This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS397630.roa File: AS397630.roa (raw, json) Hash identifier: RGjy78f/1qI/wt+h1fqITw8a9kc3SSEhjG7tX5iUybE= Subject key identifier: BA:46:35:7E:08:59:E3:8E:EC:25:7C:48:50:02:00:CC:C2:87:B4:21 Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f Certificate serial: 7AABEF8A72289CD7FECC422B1422BEC42A1253D1 Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS397630.roa Signing time: Thu 15 Jan 2026 00:06:38 +0000 ROA not before: Thu 15 Jan 2026 00:01:38 +0000 ROA not after: Thu 14 Jan 2027 00:06:38 +0000 asID: 397630 IP address blocks: 91.124.36.0/24 maxlen: 24 92.112.141.0/24 maxlen: 24 95.135.183.0/24 maxlen: 24 178.92.246.0/24 maxlen: 24 178.93.30.0/24 maxlen: 24 178.94.149.0/24 maxlen: 24 178.95.225.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 16 Jan 2026 15:31:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:ab:ef:8a:72:28:9c:d7:fe:cc:42:2b:14:22:be:c4:2a:12:53:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f Validity Not Before: Jan 15 00:01:38 2026 GMT Not After : Jan 14 00:06:38 2027 GMT Subject: CN=BA46357E0859E38EEC257C48500200CCC287B421 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:df:7c:16:49:a6:fa:65:56:3e:c9:ed:b2:74: c5:82:0e:1f:a2:fd:25:e2:38:29:a2:e6:a9:ae:ca: f9:ac:7f:2b:ee:a5:e8:e9:a2:ad:78:f3:2f:74:cb: 8a:80:fd:66:ba:cc:8a:d1:76:fd:ad:fa:39:6c:7b: 14:50:c4:be:bf:88:c7:b5:12:d5:80:ab:51:00:1a: d5:e7:5e:2e:0d:2c:71:32:a2:6a:0a:47:92:ec:95: 88:5b:37:51:bc:59:52:dd:85:97:36:a7:b3:fa:7e: a9:85:d8:3a:ee:9b:30:f5:89:e3:d0:fb:9f:d1:29: f2:1a:28:b4:bd:bc:74:51:90:4c:99:90:8f:dd:1e: 10:a0:23:0a:82:2d:a8:ed:70:58:04:c9:3d:43:04: 51:d5:84:cd:56:8d:fb:3e:47:f7:e5:aa:46:2b:7c: 38:a6:37:16:e5:76:bb:c5:1f:d0:76:8b:3c:31:4f: af:53:ec:e1:e6:81:76:8a:d4:6e:7c:af:6c:94:4e: c5:12:49:94:7d:cf:3d:cf:64:e3:3e:01:89:31:8a: b8:02:b2:c1:cd:c4:32:be:ba:e9:f8:cd:06:c6:9f: 7e:ad:c7:9a:aa:41:33:f7:72:9d:4f:f5:a1:62:7c: 44:75:b6:0e:54:f7:32:9b:95:4f:bd:12:2e:bf:6a: 08:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:46:35:7E:08:59:E3:8E:EC:25:7C:48:50:02:00:CC:C2:87:B4:21 X509v3 Authority Key Identifier: keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS397630.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.124.36.0/24 92.112.141.0/24 95.135.183.0/24 178.92.246.0/24 178.93.30.0/24 178.94.149.0/24 178.95.225.0/24 Signature Algorithm: sha256WithRSAEncryption ab:67:b9:58:28:cf:68:5d:96:51:e7:cd:4f:88:91:72:0c:f4: a9:1d:0f:e5:b4:52:97:b5:3b:cb:ab:d7:2f:c7:df:c4:6f:29: c1:53:b2:0d:dc:44:f9:73:32:5e:ac:45:04:47:09:92:35:31: df:0f:42:57:0e:8a:b3:0b:6d:a4:d9:1e:cf:0f:cc:ec:3a:19: 95:58:f6:4b:e5:f3:56:c2:e4:91:02:29:43:e5:a5:d2:9d:3c: 47:53:b0:fd:bf:e2:8f:7d:f1:cb:74:19:a7:6b:ad:15:72:a1: 29:e0:31:d8:1c:11:2d:e2:4c:97:d8:68:3b:cc:04:bf:99:57: ad:b0:45:1a:fe:92:2c:84:6e:3e:fb:8e:e2:9f:02:0b:4c:09: ca:5a:39:73:b7:45:9c:64:23:89:04:68:ea:a7:94:2c:e9:e5: b7:a7:54:ae:3c:5b:cd:35:66:02:ba:cb:db:45:aa:94:3f:fb: cc:fd:c7:74:26:07:d3:eb:71:bb:61:aa:7e:35:9c:4d:b4:e5: 26:3d:74:18:d0:a5:b5:5e:d4:a7:00:45:d6:b8:89:9e:12:15: 5e:33:c4:d8:bd:50:84:8b:cd:70:04:20:9e:79:63:74:6a:18: b3:23:8a:0c:6b:84:30:69:08:e3:34:fd:64:a9:6a:b8:95:08: f5:29:49:f0 -----BEGIN CERTIFICATE----- MIIFJDCCBAygAwIBAgIUeqvvinIonNf+zEIrFCK+xCoSU9EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOWJkODEzMzkxZTRhZjJhZTMxMDNjMTg5MWIyMjcyZDRk NWMxM2I1ZjAeFw0yNjAxMTUwMDAxMzhaFw0yNzAxMTQwMDA2MzhaMDMxMTAvBgNV BAMTKEJBNDYzNTdFMDg1OUUzOEVFQzI1N0M0ODUwMDIwMENDQzI4N0I0MjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCm33wWSab6ZVY+ye2ydMWCDh+i /SXiOCmi5qmuyvmsfyvupejpoq148y90y4qA/Wa6zIrRdv2t+jlsexRQxL6/iMe1 EtWAq1EAGtXnXi4NLHEyomoKR5LslYhbN1G8WVLdhZc2p7P6fqmF2DrumzD1iePQ +5/RKfIaKLS9vHRRkEyZkI/dHhCgIwqCLajtcFgEyT1DBFHVhM1Wjfs+R/flqkYr fDimNxbldrvFH9B2izwxT69T7OHmgXaK1G58r2yUTsUSSZR9zz3PZOM+AYkxirgC ssHNxDK+uun4zQbGn36tx5qqQTP3cp1P9aFifER1tg5U9zKblU+9Ei6/aggNAgMB AAGjggIuMIICKjAdBgNVHQ4EFgQUukY1fghZ447sJXxIUAIAzMKHtCEwHwYDVR0j BBgwFoAUm9gTOR5K8q4xA8GJGyJy1NXBO18wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYzQ3OGY2ZjUtNDQ5YS00ODI3LTk5ZDUtYmY2YjkzYThm NmI0LzAvOUJEODEzMzkxRTRBRjJBRTMxMDNDMTg5MUIyMjcyRDRENUMxM0I1Ri5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL205Z1RPUjVLOHE0eEE4R0pHeUp5MU5Y Qk8xOC5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2M0NzhmNmY1LTQ0OWEt NDgyNy05OWQ1LWJmNmI5M2E4ZjZiNC8wL0FTMzk3NjMwLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMEMGCCsGAQUFBwEHAQH/BDQwMjAwBAIAATAqAwQAW3wk AwQAXHCNAwQAX4e3AwQAslz2AwQAsl0eAwQAsl6VAwQAsl/hMA0GCSqGSIb3DQEB CwUAA4IBAQCrZ7lYKM9oXZZR581PiJFyDPSpHQ/ltFKXtTvLq9cvx9/EbynBU7IN 3ET5czJerEUERwmSNTHfD0JXDoqzC22k2R7PD8zsOhmVWPZL5fNWwuSRAilD5aXS nTxHU7D9v+KPffHLdBmna60VcqEp4DHYHBEt4kyX2Gg7zAS/mVetsEUa/pIshG4+ +47inwILTAnKWjlzt0WcZCOJBGjqp5Qs6eW3p1SuPFvNNWYCusvbRaqUP/vM/cd0 JgfT63G7Yap+NZxNtOUmPXQY0KW1XtSnAEXWuImeEhVeM8TYvVCEi81wBCCeeWN0 ahizI4oMa4QwaQjjNP1kqWq4lQj1KUnw -----END CERTIFICATE-----Generated at Thu Jan 15 23:25:00 2026 by rpki-client