This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS5511.roa File: AS5511.roa (raw, json) Hash identifier: D1bWLOrN5O2YjT6QH+6O6xHxQqnjCioC+DuyBQyT6iw= Subject key identifier: FD:A6:89:57:AE:43:EB:40:EC:F7:0E:0E:96:1D:9A:87:3B:0C:D2:3F Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Certificate serial: 6573A725C6767BC56A6566C62463D2FBCB216A85 Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS5511.roa Signing time: Mon 01 Dec 2025 00:15:22 +0000 ROA not before: Mon 01 Dec 2025 00:10:22 +0000 ROA not after: Mon 30 Nov 2026 00:15:22 +0000 asID: 5511 IP address blocks: 82.21.94.0/24 maxlen: 24 82.21.169.0/24 maxlen: 24 82.22.86.0/24 maxlen: 24 82.22.96.0/24 maxlen: 24 82.22.111.0/24 maxlen: 24 82.22.114.0/24 maxlen: 24 82.22.120.0/24 maxlen: 24 82.22.121.0/24 maxlen: 24 82.22.122.0/24 maxlen: 24 82.22.123.0/24 maxlen: 24 82.22.141.0/24 maxlen: 24 82.22.144.0/24 maxlen: 24 82.22.171.0/24 maxlen: 24 82.22.175.0/24 maxlen: 24 82.22.197.0/24 maxlen: 24 82.23.3.0/24 maxlen: 24 82.23.4.0/24 maxlen: 24 82.23.5.0/24 maxlen: 24 82.23.6.0/24 maxlen: 24 82.23.15.0/24 maxlen: 24 82.23.44.0/24 maxlen: 24 82.23.45.0/24 maxlen: 24 82.23.46.0/24 maxlen: 24 82.23.47.0/24 maxlen: 24 82.23.48.0/24 maxlen: 24 82.23.50.0/24 maxlen: 24 82.23.51.0/24 maxlen: 24 82.23.52.0/24 maxlen: 24 82.23.53.0/24 maxlen: 24 82.23.55.0/24 maxlen: 24 82.23.56.0/24 maxlen: 24 82.23.57.0/24 maxlen: 24 82.23.58.0/24 maxlen: 24 82.23.61.0/24 maxlen: 24 82.23.62.0/24 maxlen: 24 82.23.63.0/24 maxlen: 24 82.23.64.0/24 maxlen: 24 82.23.69.0/24 maxlen: 24 82.23.74.0/24 maxlen: 24 82.23.79.0/24 maxlen: 24 82.23.123.0/24 maxlen: 24 82.23.134.0/24 maxlen: 24 82.24.8.0/24 maxlen: 24 82.24.17.0/24 maxlen: 24 82.24.26.0/24 maxlen: 24 82.24.63.0/24 maxlen: 24 82.24.90.0/24 maxlen: 24 82.24.105.0/24 maxlen: 24 82.24.175.0/24 maxlen: 24 82.24.244.0/24 maxlen: 24 82.24.246.0/24 maxlen: 24 82.25.134.0/24 maxlen: 24 82.25.244.0/24 maxlen: 24 82.25.246.0/24 maxlen: 24 82.26.83.0/24 maxlen: 24 82.26.204.0/24 maxlen: 24 82.26.244.0/24 maxlen: 24 82.27.20.0/24 maxlen: 24 82.27.101.0/24 maxlen: 24 82.27.103.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 05 Dec 2025 00:00:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:73:a7:25:c6:76:7b:c5:6a:65:66:c6:24:63:d2:fb:cb:21:6a:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Validity Not Before: Dec 1 00:10:22 2025 GMT Not After : Nov 30 00:15:22 2026 GMT Subject: CN=FDA68957AE43EB40ECF70E0E961D9A873B0CD23F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:fc:c0:5b:1c:a9:61:cc:6a:89:a7:eb:60:2a: 58:ea:89:e4:be:c7:2d:73:9f:14:48:9b:05:20:ea: 6b:48:c3:80:02:20:51:d8:af:fd:4d:05:07:f6:b1: bc:13:22:fa:82:cb:32:02:ea:d8:38:67:ac:9e:79: aa:ea:fc:20:76:a5:98:d1:81:c7:bf:5c:a1:de:b7: 7f:02:4d:7d:52:8d:a3:7d:8b:21:36:cf:55:e5:26: 4f:68:59:2b:86:d4:fd:98:b4:76:39:bb:ca:c6:0c: 25:fa:d1:85:59:1a:42:70:ce:d7:68:c8:b2:6f:1c: c4:df:26:1c:e5:f0:8b:5a:b5:4d:69:be:61:da:d3: 00:8a:ad:1f:10:b1:d3:3a:b5:bd:95:91:57:9a:d0: 81:f8:ac:fb:f7:c9:41:a3:ab:7f:16:bf:9b:47:3e: 93:69:be:72:e9:12:7b:8e:a1:33:ea:d2:dd:9b:15: dd:ef:b6:f7:e8:16:d6:1a:b3:0a:5d:56:d4:b7:93: 46:92:fa:37:49:d8:60:dd:c8:89:68:b0:3e:de:fc: 5b:c8:b6:56:df:5c:e8:47:b4:be:95:70:0c:b7:66: 2f:1d:92:02:32:b8:04:ab:ab:47:8d:db:3b:7a:55: 0b:6b:da:78:5b:6d:e2:de:8e:ab:4c:1b:fb:c4:62: 96:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:A6:89:57:AE:43:EB:40:EC:F7:0E:0E:96:1D:9A:87:3B:0C:D2:3F X509v3 Authority Key Identifier: keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS5511.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 82.21.94.0/24 82.21.169.0/24 82.22.86.0/24 82.22.96.0/24 82.22.111.0/24 82.22.114.0/24 82.22.120.0/22 82.22.141.0/24 82.22.144.0/24 82.22.171.0/24 82.22.175.0/24 82.22.197.0/24 82.23.3.0-82.23.6.255 82.23.15.0/24 82.23.44.0-82.23.48.255 82.23.50.0-82.23.53.255 82.23.55.0-82.23.58.255 82.23.61.0-82.23.64.255 82.23.69.0/24 82.23.74.0/24 82.23.79.0/24 82.23.123.0/24 82.23.134.0/24 82.24.8.0/24 82.24.17.0/24 82.24.26.0/24 82.24.63.0/24 82.24.90.0/24 82.24.105.0/24 82.24.175.0/24 82.24.244.0/24 82.24.246.0/24 82.25.134.0/24 82.25.244.0/24 82.25.246.0/24 82.26.83.0/24 82.26.204.0/24 82.26.244.0/24 82.27.20.0/24 82.27.101.0/24 82.27.103.0/24 Signature Algorithm: sha256WithRSAEncryption 18:ba:d6:be:44:a4:30:01:b1:51:cc:65:ab:51:0a:c5:20:af: d2:da:c2:dd:64:89:ee:4a:fd:0b:59:58:9c:5d:5e:bf:c5:f7: 58:41:31:d4:bf:cb:1f:a7:c1:3a:29:94:17:b8:86:cb:09:25: f1:99:5c:ba:f7:2e:95:01:fc:67:3f:d1:73:c5:b9:44:bb:96: 9c:e3:b8:7a:bf:c4:6e:8e:f0:28:cd:5b:0b:f3:88:2b:11:96: 5c:48:48:a1:48:59:6e:a4:10:e9:12:36:73:f3:68:78:a8:50: 4b:1a:a0:b9:8d:cf:1e:47:09:5b:d9:29:81:49:bf:55:e3:28: 2d:90:ea:f9:7b:ea:fd:fd:ef:75:e4:50:a4:90:dc:f9:a6:98: fe:96:3a:83:c8:a1:bd:8f:b3:fe:f9:25:16:7d:20:d5:60:01: b8:a0:f9:c6:9f:48:99:88:55:73:db:38:00:63:df:dc:6e:18: 86:19:81:95:ae:7e:bc:4e:01:48:c8:05:54:0b:17:a9:7e:78: 94:d3:69:8f:c3:81:7d:7d:27:3b:c2:92:1c:8d:79:e7:79:ae: 48:ee:d6:4d:01:5e:eb:c5:d5:ac:6c:1b:c0:68:1d:af:42:6d: 3f:2e:77:a3:b3:bd:ca:4e:d7:bc:6f:7f:e3:ce:d2:ea:6a:1d: 4e:bb:24:06 -----BEGIN CERTIFICATE----- MIIGIDCCBQigAwIBAgIUZXOnJcZ2e8VqZWbGJGPS+8shaoUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjE4Y2M2ZTI0MTA1ZGU2YzVjOTAwM2Q2NTI0Mzg5M2Ni M2NmZGQwMTAeFw0yNTEyMDEwMDEwMjJaFw0yNjExMzAwMDE1MjJaMDMxMTAvBgNV BAMTKEZEQTY4OTU3QUU0M0VCNDBFQ0Y3MEUwRTk2MUQ5QTg3M0IwQ0QyM0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDP/MBbHKlhzGqJp+tgKljqieS+ xy1znxRImwUg6mtIw4ACIFHYr/1NBQf2sbwTIvqCyzIC6tg4Z6yeearq/CB2pZjR gce/XKHet38CTX1SjaN9iyE2z1XlJk9oWSuG1P2YtHY5u8rGDCX60YVZGkJwztdo yLJvHMTfJhzl8ItatU1pvmHa0wCKrR8QsdM6tb2VkVea0IH4rPv3yUGjq38Wv5tH PpNpvnLpEnuOoTPq0t2bFd3vtvfoFtYaswpdVtS3k0aS+jdJ2GDdyIlosD7e/FvI tlbfXOhHtL6VcAy3Zi8dkgIyuASrq0eN2zt6VQtr2nhbbeLejqtMG/vEYpapAgMB AAGjggMqMIIDJjAdBgNVHQ4EFgQU/aaJV65D60Ds9w4Olh2ahzsM0j8wHwYDVR0j BBgwFoAUIYzG4kEF3mxckAPWUkOJPLPP3QEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYtYjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWEx YWY2LzAvMjE4Q0M2RTI0MTA1REU2QzVDOTAwM0Q2NTI0Mzg5M0NCM0NGREQwMS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0lZekc0a0VGM214Y2tBUFdVa09KUExQ UDNRRS5jZXIweQYIKwYBBQUHAQsEbTBrMGkGCCsGAQUFBzALhl1yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzcxOGExYjRmLWI2NGMt NDAyYy1iZTE1LWRkODJhNDFhMWFmNi8wL0FTNTUxMS5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjCCAT8GCCsGAQUFBwEHAQH/BIIBLjCCASowggEmBAIAATCC AR4DBABSFV4DBABSFakDBABSFlYDBABSFmADBABSFm8DBABSFnIDBAJSFngDBABS Fo0DBABSFpADBABSFqsDBABSFq8DBABSFsUwDAMEAFIXAwMEAFIXBgMEAFIXDzAM AwQCUhcsAwQAUhcwMAwDBAFSFzIDBAFSFzQwDAMEAFIXNwMEAFIXOjAMAwQAUhc9 AwQAUhdAAwQAUhdFAwQAUhdKAwQAUhdPAwQAUhd7AwQAUheGAwQAUhgIAwQAUhgR AwQAUhgaAwQAUhg/AwQAUhhaAwQAUhhpAwQAUhivAwQAUhj0AwQAUhj2AwQAUhmG AwQAUhn0AwQAUhn2AwQAUhpTAwQAUhrMAwQAUhr0AwQAUhsUAwQAUhtlAwQAUhtn MA0GCSqGSIb3DQEBCwUAA4IBAQAYuta+RKQwAbFRzGWrUQrFIK/S2sLdZInuSv0L WVicXV6/xfdYQTHUv8sfp8E6KZQXuIbLCSXxmVy69y6VAfxnP9FzxblEu5ac47h6 v8RujvAozVsL84grEZZcSEihSFlupBDpEjZz82h4qFBLGqC5jc8eRwlb2SmBSb9V 4ygtkOr5e+r9/e915FCkkNz5ppj+ljqDyKG9j7P++SUWfSDVYAG4oPnGn0iZiFVz 2zgAY9/cbhiGGYGVrn68TgFIyAVUCxepfniU02mPw4F9fSc7wpIcjXnnea5I7tZN AV7rxdWsbBvAaB2vQm0/Lnejs73KTte8b3/jztLqah1OuyQG -----END CERTIFICATE-----Generated at Thu Dec 4 05:59:20 2025 by rpki-client