e2:eb:81: 64:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:54:EC:99:81:4A:29:EE:B2:8A:10:0F:08:7D:F6:DB:D5:70:25:4D X509v3 Authority Key Identifier: keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS401818.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 82.22.32.0/24 IPv6: 2a13:9500:e0::/48 Signature Algorithm: sha256WithRSAEncryption 5a:a1:52:c6:5c:35:c8:5b:01:ec:96:ac:bf:f9:9e:14:30:21: ff:71:a5:8b:ba:d1:88:40:1d:ab:a9:23:11:f3:2d:90:60:46: 1c:8c:dd:d1:1e:b1:09:c1:e8:c4:e3:b1:9d:52:37:27:8b:52: 14:f2:f9:f5:f0:1a:52:4c:90:13:10:18:fb:1e:be:9f:ff:ec: 81:1e:ac:7c:5e:c0:8d:47:99:96:95:22:cd:12:95:a8:33:a7: 66:09:59:3e:ac:0e:f5:80:39:08:98:96:9c:3f:b1:36:7b:a1: 0c:90:c3:ef:e6:84:71:b4:ce:41:f8:ea:fc:36:00:ff:31:8b: 00:91:4f:eb:3f:5c:02:9c:ce:ac:12:67:bb:43:a2:35:58:4a: 92:a9:d8:fe:fd:51:66:78:ba:5f:05:1b:22:59:6e:b8:ce:0e: 5a:77:f4:c2:81:e8:45:3b:89:79:58:20:22:fc:4a:25:7b:8e: bc:39:bf:39:c1:11:48:35:ca:8f:20:b9:d7:59:17:79:78:a3: 0f:ae:56:73:cd:f3:6c:70:47:04:eb:76:b6:cd:66:b9:da:24: e3:2a:7c:56:5f:bc:a7:df:63:20:4c:14:be:d9:86:cb:dc:d3: a3:86:35:c7:4e:6a:fc:ba:d6:2d:2d:0a:7d:55:42:a5:93:8d: 66:a1:04:86 -----BEGIN CERTIFICATE----- MIIFETCCA/mgAwIBAgIUXT9tE4gS4w+WQTlloZeu91YsY2UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjE4Y2M2ZTI0MTA1ZGU2YzVjOTAwM2Q2NTI0Mzg5M2Ni M2NmZGQwMTAeFw0yNTEyMjUwOTQyNTlaFw0yNjEyMjQwOTQ3NTlaMDMxMTAvBgNV BAMTKDZCNTRFQzk5ODE0QTI5RUVCMjhBMTAwRjA4N0RGNkRCRDU3MDI1NEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7GwR37LcohkXsMjFQA8jHis3i TfCTXtTAjXYhR31i/Wk9vaOmlrk5DiBJeqgSzpmTU5EfzKUBRR8SgXHGzcARjcjy OWzP2ATvx0fX1TR3VidDJb0qAwjxR24bvk4NBYyUEef40KWvFVAPmFTi88kIua/1 /sLDYydiqIlZ/XQSs+06/1CRlEil7dd4rXdjfjkVwaw5XK2TZaTedh9DSnND7rhm l//wrWF/bwv/NAKGZuYGltuo1DAcbVZ3kg/Zyu42CnfMQbAbUoGRTaK/TuCQiOe6 C4a5YbmUUqC8xSg9Q6Y3A9LQ39bL2JQN8IsY2Tfm+35NNcfs2OUPR+LrgWSpAgMB AAGjggIbMIICFzAdBgNVHQ4EFgQUa1TsmYFKKe6yihAPCH3229VwJU0wHwYDVR0j BBgwFoAUIYzG4kEF3mxckAPWUkOJPLPP3QEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYtYjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWEx YWY2LzAvMjE4Q0M2RTI0MTA1REU2QzVDOTAwM0Q2NTI0Mzg5M0NCM0NGREQwMS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0lZekc0a0VGM214Y2tBUFdVa09KUExQ UDNRRS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzcxOGExYjRmLWI2NGMt NDAyYy1iZTE1LWRkODJhNDFhMWFmNi8wL0FTNDAxODE4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAUhYg MA8EAgACMAkDBwAqE5UAAOAwDQYJKoZIhvcNAQELBQADggEBAFqhUsZcNchbAeyW rL/5nhQwIf9xpYu60YhAHaupIxHzLZBgRhyM3dEesQnB6MTjsZ1SNyeLUhTy+fXw GlJMkBMQGPsevp//7IEerHxewI1HmZaVIs0Slagzp2YJWT6sDvWAOQiYlpw/sTZ7 oQyQw+/mhHG0zkH46vw2AP8xiwCRT+s/XAKczqwSZ7tDojVYSpKp2P79UWZ4ul8F GyJZbrjODlp39MKB6EU7iXlYICL8SiV7jrw5vznBEUg1yo8guddZF3l4ow+uVnPN 82xwRwTrdrbNZrnaJOMqfFZfvKffYyBMFL7Zhsvc06OGNcdOavy61i0tCn1VQqWT jWahBIY= -----END CERTIFICATE-----Generated at Sun Jan 18 08:56:34 2026 by rpki-client