This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS63199.roa File: AS63199.roa (raw, json) Hash identifier: qeVEak92XxRnM3KgZ7ctdIRkz6juXTV3nSf+I1NEp4k= Subject key identifier: 20:EE:72:D7:E2:C8:35:1F:0C:C0:2B:5A:E1:AC:FF:A1:08:D6:02:56 Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Certificate serial: 1D7260077FD19CDA7C4A75A9A3DD91F4209AFDA1 Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS63199.roa Signing time: Sat 29 Nov 2025 11:12:12 +0000 ROA not before: Sat 29 Nov 2025 11:07:12 +0000 ROA not after: Sat 28 Nov 2026 11:12:12 +0000 asID: 63199 IP address blocks: 82.22.196.0/24 maxlen: 24 82.23.250.0/24 maxlen: 24 82.25.60.0/24 maxlen: 24 82.25.161.0/24 maxlen: 24 82.29.48.0/24 maxlen: 24 82.39.154.0/24 maxlen: 24 82.39.205.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 05 Dec 2025 00:00:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:72:60:07:7f:d1:9c:da:7c:4a:75:a9:a3:dd:91:f4:20:9a:fd:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Validity Not Before: Nov 29 11:07:12 2025 GMT Not After : Nov 28 11:12:12 2026 GMT Subject: CN=20EE72D7E2C8351F0CC02B5AE1ACFFA108D60256 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:5b:11:3c:8d:bf:35:b0:59:a7:83:d1:fd:9a: ba:a8:bd:0d:9f:c6:14:ba:b8:7d:4a:70:0c:95:a9: 9c:bf:6a:e2:bb:6b:01:57:ff:3d:84:b0:32:d7:95: 2a:34:86:ca:fd:dc:36:33:19:62:92:2d:d6:26:bf: 24:80:24:d7:84:08:87:c8:7b:be:f8:21:0c:5c:86: 5d:71:30:61:73:6b:fa:27:9b:9a:ac:f0:ae:e3:5c: cf:c2:5f:d3:5e:a8:b9:ed:75:75:f6:8f:6e:82:76: 90:c7:46:64:ca:70:5a:57:39:a1:ea:7a:1a:71:12: 39:ad:15:05:5d:92:55:29:c1:67:20:77:4e:ca:7d: 3f:95:92:29:5f:5a:df:20:12:43:81:50:fb:3a:7e: 9e:2f:f4:7d:cb:be:23:06:2b:5f:a7:99:3d:6d:5d: 39:87:d0:e6:d2:e0:fc:f5:c4:9a:60:c1:99:e0:c7: 74:8a:b7:87:0f:f1:d8:d8:06:8a:b2:65:e7:a8:84: 58:1f:4e:5e:47:9a:75:d3:a1:89:53:23:07:8a:3d: f5:c6:a2:a6:05:ec:ae:78:17:2c:4c:e7:06:ad:01: 61:e5:21:31:f2:24:30:b8:9e:37:b2:c2:29:d7:89: fb:66:a1:9e:0d:7b:62:d9:2d:c6:1e:65:5d:c0:d2: 5a:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:EE:72:D7:E2:C8:35:1F:0C:C0:2B:5A:E1:AC:FF:A1:08:D6:02:56 X509v3 Authority Key Identifier: keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS63199.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 82.22.196.0/24 82.23.250.0/24 82.25.60.0/24 82.25.161.0/24 82.29.48.0/24 82.39.154.0/24 82.39.205.0/24 Signature Algorithm: sha256WithRSAEncryption 90:ec:eb:42:94:da:65:d6:03:74:64:6b:7c:ed:5d:f4:ee:65: 4e:f9:3a:15:d0:10:06:23:6f:43:b2:61:9f:c3:62:53:26:92: ff:76:3f:37:f3:88:a1:52:16:a4:1f:f5:4a:6e:11:e1:66:b4: 53:24:06:c2:4c:ac:f7:fc:0d:03:60:d8:ca:ce:b4:77:1a:f0: b8:0d:eb:b1:c4:10:11:48:26:c5:6a:0b:83:a7:85:11:9f:0a: 83:4b:d5:12:7e:81:ef:43:e5:a6:4d:44:28:d7:b4:cd:aa:04: 8f:31:40:74:a7:8b:c7:3c:fe:43:b7:89:13:1d:3c:c5:5e:cd: 1a:6d:45:38:75:c9:39:ba:ce:40:61:00:ea:96:ba:e1:59:7f: ee:73:5c:b9:de:c2:69:08:f7:cf:38:cf:c2:d4:f3:95:6f:b5: c4:ba:bc:f8:3c:65:1b:cf:fd:f8:2f:1f:a4:5c:56:74:96:81: da:4a:96:c9:8a:49:ad:f6:64:07:ab:dd:9c:7d:d3:29:07:cd: 55:2f:5e:f6:b1:8a:7e:23:40:52:22:32:11:d3:c8:d9:4d:8f: 45:78:76:a2:8d:96:2b:1a:90:5b:01:9d:aa:f0:d4:52:6b:4e: f2:00:25:ff:40:57:af:ed:b6:90:c1:61:4c:eb:9b:37:52:d4: 4d:72:c6:9b -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUHXJgB3/RnNp8SnWpo92R9CCa/aEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjE4Y2M2ZTI0MTA1ZGU2YzVjOTAwM2Q2NTI0Mzg5M2Ni M2NmZGQwMTAeFw0yNTExMjkxMTA3MTJaFw0yNjExMjgxMTEyMTJaMDMxMTAvBgNV BAMTKDIwRUU3MkQ3RTJDODM1MUYwQ0MwMkI1QUUxQUNGRkExMDhENjAyNTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCYWxE8jb81sFmng9H9mrqovQ2f xhS6uH1KcAyVqZy/auK7awFX/z2EsDLXlSo0hsr93DYzGWKSLdYmvySAJNeECIfI e774IQxchl1xMGFza/onm5qs8K7jXM/CX9NeqLntdXX2j26CdpDHRmTKcFpXOaHq ehpxEjmtFQVdklUpwWcgd07KfT+VkilfWt8gEkOBUPs6fp4v9H3LviMGK1+nmT1t XTmH0ObS4Pz1xJpgwZngx3SKt4cP8djYBoqyZeeohFgfTl5HmnXToYlTIweKPfXG oqYF7K54FyxM5watAWHlITHyJDC4njeywinXiftmoZ4Ne2LZLcYeZV3A0lpTAgMB AAGjggItMIICKTAdBgNVHQ4EFgQUIO5y1+LINR8MwCta4az/oQjWAlYwHwYDVR0j BBgwFoAUIYzG4kEF3mxckAPWUkOJPLPP3QEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYtYjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWEx YWY2LzAvMjE4Q0M2RTI0MTA1REU2QzVDOTAwM0Q2NTI0Mzg5M0NCM0NGREQwMS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0lZekc0a0VGM214Y2tBUFdVa09KUExQ UDNRRS5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzcxOGExYjRmLWI2NGMt NDAyYy1iZTE1LWRkODJhNDFhMWFmNi8wL0FTNjMxOTkucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwQwYIKwYBBQUHAQcBAf8ENDAyMDAEAgABMCoDBABSFsQD BABSF/oDBABSGTwDBABSGaEDBABSHTADBABSJ5oDBABSJ80wDQYJKoZIhvcNAQEL BQADggEBAJDs60KU2mXWA3Rka3ztXfTuZU75OhXQEAYjb0OyYZ/DYlMmkv92Pzfz iKFSFqQf9UpuEeFmtFMkBsJMrPf8DQNg2MrOtHca8LgN67HEEBFIJsVqC4OnhRGf CoNL1RJ+ge9D5aZNRCjXtM2qBI8xQHSni8c8/kO3iRMdPMVezRptRTh1yTm6zkBh AOqWuuFZf+5zXLnewmkI9884z8LU85VvtcS6vPg8ZRvP/fgvH6RcVnSWgdpKlsmK Sa32ZAer3Zx90ykHzVUvXvaxin4jQFIiMhHTyNlNj0V4dqKNlisakFsBnarw1FJr TvIAJf9AV6/ttpDBYUzrmzdS1E1yxps= -----END CERTIFICATE-----Generated at Thu Dec 4 06:01:43 2025 by rpki-client