This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c409d7b2-ee64-49f1-ad81-8e4a107d62e0/0/AS9304.roa File: AS9304.roa (raw, json) Hash identifier: Zl+wJZWD7zg/AhXh7lYss7/GN0hJDsQYyt+LfD12d4I= Subject key identifier: E2:34:5B:B7:EC:F1:42:66:D2:A4:79:7B:DD:21:FF:C5:36:2E:5B:A8 Certificate issuer: /CN=88c14ec02adbf083138eddd47871176ddeb93d9d Certificate serial: 7F9C272C0BE4669CE4D750101A9C4EB02BDB4DBA Authority key identifier: 88:C1:4E:C0:2A:DB:F0:83:13:8E:DD:D4:78:71:17:6D:DE:B9:3D:9D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iMFOwCrb8IMTjt3UeHEXbd65PZ0.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c409d7b2-ee64-49f1-ad81-8e4a107d62e0/0/AS9304.roa Signing time: Sun 30 Nov 2025 12:00:04 +0000 ROA not before: Sun 30 Nov 2025 11:55:04 +0000 ROA not after: Sun 29 Nov 2026 12:00:04 +0000 asID: 9304 IP address blocks: 143.20.16.0/24 maxlen: 24 143.20.17.0/24 maxlen: 24 143.20.18.0/24 maxlen: 24 143.20.73.0/24 maxlen: 24 143.20.84.0/24 maxlen: 24 143.20.120.0/24 maxlen: 24 143.20.132.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c409d7b2-ee64-49f1-ad81-8e4a107d62e0/0/88C14EC02ADBF083138EDDD47871176DDEB93D9D.crl rsync://rsync.paas.rpki.ripe.net/repository/c409d7b2-ee64-49f1-ad81-8e4a107d62e0/0/88C14EC02ADBF083138EDDD47871176DDEB93D9D.mft rsync://rpki.ripe.net/repository/DEFAULT/iMFOwCrb8IMTjt3UeHEXbd65PZ0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 05 Dec 2025 00:00:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:9c:27:2c:0b:e4:66:9c:e4:d7:50:10:1a:9c:4e:b0:2b:db:4d:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=88c14ec02adbf083138eddd47871176ddeb93d9d Validity Not Before: Nov 30 11:55:04 2025 GMT Not After : Nov 29 12:00:04 2026 GMT Subject: CN=E2345BB7ECF14266D2A4797BDD21FFC5362E5BA8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:e2:ac:df:b4:02:f3:5c:68:f6:c2:16:86:a8: 0e:74:14:62:56:c6:d6:25:8c:72:6e:91:52:0d:eb: b3:36:25:59:a5:ec:08:6e:18:14:e0:8a:9c:41:a9: 61:ee:e0:fd:bc:5c:c9:c1:7c:f2:b9:c6:d3:8f:0b: aa:58:36:f4:0f:61:f2:f2:51:39:81:bd:b1:ef:ff: c7:d2:c7:91:ee:6d:c8:fd:8f:f6:44:1c:ab:15:6d: 0c:e0:41:0d:de:45:89:76:87:ef:4d:80:ea:b8:5f: 6b:03:02:4a:e7:4e:e5:71:9c:03:4c:cf:5a:f7:06: 66:41:58:4c:31:af:04:b3:6c:02:06:01:88:e4:ad: 32:45:5a:30:a7:e3:2d:ea:6d:23:8f:8f:0d:f9:47: 6c:d3:d0:11:33:21:27:e4:a7:09:dc:b0:53:e2:1e: 30:f0:e2:2a:0a:98:4a:13:3a:78:42:37:07:82:46: 03:69:2f:29:d3:10:82:c9:83:ac:50:2f:5e:bf:e3: a5:a6:46:ab:42:f8:fd:78:44:6b:b7:d3:6b:00:3b: 98:ba:0f:a3:0a:26:a8:b1:db:6c:5c:79:d0:e5:b6: b8:fb:f6:33:c3:c7:34:e4:f0:73:08:c3:56:6f:b7: 17:fa:37:ac:d5:86:47:01:fb:c5:e0:43:06:10:30: b4:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:34:5B:B7:EC:F1:42:66:D2:A4:79:7B:DD:21:FF:C5:36:2E:5B:A8 X509v3 Authority Key Identifier: keyid:88:C1:4E:C0:2A:DB:F0:83:13:8E:DD:D4:78:71:17:6D:DE:B9:3D:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/c409d7b2-ee64-49f1-ad81-8e4a107d62e0/0/88C14EC02ADBF083138EDDD47871176DDEB93D9D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iMFOwCrb8IMTjt3UeHEXbd65PZ0.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c409d7b2-ee64-49f1-ad81-8e4a107d62e0/0/AS9304.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 143.20.16.0-143.20.18.255 143.20.73.0/24 143.20.84.0/24 143.20.120.0/24 143.20.132.0/24 Signature Algorithm: sha256WithRSAEncryption c9:ec:20:25:e7:7b:e9:73:86:7c:34:db:fe:63:86:97:66:0c: 3b:e5:87:74:a0:e0:df:23:72:07:ee:f2:f8:3f:ff:6e:9e:24: 8f:62:48:e3:3f:99:36:e6:c9:33:39:59:64:31:a6:e7:0f:5a: 2f:b8:ec:8f:8c:48:88:e6:bf:5a:7e:f7:5c:7c:60:b1:88:42: 92:18:68:86:97:b9:84:a5:85:47:95:45:97:cb:4c:c8:bb:8a: f5:1e:9a:1a:37:25:ab:0b:1b:82:17:15:70:bb:02:57:17:c0: 9d:ba:1e:2f:50:83:11:12:5d:88:23:d9:bf:34:07:af:f7:39: b7:36:d3:80:3c:e1:4a:4d:80:d6:31:5a:19:02:78:d1:8c:a3: e8:66:f6:85:49:b4:2e:0f:cc:df:30:3a:86:68:f0:68:81:85: 5c:3b:0c:ab:ac:38:3d:d5:75:d4:7e:5a:0a:b4:b7:8b:dc:6f: 2f:d0:2e:1a:97:7c:b3:6a:a5:8a:20:8e:e6:63:6e:98:1a:3b: a7:cb:d2:de:42:ef:1e:fe:22:30:07:b6:c8:89:8a:39:c6:07: 07:c4:34:1b:5e:19:b5:87:14:31:d9:6a:9a:e2:3e:f5:ad:cb: 9b:5f:2a:47:eb:ac:cc:e9:9f:dc:de:86:a6:7c:6f:55:92:32: c4:f0:a9:ed -----BEGIN CERTIFICATE----- MIIFHjCCBAagAwIBAgIUf5wnLAvkZpzk11AQGpxOsCvbTbowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODhjMTRlYzAyYWRiZjA4MzEzOGVkZGQ0Nzg3MTE3NmRk ZWI5M2Q5ZDAeFw0yNTExMzAxMTU1MDRaFw0yNjExMjkxMjAwMDRaMDMxMTAvBgNV BAMTKEUyMzQ1QkI3RUNGMTQyNjZEMkE0Nzk3QkREMjFGRkM1MzYyRTVCQTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDN4qzftALzXGj2whaGqA50FGJW xtYljHJukVIN67M2JVml7AhuGBTgipxBqWHu4P28XMnBfPK5xtOPC6pYNvQPYfLy UTmBvbHv/8fSx5Hubcj9j/ZEHKsVbQzgQQ3eRYl2h+9NgOq4X2sDAkrnTuVxnANM z1r3BmZBWEwxrwSzbAIGAYjkrTJFWjCn4y3qbSOPjw35R2zT0BEzISfkpwncsFPi HjDw4ioKmEoTOnhCNweCRgNpLynTEILJg6xQL16/46WmRqtC+P14RGu302sAO5i6 D6MKJqix22xcedDltrj79jPDxzTk8HMIw1Zvtxf6N6zVhkcB+8XgQwYQMLR/AgMB AAGjggIoMIICJDAdBgNVHQ4EFgQU4jRbt+zxQmbSpHl73SH/xTYuW6gwHwYDVR0j BBgwFoAUiMFOwCrb8IMTjt3UeHEXbd65PZ0wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYzQwOWQ3YjItZWU2NC00OWYxLWFkODEtOGU0YTEwN2Q2 MmUwLzAvODhDMTRFQzAyQURCRjA4MzEzOEVEREQ0Nzg3MTE3NkRERUI5M0Q5RC5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2lNRk93Q3JiOElNVGp0M1VlSEVYYmQ2 NVBaMC5jZXIweQYIKwYBBQUHAQsEbTBrMGkGCCsGAQUFBzALhl1yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2M0MDlkN2IyLWVlNjQt NDlmMS1hZDgxLThlNGExMDdkNjJlMC8wL0FTOTMwNC5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjA/BggrBgEFBQcBBwEB/wQwMC4wLAQCAAEwJjAMAwQEjxQQ AwQAjxQSAwQAjxRJAwQAjxRUAwQAjxR4AwQAjxSEMA0GCSqGSIb3DQEBCwUAA4IB AQDJ7CAl53vpc4Z8NNv+Y4aXZgw75Yd0oODfI3IH7vL4P/9uniSPYkjjP5k25skz OVlkMabnD1ovuOyPjEiI5r9afvdcfGCxiEKSGGiGl7mEpYVHlUWXy0zIu4r1Hpoa NyWrCxuCFxVwuwJXF8Cduh4vUIMREl2II9m/NAev9zm3NtOAPOFKTYDWMVoZAnjR jKPoZvaFSbQuD8zfMDqGaPBogYVcOwyrrDg91XXUfloKtLeL3G8v0C4al3yzaqWK II7mY26YGjuny9LeQu8e/iIwB7bIiYo5xgcHxDQbXhm1hxQx2Wqa4j71rcubXypH 66zM6Z/c3oamfG9VkjLE8Knt -----END CERTIFICATE-----Generated at Thu Dec 4 04:21:44 2025 by rpki-client