This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS5065.roa File: AS5065.roa (raw, json) Hash identifier: KJ5PXw/pf7KfJdGm3bDiwmq2zu2+QexEbMGTH/mNxA4= Subject key identifier: 89:F1:B7:1B:93:87:0F:CB:C3:8C:04:54:92:EC:27:F9:A9:65:48:7B Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Certificate serial: 6158D636989C2C3723AD05424EBF138285F79CB6 Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS5065.roa Signing time: Fri 07 Nov 2025 09:51:58 +0000 ROA not before: Fri 07 Nov 2025 09:46:58 +0000 ROA not after: Fri 06 Nov 2026 09:51:58 +0000 asID: 5065 IP address blocks: 82.21.64.0/24 maxlen: 24 82.21.154.0/24 maxlen: 24 82.21.162.0/24 maxlen: 24 82.21.170.0/24 maxlen: 24 82.21.180.0/24 maxlen: 24 82.21.192.0/24 maxlen: 24 82.21.194.0/24 maxlen: 24 82.21.198.0/24 maxlen: 24 82.21.207.0/24 maxlen: 24 82.22.199.0/24 maxlen: 24 82.24.194.0/24 maxlen: 24 82.25.143.0/24 maxlen: 24 82.29.7.0/24 maxlen: 24 82.29.20.0/24 maxlen: 24 82.29.37.0/24 maxlen: 24 82.29.46.0/24 maxlen: 24 82.29.55.0/24 maxlen: 24 82.29.68.0/24 maxlen: 24 82.29.77.0/24 maxlen: 24 82.29.78.0/24 maxlen: 24 82.29.90.0/24 maxlen: 24 82.29.91.0/24 maxlen: 24 82.29.99.0/24 maxlen: 24 82.29.150.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 05 Dec 2025 00:00:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:58:d6:36:98:9c:2c:37:23:ad:05:42:4e:bf:13:82:85:f7:9c:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Validity Not Before: Nov 7 09:46:58 2025 GMT Not After : Nov 6 09:51:58 2026 GMT Subject: CN=89F1B71B93870FCBC38C045492EC27F9A965487B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:0f:3e:bc:ab:3f:52:fe:1c:09:58:54:d2:33: 37:da:90:56:b0:09:07:81:5c:b9:42:70:47:17:63: e8:80:8c:ee:42:36:d9:d3:c1:61:ec:65:c5:12:e2: 77:8f:be:95:2d:7d:d4:62:fd:30:6c:41:c6:9a:58: f8:f2:55:50:24:84:6a:73:39:c5:d2:52:57:b1:7e: ef:85:6a:37:c1:a6:6f:7f:f3:80:15:30:8a:54:bb: 9d:7d:92:bf:76:1b:98:61:17:32:5f:0d:b4:10:99: 1f:c0:3d:3a:ff:53:cf:65:31:1c:ea:79:3a:87:c1: 58:90:07:09:7b:2d:8a:ab:f9:aa:22:d7:62:39:f6: 7f:50:a7:95:ab:c5:b4:59:f8:6b:ca:f0:ca:34:99: 8f:56:4d:44:ee:df:a4:2d:c1:04:cf:16:33:e8:2d: 57:46:0a:03:57:77:5c:62:61:7f:c8:18:c9:4c:f7: f7:63:c4:61:5d:73:e8:26:57:6f:47:57:1f:9b:e6: d4:35:c5:d3:15:9e:d1:40:32:9f:e9:38:f3:d5:0c: c9:0e:08:7a:b5:05:2c:0d:09:74:8e:23:9d:16:78: 28:25:bb:de:85:f6:98:9c:72:5f:5e:4b:8c:06:57: 7b:68:d7:e2:c1:16:4f:cf:b8:f0:dd:c2:1d:11:4a: fc:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:F1:B7:1B:93:87:0F:CB:C3:8C:04:54:92:EC:27:F9:A9:65:48:7B X509v3 Authority Key Identifier: keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS5065.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 82.21.64.0/24 82.21.154.0/24 82.21.162.0/24 82.21.170.0/24 82.21.180.0/24 82.21.192.0/24 82.21.194.0/24 82.21.198.0/24 82.21.207.0/24 82.22.199.0/24 82.24.194.0/24 82.25.143.0/24 82.29.7.0/24 82.29.20.0/24 82.29.37.0/24 82.29.46.0/24 82.29.55.0/24 82.29.68.0/24 82.29.77.0-82.29.78.255 82.29.90.0/23 82.29.99.0/24 82.29.150.0/24 Signature Algorithm: sha256WithRSAEncryption 82:52:84:ee:86:ae:f7:30:15:5a:9e:38:7f:9d:35:ea:7c:bb: af:17:a0:06:2b:09:fd:29:04:39:60:db:d3:fc:31:aa:03:74: 41:bd:61:e2:24:29:9f:c4:b3:2c:7a:9d:6a:74:50:a5:19:be: 04:3f:aa:35:9e:fc:9b:8f:8e:f2:15:bb:bb:c5:b2:4f:e6:36: 06:14:c3:0c:48:67:e1:a1:90:f4:19:59:31:a0:06:f6:b6:a5: 6e:da:56:e7:40:3d:2c:ca:62:9e:75:50:9d:3c:e7:7e:7b:e2: 3f:be:97:1b:a8:18:bc:cf:c6:84:a5:66:65:8c:fc:09:cb:98: a2:5f:db:e9:63:d6:41:af:18:ef:86:ea:ee:ca:57:2b:8f:61: 5f:44:22:5e:36:90:2a:4e:d2:20:e3:88:e0:65:a3:69:41:00: 52:a6:26:f2:b1:21:b9:c8:33:60:7c:21:13:8a:74:e3:fb:3f: a2:1f:7e:f1:10:02:12:a6:af:ca:67:b7:31:33:42:f8:20:e5: 7b:aa:d1:8e:3e:5a:75:17:50:6d:70:64:39:f0:02:37:40:d8: fe:63:57:ab:02:38:46:01:1b:2a:44:e2:23:bf:9a:dd:fb:f9: b4:e0:05:6d:53:5b:6f:67:eb:4b:a1:f0:c3:a5:57:ee:b9:2f: c2:fd:c9:36 -----BEGIN CERTIFICATE----- MIIFiTCCBHGgAwIBAgIUYVjWNpicLDcjrQVCTr8TgoX3nLYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjE4Y2M2ZTI0MTA1ZGU2YzVjOTAwM2Q2NTI0Mzg5M2Ni M2NmZGQwMTAeFw0yNTExMDcwOTQ2NThaFw0yNjExMDYwOTUxNThaMDMxMTAvBgNV BAMTKDg5RjFCNzFCOTM4NzBGQ0JDMzhDMDQ1NDkyRUMyN0Y5QTk2NTQ4N0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDvDz68qz9S/hwJWFTSMzfakFaw CQeBXLlCcEcXY+iAjO5CNtnTwWHsZcUS4nePvpUtfdRi/TBsQcaaWPjyVVAkhGpz OcXSUlexfu+FajfBpm9/84AVMIpUu519kr92G5hhFzJfDbQQmR/APTr/U89lMRzq eTqHwViQBwl7LYqr+aoi12I59n9Qp5WrxbRZ+GvK8Mo0mY9WTUTu36QtwQTPFjPo LVdGCgNXd1xiYX/IGMlM9/djxGFdc+gmV29HVx+b5tQ1xdMVntFAMp/pOPPVDMkO CHq1BSwNCXSOI50WeCglu96F9piccl9eS4wGV3to1+LBFk/PuPDdwh0RSvyDAgMB AAGjggKTMIICjzAdBgNVHQ4EFgQUifG3G5OHD8vDjARUkuwn+allSHswHwYDVR0j BBgwFoAUIYzG4kEF3mxckAPWUkOJPLPP3QEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYtYjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWEx YWY2LzAvMjE4Q0M2RTI0MTA1REU2QzVDOTAwM0Q2NTI0Mzg5M0NCM0NGREQwMS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0lZekc0a0VGM214Y2tBUFdVa09KUExQ UDNRRS5jZXIweQYIKwYBBQUHAQsEbTBrMGkGCCsGAQUFBzALhl1yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzcxOGExYjRmLWI2NGMt NDAyYy1iZTE1LWRkODJhNDFhMWFmNi8wL0FTNTA2NS5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjCBqQYIKwYBBQUHAQcBAf8EgZkwgZYwgZMEAgABMIGMAwQA UhVAAwQAUhWaAwQAUhWiAwQAUhWqAwQAUhW0AwQAUhXAAwQAUhXCAwQAUhXGAwQA UhXPAwQAUhbHAwQAUhjCAwQAUhmPAwQAUh0HAwQAUh0UAwQAUh0lAwQAUh0uAwQA Uh03AwQAUh1EMAwDBABSHU0DBABSHU4DBAFSHVoDBABSHWMDBABSHZYwDQYJKoZI hvcNAQELBQADggEBAIJShO6GrvcwFVqeOH+dNep8u68XoAYrCf0pBDlg29P8MaoD dEG9YeIkKZ/Esyx6nWp0UKUZvgQ/qjWe/JuPjvIVu7vFsk/mNgYUwwxIZ+GhkPQZ WTGgBva2pW7aVudAPSzKYp51UJ0853574j++lxuoGLzPxoSlZmWM/AnLmKJf2+lj 1kGvGO+G6u7KVyuPYV9EIl42kCpO0iDjiOBlo2lBAFKmJvKxIbnIM2B8IROKdOP7 P6IffvEQAhKmr8pntzEzQvgg5Xuq0Y4+WnUXUG1wZDnwAjdA2P5jV6sCOEYBGypE 4iO/mt37+bTgBW1TW29n60uh8MOlV+65L8L9yTY= -----END CERTIFICATE-----Generated at Thu Dec 4 06:00:01 2025 by rpki-client