This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS21840.roa File: AS21840.roa (raw, json) Hash identifier: XA0hudkHXZNWnp9MEav6XTP3NXRGF6h/yCx2lhwzevs= Subject key identifier: F6:C9:3F:FF:14:CF:E6:D5:74:02:A1:37:07:05:ED:89:22:E8:05:3B Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f Certificate serial: 761A8B6E3FF8A2034ACF7EC2C118809B7C5787B3 Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS21840.roa Signing time: Mon 12 Jan 2026 03:35:05 +0000 ROA not before: Mon 12 Jan 2026 03:30:05 +0000 ROA not after: Mon 11 Jan 2027 03:35:05 +0000 asID: 21840 IP address blocks: 92.112.37.0/24 maxlen: 24 95.135.109.0/24 maxlen: 24 178.92.184.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 16 Jan 2026 15:31:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:1a:8b:6e:3f:f8:a2:03:4a:cf:7e:c2:c1:18:80:9b:7c:57:87:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f Validity Not Before: Jan 12 03:30:05 2026 GMT Not After : Jan 11 03:35:05 2027 GMT Subject: CN=F6C93FFF14CFE6D57402A1370705ED8922E8053B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:98:3e:e8:b1:94:03:ff:ad:7d:64:e9:38:dd: b1:34:1a:63:94:1b:b3:d9:89:cc:ef:24:d0:26:89: ce:7c:ea:59:8a:8c:cc:18:cd:fc:cf:73:a3:6b:17: 37:5b:3b:28:b2:7f:ce:57:61:37:fb:20:b2:9f:c7: aa:de:b5:f1:95:f7:aa:64:56:7a:dd:ff:b0:24:37: 49:67:51:c1:67:c7:90:99:09:74:cd:72:4b:f3:b7: 2f:38:c8:db:d5:f5:08:9c:a1:54:aa:69:f7:a6:45: d8:17:d5:20:67:23:48:9a:49:99:1e:96:59:49:af: f6:c3:ed:18:37:2c:7b:5b:4a:3e:5c:79:db:52:81: af:4f:af:18:32:ec:6e:70:29:47:0c:cc:29:ee:bc: 30:4f:3c:7e:8a:68:64:5f:a4:32:dd:5c:19:cd:44: 98:d4:7c:b3:be:0f:ed:66:ab:ad:11:f7:ea:31:04: 90:cd:dd:3a:df:58:dd:9a:a9:d9:45:5c:7e:56:bb: 27:b5:f8:62:ef:3b:6e:92:4c:82:73:f0:04:8d:24: 5c:85:9d:0c:49:61:c4:c0:68:37:fb:bc:d7:16:b7: dc:8c:c5:50:8d:4f:2e:a0:82:11:f5:e0:35:a6:53: 54:16:d6:0a:0c:7a:61:92:ae:a3:2f:b4:5f:df:8c: f6:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:C9:3F:FF:14:CF:E6:D5:74:02:A1:37:07:05:ED:89:22:E8:05:3B X509v3 Authority Key Identifier: keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS21840.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 92.112.37.0/24 95.135.109.0/24 178.92.184.0/24 Signature Algorithm: sha256WithRSAEncryption 7e:73:84:39:06:55:94:cc:6d:70:d6:1d:d3:64:1a:44:7f:cc: 88:39:1c:ed:35:e3:8e:fc:85:84:29:b8:d5:5b:b2:c9:f9:24: e6:93:72:30:02:f8:f1:e2:0f:54:9e:80:04:75:16:93:0c:27: 20:90:19:de:42:dd:2e:c8:89:d4:45:32:90:69:c4:9a:44:89: fc:4e:64:8f:16:ab:c7:4c:6b:c7:ce:ee:7c:39:5f:c2:40:e7: ec:29:85:c4:90:6f:5a:4a:7a:72:0c:07:54:f4:79:65:6c:9e: cd:ab:0c:4f:10:1c:22:e6:64:b6:e1:7c:fa:d2:cf:c7:a1:1d: f1:8c:4d:e8:64:ec:37:66:55:4b:3a:6f:6d:b8:25:bb:93:99: 7d:bf:fb:18:0d:33:c2:83:a1:03:8b:57:e6:cc:7a:d3:64:a2: 3f:85:4e:7f:37:9d:d7:0d:a7:ce:65:17:ba:b6:b0:eb:c6:9e: a4:a5:54:80:eb:5a:e5:a7:f2:2e:85:f9:83:f7:af:ad:f6:23: 84:9a:46:9e:21:95:1e:c3:bc:c6:00:a9:eb:1f:22:51:81:4c: a5:33:89:e1:a1:ca:3a:7e:8e:02:ef:c2:0c:55:ef:45:06:b6: fe:8e:64:4b:30:77:9e:a4:37:15:ff:16:21:75:37:72:6f:e3: 31:85:2d:4d -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgIUdhqLbj/4ogNKz37CwRiAm3xXh7MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOWJkODEzMzkxZTRhZjJhZTMxMDNjMTg5MWIyMjcyZDRk NWMxM2I1ZjAeFw0yNjAxMTIwMzMwMDVaFw0yNzAxMTEwMzM1MDVaMDMxMTAvBgNV BAMTKEY2QzkzRkZGMTRDRkU2RDU3NDAyQTEzNzA3MDVFRDg5MjJFODA1M0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2mD7osZQD/619ZOk43bE0GmOU G7PZiczvJNAmic586lmKjMwYzfzPc6NrFzdbOyiyf85XYTf7ILKfx6retfGV96pk Vnrd/7AkN0lnUcFnx5CZCXTNckvzty84yNvV9QicoVSqafemRdgX1SBnI0iaSZke lllJr/bD7Rg3LHtbSj5cedtSga9Prxgy7G5wKUcMzCnuvDBPPH6KaGRfpDLdXBnN RJjUfLO+D+1mq60R9+oxBJDN3TrfWN2aqdlFXH5Wuye1+GLvO26STIJz8ASNJFyF nQxJYcTAaDf7vNcWt9yMxVCNTy6gghH14DWmU1QW1goMemGSrqMvtF/fjPZdAgMB AAGjggIVMIICETAdBgNVHQ4EFgQU9sk//xTP5tV0AqE3BwXtiSLoBTswHwYDVR0j BBgwFoAUm9gTOR5K8q4xA8GJGyJy1NXBO18wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYzQ3OGY2ZjUtNDQ5YS00ODI3LTk5ZDUtYmY2YjkzYThm NmI0LzAvOUJEODEzMzkxRTRBRjJBRTMxMDNDMTg5MUIyMjcyRDRENUMxM0I1Ri5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL205Z1RPUjVLOHE0eEE4R0pHeUp5MU5Y Qk8xOC5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2M0NzhmNmY1LTQ0OWEt NDgyNy05OWQ1LWJmNmI5M2E4ZjZiNC8wL0FTMjE4NDAucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwKwYIKwYBBQUHAQcBAf8EHDAaMBgEAgABMBIDBABccCUD BABfh20DBACyXLgwDQYJKoZIhvcNAQELBQADggEBAH5zhDkGVZTMbXDWHdNkGkR/ zIg5HO014478hYQpuNVbssn5JOaTcjAC+PHiD1SegAR1FpMMJyCQGd5C3S7IidRF MpBpxJpEifxOZI8Wq8dMa8fO7nw5X8JA5+wphcSQb1pKenIMB1T0eWVsns2rDE8Q HCLmZLbhfPrSz8ehHfGMTehk7DdmVUs6b224JbuTmX2/+xgNM8KDoQOLV+bMetNk oj+FTn83ndcNp85lF7q2sOvGnqSlVIDrWuWn8i6F+YP3r632I4SaRp4hlR7DvMYA qesfIlGBTKUzieGhyjp+jgLvwgxV70UGtv6OZEswd56kNxX/FiF1N3Jv4zGFLU0= -----END CERTIFICATE-----Generated at Thu Jan 15 23:24:36 2026 by rpki-client