This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS42831.roa File: AS42831.roa (raw, json) Hash identifier: 6rTq3WRfeW0khvV4hoXfDC4lmgZxEoKAN73RpeIU2+k= Subject key identifier: 62:75:BD:BD:AA:43:87:FB:7C:08:E3:11:BC:96:DF:79:69:52:D8:EA Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Certificate serial: 200F7F71DCB554BA1A098242B4F33883EC23A4CF Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS42831.roa Signing time: Sun 04 Jan 2026 09:32:16 +0000 ROA not before: Sun 04 Jan 2026 09:27:16 +0000 ROA not after: Sun 03 Jan 2027 09:32:16 +0000 asID: 42831 IP address blocks: 82.21.128.0/24 maxlen: 24 82.21.131.0/24 maxlen: 24 82.22.49.0/24 maxlen: 24 82.22.56.0/24 maxlen: 24 82.22.58.0/24 maxlen: 24 82.22.145.0/24 maxlen: 24 82.24.24.0/24 maxlen: 24 82.24.33.0/24 maxlen: 24 82.24.126.0/24 maxlen: 24 82.25.41.0/24 maxlen: 24 82.25.59.0/24 maxlen: 24 82.25.187.0/24 maxlen: 24 82.25.205.0/24 maxlen: 24 82.26.120.0/24 maxlen: 24 82.26.140.0/24 maxlen: 24 82.38.18.0/24 maxlen: 24 82.38.29.0/24 maxlen: 24 82.38.30.0/24 maxlen: 24 82.38.33.0/24 maxlen: 24 82.38.48.0/24 maxlen: 24 82.38.49.0/24 maxlen: 24 82.38.50.0/24 maxlen: 24 82.38.99.0/24 maxlen: 24 82.38.182.0/24 maxlen: 24 82.39.119.0/24 maxlen: 24 82.39.132.0/24 maxlen: 24 82.39.144.0/24 maxlen: 24 82.39.153.0/24 maxlen: 24 82.39.184.0/24 maxlen: 24 82.39.204.0/24 maxlen: 24 82.41.4.0/24 maxlen: 24 82.41.16.0/24 maxlen: 24 82.41.17.0/24 maxlen: 24 82.41.18.0/24 maxlen: 24 82.41.43.0/24 maxlen: 24 82.41.59.0/24 maxlen: 24 82.41.118.0/24 maxlen: 24 82.41.121.0/24 maxlen: 24 82.41.144.0/24 maxlen: 24 82.41.145.0/24 maxlen: 24 82.41.147.0/24 maxlen: 24 82.41.201.0/24 maxlen: 24 82.41.203.0/24 maxlen: 24 2a13:9500:108::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:0f:7f:71:dc:b5:54:ba:1a:09:82:42:b4:f3:38:83:ec:23:a4:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Validity Not Before: Jan 4 09:27:16 2026 GMT Not After : Jan 3 09:32:16 2027 GMT Subject: CN=6275BDBDAA4387FB7C08E311BC96DF796952D8EA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:00:1f:d2:24:34:78:12:c2:17:69:28:67:ba: e9:7b:db:9f:f0:60:fb:7a:a6:d1:74:23:a2:90:4a: ae:65:20:b2:40:0b:76:39:4f:65:16:3f:fa:04:de: 6b:e7:00:f0:f9:e1:30:66:91:d8:fd:a7:1e:1b:97: dd:a4:e2:ed:71:5f:b8:90:9d:23:16:cc:11:d5:cf: 93:4f:30:a7:e2:6f:d4:22:46:ea:a5:da:f2:bd:a8: 78:59:e1:9e:b8:df:3c:ee:c0:6c:ef:cb:75:58:12: 2a:1b:a7:00:91:48:49:59:9a:8d:bf:3c:9d:d4:f4: 83:18:64:38:11:9a:1b:e5:ed:2d:64:c1:62:89:c1: 14:33:a1:b6:d7:33:47:00:61:ca:77:3b:07:8a:a7: 81:3c:4c:11:ba:84:1b:76:be:0b:77:80:71:9d:39: 72:c4:a8:a1:7e:15:aa:fb:3b:c4:03:64:62:4d:d0: 65:87:61:00:94:06:c1:a9:86:cc:49:46:99:a7:4d: a5:a9:f6:7f:97:45:b3:9c:c3:7a:64:97:ce:93:9b: 43:40:0c:f3:84:3b:1a:95:42:61:38:cd:12:78:3d: 2a:fe:4b:eb:95:89:30:97:a8:f0:92:12:ba:3f:b8: 50:cf:bc:79:2e:1a:be:5b:3d:9f:13:97:de:a4:9c: 40:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:75:BD:BD:AA:43:87:FB:7C:08:E3:11:BC:96:DF:79:69:52:D8:EA X509v3 Authority Key Identifier: keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS42831.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 82.21.128.0/24 82.21.131.0/24 82.22.49.0/24 82.22.56.0/24 82.22.58.0/24 82.22.145.0/24 82.24.24.0/24 82.24.33.0/24 82.24.126.0/24 82.25.41.0/24 82.25.59.0/24 82.25.187.0/24 82.25.205.0/24 82.26.120.0/24 82.26.140.0/24 82.38.18.0/24 82.38.29.0-82.38.30.255 82.38.33.0/24 82.38.48.0-82.38.50.255 82.38.99.0/24 82.38.182.0/24 82.39.119.0/24 82.39.132.0/24 82.39.144.0/24 82.39.153.0/24 82.39.184.0/24 82.39.204.0/24 82.41.4.0/24 82.41.16.0-82.41.18.255 82.41.43.0/24 82.41.59.0/24 82.41.118.0/24 82.41.121.0/24 82.41.144.0/23 82.41.147.0/24 82.41.201.0/24 82.41.203.0/24 IPv6: 2a13:9500:108::/48 Signature Algorithm: sha256WithRSAEncryption 30:fa:e7:93:90:63:c2:c8:89:e9:76:58:0d:2e:b3:fa:20:c5: 90:65:d1:30:22:d0:75:74:70:0d:bc:fa:27:c8:6c:e1:ca:7e: a8:6e:df:65:3d:2c:0c:2b:7a:d8:51:d5:2c:72:96:32:95:bc: f0:f8:59:df:15:b6:f8:cb:5f:86:5e:25:0e:03:b6:91:73:a2: 0b:92:c8:e5:4c:60:09:83:6c:4e:ab:ef:c0:46:e2:6f:f1:09: 12:72:6f:22:a4:a7:7a:41:c0:00:2f:74:da:d5:33:e5:70:a0: 1a:55:9d:bf:4c:f8:43:a6:0e:d0:f3:1b:23:3c:0b:85:0a:47: e0:7c:77:fd:00:18:b0:2f:b7:84:63:db:68:0a:a0:83:91:d0: b6:44:56:40:0b:93:b0:5f:86:59:ce:b9:e3:2e:b4:b7:60:19: 8d:70:69:fc:23:94:d8:8f:fe:76:4e:af:77:8d:97:13:6e:eb: 10:80:d5:a8:2f:46:85:6f:cf:2f:f3:87:72:8e:a9:09:34:b9: e7:0f:9d:84:1b:df:91:29:22:51:55:aa:1e:d6:aa:9f:49:90: 70:5f:b8:07:e1:ce:51:95:e0:f4:f2:48:cc:d1:d1:2b:9e:af: 5b:7f:ac:94:36:a6:55:e2:6d:7c:46:2e:1d:1c:bb:0b:29:89: d1:da:fa:63 -----BEGIN CERTIFICATE----- MIIGCDCCBPCgAwIBAgIUIA9/cdy1VLoaCYJCtPM4g+wjpM8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjE4Y2M2ZTI0MTA1ZGU2YzVjOTAwM2Q2NTI0Mzg5M2Ni M2NmZGQwMTAeFw0yNjAxMDQwOTI3MTZaFw0yNzAxMDMwOTMyMTZaMDMxMTAvBgNV BAMTKDYyNzVCREJEQUE0Mzg3RkI3QzA4RTMxMUJDOTZERjc5Njk1MkQ4RUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSAB/SJDR4EsIXaShnuul725/w YPt6ptF0I6KQSq5lILJAC3Y5T2UWP/oE3mvnAPD54TBmkdj9px4bl92k4u1xX7iQ nSMWzBHVz5NPMKfib9QiRuql2vK9qHhZ4Z643zzuwGzvy3VYEiobpwCRSElZmo2/ PJ3U9IMYZDgRmhvl7S1kwWKJwRQzobbXM0cAYcp3OweKp4E8TBG6hBt2vgt3gHGd OXLEqKF+Far7O8QDZGJN0GWHYQCUBsGphsxJRpmnTaWp9n+XRbOcw3pkl86Tm0NA DPOEOxqVQmE4zRJ4PSr+S+uViTCXqPCSEro/uFDPvHkuGr5bPZ8Tl96knECPAgMB AAGjggMSMIIDDjAdBgNVHQ4EFgQUYnW9vapDh/t8COMRvJbfeWlS2OowHwYDVR0j BBgwFoAUIYzG4kEF3mxckAPWUkOJPLPP3QEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYtYjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWEx YWY2LzAvMjE4Q0M2RTI0MTA1REU2QzVDOTAwM0Q2NTI0Mzg5M0NCM0NGREQwMS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0lZekc0a0VGM214Y2tBUFdVa09KUExQ UDNRRS5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzcxOGExYjRmLWI2NGMt NDAyYy1iZTE1LWRkODJhNDFhMWFmNi8wL0FTNDI4MzEucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwggEmBggrBgEFBQcBBwEB/wSCARUwggERMIH9BAIAATCB 9gMEAFIVgAMEAFIVgwMEAFIWMQMEAFIWOAMEAFIWOgMEAFIWkQMEAFIYGAMEAFIY IQMEAFIYfgMEAFIZKQMEAFIZOwMEAFIZuwMEAFIZzQMEAFIaeAMEAFIajAMEAFIm EjAMAwQAUiYdAwQAUiYeAwQAUiYhMAwDBARSJjADBABSJjIDBABSJmMDBABSJrYD BABSJ3cDBABSJ4QDBABSJ5ADBABSJ5kDBABSJ7gDBABSJ8wDBABSKQQwDAMEBFIp EAMEAFIpEgMEAFIpKwMEAFIpOwMEAFIpdgMEAFIpeQMEAVIpkAMEAFIpkwMEAFIp yQMEAFIpyzAPBAIAAjAJAwcAKhOVAAEIMA0GCSqGSIb3DQEBCwUAA4IBAQAw+ueT kGPCyInpdlgNLrP6IMWQZdEwItB1dHANvPonyGzhyn6obt9lPSwMK3rYUdUscpYy lbzw+FnfFbb4y1+GXiUOA7aRc6ILksjlTGAJg2xOq+/ARuJv8QkScm8ipKd6QcAA L3Ta1TPlcKAaVZ2/TPhDpg7Q8xsjPAuFCkfgfHf9ABiwL7eEY9toCqCDkdC2RFZA C5OwX4ZZzrnjLrS3YBmNcGn8I5TYj/52Tq93jZcTbusQgNWoL0aFb88v84dyjqkJ NLnnD52EG9+RKSJRVaoe1qqfSZBwX7gH4c5RleD08kjM0dErnq9bf6yUNqZV4m18 Ri4dHLsLKYnR2vpj -----END CERTIFICATE-----Generated at Mon Jan 19 23:24:01 2026 by rpki-client