This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS7018.roa File: AS7018.roa (raw, json) Hash identifier: qkfEzEdiLvCcHLzLccWc3mZc1Gwy/h8Ksm6RKQ94FgQ= Subject key identifier: E1:40:84:6B:34:30:45:17:54:4D:55:FB:10:DC:86:8F:E2:FB:3D:C3 Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f Certificate serial: 0681558BB40E1D53202BE9C64EB45B67B15347EE Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS7018.roa Signing time: Thu 18 Dec 2025 07:58:45 +0000 ROA not before: Thu 18 Dec 2025 07:53:45 +0000 ROA not after: Thu 17 Dec 2026 07:58:45 +0000 asID: 7018 IP address blocks: 46.202.53.0/24 maxlen: 24 46.202.87.0/24 maxlen: 24 46.202.96.0/24 maxlen: 24 46.202.97.0/24 maxlen: 24 46.202.98.0/24 maxlen: 24 46.202.99.0/24 maxlen: 24 46.202.124.0/24 maxlen: 24 46.202.125.0/24 maxlen: 24 46.202.126.0/24 maxlen: 24 46.202.127.0/24 maxlen: 24 46.202.201.0/24 maxlen: 24 46.202.202.0/24 maxlen: 24 46.202.203.0/24 maxlen: 24 46.202.207.0/24 maxlen: 24 46.202.216.0/24 maxlen: 24 46.202.217.0/24 maxlen: 24 46.202.219.0/24 maxlen: 24 46.202.220.0/24 maxlen: 24 46.202.221.0/24 maxlen: 24 46.202.222.0/24 maxlen: 24 46.202.223.0/24 maxlen: 24 46.203.3.0/24 maxlen: 24 46.203.5.0/24 maxlen: 24 46.203.13.0/24 maxlen: 24 46.203.14.0/24 maxlen: 24 46.203.21.0/24 maxlen: 24 46.203.22.0/24 maxlen: 24 46.203.29.0/24 maxlen: 24 46.203.32.0/24 maxlen: 24 46.203.43.0/24 maxlen: 24 46.203.44.0/24 maxlen: 24 46.203.47.0/24 maxlen: 24 46.203.54.0/24 maxlen: 24 46.203.56.0/24 maxlen: 24 46.203.58.0/24 maxlen: 24 46.203.62.0/24 maxlen: 24 46.203.74.0/24 maxlen: 24 46.203.80.0/24 maxlen: 24 46.203.91.0/24 maxlen: 24 46.203.92.0/24 maxlen: 24 46.203.104.0/24 maxlen: 24 46.203.113.0/24 maxlen: 24 46.203.121.0/24 maxlen: 24 46.203.137.0/24 maxlen: 24 46.203.161.0/24 maxlen: 24 46.203.223.0/24 maxlen: 24 46.203.225.0/24 maxlen: 24 46.203.249.0/24 maxlen: 24 91.124.0.0/24 maxlen: 24 91.124.2.0/24 maxlen: 24 91.124.3.0/24 maxlen: 24 91.124.16.0/24 maxlen: 24 91.124.59.0/24 maxlen: 24 91.124.82.0/24 maxlen: 24 91.124.90.0/24 maxlen: 24 91.124.134.0/24 maxlen: 24 91.124.208.0/24 maxlen: 24 91.124.242.0/24 maxlen: 24 92.112.62.0/24 maxlen: 24 92.112.111.0/24 maxlen: 24 92.112.112.0/24 maxlen: 24 92.112.113.0/24 maxlen: 24 92.112.114.0/24 maxlen: 24 92.112.115.0/24 maxlen: 24 92.112.116.0/24 maxlen: 24 92.112.117.0/24 maxlen: 24 92.112.118.0/24 maxlen: 24 92.113.6.0/24 maxlen: 24 92.113.15.0/24 maxlen: 24 92.113.40.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 15:58:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:81:55:8b:b4:0e:1d:53:20:2b:e9:c6:4e:b4:5b:67:b1:53:47:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f Validity Not Before: Dec 18 07:53:45 2025 GMT Not After : Dec 17 07:58:45 2026 GMT Subject: CN=E140846B34304517544D55FB10DC868FE2FB3DC3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:b1:38:dc:b0:d4:ec:a7:43:55:e2:e7:ed:1b: a1:6a:39:e5:88:9f:57:2b:04:10:75:ce:07:26:64: 3a:47:8f:4c:3b:c0:92:78:4e:f6:c0:8b:2c:87:a0: 24:a6:32:a6:8e:54:06:a2:53:31:ff:68:56:99:52: 6f:84:74:1b:c8:60:ea:f8:93:7c:28:51:4f:31:1d: 20:df:45:87:c7:60:5e:ef:79:79:12:b6:12:c5:31: 66:57:c6:d1:32:b0:f8:f3:b8:4a:57:bb:53:e7:86: 35:be:af:91:82:75:f2:11:21:67:c7:31:bb:c6:a2: f8:5e:60:31:38:29:17:d0:4b:d8:75:2f:0f:e2:9d: 93:f8:40:ae:19:42:77:cd:0a:19:66:25:2c:a7:29: 1b:dc:5c:23:5d:36:e6:de:ce:46:68:d5:2f:59:80: c9:c6:0f:f3:f3:65:a7:66:8e:c4:a0:64:c7:2a:d9: 11:be:5e:ba:81:36:42:07:5a:74:b4:ff:c1:70:ef: e0:52:5a:43:85:1a:06:7c:8e:1f:2d:37:82:71:15: 0d:76:ad:96:f7:05:3b:c2:f9:c7:95:b9:82:9c:02: bf:c4:d0:cf:05:ff:9b:8f:64:ec:a5:4c:5b:39:7a: cf:23:5f:86:5c:32:ad:e5:fb:06:cc:41:66:9f:a5: f5:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:40:84:6B:34:30:45:17:54:4D:55:FB:10:DC:86:8F:E2:FB:3D:C3 X509v3 Authority Key Identifier: keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS7018.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 46.202.53.0/24 46.202.87.0/24 46.202.96.0/22 46.202.124.0/22 46.202.201.0-46.202.203.255 46.202.207.0/24 46.202.216.0/23 46.202.219.0-46.202.223.255 46.203.3.0/24 46.203.5.0/24 46.203.13.0-46.203.14.255 46.203.21.0-46.203.22.255 46.203.29.0/24 46.203.32.0/24 46.203.43.0-46.203.44.255 46.203.47.0/24 46.203.54.0/24 46.203.56.0/24 46.203.58.0/24 46.203.62.0/24 46.203.74.0/24 46.203.80.0/24 46.203.91.0-46.203.92.255 46.203.104.0/24 46.203.113.0/24 46.203.121.0/24 46.203.137.0/24 46.203.161.0/24 46.203.223.0/24 46.203.225.0/24 46.203.249.0/24 91.124.0.0/24 91.124.2.0/23 91.124.16.0/24 91.124.59.0/24 91.124.82.0/24 91.124.90.0/24 91.124.134.0/24 91.124.208.0/24 91.124.242.0/24 92.112.62.0/24 92.112.111.0-92.112.118.255 92.113.6.0/24 92.113.15.0/24 92.113.40.0/24 Signature Algorithm: sha256WithRSAEncryption 13:8b:d1:7c:f5:2a:b1:d0:5c:9e:a1:24:4f:39:ce:b6:29:7c: f1:4b:cf:bd:d4:dc:73:22:6a:8f:a8:cd:49:c2:7b:79:ee:f4: 0f:d9:f1:2b:74:7e:db:20:6e:98:8b:8e:40:60:de:b3:42:21: 69:cb:29:92:f1:27:f1:09:e1:b9:ca:e1:bd:27:38:19:80:17: 68:42:1e:8a:6d:fd:01:fd:1d:6a:4f:71:ca:ba:8a:56:51:32: e1:1f:bb:bc:01:db:d1:d4:53:bc:b3:c1:87:d4:04:e3:75:43: 94:6b:8d:71:3e:54:f2:c5:e9:c4:92:1d:4b:09:32:18:b3:08: 9d:f9:bb:2b:39:7e:88:0b:84:75:6a:fd:b5:d8:fc:13:37:f1: 3c:0e:e6:6b:63:a2:41:40:47:4a:96:e0:95:cf:b2:4f:fc:62: be:b5:b3:c6:08:90:25:50:fd:24:37:fb:63:9c:3c:d9:e2:2b: 97:c9:da:5e:a8:63:37:52:5a:da:3e:a8:fe:bb:b8:63:ca:9c: d6:d9:b7:2d:4e:d2:c2:d1:9e:fc:7c:98:52:06:fc:04:64:62: 57:bc:80:b4:f1:4c:39:53:71:92:67:36:f7:5c:e5:06:f9:46: 0e:c3:f9:74:18:08:1d:f7:6e:24:9d:c8:60:b9:a5:62:77:f1: b6:ba:47:51 -----BEGIN CERTIFICATE----- MIIGSDCCBTCgAwIBAgIUBoFVi7QOHVMgK+nGTrRbZ7FTR+4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOWJkODEzMzkxZTRhZjJhZTMxMDNjMTg5MWIyMjcyZDRk NWMxM2I1ZjAeFw0yNTEyMTgwNzUzNDVaFw0yNjEyMTcwNzU4NDVaMDMxMTAvBgNV BAMTKEUxNDA4NDZCMzQzMDQ1MTc1NDRENTVGQjEwREM4NjhGRTJGQjNEQzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCbsTjcsNTsp0NV4uftG6FqOeWI n1crBBB1zgcmZDpHj0w7wJJ4TvbAiyyHoCSmMqaOVAaiUzH/aFaZUm+EdBvIYOr4 k3woUU8xHSDfRYfHYF7veXkSthLFMWZXxtEysPjzuEpXu1PnhjW+r5GCdfIRIWfH MbvGovheYDE4KRfQS9h1Lw/inZP4QK4ZQnfNChlmJSynKRvcXCNdNubezkZo1S9Z gMnGD/PzZadmjsSgZMcq2RG+XrqBNkIHWnS0/8Fw7+BSWkOFGgZ8jh8tN4JxFQ12 rZb3BTvC+ceVuYKcAr/E0M8F/5uPZOylTFs5es8jX4ZcMq3l+wbMQWafpfVJAgMB AAGjggNSMIIDTjAdBgNVHQ4EFgQU4UCEazQwRRdUTVX7ENyGj+L7PcMwHwYDVR0j BBgwFoAUm9gTOR5K8q4xA8GJGyJy1NXBO18wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYzQ3OGY2ZjUtNDQ5YS00ODI3LTk5ZDUtYmY2YjkzYThm NmI0LzAvOUJEODEzMzkxRTRBRjJBRTMxMDNDMTg5MUIyMjcyRDRENUMxM0I1Ri5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL205Z1RPUjVLOHE0eEE4R0pHeUp5MU5Y Qk8xOC5jZXIweQYIKwYBBQUHAQsEbTBrMGkGCCsGAQUFBzALhl1yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2M0NzhmNmY1LTQ0OWEt NDgyNy05OWQ1LWJmNmI5M2E4ZjZiNC8wL0FTNzAxOC5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjCCAWcGCCsGAQUFBwEHAQH/BIIBVjCCAVIwggFOBAIAATCC AUYDBAAuyjUDBAAuylcDBAIuymADBAIuynwwDAMEAC7KyQMEAi7KyAMEAC7KzwME AS7K2DAMAwQALsrbAwQFLsrAAwQALssDAwQALssFMAwDBAAuyw0DBAAuyw4wDAME AC7LFQMEAC7LFgMEAC7LHQMEAC7LIDAMAwQALssrAwQALsssAwQALssvAwQALss2 AwQALss4AwQALss6AwQALss+AwQALstKAwQALstQMAwDBAAuy1sDBAAuy1wDBAAu y2gDBAAuy3EDBAAuy3kDBAAuy4kDBAAuy6EDBAAuy98DBAAuy+EDBAAuy/kDBABb fAADBAFbfAIDBABbfBADBABbfDsDBABbfFIDBABbfFoDBABbfIYDBABbfNADBABb fPIDBABccD4wDAMEAFxwbwMEAFxwdgMEAFxxBgMEAFxxDwMEAFxxKDANBgkqhkiG 9w0BAQsFAAOCAQEAE4vRfPUqsdBcnqEkTznOtil88UvPvdTccyJqj6jNScJ7ee70 D9nxK3R+2yBumIuOQGDes0IhacspkvEn8QnhucrhvSc4GYAXaEIeim39Af0dak9x yrqKVlEy4R+7vAHb0dRTvLPBh9QE43VDlGuNcT5U8sXpxJIdSwkyGLMInfm7Kzl+ iAuEdWr9tdj8EzfxPA7ma2OiQUBHSpbglc+yT/xivrWzxgiQJVD9JDf7Y5w82eIr l8naXqhjN1Ja2j6o/ru4Y8qc1tm3LU7SwtGe/HyYUgb8BGRiV7yAtPFMOVNxkmc2 91zlBvlGDsP5dBgIHfduJJ3IYLmlYnfxtrpHUQ== -----END CERTIFICATE-----Generated at Sat Dec 27 01:36:16 2025 by rpki-client