This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS3320.roa File: AS3320.roa (raw, json) Hash identifier: QAThljiriFSoJ3+r3F/cyBiSbvDOXdpA/KpyY3FN1us= Subject key identifier: E8:AA:64:2B:1B:DD:27:F0:A7:AD:B8:45:7E:43:D5:C2:CF:EC:2B:56 Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f Certificate serial: 610A47C944A573A0A098490000560401BA36400A Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS3320.roa Signing time: Mon 12 Jan 2026 15:34:03 +0000 ROA not before: Mon 12 Jan 2026 15:29:03 +0000 ROA not after: Mon 11 Jan 2027 15:34:03 +0000 asID: 3320 IP address blocks: 91.124.112.0/24 maxlen: 24 91.124.113.0/24 maxlen: 24 91.124.114.0/24 maxlen: 24 91.124.115.0/24 maxlen: 24 91.124.164.0/22 maxlen: 24 92.112.10.0/24 maxlen: 24 95.134.16.0/22 maxlen: 24 95.134.61.0/24 maxlen: 24 95.134.112.0/24 maxlen: 24 95.134.178.0/24 maxlen: 24 95.134.180.0/24 maxlen: 24 95.134.192.0/24 maxlen: 24 95.134.205.0/24 maxlen: 24 95.134.224.0/22 maxlen: 24 95.134.233.0/24 maxlen: 24 95.135.44.0/22 maxlen: 24 95.135.76.0/24 maxlen: 24 95.135.77.0/24 maxlen: 24 95.135.78.0/24 maxlen: 24 95.135.79.0/24 maxlen: 24 95.135.88.0/22 maxlen: 24 178.92.85.0/24 maxlen: 24 178.92.88.0/24 maxlen: 24 178.92.93.0/24 maxlen: 24 178.92.106.0/24 maxlen: 24 178.92.172.0/22 maxlen: 24 178.92.199.0/24 maxlen: 24 178.92.207.0/24 maxlen: 24 178.92.248.0/24 maxlen: 24 178.93.17.0/24 maxlen: 24 178.93.19.0/24 maxlen: 24 178.93.28.0/24 maxlen: 24 178.93.31.0/24 maxlen: 24 178.93.35.0/24 maxlen: 24 178.93.59.0/24 maxlen: 24 178.93.208.0/24 maxlen: 24 178.93.224.0/24 maxlen: 24 178.93.254.0/24 maxlen: 24 178.94.38.0/24 maxlen: 24 178.94.54.0/24 maxlen: 24 178.94.68.0/24 maxlen: 24 178.94.123.0/24 maxlen: 24 178.95.11.0/24 maxlen: 24 178.95.16.0/24 maxlen: 24 178.95.21.0/24 maxlen: 24 178.95.27.0/24 maxlen: 24 178.95.93.0/24 maxlen: 24 178.95.103.0/24 maxlen: 24 178.95.112.0/24 maxlen: 24 178.95.127.0/24 maxlen: 24 178.95.129.0/24 maxlen: 24 178.95.130.0/24 maxlen: 24 178.95.132.0/24 maxlen: 24 178.95.134.0/24 maxlen: 24 178.95.140.0/22 maxlen: 24 178.95.194.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 09:01:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:0a:47:c9:44:a5:73:a0:a0:98:49:00:00:56:04:01:ba:36:40:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f Validity Not Before: Jan 12 15:29:03 2026 GMT Not After : Jan 11 15:34:03 2027 GMT Subject: CN=E8AA642B1BDD27F0A7ADB8457E43D5C2CFEC2B56 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:bd:d0:18:b4:a1:1d:14:ec:d3:66:f6:83:78: a6:f5:2c:37:68:7a:d4:cf:bb:fe:c4:af:cb:2f:2b: 22:a4:6f:32:2b:2c:5f:8c:0a:4c:98:51:28:e3:51: 36:b0:c6:bf:5b:fa:39:9c:ba:64:67:a5:25:76:74: f6:04:2c:31:99:5b:04:f3:51:66:2d:10:e6:4c:f8: 5b:83:f6:d1:56:66:88:a1:c5:18:df:ef:ea:e7:53: 35:67:56:79:6b:fe:c4:39:b1:29:13:c5:88:bf:6f: d2:21:f1:81:6d:9c:f9:41:b3:73:5b:e9:e5:a0:9e: 71:fd:70:ff:31:6a:0c:8b:96:e1:02:df:4d:39:c7: bc:0f:8f:fb:46:32:0e:e7:53:34:6e:58:3a:21:fa: 6a:5d:0c:96:b8:29:ee:4c:e1:d2:90:cc:46:d0:97: 35:87:72:e5:74:b1:f0:a6:64:53:18:f6:b3:4a:48: b3:29:a5:19:fc:85:f0:e1:af:e4:de:0b:7c:ed:63: 7f:ba:b6:b1:9f:fe:cd:6a:3d:f8:c9:e7:b1:35:64: 2d:2d:27:2a:29:08:d3:34:7f:77:06:35:8b:3b:12: fd:c7:33:93:c0:19:4e:38:bb:72:52:10:a0:93:0c: f0:40:a3:2f:6a:9d:70:13:d9:f7:b2:8d:be:e4:a1: 36:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:AA:64:2B:1B:DD:27:F0:A7:AD:B8:45:7E:43:D5:C2:CF:EC:2B:56 X509v3 Authority Key Identifier: keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS3320.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.124.112.0/22 91.124.164.0/22 92.112.10.0/24 95.134.16.0/22 95.134.61.0/24 95.134.112.0/24 95.134.178.0/24 95.134.180.0/24 95.134.192.0/24 95.134.205.0/24 95.134.224.0/22 95.134.233.0/24 95.135.44.0/22 95.135.76.0/22 95.135.88.0/22 178.92.85.0/24 178.92.88.0/24 178.92.93.0/24 178.92.106.0/24 178.92.172.0/22 178.92.199.0/24 178.92.207.0/24 178.92.248.0/24 178.93.17.0/24 178.93.19.0/24 178.93.28.0/24 178.93.31.0/24 178.93.35.0/24 178.93.59.0/24 178.93.208.0/24 178.93.224.0/24 178.93.254.0/24 178.94.38.0/24 178.94.54.0/24 178.94.68.0/24 178.94.123.0/24 178.95.11.0/24 178.95.16.0/24 178.95.21.0/24 178.95.27.0/24 178.95.93.0/24 178.95.103.0/24 178.95.112.0/24 178.95.127.0/24 178.95.129.0-178.95.130.255 178.95.132.0/24 178.95.134.0/24 178.95.140.0/22 178.95.194.0/24 Signature Algorithm: sha256WithRSAEncryption 61:f6:d2:48:c2:7b:ae:6b:21:4a:9d:d0:63:ae:5c:07:ac:99: 96:53:46:4c:93:b5:61:a8:02:a3:61:a8:e9:b0:1d:a8:95:98: c0:86:d3:d5:00:11:fe:8e:ac:79:7c:08:08:9c:89:fb:40:30: e3:07:a3:ed:70:77:90:98:4b:cf:3a:ea:2f:6c:ce:90:81:6d: c0:84:e2:7c:d9:30:4a:7a:3e:1f:32:92:73:9e:df:89:59:fa: 59:48:39:07:04:ca:9e:92:21:1a:13:de:68:4a:62:83:ae:7a: 4a:28:3d:62:92:fc:bd:04:0a:97:1e:d7:a0:0b:1a:22:ec:34: 8d:e7:e8:78:e8:42:d7:8d:1c:73:94:0a:bd:5b:be:7e:60:f4: aa:fc:93:07:1c:39:d1:ba:98:5c:49:62:1a:a2:9f:60:cb:67: fe:c9:18:b0:ac:1c:50:65:89:30:2d:51:2f:0f:e3:69:de:5d: ae:57:28:1c:81:e2:43:1e:53:a8:9a:55:2b:9d:92:c3:3e:90: 24:39:13:19:db:57:d1:1a:46:ad:d9:20:08:9a:e6:55:15:a7: fe:7c:ed:eb:13:11:00:cb:3e:97:2a:92:62:3c:e4:72:45:f3: 20:83:ad:60:03:87:5f:93:02:95:65:28:7c:ab:82:a8:cc:bb: 51:7b:0e:da -----BEGIN CERTIFICATE----- MIIGMDCCBRigAwIBAgIUYQpHyUSlc6CgmEkAAFYEAbo2QAowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOWJkODEzMzkxZTRhZjJhZTMxMDNjMTg5MWIyMjcyZDRk NWMxM2I1ZjAeFw0yNjAxMTIxNTI5MDNaFw0yNzAxMTExNTM0MDNaMDMxMTAvBgNV BAMTKEU4QUE2NDJCMUJERDI3RjBBN0FEQjg0NTdFNDNENUMyQ0ZFQzJCNTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEvdAYtKEdFOzTZvaDeKb1LDdo etTPu/7Er8svKyKkbzIrLF+MCkyYUSjjUTawxr9b+jmcumRnpSV2dPYELDGZWwTz UWYtEOZM+FuD9tFWZoihxRjf7+rnUzVnVnlr/sQ5sSkTxYi/b9Ih8YFtnPlBs3Nb 6eWgnnH9cP8xagyLluEC3005x7wPj/tGMg7nUzRuWDoh+mpdDJa4Ke5M4dKQzEbQ lzWHcuV0sfCmZFMY9rNKSLMppRn8hfDhr+TeC3ztY3+6trGf/s1qPfjJ57E1ZC0t JyopCNM0f3cGNYs7Ev3HM5PAGU44u3JSEKCTDPBAoy9qnXAT2feyjb7koTafAgMB AAGjggM6MIIDNjAdBgNVHQ4EFgQU6KpkKxvdJ/CnrbhFfkPVws/sK1YwHwYDVR0j BBgwFoAUm9gTOR5K8q4xA8GJGyJy1NXBO18wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYzQ3OGY2ZjUtNDQ5YS00ODI3LTk5ZDUtYmY2YjkzYThm NmI0LzAvOUJEODEzMzkxRTRBRjJBRTMxMDNDMTg5MUIyMjcyRDRENUMxM0I1Ri5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL205Z1RPUjVLOHE0eEE4R0pHeUp5MU5Y Qk8xOC5jZXIweQYIKwYBBQUHAQsEbTBrMGkGCCsGAQUFBzALhl1yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2M0NzhmNmY1LTQ0OWEt NDgyNy05OWQ1LWJmNmI5M2E4ZjZiNC8wL0FTMzMyMC5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjCCAU8GCCsGAQUFBwEHAQH/BIIBPjCCATowggE2BAIAATCC AS4DBAJbfHADBAJbfKQDBABccAoDBAJfhhADBABfhj0DBABfhnADBABfhrIDBABf hrQDBABfhsADBABfhs0DBAJfhuADBABfhukDBAJfhywDBAJfh0wDBAJfh1gDBACy XFUDBACyXFgDBACyXF0DBACyXGoDBAKyXKwDBACyXMcDBACyXM8DBACyXPgDBACy XREDBACyXRMDBACyXRwDBACyXR8DBACyXSMDBACyXTsDBACyXdADBACyXeADBACy Xf4DBACyXiYDBACyXjYDBACyXkQDBACyXnsDBACyXwsDBACyXxADBACyXxUDBACy XxsDBACyX10DBACyX2cDBACyX3ADBACyX38wDAMEALJfgQMEALJfggMEALJfhAME ALJfhgMEArJfjAMEALJfwjANBgkqhkiG9w0BAQsFAAOCAQEAYfbSSMJ7rmshSp3Q Y65cB6yZllNGTJO1YagCo2Go6bAdqJWYwIbT1QAR/o6seXwICJyJ+0Aw4wej7XB3 kJhLzzrqL2zOkIFtwITifNkwSno+HzKSc57fiVn6WUg5BwTKnpIhGhPeaEpig656 Sig9YpL8vQQKlx7XoAsaIuw0jefoeOhC140cc5QKvVu+fmD0qvyTBxw50bqYXEli GqKfYMtn/skYsKwcUGWJMC1RLw/jad5drlcoHIHiQx5TqJpVK52Swz6QJDkTGdtX 0RpGrdkgCJrmVRWn/nzt6xMRAMs+lyqSYjzkckXzIIOtYAOHX5MClWUofKuCqMy7 UXsO2g== -----END CERTIFICATE-----Generated at Mon Jan 19 19:01:45 2026 by rpki-client