This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS22427.roa File: AS22427.roa (raw, json) Hash identifier: 7r3RXd/fqKeOGy7luxVWW7KSNJwPgwJa7N+hmU6+B+4= Subject key identifier: 4E:8B:08:67:29:94:D0:AB:33:90:D9:88:04:1D:41:FD:7C:4E:A9:8C Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f Certificate serial: 1747E0A456D5302DF3864C5A5A00D6A8FBEBB2D6 Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS22427.roa Signing time: Mon 12 Jan 2026 03:35:47 +0000 ROA not before: Mon 12 Jan 2026 03:30:47 +0000 ROA not after: Mon 11 Jan 2027 03:35:47 +0000 asID: 22427 IP address blocks: 91.124.128.0/24 maxlen: 24 95.135.84.0/24 maxlen: 24 178.94.232.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 16 Jan 2026 15:31:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:47:e0:a4:56:d5:30:2d:f3:86:4c:5a:5a:00:d6:a8:fb:eb:b2:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f Validity Not Before: Jan 12 03:30:47 2026 GMT Not After : Jan 11 03:35:47 2027 GMT Subject: CN=4E8B08672994D0AB3390D988041D41FD7C4EA98C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:9b:63:a9:84:4b:7a:40:f2:34:db:ae:8a:64: 9f:99:d1:ee:92:50:68:b8:8b:b4:30:b1:6e:69:1b: ed:58:59:28:65:93:74:e9:6f:bc:83:43:16:b2:ee: a0:12:02:37:b3:95:8b:51:0d:0c:96:97:d6:4b:60: 9f:f1:88:e1:d2:cb:37:d5:d8:20:08:d6:ef:e9:d4: 25:cf:8e:0f:a1:9b:24:52:e2:29:4c:48:1a:a7:45: d4:d8:69:5c:db:0a:f4:0c:02:76:75:04:77:79:1e: 71:f1:43:a8:e1:fe:3b:ca:ae:d1:9e:8c:3a:a2:f0: 15:7a:de:80:02:50:af:96:c1:4c:3d:b2:f8:fc:f4: 6e:08:69:8d:84:f7:0a:9f:e0:72:92:96:9f:5c:e4: ed:1f:d8:8a:ec:5e:db:90:e0:58:c1:d8:73:64:b5: 5a:1d:77:26:ba:13:44:d7:71:af:e7:19:d6:0b:84: 6c:ef:52:5e:ca:40:9e:82:f0:69:ac:fd:17:0c:95: c4:fa:71:21:a1:c7:1a:4a:1a:d4:3b:79:7b:e1:82: 9a:6b:f6:39:54:fc:19:6a:31:00:84:3a:85:f1:b0: 42:56:90:1b:90:27:f2:32:d2:3b:8f:b4:1d:cb:4d: 09:97:6a:48:c8:86:31:d8:60:d7:d5:e6:6e:4f:d1: ec:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:8B:08:67:29:94:D0:AB:33:90:D9:88:04:1D:41:FD:7C:4E:A9:8C X509v3 Authority Key Identifier: keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS22427.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.124.128.0/24 95.135.84.0/24 178.94.232.0/24 Signature Algorithm: sha256WithRSAEncryption 86:93:75:f9:a6:0f:8d:4a:4f:e3:8f:b6:75:78:19:32:3c:aa: 16:3d:7d:05:28:51:38:88:00:5b:e6:6f:ec:1e:22:97:fc:c0: 7b:7f:bd:c2:88:7f:1d:8f:c5:79:24:3b:1f:ea:65:06:a1:25: f8:c8:cb:4b:95:91:db:38:91:3d:c6:49:25:f5:b9:5f:93:4a: 65:61:d4:8b:03:1a:42:29:1c:88:2d:59:08:c1:1c:64:cd:a8: 79:0d:5f:68:97:1e:f6:61:79:b7:33:39:4b:14:b0:b5:e0:07: 47:63:7c:6f:6f:35:ca:77:06:20:43:49:7f:cc:2f:a9:bb:47: 5d:3f:b0:ac:d8:35:c5:e0:95:9c:59:64:d2:6a:37:ac:9f:94: e0:32:a3:ed:77:01:4e:55:9a:a4:ab:32:17:29:2c:d0:25:77: b7:3e:db:51:9d:94:7f:7e:78:3a:7c:d4:13:5c:08:27:4c:f6: a6:ce:af:ee:74:03:c8:e9:1c:6b:c8:98:3f:13:cb:67:04:98: 11:42:bf:e1:f5:a5:0f:42:d9:bc:1e:26:4e:fc:52:59:91:a1: 9b:1a:27:6d:19:30:db:9c:37:1e:b5:4f:be:9d:47:34:ed:cc: c4:80:f9:90:ae:b7:d2:01:a2:e5:64:b9:b4:42:3c:35:be:8f: 15:78:ca:cc -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgIUF0fgpFbVMC3zhkxaWgDWqPvrstYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOWJkODEzMzkxZTRhZjJhZTMxMDNjMTg5MWIyMjcyZDRk NWMxM2I1ZjAeFw0yNjAxMTIwMzMwNDdaFw0yNzAxMTEwMzM1NDdaMDMxMTAvBgNV BAMTKDRFOEIwODY3Mjk5NEQwQUIzMzkwRDk4ODA0MUQ0MUZEN0M0RUE5OEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+m2OphEt6QPI0266KZJ+Z0e6S UGi4i7QwsW5pG+1YWShlk3Tpb7yDQxay7qASAjezlYtRDQyWl9ZLYJ/xiOHSyzfV 2CAI1u/p1CXPjg+hmyRS4ilMSBqnRdTYaVzbCvQMAnZ1BHd5HnHxQ6jh/jvKrtGe jDqi8BV63oACUK+WwUw9svj89G4IaY2E9wqf4HKSlp9c5O0f2IrsXtuQ4FjB2HNk tVoddya6E0TXca/nGdYLhGzvUl7KQJ6C8Gms/RcMlcT6cSGhxxpKGtQ7eXvhgppr 9jlU/BlqMQCEOoXxsEJWkBuQJ/Iy0juPtB3LTQmXakjIhjHYYNfV5m5P0eyHAgMB AAGjggIVMIICETAdBgNVHQ4EFgQUTosIZymU0KszkNmIBB1B/XxOqYwwHwYDVR0j BBgwFoAUm9gTOR5K8q4xA8GJGyJy1NXBO18wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYzQ3OGY2ZjUtNDQ5YS00ODI3LTk5ZDUtYmY2YjkzYThm NmI0LzAvOUJEODEzMzkxRTRBRjJBRTMxMDNDMTg5MUIyMjcyRDRENUMxM0I1Ri5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL205Z1RPUjVLOHE0eEE4R0pHeUp5MU5Y Qk8xOC5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2M0NzhmNmY1LTQ0OWEt NDgyNy05OWQ1LWJmNmI5M2E4ZjZiNC8wL0FTMjI0Mjcucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwKwYIKwYBBQUHAQcBAf8EHDAaMBgEAgABMBIDBABbfIAD BABfh1QDBACyXugwDQYJKoZIhvcNAQELBQADggEBAIaTdfmmD41KT+OPtnV4GTI8 qhY9fQUoUTiIAFvmb+weIpf8wHt/vcKIfx2PxXkkOx/qZQahJfjIy0uVkds4kT3G SSX1uV+TSmVh1IsDGkIpHIgtWQjBHGTNqHkNX2iXHvZhebczOUsUsLXgB0djfG9v Ncp3BiBDSX/ML6m7R10/sKzYNcXglZxZZNJqN6yflOAyo+13AU5VmqSrMhcpLNAl d7c+21GdlH9+eDp81BNcCCdM9qbOr+50A8jpHGvImD8Ty2cEmBFCv+H1pQ9C2bwe Jk78UlmRoZsaJ20ZMNucNx61T76dRzTtzMSA+ZCut9IBouVkubRCPDW+jxV4ysw= -----END CERTIFICATE-----Generated at Thu Jan 15 23:26:12 2026 by rpki-client