This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS21859.roa File: AS21859.roa (raw, json) Hash identifier: h/Qn9zhKwGznTIoAKtmMcK2MaFY4Q7rhT3flhhgelCc= Subject key identifier: 32:96:14:1A:25:41:DA:5F:AD:95:75:9F:9F:39:3E:82:97:9C:74:7C Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f Certificate serial: 55EC5848AF4DB3263156DE0EA3AFA57D0540893D Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS21859.roa Signing time: Thu 13 Nov 2025 02:28:27 +0000 ROA not before: Thu 13 Nov 2025 02:23:27 +0000 ROA not after: Thu 12 Nov 2026 02:28:27 +0000 asID: 21859 IP address blocks: 46.203.46.0/24 maxlen: 24 46.203.215.0/24 maxlen: 24 46.203.217.0/24 maxlen: 24 46.203.219.0/24 maxlen: 24 46.203.221.0/24 maxlen: 24 92.112.157.0/24 maxlen: 24 92.113.66.0/24 maxlen: 24 95.135.111.0/24 maxlen: 24 95.135.112.0/24 maxlen: 24 95.135.113.0/24 maxlen: 24 178.92.11.0/24 maxlen: 24 178.92.24.0/24 maxlen: 24 178.92.59.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 08:54:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:ec:58:48:af:4d:b3:26:31:56:de:0e:a3:af:a5:7d:05:40:89:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f Validity Not Before: Nov 13 02:23:27 2025 GMT Not After : Nov 12 02:28:27 2026 GMT Subject: CN=3296141A2541DA5FAD95759F9F393E82979C747C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:3b:18:fc:4d:c7:88:9e:cb:b6:47:f9:85:97: 6a:f5:b7:26:6a:4a:ec:f6:01:2c:65:0a:12:5b:d1: da:b6:0a:9f:81:a5:63:5c:92:3f:5d:bd:dd:50:13: 9a:51:09:b2:6e:a3:c6:19:b7:44:a3:95:aa:84:2e: 09:36:1b:84:32:b5:b8:de:03:ef:24:ce:78:4a:13: db:6d:8e:97:d5:bf:74:eb:65:24:a2:26:eb:fe:de: f6:f9:2c:43:b8:d5:ce:31:a2:a7:a2:69:ba:e1:b8: e0:54:e1:1f:11:16:4c:37:1e:94:ff:9f:b8:f7:47: 9e:68:ee:a3:78:3d:b2:37:19:99:7a:5a:02:17:a7: 37:f3:c3:0d:08:97:2c:79:71:02:a9:e1:09:cc:4d: 18:7f:75:21:72:ac:3d:58:87:b3:6d:8b:0e:ac:55: 06:d6:61:5f:1d:97:ad:7d:49:b0:87:4f:2d:0b:20: 3f:7c:18:56:6c:c8:36:fd:31:f4:e5:1d:88:02:74: a5:c2:7d:05:b1:16:57:66:72:48:d0:5f:da:45:46: a6:5c:b9:73:4f:46:e5:d3:1c:be:ea:01:6f:2f:92: 49:4a:c9:20:49:c6:6b:25:ac:be:7d:da:8d:1e:85: 7c:57:d8:c4:11:8f:f2:0e:fd:1a:d5:8f:9d:16:34: fe:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:96:14:1A:25:41:DA:5F:AD:95:75:9F:9F:39:3E:82:97:9C:74:7C X509v3 Authority Key Identifier: keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS21859.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 46.203.46.0/24 46.203.215.0/24 46.203.217.0/24 46.203.219.0/24 46.203.221.0/24 92.112.157.0/24 92.113.66.0/24 95.135.111.0-95.135.113.255 178.92.11.0/24 178.92.24.0/24 178.92.59.0/24 Signature Algorithm: sha256WithRSAEncryption 1d:68:3c:03:8b:6c:e1:e7:34:5f:72:4f:e1:71:e7:6f:2e:a3: 1e:9d:86:c3:fd:24:7d:b3:29:06:cf:f9:e1:6d:2a:d9:f5:11: d6:03:c5:88:17:43:c1:dd:2c:9f:a2:f2:62:54:b8:de:93:63: 81:0b:fa:4e:41:ab:eb:74:96:ca:26:32:06:d5:d6:d6:83:50: 0a:67:4a:fc:09:a2:4c:7a:c1:09:3f:d0:e3:48:99:9f:f7:82: 40:e3:96:e5:24:5e:8d:7f:3a:9b:d8:dd:29:50:e4:6c:f2:06: cf:50:ae:06:7b:36:fa:69:7b:3b:f8:74:55:f3:38:fc:33:44: ad:81:c5:e7:39:0b:f3:3b:8b:a2:e8:aa:ef:e5:54:2e:ea:12: 96:19:3b:ec:6e:cc:73:54:55:4b:85:41:8f:a1:b4:3c:a8:31: 6e:4e:f3:67:33:fd:92:1d:61:29:55:3e:6c:74:02:35:5d:38: 2b:1b:7d:00:83:e5:6c:6a:00:0b:7e:98:0c:17:c5:7f:4f:e8: dd:f3:cd:aa:51:22:3c:92:f0:4e:43:97:2e:27:3b:df:a8:1a: a7:e5:9a:14:87:ae:ab:cc:0a:2b:37:88:0d:b9:87:9b:e9:d5: 0a:01:6b:24:fa:84:7b:fb:5a:b9:76:1c:8d:fb:02:04:cf:cd: 78:d4:d7:bb -----BEGIN CERTIFICATE----- MIIFQzCCBCugAwIBAgIUVexYSK9NsyYxVt4Oo6+lfQVAiT0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOWJkODEzMzkxZTRhZjJhZTMxMDNjMTg5MWIyMjcyZDRk NWMxM2I1ZjAeFw0yNTExMTMwMjIzMjdaFw0yNjExMTIwMjI4MjdaMDMxMTAvBgNV BAMTKDMyOTYxNDFBMjU0MURBNUZBRDk1NzU5RjlGMzkzRTgyOTc5Qzc0N0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwOxj8TceInsu2R/mFl2r1tyZq Suz2ASxlChJb0dq2Cp+BpWNckj9dvd1QE5pRCbJuo8YZt0SjlaqELgk2G4Qytbje A+8kznhKE9ttjpfVv3TrZSSiJuv+3vb5LEO41c4xoqeiabrhuOBU4R8RFkw3HpT/ n7j3R55o7qN4PbI3GZl6WgIXpzfzww0Ilyx5cQKp4QnMTRh/dSFyrD1Yh7Ntiw6s VQbWYV8dl619SbCHTy0LID98GFZsyDb9MfTlHYgCdKXCfQWxFldmckjQX9pFRqZc uXNPRuXTHL7qAW8vkklKySBJxmslrL592o0ehXxX2MQRj/IO/RrVj50WNP7RAgMB AAGjggJNMIICSTAdBgNVHQ4EFgQUMpYUGiVB2l+tlXWfnzk+gpecdHwwHwYDVR0j BBgwFoAUm9gTOR5K8q4xA8GJGyJy1NXBO18wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYzQ3OGY2ZjUtNDQ5YS00ODI3LTk5ZDUtYmY2YjkzYThm NmI0LzAvOUJEODEzMzkxRTRBRjJBRTMxMDNDMTg5MUIyMjcyRDRENUMxM0I1Ri5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL205Z1RPUjVLOHE0eEE4R0pHeUp5MU5Y Qk8xOC5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2M0NzhmNmY1LTQ0OWEt NDgyNy05OWQ1LWJmNmI5M2E4ZjZiNC8wL0FTMjE4NTkucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwYwYIKwYBBQUHAQcBAf8EVDBSMFAEAgABMEoDBAAuyy4D BAAuy9cDBAAuy9kDBAAuy9sDBAAuy90DBABccJ0DBABccUIwDAMEAF+HbwMEAV+H cAMEALJcCwMEALJcGAMEALJcOzANBgkqhkiG9w0BAQsFAAOCAQEAHWg8A4ts4ec0 X3JP4XHnby6jHp2Gw/0kfbMpBs/54W0q2fUR1gPFiBdDwd0sn6LyYlS43pNjgQv6 TkGr63SWyiYyBtXW1oNQCmdK/AmiTHrBCT/Q40iZn/eCQOOW5SRejX86m9jdKVDk bPIGz1CuBns2+ml7O/h0VfM4/DNErYHF5zkL8zuLouiq7+VULuoSlhk77G7Mc1RV S4VBj6G0PKgxbk7zZzP9kh1hKVU+bHQCNV04Kxt9AIPlbGoAC36YDBfFf0/o3fPN qlEiPJLwTkOXLic736gap+WaFIeuq8wKKzeIDbmHm+nVCgFrJPqEe/tauXYcjfsC BM/NeNTXuw== -----END CERTIFICATE-----Generated at Thu Dec 18 18:52:26 2025 by rpki-client