This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS57043.roa File: AS57043.roa (raw, json) Hash identifier: k64xhfrDkhxtIUQXpuvLA/C1jgdVHGhF/XGoiLuElq4= Subject key identifier: 31:0F:68:56:59:6D:D6:CC:40:34:D6:40:FE:E8:D5:21:78:38:66:DB Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Certificate serial: 0CDE370F5285C9CEF3AFD5CE4823CD40934C60A4 Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS57043.roa Signing time: Wed 12 Nov 2025 07:40:20 +0000 ROA not before: Wed 12 Nov 2025 07:35:20 +0000 ROA not after: Wed 11 Nov 2026 07:40:20 +0000 asID: 57043 IP address blocks: 82.22.36.0/24 maxlen: 24 82.22.38.0/24 maxlen: 24 82.22.47.0/24 maxlen: 24 82.22.50.0/24 maxlen: 24 82.22.53.0/24 maxlen: 24 82.25.20.0/24 maxlen: 24 82.25.58.0/24 maxlen: 24 82.26.91.0/24 maxlen: 24 82.26.94.0/24 maxlen: 24 82.26.150.0/24 maxlen: 24 82.26.151.0/24 maxlen: 24 82.26.171.0/24 maxlen: 24 82.26.193.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 05 Dec 2025 00:00:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:de:37:0f:52:85:c9:ce:f3:af:d5:ce:48:23:cd:40:93:4c:60:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Validity Not Before: Nov 12 07:35:20 2025 GMT Not After : Nov 11 07:40:20 2026 GMT Subject: CN=310F6856596DD6CC4034D640FEE8D521783866DB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:92:f3:86:58:54:50:e1:3a:b3:3b:56:ba:ad: 1f:34:e4:15:0f:c1:bb:4d:e6:e2:2e:98:98:d7:40: b2:b7:4c:14:8f:fd:a2:6f:c0:6a:08:32:7a:04:22: e5:ab:f4:e8:ee:2b:91:0d:65:78:7f:10:35:df:e5: e5:5e:39:4b:a3:20:da:7f:e1:fe:9c:59:d2:72:b4: c1:65:59:e2:75:db:3a:f1:5c:84:ba:0b:4c:01:b7: a4:48:a5:5a:de:cf:85:c6:4e:82:59:dc:e4:58:fd: e0:24:31:78:26:ba:9d:84:34:5e:6b:3f:16:9b:f2: 03:1d:2e:a0:b7:b8:d4:bd:0f:70:8c:42:67:0f:28: 5e:b6:f7:cf:54:5e:1f:5f:d9:a4:41:7a:0e:11:51: f9:9a:37:91:79:b6:2f:33:92:6f:09:6c:f8:41:9f: c5:0c:c2:d3:a1:96:f1:1b:c1:f7:72:96:9e:3b:69: ba:cd:7a:2a:9f:95:6f:9e:2b:b5:f7:0a:db:f7:0f: a2:27:2c:b3:b9:5e:9c:d4:0e:53:85:e2:f0:ed:75: 5b:97:39:4e:7c:14:5d:64:a2:07:83:52:eb:17:d2: 0c:2d:b4:c7:00:1e:22:a1:e1:8d:cb:03:08:cd:f5: 29:27:33:83:fe:04:f5:91:6c:a0:64:bc:f6:fb:1a: 27:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:0F:68:56:59:6D:D6:CC:40:34:D6:40:FE:E8:D5:21:78:38:66:DB X509v3 Authority Key Identifier: keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS57043.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 82.22.36.0/24 82.22.38.0/24 82.22.47.0/24 82.22.50.0/24 82.22.53.0/24 82.25.20.0/24 82.25.58.0/24 82.26.91.0/24 82.26.94.0/24 82.26.150.0/23 82.26.171.0/24 82.26.193.0/24 Signature Algorithm: sha256WithRSAEncryption 46:27:e6:48:c2:49:ae:3b:aa:7b:75:76:fe:8f:c7:00:f0:1d: 24:91:52:4c:95:bc:d8:a3:40:98:31:37:7f:64:83:7c:e0:6d: 43:a4:3b:75:df:2f:89:a4:59:8c:a4:a9:41:5d:27:83:c7:d7: 23:11:81:f0:79:5c:ca:df:6b:45:1e:45:e7:45:ac:e9:35:cb: 79:49:1b:3a:5f:9f:62:47:86:6f:be:54:0c:40:6a:67:7a:5e: fc:bb:ec:73:22:55:02:70:1f:0f:c3:e0:13:49:c9:a2:cc:8d: 7b:d0:7d:82:3c:b3:cd:17:f0:5b:e6:31:92:cd:60:6f:e5:14: b1:bb:33:9e:52:82:46:8f:59:d4:fe:0d:88:2d:f4:8e:3d:05: 72:bf:b6:47:7c:a1:86:79:be:06:fb:73:37:16:a2:9b:bd:c5: 6c:4c:70:58:81:bb:f4:a2:53:45:94:36:5a:7a:bf:5a:37:31: 90:23:af:98:bd:b1:28:88:eb:63:c0:f1:8d:f1:26:25:7c:22: 31:62:e8:a7:2b:82:f9:a4:e3:6e:e3:db:d0:99:f7:c1:59:48: 51:92:37:e5:5f:e2:c9:01:bc:03:78:5e:9a:da:b7:39:da:3f: 21:40:b3:27:e8:b7:19:f1:7f:af:82:da:e5:93:81:ef:7e:c9: f5:13:f1:3d -----BEGIN CERTIFICATE----- MIIFQTCCBCmgAwIBAgIUDN43D1KFyc7zr9XOSCPNQJNMYKQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjE4Y2M2ZTI0MTA1ZGU2YzVjOTAwM2Q2NTI0Mzg5M2Ni M2NmZGQwMTAeFw0yNTExMTIwNzM1MjBaFw0yNjExMTEwNzQwMjBaMDMxMTAvBgNV BAMTKDMxMEY2ODU2NTk2REQ2Q0M0MDM0RDY0MEZFRThENTIxNzgzODY2REIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZkvOGWFRQ4TqzO1a6rR805BUP wbtN5uIumJjXQLK3TBSP/aJvwGoIMnoEIuWr9OjuK5ENZXh/EDXf5eVeOUujINp/ 4f6cWdJytMFlWeJ12zrxXIS6C0wBt6RIpVrez4XGToJZ3ORY/eAkMXgmup2ENF5r Pxab8gMdLqC3uNS9D3CMQmcPKF62989UXh9f2aRBeg4RUfmaN5F5ti8zkm8JbPhB n8UMwtOhlvEbwfdylp47abrNeiqflW+eK7X3Ctv3D6InLLO5XpzUDlOF4vDtdVuX OU58FF1kogeDUusX0gwttMcAHiKh4Y3LAwjN9SknM4P+BPWRbKBkvPb7GiflAgMB AAGjggJLMIICRzAdBgNVHQ4EFgQUMQ9oVllt1sxANNZA/ujVIXg4ZtswHwYDVR0j BBgwFoAUIYzG4kEF3mxckAPWUkOJPLPP3QEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYtYjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWEx YWY2LzAvMjE4Q0M2RTI0MTA1REU2QzVDOTAwM0Q2NTI0Mzg5M0NCM0NGREQwMS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0lZekc0a0VGM214Y2tBUFdVa09KUExQ UDNRRS5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzcxOGExYjRmLWI2NGMt NDAyYy1iZTE1LWRkODJhNDFhMWFmNi8wL0FTNTcwNDMucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwYQYIKwYBBQUHAQcBAf8EUjBQME4EAgABMEgDBABSFiQD BABSFiYDBABSFi8DBABSFjIDBABSFjUDBABSGRQDBABSGToDBABSGlsDBABSGl4D BAFSGpYDBABSGqsDBABSGsEwDQYJKoZIhvcNAQELBQADggEBAEYn5kjCSa47qnt1 dv6PxwDwHSSRUkyVvNijQJgxN39kg3zgbUOkO3XfL4mkWYykqUFdJ4PH1yMRgfB5 XMrfa0UeRedFrOk1y3lJGzpfn2JHhm++VAxAamd6Xvy77HMiVQJwHw/D4BNJyaLM jXvQfYI8s80X8FvmMZLNYG/lFLG7M55SgkaPWdT+DYgt9I49BXK/tkd8oYZ5vgb7 czcWopu9xWxMcFiBu/SiU0WUNlp6v1o3MZAjr5i9sSiI62PA8Y3xJiV8IjFi6Kcr gvmk427j29CZ98FZSFGSN+Vf4skBvAN4XpratznaPyFAsyfotxnxf6+C2uWTge9+ yfUT8T0= -----END CERTIFICATE-----Generated at Thu Dec 4 05:59:58 2025 by rpki-client