This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS49981.roa File: AS49981.roa (raw, json) Hash identifier: ncOTwxJUh6cSTzZJA63Pzs23wS7p8RaChKLt9n99IGw= Subject key identifier: 9C:CE:15:DD:C5:6A:07:1A:7F:C6:56:56:62:60:5F:7A:49:1D:67:3F Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Certificate serial: 182D23EC1130D407A33479A7A813CA60CA21E6BF Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS49981.roa Signing time: Tue 06 Jan 2026 12:25:12 +0000 ROA not before: Tue 06 Jan 2026 12:20:12 +0000 ROA not after: Tue 05 Jan 2027 12:25:12 +0000 asID: 49981 IP address blocks: 82.25.43.0/24 maxlen: 24 82.29.108.0/24 maxlen: 24 82.39.175.0/24 maxlen: 24 2a13:9500:ac::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 19 Jan 2026 04:45:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:2d:23:ec:11:30:d4:07:a3:34:79:a7:a8:13:ca:60:ca:21:e6:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Validity Not Before: Jan 6 12:20:12 2026 GMT Not After : Jan 5 12:25:12 2027 GMT Subject: CN=9CCE15DDC56A071A7FC6565662605F7A491D673F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:8e:60:17:bf:19:00:96:27:ab:20:cd:d4:4c: 50:53:f8:35:da:a5:76:cf:e8:bd:54:fb:c7:af:ae: 7a:32:b2:83:f5:b7:d9:b2:35:cf:84:83:c8:0a:05: 9d:3c:13:a7:c0:7b:38:2b:f3:c4:cf:99:fe:07:53: b4:f0:ac:5b:8c:93:90:80:85:65:ae:72:7c:bb:41: 87:6d:70:08:bc:65:8b:1a:ce:a1:be:b0:28:12:be: d0:97:4e:33:13:4b:ef:97:e0:71:28:24:4f:b9:e3: 1f:6b:63:e4:43:1c:8d:92:66:92:7c:82:d0:9a:e1: d3:a9:38:2e:96:b0:b4:c9:63:ee:00:22:28:c6:43: fc:0a:e0:7c:69:71:48:d6:73:73:8b:5f:ab:64:0a: 7e:da:b8:e2:f1:ab:39:01:40:e8:a1:58:90:da:5c: c6:ca:5b:ad:38:fe:ca:97:9f:2e:73:c4:a9:fe:17: f1:ec:93:b2:f5:27:b4:ce:e3:64:6a:99:01:7a:1f: 0b:f5:ad:42:d8:3d:66:cf:0c:d5:3f:49:e2:21:60: 9e:ad:7e:f9:bc:56:81:51:4f:c2:87:dd:b3:66:ce: 9e:e6:2c:9c:e2:a1:db:e5:e3:39:a6:fc:c6:81:9b: d2:c8:62:ff:62:d3:b1:d1:0e:9e:2d:04:55:20:76: d5:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:CE:15:DD:C5:6A:07:1A:7F:C6:56:56:62:60:5F:7A:49:1D:67:3F X509v3 Authority Key Identifier: keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS49981.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 82.25.43.0/24 82.29.108.0/24 82.39.175.0/24 IPv6: 2a13:9500:ac::/48 Signature Algorithm: sha256WithRSAEncryption 06:18:ef:08:78:6c:32:a8:7c:31:c6:0c:a4:84:7b:97:a9:15: 9e:ab:d3:c1:07:bd:64:88:84:f3:23:b6:6c:a6:8d:45:14:72: a4:fb:2f:7c:d9:65:92:a3:24:a0:c8:27:ca:1f:49:3d:4e:42: 4a:ed:01:a9:58:8a:c3:0e:e4:8a:63:b7:db:6e:eb:bb:68:80: 7e:7d:ab:db:1b:74:0d:1e:f2:35:84:81:b4:d5:7d:bc:01:6d: 62:86:57:95:ef:f8:44:52:e7:54:b5:ff:fe:db:b9:43:f5:e3: b1:04:b4:d6:9f:02:1d:79:c3:f6:14:27:04:b7:ee:a8:78:96: fd:45:ca:e7:fe:b8:e3:ee:9d:8e:70:90:89:59:9d:12:b8:6c: fb:81:86:93:c0:b8:2f:fb:8d:f4:c7:01:f8:90:49:35:01:46: 19:97:bc:6c:c7:38:9c:a8:01:02:26:0c:c5:36:65:8f:6f:9b: 6a:07:91:2f:fd:29:e9:99:03:1c:1c:3a:8c:d7:9b:10:98:11: b2:be:51:c4:bb:59:24:54:52:67:45:d4:b3:02:28:ef:01:de: be:43:78:2b:a3:cc:7c:4b:ba:d3:c4:91:57:5a:fb:2d:a6:2d: 48:da:bf:88:dd:95:fe:1a:28:c3:c1:6d:0d:b3:47:79:c5:7b: 28:82:03:97 -----BEGIN CERTIFICATE----- MIIFHDCCBASgAwIBAgIUGC0j7BEw1AejNHmnqBPKYMoh5r8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjE4Y2M2ZTI0MTA1ZGU2YzVjOTAwM2Q2NTI0Mzg5M2Ni M2NmZGQwMTAeFw0yNjAxMDYxMjIwMTJaFw0yNzAxMDUxMjI1MTJaMDMxMTAvBgNV BAMTKDlDQ0UxNUREQzU2QTA3MUE3RkM2NTY1NjYyNjA1RjdBNDkxRDY3M0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+jmAXvxkAlierIM3UTFBT+DXa pXbP6L1U+8evrnoysoP1t9myNc+Eg8gKBZ08E6fAezgr88TPmf4HU7TwrFuMk5CA hWWucny7QYdtcAi8ZYsazqG+sCgSvtCXTjMTS++X4HEoJE+54x9rY+RDHI2SZpJ8 gtCa4dOpOC6WsLTJY+4AIijGQ/wK4HxpcUjWc3OLX6tkCn7auOLxqzkBQOihWJDa XMbKW604/sqXny5zxKn+F/Hsk7L1J7TO42RqmQF6Hwv1rULYPWbPDNU/SeIhYJ6t fvm8VoFRT8KH3bNmzp7mLJziodvl4zmm/MaBm9LIYv9i07HRDp4tBFUgdtUhAgMB AAGjggImMIICIjAdBgNVHQ4EFgQUnM4V3cVqBxp/xlZWYmBfekkdZz8wHwYDVR0j BBgwFoAUIYzG4kEF3mxckAPWUkOJPLPP3QEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYtYjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWEx YWY2LzAvMjE4Q0M2RTI0MTA1REU2QzVDOTAwM0Q2NTI0Mzg5M0NCM0NGREQwMS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0lZekc0a0VGM214Y2tBUFdVa09KUExQ UDNRRS5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzcxOGExYjRmLWI2NGMt NDAyYy1iZTE1LWRkODJhNDFhMWFmNi8wL0FTNDk5ODEucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwPAYIKwYBBQUHAQcBAf8ELTArMBgEAgABMBIDBABSGSsD BABSHWwDBABSJ68wDwQCAAIwCQMHACoTlQAArDANBgkqhkiG9w0BAQsFAAOCAQEA BhjvCHhsMqh8McYMpIR7l6kVnqvTwQe9ZIiE8yO2bKaNRRRypPsvfNllkqMkoMgn yh9JPU5CSu0BqViKww7kimO3227ru2iAfn2r2xt0DR7yNYSBtNV9vAFtYoZXle/4 RFLnVLX//tu5Q/XjsQS01p8CHXnD9hQnBLfuqHiW/UXK5/644+6djnCQiVmdErhs +4GGk8C4L/uN9McB+JBJNQFGGZe8bMc4nKgBAiYMxTZlj2+bageRL/0p6ZkDHBw6 jNebEJgRsr5RxLtZJFRSZ0XUswIo7wHevkN4K6PMfEu608SRV1r7LaYtSNq/iN2V /hoow8FtDbNHecV7KIIDlw== -----END CERTIFICATE-----Generated at Sun Jan 18 08:56:37 2026 by rpki-client