This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS834.roa File: AS834.roa (raw, json) Hash identifier: /2gP4DcNPjvIET7mM2u0wPsAcBQ2ANFIdcS5/JZYgiM= Subject key identifier: EB:73:68:7E:59:DD:1C:D8:F2:8F:40:A3:D0:75:7E:8D:E1:A2:2C:37 Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Certificate serial: 2FED47F3B017F3C6032F8AA2632690B8F811FBB9 Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS834.roa Signing time: Sat 17 Jan 2026 13:40:00 +0000 ROA not before: Sat 17 Jan 2026 13:35:00 +0000 ROA not after: Sat 16 Jan 2027 13:40:00 +0000 asID: 834 IP address blocks: 82.21.114.0/24 maxlen: 24 82.21.117.0/24 maxlen: 24 82.21.150.0/24 maxlen: 24 82.22.28.0/24 maxlen: 24 82.22.39.0/24 maxlen: 24 82.23.138.0/24 maxlen: 24 82.23.177.0/24 maxlen: 24 82.23.249.0/24 maxlen: 24 82.24.19.0/24 maxlen: 24 82.24.110.0/24 maxlen: 24 82.24.123.0/24 maxlen: 24 82.24.174.0/24 maxlen: 24 82.24.181.0/24 maxlen: 24 82.24.195.0/24 maxlen: 24 82.25.11.0/24 maxlen: 24 82.26.65.0/24 maxlen: 24 82.26.136.0/24 maxlen: 24 82.26.152.0/24 maxlen: 24 82.26.198.0/24 maxlen: 24 82.27.92.0/22 maxlen: 24 82.27.118.0/24 maxlen: 24 82.29.126.0/24 maxlen: 24 82.38.64.0/21 maxlen: 24 82.38.96.0/24 maxlen: 24 82.38.121.0/24 maxlen: 24 82.38.139.0/24 maxlen: 24 82.38.168.0/24 maxlen: 24 82.38.171.0/24 maxlen: 24 82.38.197.0/24 maxlen: 24 82.39.164.0/24 maxlen: 24 82.39.228.0/23 maxlen: 24 82.39.240.0/22 maxlen: 24 82.40.36.0/24 maxlen: 24 82.40.50.0/24 maxlen: 24 82.41.0.0/24 maxlen: 24 82.41.196.0/24 maxlen: 24 178.83.20.0/22 maxlen: 24 178.83.24.0/23 maxlen: 24 178.83.28.0/22 maxlen: 24 178.83.32.0/24 maxlen: 24 178.83.35.0/24 maxlen: 24 178.83.37.0/24 maxlen: 24 178.83.39.0/24 maxlen: 24 178.83.40.0/22 maxlen: 24 178.83.44.0/23 maxlen: 24 178.83.47.0/24 maxlen: 24 178.83.48.0/22 maxlen: 24 178.83.53.0/24 maxlen: 24 178.83.54.0/23 maxlen: 24 178.83.57.0/24 maxlen: 24 178.83.58.0/23 maxlen: 24 178.83.60.0/22 maxlen: 24 178.83.64.0/23 maxlen: 24 178.83.68.0/22 maxlen: 24 178.83.72.0/23 maxlen: 24 178.83.74.0/24 maxlen: 24 178.83.76.0/22 maxlen: 24 178.83.80.0/23 maxlen: 24 178.83.82.0/24 maxlen: 24 178.83.84.0/22 maxlen: 24 178.83.88.0/23 maxlen: 24 178.83.90.0/24 maxlen: 24 178.83.92.0/22 maxlen: 24 178.83.97.0/24 maxlen: 24 178.83.98.0/23 maxlen: 24 178.83.101.0/24 maxlen: 24 178.83.102.0/23 maxlen: 24 178.83.104.0/22 maxlen: 24 178.83.141.0/24 maxlen: 24 178.83.142.0/23 maxlen: 24 178.83.144.0/20 maxlen: 24 178.83.160.0/19 maxlen: 24 178.83.192.0/22 maxlen: 24 178.83.196.0/23 maxlen: 24 178.83.198.0/24 maxlen: 24 178.83.200.0/22 maxlen: 24 178.83.204.0/23 maxlen: 24 178.83.206.0/24 maxlen: 24 178.83.208.0/24 maxlen: 24 178.83.224.0/22 maxlen: 24 178.83.228.0/23 maxlen: 24 178.83.231.0/24 maxlen: 24 178.83.232.0/21 maxlen: 24 178.83.240.0/20 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 19 Jan 2026 04:45:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:ed:47:f3:b0:17:f3:c6:03:2f:8a:a2:63:26:90:b8:f8:11:fb:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Validity Not Before: Jan 17 13:35:00 2026 GMT Not After : Jan 16 13:40:00 2027 GMT Subject: CN=EB73687E59DD1CD8F28F40A3D0757E8DE1A22C37 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:8a:82:25:e0:18:33:5d:cc:8b:83:9c:d1:49: 86:40:ff:25:53:96:73:7f:ca:c6:dc:c0:32:9b:ab: b5:20:73:39:bc:d7:cb:89:a9:4a:13:33:af:15:34: e8:3f:32:f7:a7:50:87:60:33:b1:1f:dc:da:d1:32: b1:35:3d:f5:87:48:ef:a2:e1:16:73:d3:b0:6b:22: 93:22:e6:ce:f0:9b:0e:5c:ac:88:fd:0e:4d:de:85: d9:26:2d:b9:a0:a1:a3:35:00:bb:74:13:3e:01:89: 84:16:4a:b0:7f:3a:25:c4:e9:38:6e:37:ad:01:b8: 4b:69:84:b3:ca:69:8b:c6:18:5a:b0:ca:7b:0f:32: 85:3f:6c:3e:3a:5f:41:bb:62:eb:44:6f:da:5b:66: 2a:16:53:e4:50:32:73:0d:fd:c5:3d:2e:db:3a:f8: 93:c0:e0:e5:68:5c:d5:35:8a:4d:fa:2c:c9:41:71: d2:65:8a:23:1e:b0:01:1c:f9:71:27:21:37:a2:49: 45:c4:64:43:4e:87:85:99:70:26:28:4b:9d:9f:8b: 4e:66:61:50:29:03:37:b2:7f:99:dc:6a:49:f5:49: 75:f4:dc:b0:b9:de:be:d0:c8:e4:b6:4d:1c:a9:c8: 4f:27:6c:c0:83:12:30:f6:cf:d4:1c:c2:ae:b7:7d: 46:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:73:68:7E:59:DD:1C:D8:F2:8F:40:A3:D0:75:7E:8D:E1:A2:2C:37 X509v3 Authority Key Identifier: keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS834.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 82.21.114.0/24 82.21.117.0/24 82.21.150.0/24 82.22.28.0/24 82.22.39.0/24 82.23.138.0/24 82.23.177.0/24 82.23.249.0/24 82.24.19.0/24 82.24.110.0/24 82.24.123.0/24 82.24.174.0/24 82.24.181.0/24 82.24.195.0/24 82.25.11.0/24 82.26.65.0/24 82.26.136.0/24 82.26.152.0/24 82.26.198.0/24 82.27.92.0/22 82.27.118.0/24 82.29.126.0/24 82.38.64.0/21 82.38.96.0/24 82.38.121.0/24 82.38.139.0/24 82.38.168.0/24 82.38.171.0/24 82.38.197.0/24 82.39.164.0/24 82.39.228.0/23 82.39.240.0/22 82.40.36.0/24 82.40.50.0/24 82.41.0.0/24 82.41.196.0/24 178.83.20.0-178.83.25.255 178.83.28.0-178.83.32.255 178.83.35.0/24 178.83.37.0/24 178.83.39.0-178.83.45.255 178.83.47.0-178.83.51.255 178.83.53.0-178.83.55.255 178.83.57.0-178.83.65.255 178.83.68.0-178.83.74.255 178.83.76.0-178.83.82.255 178.83.84.0-178.83.90.255 178.83.92.0/22 178.83.97.0-178.83.99.255 178.83.101.0-178.83.107.255 178.83.141.0-178.83.198.255 178.83.200.0-178.83.206.255 178.83.208.0/24 178.83.224.0-178.83.229.255 178.83.231.0-178.83.255.255 Signature Algorithm: sha256WithRSAEncryption 53:72:82:56:ab:93:6b:bc:37:18:c8:b0:3e:b1:71:9d:11:7b: fc:7a:4c:6e:11:9f:d9:43:e2:26:e2:e1:32:82:ba:e1:d7:d9: ff:b1:af:e1:4e:db:64:02:f4:96:f3:19:b0:5e:70:d6:c3:de: 56:a2:37:6a:bd:fc:54:8c:63:62:3c:14:65:06:ca:ea:10:b2: d9:1c:0b:7f:63:35:de:d6:19:a6:c1:51:48:a6:e3:27:0e:f1: 92:a8:7f:1d:f3:cd:0f:c6:70:6f:d9:2f:b8:82:b3:55:87:45: af:61:ce:be:c6:95:23:a3:0b:a1:76:d8:20:d8:57:94:77:c2: 45:49:e8:58:1b:03:69:b8:cc:de:ca:43:8e:d6:8c:50:82:2a: 28:76:6f:d1:ec:ee:10:c3:4e:85:60:f9:4c:a4:bf:7c:77:e9: 57:58:dc:a0:f0:6e:a5:6d:ff:2e:04:44:c2:68:94:fb:76:37: a1:9c:8b:16:54:c3:5e:8c:f2:b5:82:13:1b:93:a8:3f:c7:bf: 67:2f:da:4f:bd:4b:cf:e7:80:6a:4c:38:ae:44:30:f5:94:14: 3d:a5:51:86:d3:c5:08:77:96:eb:9b:6d:6b:5c:39:0a:3a:f0: 0b:6b:5c:01:48:30:e3:ce:26:e8:3d:fd:3e:3b:24:45:4c:19: c7:81:0d:af -----BEGIN CERTIFICATE----- MIIGwjCCBaqgAwIBAgIUL+1H87AX88YDL4qiYyaQuPgR+7kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjE4Y2M2ZTI0MTA1ZGU2YzVjOTAwM2Q2NTI0Mzg5M2Ni M2NmZGQwMTAeFw0yNjAxMTcxMzM1MDBaFw0yNzAxMTYxMzQwMDBaMDMxMTAvBgNV BAMTKEVCNzM2ODdFNTlERDFDRDhGMjhGNDBBM0QwNzU3RThERTFBMjJDMzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWioIl4BgzXcyLg5zRSYZA/yVT lnN/ysbcwDKbq7Ugczm818uJqUoTM68VNOg/MvenUIdgM7Ef3NrRMrE1PfWHSO+i 4RZz07BrIpMi5s7wmw5crIj9Dk3ehdkmLbmgoaM1ALt0Ez4BiYQWSrB/OiXE6Thu N60BuEtphLPKaYvGGFqwynsPMoU/bD46X0G7YutEb9pbZioWU+RQMnMN/cU9Lts6 +JPA4OVoXNU1ik36LMlBcdJliiMesAEc+XEnITeiSUXEZENOh4WZcCYoS52fi05m YVApAzeyf5ncakn1SXX03LC53r7QyOS2TRypyE8nbMCDEjD2z9Qcwq63fUYlAgMB AAGjggPMMIIDyDAdBgNVHQ4EFgQU63NoflndHNjyj0Cj0HV+jeGiLDcwHwYDVR0j BBgwFoAUIYzG4kEF3mxckAPWUkOJPLPP3QEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYtYjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWEx YWY2LzAvMjE4Q0M2RTI0MTA1REU2QzVDOTAwM0Q2NTI0Mzg5M0NCM0NGREQwMS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0lZekc0a0VGM214Y2tBUFdVa09KUExQ UDNRRS5jZXIweAYIKwYBBQUHAQsEbDBqMGgGCCsGAQUFBzALhlxyc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzcxOGExYjRmLWI2NGMt NDAyYy1iZTE1LWRkODJhNDFhMWFmNi8wL0FTODM0LnJvYTAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMIIB4gYIKwYBBQUHAQcBAf8EggHRMIIBzTCCAckEAgABMIIB wQMEAFIVcgMEAFIVdQMEAFIVlgMEAFIWHAMEAFIWJwMEAFIXigMEAFIXsQMEAFIX +QMEAFIYEwMEAFIYbgMEAFIYewMEAFIYrgMEAFIYtQMEAFIYwwMEAFIZCwMEAFIa QQMEAFIaiAMEAFIamAMEAFIaxgMEAlIbXAMEAFIbdgMEAFIdfgMEA1ImQAMEAFIm YAMEAFImeQMEAFImiwMEAFImqAMEAFImqwMEAFImxQMEAFInpAMEAVIn5AMEAlIn 8AMEAFIoJAMEAFIoMgMEAFIpAAMEAFIpxDAMAwQCslMUAwQBslMYMAwDBAKyUxwD BACyUyADBACyUyMDBACyUyUwDAMEALJTJwMEAbJTLDAMAwQAslMvAwQCslMwMAwD BACyUzUDBAOyUzAwDAMEALJTOQMEAbJTQDAMAwQCslNEAwQAslNKMAwDBAKyU0wD BACyU1IwDAMEArJTVAMEALJTWgMEArJTXDAMAwQAslNhAwQCslNgMAwDBACyU2UD BAKyU2gwDAMEALJTjQMEALJTxjAMAwQDslPIAwQAslPOAwQAslPQMAwDBAWyU+AD BAGyU+QwCwMEALJT5wMDArJQMA0GCSqGSIb3DQEBCwUAA4IBAQBTcoJWq5NrvDcY yLA+sXGdEXv8ekxuEZ/ZQ+Im4uEygrrh19n/sa/hTttkAvSW8xmwXnDWw95Wojdq vfxUjGNiPBRlBsrqELLZHAt/YzXe1hmmwVFIpuMnDvGSqH8d880PxnBv2S+4grNV h0WvYc6+xpUjowuhdtgg2FeUd8JFSehYGwNpuMzeykOO1oxQgioodm/R7O4Qw06F YPlMpL98d+lXWNyg8G6lbf8uBETCaJT7djehnIsWVMNejPK1ghMbk6g/x79nL9pP vUvP54BqTDiuRDD1lBQ9pVGG08UId5brm21rXDkKOvALa1wBSDDjziboPf0+OyRF TBnHgQ2v -----END CERTIFICATE-----Generated at Sun Jan 18 08:55:11 2026 by rpki-client