This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS395374.roa File: AS395374.roa (raw, json) Hash identifier: WOjqhSaejs39O3o7qhbIjaqi183rpOkMV3K7VWDpWio= Subject key identifier: 54:26:50:20:CB:FF:40:8A:B5:36:10:38:C5:54:8D:B9:7E:D6:9C:0E Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f Certificate serial: 2E052CC1B82D6E1C316E69F8A78A3F38B90C3C37 Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS395374.roa Signing time: Tue 13 Jan 2026 03:38:08 +0000 ROA not before: Tue 13 Jan 2026 03:33:08 +0000 ROA not after: Tue 12 Jan 2027 03:38:08 +0000 asID: 395374 IP address blocks: 95.134.5.0/24 maxlen: 24 95.134.98.0/24 maxlen: 24 95.134.121.0/24 maxlen: 24 178.93.128.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 16 Jan 2026 15:31:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:05:2c:c1:b8:2d:6e:1c:31:6e:69:f8:a7:8a:3f:38:b9:0c:3c:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f Validity Not Before: Jan 13 03:33:08 2026 GMT Not After : Jan 12 03:38:08 2027 GMT Subject: CN=54265020CBFF408AB5361038C5548DB97ED69C0E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:35:e9:47:54:9b:35:64:84:56:d3:75:36:bc: 3c:43:9d:46:1a:09:4e:76:e9:fe:10:55:8f:e7:e7: 15:ca:7f:61:81:10:90:73:58:15:0b:28:2a:83:b9: 27:7a:80:77:58:2d:96:53:ac:9b:7f:b6:74:3a:f0: 54:8a:30:5d:de:8d:73:48:5b:03:fe:d5:e9:ef:a5: ab:3d:8f:92:0e:0b:74:49:d9:4d:7e:86:7c:ae:39: ea:48:49:9b:dc:30:23:10:26:1b:07:8e:9d:65:40: b8:ad:c2:6c:53:a3:40:6a:06:f9:6b:ba:1b:ed:85: 67:4e:cf:25:10:4f:b5:7f:2d:5b:8b:fd:d9:43:f1: 30:6f:45:61:f8:c0:3e:01:7b:8d:eb:87:e0:f8:7f: 62:20:24:6d:25:e1:f4:5d:89:27:51:73:d0:92:16: f9:f6:0b:b8:a9:e5:7b:f1:bf:fc:91:4e:08:f4:f4: c9:e5:2b:24:6a:58:ab:d8:45:82:cd:67:e3:17:35: ac:75:b4:64:3f:0a:ad:ec:e5:64:60:3b:b4:52:74: 77:d8:55:0b:ee:eb:0a:e1:ec:d2:ad:c9:d9:da:1d: 80:bf:8e:bb:b6:a1:83:29:27:a0:d4:0e:dd:62:ad: e4:53:b1:42:2e:95:c0:44:e1:e4:4a:c6:bd:d0:a3: 37:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:26:50:20:CB:FF:40:8A:B5:36:10:38:C5:54:8D:B9:7E:D6:9C:0E X509v3 Authority Key Identifier: keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS395374.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 95.134.5.0/24 95.134.98.0/24 95.134.121.0/24 178.93.128.0/24 Signature Algorithm: sha256WithRSAEncryption 46:76:a0:61:93:17:66:db:ad:bd:c4:d1:f6:83:42:36:62:18: c3:32:d1:a5:eb:42:5b:e9:b5:2a:4a:1a:2e:da:dd:fc:85:5e: b6:e1:c0:1c:d3:46:c4:fa:ce:c3:c1:cd:ec:97:f2:16:89:9b: c9:04:a5:73:21:40:7f:9e:40:b8:1a:39:ae:13:86:0d:a0:8e: aa:0f:da:4b:dd:60:5b:b3:e3:b2:9d:69:1c:34:f2:10:1c:da: 71:69:b3:b4:72:92:81:14:f2:4b:d9:cd:ca:ad:74:ba:21:1b: b7:0c:0d:ad:fc:65:f1:b6:f5:74:1e:2c:33:f5:6c:78:4a:88: 18:cf:e3:b7:76:64:8e:39:f4:17:98:b9:d3:fb:c0:f9:bf:9a: 3e:d0:82:6d:8c:27:02:d8:27:22:d8:a3:fc:26:96:c7:53:1f: 76:be:36:ea:56:1b:b6:ba:af:92:55:8d:d6:3f:4b:74:3d:0a: 1b:d1:3a:da:51:eb:16:c6:4a:12:08:38:a8:f9:de:c0:58:7a: 25:15:42:18:73:01:48:65:3b:39:0c:93:da:ee:e4:47:8d:6e: 8e:93:cf:fd:4c:71:10:ab:98:6f:16:b7:c5:c4:53:52:77:2b: 50:ee:6f:f4:97:d3:fc:40:dc:5a:18:a4:40:be:26:ba:13:99: 89:d5:5e:90 -----BEGIN CERTIFICATE----- MIIFEjCCA/qgAwIBAgIULgUswbgtbhwxbmn4p4o/OLkMPDcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOWJkODEzMzkxZTRhZjJhZTMxMDNjMTg5MWIyMjcyZDRk NWMxM2I1ZjAeFw0yNjAxMTMwMzMzMDhaFw0yNzAxMTIwMzM4MDhaMDMxMTAvBgNV BAMTKDU0MjY1MDIwQ0JGRjQwOEFCNTM2MTAzOEM1NTQ4REI5N0VENjlDMEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyNelHVJs1ZIRW03U2vDxDnUYa CU526f4QVY/n5xXKf2GBEJBzWBULKCqDuSd6gHdYLZZTrJt/tnQ68FSKMF3ejXNI WwP+1envpas9j5IOC3RJ2U1+hnyuOepISZvcMCMQJhsHjp1lQLitwmxTo0BqBvlr uhvthWdOzyUQT7V/LVuL/dlD8TBvRWH4wD4Be43rh+D4f2IgJG0l4fRdiSdRc9CS Fvn2C7ip5Xvxv/yRTgj09MnlKyRqWKvYRYLNZ+MXNax1tGQ/Cq3s5WRgO7RSdHfY VQvu6wrh7NKtydnaHYC/jru2oYMpJ6DUDt1ireRTsUIulcBE4eRKxr3Qozd3AgMB AAGjggIcMIICGDAdBgNVHQ4EFgQUVCZQIMv/QIq1NhA4xVSNuX7WnA4wHwYDVR0j BBgwFoAUm9gTOR5K8q4xA8GJGyJy1NXBO18wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYzQ3OGY2ZjUtNDQ5YS00ODI3LTk5ZDUtYmY2YjkzYThm NmI0LzAvOUJEODEzMzkxRTRBRjJBRTMxMDNDMTg5MUIyMjcyRDRENUMxM0I1Ri5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL205Z1RPUjVLOHE0eEE4R0pHeUp5MU5Y Qk8xOC5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2M0NzhmNmY1LTQ0OWEt NDgyNy05OWQ1LWJmNmI5M2E4ZjZiNC8wL0FTMzk1Mzc0LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMDEGCCsGAQUFBwEHAQH/BCIwIDAeBAIAATAYAwQAX4YF AwQAX4ZiAwQAX4Z5AwQAsl2AMA0GCSqGSIb3DQEBCwUAA4IBAQBGdqBhkxdm2629 xNH2g0I2YhjDMtGl60Jb6bUqShou2t38hV624cAc00bE+s7Dwc3sl/IWiZvJBKVz IUB/nkC4GjmuE4YNoI6qD9pL3WBbs+OynWkcNPIQHNpxabO0cpKBFPJL2c3KrXS6 IRu3DA2t/GXxtvV0Hiwz9Wx4SogYz+O3dmSOOfQXmLnT+8D5v5o+0IJtjCcC2Cci 2KP8JpbHUx92vjbqVhu2uq+SVY3WP0t0PQob0TraUesWxkoSCDio+d7AWHolFUIY cwFIZTs5DJPa7uRHjW6Ok8/9THEQq5hvFrfFxFNSdytQ7m/0l9P8QNxaGKRAvia6 E5mJ1V6Q -----END CERTIFICATE-----Generated at Thu Jan 15 23:28:10 2026 by rpki-client