This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS22427.roa File: AS22427.roa (raw, json) Hash identifier: ygS3XuUmfmrCwe/d6GNjqMssqdyZBo5bWtO+2y97+4U= Subject key identifier: 41:39:94:28:09:51:C4:39:11:9B:61:53:85:C0:01:32:A8:11:F0:E3 Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f Certificate serial: 189342E2FE852D271A27C04E80E2B6B51E2ADEAC Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS22427.roa Signing time: Sat 22 Nov 2025 02:07:04 +0000 ROA not before: Sat 22 Nov 2025 02:02:04 +0000 ROA not after: Sat 21 Nov 2026 02:07:04 +0000 asID: 22427 IP address blocks: 91.124.128.0/24 maxlen: 24 178.94.232.0/24 maxlen: 24 178.95.133.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 02 Dec 2025 00:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:93:42:e2:fe:85:2d:27:1a:27:c0:4e:80:e2:b6:b5:1e:2a:de:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f Validity Not Before: Nov 22 02:02:04 2025 GMT Not After : Nov 21 02:07:04 2026 GMT Subject: CN=413994280951C439119B615385C00132A811F0E3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:19:2e:39:0f:de:25:50:cd:28:9a:a3:79:c8: 96:cd:fd:74:5b:84:1f:49:54:a7:00:f8:bc:d8:29: e0:9b:ab:5e:2b:27:b5:70:f1:23:b4:25:70:de:42: 5c:be:47:b9:24:d7:b0:aa:a6:fd:02:8c:db:24:8d: 74:2d:9b:5d:ca:3f:94:5e:25:0c:58:16:c8:ca:aa: ef:8f:7b:44:08:ed:8a:08:a6:7b:a8:08:ea:e3:c1: 65:b2:86:e9:33:3b:2f:97:1e:06:94:de:d2:aa:31: 1d:e9:94:f2:95:cd:7c:13:bc:48:4c:af:05:34:9c: 44:7c:c0:44:ad:71:91:0d:1a:ea:ee:91:64:49:e0: 82:28:4e:22:94:fc:69:38:62:94:32:11:10:93:a5: f9:14:bd:12:ae:76:70:1d:8c:93:83:c3:96:18:a3: 88:cc:98:bf:06:8a:43:01:d2:1c:5a:fe:44:b2:b9: 43:90:00:44:40:0f:72:6b:ce:08:47:92:e4:2d:5f: d5:de:d5:6c:70:76:d7:a9:25:19:3e:bf:82:63:e9: e6:ac:3b:36:0c:24:1f:52:21:e4:8d:49:ec:9e:12: 5c:51:3e:bc:1e:9a:e3:24:1b:56:7b:74:e1:39:4d: 8a:f9:d5:1f:53:df:ec:8c:d8:f1:4b:17:97:25:bb: 49:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:39:94:28:09:51:C4:39:11:9B:61:53:85:C0:01:32:A8:11:F0:E3 X509v3 Authority Key Identifier: keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS22427.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.124.128.0/24 178.94.232.0/24 178.95.133.0/24 Signature Algorithm: sha256WithRSAEncryption 58:c8:06:40:a3:20:a2:67:db:24:b9:7a:e2:67:7a:b1:70:c6: f5:df:4b:77:1e:db:38:22:67:4b:22:75:67:e0:bc:fb:74:1f: 59:99:72:11:74:85:de:74:e8:9f:16:16:17:70:3d:1f:1c:55: 0b:c9:85:41:54:8d:9b:75:ff:d8:5f:ce:57:27:a0:90:80:b9: b3:19:4e:38:5a:53:b4:51:d7:f6:0d:4f:e2:ac:1e:dd:f2:8d: 59:29:75:ef:e8:9f:1d:4e:52:ee:72:94:f9:bf:cb:bc:9e:f4: 3a:73:86:d3:09:02:63:b4:81:da:ce:3e:db:6d:f1:76:4b:24: 54:fe:99:cf:3b:96:ad:9a:9f:22:fc:bb:69:b0:ca:cb:91:b6: af:d6:82:68:26:74:9e:4e:ec:aa:81:e1:35:66:7f:01:9c:18: bd:18:b5:4f:5a:46:ac:22:ab:2f:8d:28:f0:03:c8:c7:7a:d0: ba:6c:f8:b5:f0:45:b5:19:57:96:ed:87:af:b6:c7:c7:9f:f1: 30:37:73:f7:1f:b8:f1:15:12:3a:11:93:3a:fc:28:ba:7b:52: bf:e6:46:76:ea:f5:23:9f:92:15:4b:99:a3:7e:4f:1f:59:5d: e4:d4:81:ae:c0:6c:43:31:25:ff:57:79:28:a9:b0:6e:5f:5e: 72:d8:f1:2b -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgIUGJNC4v6FLScaJ8BOgOK2tR4q3qwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOWJkODEzMzkxZTRhZjJhZTMxMDNjMTg5MWIyMjcyZDRk NWMxM2I1ZjAeFw0yNTExMjIwMjAyMDRaFw0yNjExMjEwMjA3MDRaMDMxMTAvBgNV BAMTKDQxMzk5NDI4MDk1MUM0MzkxMTlCNjE1Mzg1QzAwMTMyQTgxMUYwRTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGGS45D94lUM0omqN5yJbN/XRb hB9JVKcA+LzYKeCbq14rJ7Vw8SO0JXDeQly+R7kk17Cqpv0CjNskjXQtm13KP5Re JQxYFsjKqu+Pe0QI7YoIpnuoCOrjwWWyhukzOy+XHgaU3tKqMR3plPKVzXwTvEhM rwU0nER8wEStcZENGurukWRJ4IIoTiKU/Gk4YpQyERCTpfkUvRKudnAdjJODw5YY o4jMmL8GikMB0hxa/kSyuUOQAERAD3JrzghHkuQtX9Xe1WxwdtepJRk+v4Jj6eas OzYMJB9SIeSNSeyeElxRPrwemuMkG1Z7dOE5TYr51R9T3+yM2PFLF5clu0k3AgMB AAGjggIVMIICETAdBgNVHQ4EFgQUQTmUKAlRxDkRm2FThcABMqgR8OMwHwYDVR0j BBgwFoAUm9gTOR5K8q4xA8GJGyJy1NXBO18wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYzQ3OGY2ZjUtNDQ5YS00ODI3LTk5ZDUtYmY2YjkzYThm NmI0LzAvOUJEODEzMzkxRTRBRjJBRTMxMDNDMTg5MUIyMjcyRDRENUMxM0I1Ri5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL205Z1RPUjVLOHE0eEE4R0pHeUp5MU5Y Qk8xOC5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2M0NzhmNmY1LTQ0OWEt NDgyNy05OWQ1LWJmNmI5M2E4ZjZiNC8wL0FTMjI0Mjcucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwKwYIKwYBBQUHAQcBAf8EHDAaMBgEAgABMBIDBABbfIAD BACyXugDBACyX4UwDQYJKoZIhvcNAQELBQADggEBAFjIBkCjIKJn2yS5euJnerFw xvXfS3ce2zgiZ0sidWfgvPt0H1mZchF0hd506J8WFhdwPR8cVQvJhUFUjZt1/9hf zlcnoJCAubMZTjhaU7RR1/YNT+KsHt3yjVkpde/onx1OUu5ylPm/y7ye9DpzhtMJ AmO0gdrOPttt8XZLJFT+mc87lq2anyL8u2mwysuRtq/WgmgmdJ5O7KqB4TVmfwGc GL0YtU9aRqwiqy+NKPADyMd60Lps+LXwRbUZV5bth6+2x8ef8TA3c/cfuPEVEjoR kzr8KLp7Ur/mRnbq9SOfkhVLmaN+Tx9ZXeTUga7AbEMxJf9XeSipsG5fXnLY8Ss= -----END CERTIFICATE-----Generated at Mon Dec 1 07:53:24 2025 by rpki-client