This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS42831.roa File: AS42831.roa (raw, json) Hash identifier: Njwi99JiKTRx1P5y3oWqq29ccStLs2JsMZfJBG7qwXk= Subject key identifier: E8:8A:65:FD:52:EA:48:95:67:25:E6:D1:FC:EF:51:CA:19:29:26:54 Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Certificate serial: 6D2A6AA91C4B3FA2F4E1CE414F8B0D03B661587F Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS42831.roa Signing time: Sun 30 Nov 2025 15:14:54 +0000 ROA not before: Sun 30 Nov 2025 15:09:54 +0000 ROA not after: Sun 29 Nov 2026 15:14:54 +0000 asID: 42831 IP address blocks: 82.21.128.0/24 maxlen: 24 82.21.131.0/24 maxlen: 24 82.22.56.0/24 maxlen: 24 82.22.145.0/24 maxlen: 24 82.26.120.0/24 maxlen: 24 82.26.140.0/24 maxlen: 24 82.38.18.0/24 maxlen: 24 82.38.29.0/24 maxlen: 24 82.38.30.0/24 maxlen: 24 82.38.33.0/24 maxlen: 24 82.38.48.0/24 maxlen: 24 82.38.49.0/24 maxlen: 24 82.38.50.0/24 maxlen: 24 82.38.99.0/24 maxlen: 24 82.39.144.0/24 maxlen: 24 82.39.153.0/24 maxlen: 24 2a13:9500:108::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 11:00:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:2a:6a:a9:1c:4b:3f:a2:f4:e1:ce:41:4f:8b:0d:03:b6:61:58:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Validity Not Before: Nov 30 15:09:54 2025 GMT Not After : Nov 29 15:14:54 2026 GMT Subject: CN=E88A65FD52EA48956725E6D1FCEF51CA19292654 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:6c:9f:cc:c0:55:61:6b:77:03:94:cf:01:bd: 60:12:34:fd:36:84:08:21:d2:0b:ea:9b:ca:d4:69: b3:04:53:93:f3:24:42:a7:db:08:55:86:f1:cb:f6: 72:8a:24:f9:82:e8:26:7b:6f:83:bb:42:ae:5f:36: 9b:5b:af:da:b3:25:e8:d5:38:cd:c1:b2:df:5e:7c: 4a:d4:85:14:ba:6a:88:08:85:c6:c4:43:48:bf:39: 7d:1d:10:dc:12:4e:db:c5:19:bd:71:62:cd:9d:0c: 37:d3:39:42:78:e2:e5:7c:1c:bc:15:73:6a:6e:26: 4e:9b:a3:a2:53:eb:6e:60:aa:20:5e:66:2b:5f:f3: 8f:ec:70:a1:0a:77:d7:67:14:dc:ae:d7:0f:80:a6: 51:55:b2:cb:bb:59:49:b8:88:32:db:a8:af:7f:a8: 03:a4:15:d4:75:0a:4b:3c:1b:57:24:c1:8c:b7:e3: d7:c3:01:79:91:59:f4:67:bd:be:de:93:7d:06:b4: 4e:06:64:1d:5a:db:79:9d:19:c5:74:2a:59:dc:7c: 5e:36:44:40:b4:d9:ea:b5:76:80:0d:d3:d2:ef:e6: fd:20:c6:a0:43:c1:28:5a:18:76:5b:c8:1a:2f:86: df:a7:dd:34:a1:98:1d:0f:d4:b1:4a:b5:2b:68:af: 84:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:8A:65:FD:52:EA:48:95:67:25:E6:D1:FC:EF:51:CA:19:29:26:54 X509v3 Authority Key Identifier: keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS42831.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 82.21.128.0/24 82.21.131.0/24 82.22.56.0/24 82.22.145.0/24 82.26.120.0/24 82.26.140.0/24 82.38.18.0/24 82.38.29.0-82.38.30.255 82.38.33.0/24 82.38.48.0-82.38.50.255 82.38.99.0/24 82.39.144.0/24 82.39.153.0/24 IPv6: 2a13:9500:108::/48 Signature Algorithm: sha256WithRSAEncryption 2d:e2:b4:a6:2f:ee:68:80:6e:11:d6:a3:74:a5:d1:2c:63:5a: 75:d9:86:2a:78:a6:0d:24:59:7c:da:b9:dd:d1:ee:a0:87:6f: da:79:0d:40:f0:a8:9e:77:9b:fc:dd:ae:ed:f6:63:c3:ff:f9: 8d:40:82:f9:b3:0c:1e:f9:55:59:d8:53:e7:2b:91:8f:ba:7c: f0:26:91:26:e1:25:03:8b:9e:22:43:d7:35:8c:7f:b3:2a:e8: dd:2b:5d:ad:a7:b2:ba:cc:da:91:fe:cc:21:38:4b:64:c4:48: 57:16:bb:76:f0:11:48:d0:fe:82:98:19:95:1a:f9:5b:64:22: 19:5f:1c:f5:18:dd:78:d1:2c:15:d0:fd:e3:61:cf:f6:37:60: ae:e1:64:a5:77:bb:de:3b:a9:48:1a:be:a9:45:d1:6a:63:3c: f1:74:e2:38:1f:a6:75:bc:14:08:2a:29:e6:e5:52:28:9d:b8: 97:d2:05:1b:c1:c1:39:b9:38:a4:7b:3b:4f:36:49:44:12:2f: 12:67:6b:f3:0d:fc:4b:28:4a:e8:8c:33:f8:24:74:22:c2:15: bf:a8:dc:09:2f:db:a9:44:64:46:ff:a7:59:26:0b:88:64:ba: ee:1f:d1:8e:f1:63:84:87:d4:9b:4a:a8:a6:6b:12:f8:60:bf: e8:50:8e:8d -----BEGIN CERTIFICATE----- MIIFaTCCBFGgAwIBAgIUbSpqqRxLP6L04c5BT4sNA7ZhWH8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjE4Y2M2ZTI0MTA1ZGU2YzVjOTAwM2Q2NTI0Mzg5M2Ni M2NmZGQwMTAeFw0yNTExMzAxNTA5NTRaFw0yNjExMjkxNTE0NTRaMDMxMTAvBgNV BAMTKEU4OEE2NUZENTJFQTQ4OTU2NzI1RTZEMUZDRUY1MUNBMTkyOTI2NTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCfbJ/MwFVha3cDlM8BvWASNP02 hAgh0gvqm8rUabMEU5PzJEKn2whVhvHL9nKKJPmC6CZ7b4O7Qq5fNptbr9qzJejV OM3Bst9efErUhRS6aogIhcbEQ0i/OX0dENwSTtvFGb1xYs2dDDfTOUJ44uV8HLwV c2puJk6bo6JT625gqiBeZitf84/scKEKd9dnFNyu1w+AplFVssu7WUm4iDLbqK9/ qAOkFdR1Cks8G1ckwYy349fDAXmRWfRnvb7ek30GtE4GZB1a23mdGcV0KlncfF42 REC02eq1doAN09Lv5v0gxqBDwShaGHZbyBovht+n3TShmB0P1LFKtStor4SLAgMB AAGjggJzMIICbzAdBgNVHQ4EFgQU6Ipl/VLqSJVnJebR/O9RyhkpJlQwHwYDVR0j BBgwFoAUIYzG4kEF3mxckAPWUkOJPLPP3QEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYtYjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWEx YWY2LzAvMjE4Q0M2RTI0MTA1REU2QzVDOTAwM0Q2NTI0Mzg5M0NCM0NGREQwMS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0lZekc0a0VGM214Y2tBUFdVa09KUExQ UDNRRS5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzcxOGExYjRmLWI2NGMt NDAyYy1iZTE1LWRkODJhNDFhMWFmNi8wL0FTNDI4MzEucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwgYgGCCsGAQUFBwEHAQH/BHkwdzBkBAIAATBeAwQAUhWA AwQAUhWDAwQAUhY4AwQAUhaRAwQAUhp4AwQAUhqMAwQAUiYSMAwDBABSJh0DBABS Jh4DBABSJiEwDAMEBFImMAMEAFImMgMEAFImYwMEAFInkAMEAFInmTAPBAIAAjAJ AwcAKhOVAAEIMA0GCSqGSIb3DQEBCwUAA4IBAQAt4rSmL+5ogG4R1qN0pdEsY1p1 2YYqeKYNJFl82rnd0e6gh2/aeQ1A8Kied5v83a7t9mPD//mNQIL5swwe+VVZ2FPn K5GPunzwJpEm4SUDi54iQ9c1jH+zKujdK12tp7K6zNqR/swhOEtkxEhXFrt28BFI 0P6CmBmVGvlbZCIZXxz1GN140SwV0P3jYc/2N2Cu4WSld7veO6lIGr6pRdFqYzzx dOI4H6Z1vBQIKinm5VIonbiX0gUbwcE5uTikeztPNklEEi8SZ2vzDfxLKErojDP4 JHQiwhW/qNwJL9upRGRG/6dZJguIZLruH9GO8WOEh9SbSqimaxL4YL/oUI6N -----END CERTIFICATE-----Generated at Fri Dec 5 16:20:32 2025 by rpki-client