This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS9304.roa File: AS9304.roa (raw, json) Hash identifier: SQQObxYol64s9YpTHpbxm2k+ttvGaw5OVe8VdsU0ZH0= Subject key identifier: 8C:D9:2B:77:C3:29:BF:3C:79:52:C7:8D:B2:43:97:21:7D:68:DD:28 Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Certificate serial: 37E65E70EEE2B96EF1690F9AB01405CF16D6D02F Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS9304.roa Signing time: Sat 17 Jan 2026 13:36:05 +0000 ROA not before: Sat 17 Jan 2026 13:31:05 +0000 ROA not after: Sat 16 Jan 2027 13:36:05 +0000 asID: 9304 IP address blocks: 82.21.75.0/24 maxlen: 24 82.22.14.0/24 maxlen: 24 82.22.187.0/24 maxlen: 24 82.23.144.0/24 maxlen: 24 82.23.147.0/24 maxlen: 24 82.24.0.0/22 maxlen: 23 82.24.108.0/24 maxlen: 24 82.25.39.0/24 maxlen: 24 82.26.115.0/24 maxlen: 24 82.26.118.0/24 maxlen: 24 82.26.125.0/24 maxlen: 24 82.26.147.0/24 maxlen: 24 82.26.175.0/24 maxlen: 24 82.27.131.0/24 maxlen: 24 82.29.36.0/24 maxlen: 24 82.29.39.0/24 maxlen: 24 82.29.41.0/24 maxlen: 24 82.29.45.0/24 maxlen: 24 82.29.49.0/24 maxlen: 24 82.29.51.0/24 maxlen: 24 82.29.70.0/24 maxlen: 24 82.29.73.0/24 maxlen: 24 82.29.76.0/24 maxlen: 24 82.29.78.0/24 maxlen: 24 82.29.79.0/24 maxlen: 24 82.38.5.0/24 maxlen: 24 82.38.6.0/24 maxlen: 24 82.38.7.0/24 maxlen: 24 82.38.9.0/24 maxlen: 24 82.38.19.0/24 maxlen: 24 82.38.28.0/24 maxlen: 24 82.38.42.0/24 maxlen: 24 82.38.46.0/24 maxlen: 24 82.38.47.0/24 maxlen: 24 82.38.51.0/24 maxlen: 24 82.38.60.0/24 maxlen: 24 82.38.62.0/24 maxlen: 24 82.38.76.0/22 maxlen: 24 82.38.98.0/24 maxlen: 24 82.38.104.0/24 maxlen: 24 82.38.105.0/24 maxlen: 24 82.38.107.0/24 maxlen: 24 82.38.108.0/24 maxlen: 24 82.38.109.0/24 maxlen: 24 82.38.111.0/24 maxlen: 24 82.38.120.0/24 maxlen: 24 82.38.122.0/24 maxlen: 24 82.38.132.0/24 maxlen: 24 82.38.133.0/24 maxlen: 24 82.38.136.0/24 maxlen: 24 82.38.137.0/24 maxlen: 24 82.38.138.0/24 maxlen: 24 82.38.168.0/24 maxlen: 24 82.38.172.0/24 maxlen: 24 82.38.198.0/24 maxlen: 24 82.39.173.0/24 maxlen: 24 82.39.205.0/24 maxlen: 24 82.39.210.0/23 maxlen: 24 82.39.213.0/24 maxlen: 24 82.39.214.0/24 maxlen: 24 82.39.215.0/24 maxlen: 24 82.40.52.0/24 maxlen: 24 82.40.53.0/24 maxlen: 24 82.40.54.0/24 maxlen: 24 82.41.64.0/22 maxlen: 24 82.41.117.0/24 maxlen: 24 82.41.120.0/24 maxlen: 24 82.41.158.0/24 maxlen: 24 82.41.159.0/24 maxlen: 24 82.41.168.0/24 maxlen: 24 82.41.180.0/24 maxlen: 24 82.41.195.0/24 maxlen: 24 82.41.198.0/24 maxlen: 24 82.41.202.0/24 maxlen: 24 82.41.208.0/24 maxlen: 24 82.41.210.0/24 maxlen: 24 82.41.211.0/24 maxlen: 24 82.41.221.0/24 maxlen: 24 82.41.232.0/24 maxlen: 24 82.41.233.0/24 maxlen: 24 82.41.234.0/24 maxlen: 24 82.41.235.0/24 maxlen: 24 82.41.236.0/24 maxlen: 24 82.41.237.0/24 maxlen: 24 82.41.238.0/24 maxlen: 24 82.41.241.0/24 maxlen: 24 178.83.5.0/24 maxlen: 24 178.83.7.0/24 maxlen: 24 178.83.8.0/24 maxlen: 24 178.83.9.0/24 maxlen: 24 178.83.10.0/24 maxlen: 24 178.83.12.0/24 maxlen: 24 178.83.13.0/24 maxlen: 24 178.83.14.0/24 maxlen: 24 178.83.15.0/24 maxlen: 24 178.83.17.0/24 maxlen: 24 178.83.109.0/24 maxlen: 24 178.83.110.0/24 maxlen: 24 178.83.111.0/24 maxlen: 24 178.83.117.0/24 maxlen: 24 178.83.119.0/24 maxlen: 24 178.83.120.0/24 maxlen: 24 178.83.121.0/24 maxlen: 24 178.83.122.0/24 maxlen: 24 178.83.132.0/24 maxlen: 24 178.83.133.0/24 maxlen: 24 178.83.134.0/24 maxlen: 24 178.83.135.0/24 maxlen: 24 178.83.136.0/24 maxlen: 24 178.83.137.0/24 maxlen: 24 178.83.138.0/24 maxlen: 24 178.83.139.0/24 maxlen: 24 178.83.209.0/24 maxlen: 24 178.83.210.0/24 maxlen: 24 178.83.211.0/24 maxlen: 24 178.83.212.0/24 maxlen: 24 178.83.213.0/24 maxlen: 24 178.83.214.0/24 maxlen: 24 178.83.215.0/24 maxlen: 24 178.83.220.0/24 maxlen: 24 178.83.221.0/24 maxlen: 24 178.83.223.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 19 Jan 2026 04:45:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:e6:5e:70:ee:e2:b9:6e:f1:69:0f:9a:b0:14:05:cf:16:d6:d0:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Validity Not Before: Jan 17 13:31:05 2026 GMT Not After : Jan 16 13:36:05 2027 GMT Subject: CN=8CD92B77C329BF3C7952C78DB24397217D68DD28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:d0:25:8a:13:5e:0e:e2:0f:39:b5:dc:53:5b: ad:8b:32:ba:71:81:f1:c4:54:12:6e:89:e5:65:83: 44:fe:71:92:8c:b6:51:9d:61:52:5b:7b:78:c5:fa: 96:f1:f8:b9:3b:17:73:8a:28:b8:37:ef:bb:07:c2: 65:e5:28:8a:22:48:aa:c0:1e:ff:8c:a5:73:61:08: 9a:2b:04:02:db:37:50:e8:d7:a7:43:6a:b0:78:71: f7:2f:b2:1d:3f:da:74:d0:2c:92:74:73:09:b2:98: 7c:b7:c7:9a:68:32:a9:3e:7d:f8:97:47:67:e2:1f: 72:a4:fb:7a:af:d1:d8:7c:ea:6f:d6:e1:0a:5a:59: 35:8f:d3:d7:2d:56:8b:99:ce:7e:e3:43:c2:52:cc: b8:98:6c:d5:c3:05:ea:bc:dc:41:bd:b8:28:43:39: 37:4f:ed:bc:03:b0:bc:39:6d:5e:07:72:30:2b:f7: ae:bc:7b:9d:b3:23:d4:d6:f8:80:ab:06:22:5b:b2: 24:c5:8e:46:af:3b:0d:37:85:24:b0:d3:18:54:a2: f9:2e:78:38:eb:45:11:86:be:6a:8b:a3:f6:6c:6f: a4:5e:d0:83:a9:1f:03:97:8f:da:ec:8c:fe:b4:ef: fb:75:47:55:0c:e0:3d:13:f2:fe:fc:6d:dc:a1:e1: 22:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:D9:2B:77:C3:29:BF:3C:79:52:C7:8D:B2:43:97:21:7D:68:DD:28 X509v3 Authority Key Identifier: keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS9304.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 82.21.75.0/24 82.22.14.0/24 82.22.187.0/24 82.23.144.0/24 82.23.147.0/24 82.24.0.0/22 82.24.108.0/24 82.25.39.0/24 82.26.115.0/24 82.26.118.0/24 82.26.125.0/24 82.26.147.0/24 82.26.175.0/24 82.27.131.0/24 82.29.36.0/24 82.29.39.0/24 82.29.41.0/24 82.29.45.0/24 82.29.49.0/24 82.29.51.0/24 82.29.70.0/24 82.29.73.0/24 82.29.76.0/24 82.29.78.0/23 82.38.5.0-82.38.7.255 82.38.9.0/24 82.38.19.0/24 82.38.28.0/24 82.38.42.0/24 82.38.46.0/23 82.38.51.0/24 82.38.60.0/24 82.38.62.0/24 82.38.76.0/22 82.38.98.0/24 82.38.104.0/23 82.38.107.0-82.38.109.255 82.38.111.0/24 82.38.120.0/24 82.38.122.0/24 82.38.132.0/23 82.38.136.0-82.38.138.255 82.38.168.0/24 82.38.172.0/24 82.38.198.0/24 82.39.173.0/24 82.39.205.0/24 82.39.210.0/23 82.39.213.0-82.39.215.255 82.40.52.0-82.40.54.255 82.41.64.0/22 82.41.117.0/24 82.41.120.0/24 82.41.158.0/23 82.41.168.0/24 82.41.180.0/24 82.41.195.0/24 82.41.198.0/24 82.41.202.0/24 82.41.208.0/24 82.41.210.0/23 82.41.221.0/24 82.41.232.0-82.41.238.255 82.41.241.0/24 178.83.5.0/24 178.83.7.0-178.83.10.255 178.83.12.0/22 178.83.17.0/24 178.83.109.0-178.83.111.255 178.83.117.0/24 178.83.119.0-178.83.122.255 178.83.132.0-178.83.139.255 178.83.209.0-178.83.215.255 178.83.220.0/23 178.83.223.0/24 Signature Algorithm: sha256WithRSAEncryption 08:f0:27:6c:d0:5d:c4:27:2e:68:81:e8:5e:d6:b0:b7:c2:ca: ff:69:fe:cb:79:c5:bf:5c:29:00:40:9e:4a:d3:f2:d1:37:38: 4e:b4:ca:00:3e:5a:51:63:e0:c3:15:8e:ce:ca:7c:95:9d:cf: ca:d8:df:03:26:e5:5f:91:8d:61:a4:5e:7d:f4:5b:22:95:3f: 36:84:d5:d7:d7:27:45:0e:76:0e:71:e1:55:94:8d:31:fb:1c: 04:5d:39:cc:89:7f:b3:a0:f4:a8:54:00:1a:ba:c4:e2:45:9e: 8d:6b:5a:22:fc:42:c3:71:4a:aa:1b:db:d4:e9:7e:52:14:ba: e7:8c:74:af:2a:4e:c1:1c:82:0a:68:4c:bf:13:95:b0:dc:23: 56:89:59:b9:74:94:0a:96:a0:76:54:12:93:2a:39:f5:eb:25: 5c:a7:3a:06:ef:ba:29:f9:89:cd:98:37:f3:d8:4f:c8:cf:fc: 71:7d:54:27:5b:c1:fe:64:b8:34:6d:a0:f5:c4:d6:22:4c:7a: f5:66:d5:5f:29:87:2e:96:1b:b4:6e:5e:64:fa:e1:23:f9:d9: f3:e3:49:4d:a6:8f:13:2b:9c:81:27:dd:68:74:58:d7:f0:34: 7f:a9:1b:eb:a0:9e:74:19:8f:f5:0b:8c:22:03:c4:7b:7a:80: ef:46:ec:98 -----BEGIN CERTIFICATE----- MIIHHDCCBgSgAwIBAgIUN+ZecO7iuW7xaQ+asBQFzxbW0C8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjE4Y2M2ZTI0MTA1ZGU2YzVjOTAwM2Q2NTI0Mzg5M2Ni M2NmZGQwMTAeFw0yNjAxMTcxMzMxMDVaFw0yNzAxMTYxMzM2MDVaMDMxMTAvBgNV BAMTKDhDRDkyQjc3QzMyOUJGM0M3OTUyQzc4REIyNDM5NzIxN0Q2OEREMjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDP0CWKE14O4g85tdxTW62LMrpx gfHEVBJuieVlg0T+cZKMtlGdYVJbe3jF+pbx+Lk7F3OKKLg377sHwmXlKIoiSKrA Hv+MpXNhCJorBALbN1Do16dDarB4cfcvsh0/2nTQLJJ0cwmymHy3x5poMqk+ffiX R2fiH3Kk+3qv0dh86m/W4QpaWTWP09ctVouZzn7jQ8JSzLiYbNXDBeq83EG9uChD OTdP7bwDsLw5bV4HcjAr9668e52zI9TW+ICrBiJbsiTFjkavOw03hSSw0xhUovku eDjrRRGGvmqLo/Zsb6Re0IOpHwOXj9rsjP607/t1R1UM4D0T8v78bdyh4SKvAgMB AAGjggQmMIIEIjAdBgNVHQ4EFgQUjNkrd8Mpvzx5UseNskOXIX1o3SgwHwYDVR0j BBgwFoAUIYzG4kEF3mxckAPWUkOJPLPP3QEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYtYjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWEx YWY2LzAvMjE4Q0M2RTI0MTA1REU2QzVDOTAwM0Q2NTI0Mzg5M0NCM0NGREQwMS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0lZekc0a0VGM214Y2tBUFdVa09KUExQ UDNRRS5jZXIweQYIKwYBBQUHAQsEbTBrMGkGCCsGAQUFBzALhl1yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzcxOGExYjRmLWI2NGMt NDAyYy1iZTE1LWRkODJhNDFhMWFmNi8wL0FTOTMwNC5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjCCAjsGCCsGAQUFBwEHAQH/BIICKjCCAiYwggIiBAIAATCC AhoDBABSFUsDBABSFg4DBABSFrsDBABSF5ADBABSF5MDBAJSGAADBABSGGwDBABS GScDBABSGnMDBABSGnYDBABSGn0DBABSGpMDBABSGq8DBABSG4MDBABSHSQDBABS HScDBABSHSkDBABSHS0DBABSHTEDBABSHTMDBABSHUYDBABSHUkDBABSHUwDBAFS HU4wDAMEAFImBQMEA1ImAAMEAFImCQMEAFImEwMEAFImHAMEAFImKgMEAVImLgME AFImMwMEAFImPAMEAFImPgMEAlImTAMEAFImYgMEAVImaDAMAwQAUiZrAwQBUiZs AwQAUiZvAwQAUiZ4AwQAUiZ6AwQBUiaEMAwDBANSJogDBABSJooDBABSJqgDBABS JqwDBABSJsYDBABSJ60DBABSJ80DBAFSJ9IwDAMEAFIn1QMEA1In0DAMAwQCUig0 AwQAUig2AwQCUilAAwQAUil1AwQAUil4AwQBUimeAwQAUimoAwQAUim0AwQAUinD AwQAUinGAwQAUinKAwQAUinQAwQBUinSAwQAUindMAwDBANSKegDBABSKe4DBABS KfEDBACyUwUwDAMEALJTBwMEALJTCgMEArJTDAMEALJTETAMAwQAslNtAwQEslNg AwQAslN1MAwDBACyU3cDBACyU3owDAMEArJThAMEArJTiDAMAwQAslPRAwQDslPQ AwQBslPcAwQAslPfMA0GCSqGSIb3DQEBCwUAA4IBAQAI8Cds0F3EJy5ogehe1rC3 wsr/af7LecW/XCkAQJ5K0/LRNzhOtMoAPlpRY+DDFY7OynyVnc/K2N8DJuVfkY1h pF599FsilT82hNXX1ydFDnYOceFVlI0x+xwEXTnMiX+zoPSoVAAausTiRZ6Na1oi /ELDcUqqG9vU6X5SFLrnjHSvKk7BHIIKaEy/E5Ww3CNWiVm5dJQKlqB2VBKTKjn1 6yVcpzoG77op+YnNmDfz2E/Iz/xxfVQnW8H+ZLg0baD1xNYiTHr1ZtVfKYculhu0 bl5k+uEj+dnz40lNpo8TK5yBJ91odFjX8DR/qRvroJ50GY/1C4wiA8R7eoDvRuyY -----END CERTIFICATE-----Generated at Sun Jan 18 08:55:48 2026 by rpki-client