This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS57043.roa File: AS57043.roa (raw, json) Hash identifier: ovAUHIkwSrhKNjNbXFRF/ts5DMlaqJe2lFqV+HHHu4Y= Subject key identifier: 35:B4:78:43:C5:D8:23:FD:9B:BA:4E:82:CE:AD:AB:1F:5D:3D:9F:58 Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Certificate serial: 3565B2D2C437F768BA71B300B17A720BD24DA61F Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS57043.roa Signing time: Fri 09 Jan 2026 15:05:45 +0000 ROA not before: Fri 09 Jan 2026 15:00:45 +0000 ROA not after: Fri 08 Jan 2027 15:05:45 +0000 asID: 57043 IP address blocks: 82.21.53.0/24 maxlen: 24 82.22.36.0/24 maxlen: 24 82.22.38.0/24 maxlen: 24 82.22.47.0/24 maxlen: 24 82.22.50.0/24 maxlen: 24 82.22.53.0/24 maxlen: 24 82.25.20.0/24 maxlen: 24 82.26.91.0/24 maxlen: 24 82.26.94.0/24 maxlen: 24 82.26.150.0/24 maxlen: 24 82.26.151.0/24 maxlen: 24 82.26.171.0/24 maxlen: 24 82.26.193.0/24 maxlen: 24 82.40.37.0/24 maxlen: 24 82.40.38.0/24 maxlen: 24 82.40.49.0/24 maxlen: 24 82.40.56.0/24 maxlen: 24 82.40.57.0/24 maxlen: 24 82.40.58.0/24 maxlen: 24 82.40.60.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 19 Jan 2026 04:45:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:65:b2:d2:c4:37:f7:68:ba:71:b3:00:b1:7a:72:0b:d2:4d:a6:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Validity Not Before: Jan 9 15:00:45 2026 GMT Not After : Jan 8 15:05:45 2027 GMT Subject: CN=35B47843C5D823FD9BBA4E82CEADAB1F5D3D9F58 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:22:61:3f:76:ea:a5:42:81:9d:4c:22:0f:7d: 70:a4:c7:c3:62:bd:46:5c:9b:84:69:64:ea:65:b3: 46:73:b5:29:10:fd:c4:53:7c:ad:bd:e2:04:b8:68: 02:37:9e:7b:1e:0e:16:d6:9b:6a:ce:1b:9a:85:6a: 40:d0:12:ac:44:99:5c:fd:b0:73:c4:02:91:41:37: 6a:c8:a5:10:a2:33:69:09:3f:94:08:22:01:a7:a7: f0:aa:10:17:e6:55:ea:a6:01:10:8a:75:cc:3a:0e: e3:ee:1d:d4:fe:f7:1d:a2:92:3a:08:80:10:88:6f: 42:a4:1f:b3:38:9e:94:ff:cb:67:bb:a2:f7:28:14: e5:e1:dc:db:e8:30:a7:15:bc:1e:1f:73:4f:21:be: e8:1b:4f:e5:1a:c1:f3:02:80:d6:32:60:17:80:4e: 73:bc:40:a0:7d:68:cb:15:cd:8a:1e:6c:e4:6a:18: b2:bd:7d:32:d6:0d:8a:49:2e:ab:1a:24:91:a1:35: 3b:0f:ba:90:59:f4:cc:a8:d7:4e:1c:a0:55:61:b0: 43:29:24:fa:53:18:39:45:ab:fe:11:58:5b:16:82: f4:aa:de:c7:76:e2:cb:91:b6:bb:21:b3:84:df:87: 84:5d:8f:11:13:f9:26:6c:6c:bd:00:6f:8e:2f:83: 9c:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:B4:78:43:C5:D8:23:FD:9B:BA:4E:82:CE:AD:AB:1F:5D:3D:9F:58 X509v3 Authority Key Identifier: keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS57043.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 82.21.53.0/24 82.22.36.0/24 82.22.38.0/24 82.22.47.0/24 82.22.50.0/24 82.22.53.0/24 82.25.20.0/24 82.26.91.0/24 82.26.94.0/24 82.26.150.0/23 82.26.171.0/24 82.26.193.0/24 82.40.37.0-82.40.38.255 82.40.49.0/24 82.40.56.0-82.40.58.255 82.40.60.0/24 Signature Algorithm: sha256WithRSAEncryption 0c:d8:37:0a:9f:49:2b:3b:0a:75:4b:15:ec:47:a5:46:82:37: b3:27:8e:f9:95:9d:fc:43:7d:51:75:e1:c7:2b:73:f1:65:0b: 5f:29:46:56:1f:8b:ba:09:c3:b3:b5:20:69:e4:3c:9f:ff:e4: 97:66:d4:77:dd:4d:9b:73:77:8c:e3:a6:b9:ee:0a:1a:d0:47: 26:84:6d:1b:03:29:4e:b6:fa:a8:39:30:48:e8:72:5c:2a:d3: 3d:d4:57:1e:f8:8a:37:9a:a5:aa:fb:bf:45:78:80:2d:08:24: ff:8f:7e:4f:d1:a8:1b:75:f3:5d:6c:f8:c9:5c:6f:90:0e:d1: f9:f7:8c:b7:bc:82:95:f7:34:4d:bc:e2:a2:fc:2a:d8:44:aa: 02:48:89:2c:f8:8d:0f:c9:2e:a2:bf:06:99:ec:f4:02:ba:2a: 52:6e:c8:db:ff:4c:55:37:0a:2a:c0:64:b3:b0:95:4a:ff:89: 37:fb:53:78:9a:8a:19:f3:ac:2d:32:75:15:51:bc:07:4f:81: 59:03:f9:28:1f:93:78:c8:31:5e:44:ca:61:4d:22:d7:1a:71: a1:dc:04:dd:4b:7c:fb:70:fb:a8:29:61:2f:12:07:65:bb:09: 1c:97:b3:51:51:3b:bf:96:83:a7:01:af:7a:9b:56:ae:9d:94: 32:58:d8:ae -----BEGIN CERTIFICATE----- MIIFajCCBFKgAwIBAgIUNWWy0sQ392i6cbMAsXpyC9JNph8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjE4Y2M2ZTI0MTA1ZGU2YzVjOTAwM2Q2NTI0Mzg5M2Ni M2NmZGQwMTAeFw0yNjAxMDkxNTAwNDVaFw0yNzAxMDgxNTA1NDVaMDMxMTAvBgNV BAMTKDM1QjQ3ODQzQzVEODIzRkQ5QkJBNEU4MkNFQURBQjFGNUQzRDlGNTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDqImE/duqlQoGdTCIPfXCkx8Ni vUZcm4RpZOpls0ZztSkQ/cRTfK294gS4aAI3nnseDhbWm2rOG5qFakDQEqxEmVz9 sHPEApFBN2rIpRCiM2kJP5QIIgGnp/CqEBfmVeqmARCKdcw6DuPuHdT+9x2ikjoI gBCIb0KkH7M4npT/y2e7ovcoFOXh3NvoMKcVvB4fc08hvugbT+UawfMCgNYyYBeA TnO8QKB9aMsVzYoebORqGLK9fTLWDYpJLqsaJJGhNTsPupBZ9Myo104coFVhsEMp JPpTGDlFq/4RWFsWgvSq3sd24suRtrshs4Tfh4RdjxET+SZsbL0Ab44vg5yhAgMB AAGjggJ0MIICcDAdBgNVHQ4EFgQUNbR4Q8XYI/2buk6Czq2rH109n1gwHwYDVR0j BBgwFoAUIYzG4kEF3mxckAPWUkOJPLPP3QEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYtYjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWEx YWY2LzAvMjE4Q0M2RTI0MTA1REU2QzVDOTAwM0Q2NTI0Mzg5M0NCM0NGREQwMS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0lZekc0a0VGM214Y2tBUFdVa09KUExQ UDNRRS5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzcxOGExYjRmLWI2NGMt NDAyYy1iZTE1LWRkODJhNDFhMWFmNi8wL0FTNTcwNDMucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwgYkGCCsGAQUFBwEHAQH/BHoweDB2BAIAATBwAwQAUhU1 AwQAUhYkAwQAUhYmAwQAUhYvAwQAUhYyAwQAUhY1AwQAUhkUAwQAUhpbAwQAUhpe AwQBUhqWAwQAUhqrAwQAUhrBMAwDBABSKCUDBABSKCYDBABSKDEwDAMEA1IoOAME AFIoOgMEAFIoPDANBgkqhkiG9w0BAQsFAAOCAQEADNg3Cp9JKzsKdUsV7EelRoI3 syeO+ZWd/EN9UXXhxytz8WULXylGVh+LugnDs7UgaeQ8n//kl2bUd91Nm3N3jOOm ue4KGtBHJoRtGwMpTrb6qDkwSOhyXCrTPdRXHviKN5qlqvu/RXiALQgk/49+T9Go G3XzXWz4yVxvkA7R+feMt7yClfc0Tbziovwq2ESqAkiJLPiND8kuor8Gmez0Aroq Um7I2/9MVTcKKsBks7CVSv+JN/tTeJqKGfOsLTJ1FVG8B0+BWQP5KB+TeMgxXkTK YU0i1xpxodwE3Ut8+3D7qClhLxIHZbsJHJezUVE7v5aDpwGveptWrp2UMljYrg== -----END CERTIFICATE-----Generated at Sun Jan 18 08:56:39 2026 by rpki-client