This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS397630.roa File: AS397630.roa (raw, json) Hash identifier: UCAW0FAh3l+784O44Koj2iSfyqxPOQgz1FB3zlVJic4= Subject key identifier: 54:6A:DD:5F:DC:F8:9B:88:F7:C3:51:26:23:15:89:59:FB:B9:B0:0A Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f Certificate serial: 4EA53B5E38790D43CE406C391E981FDE2D7819E6 Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS397630.roa Signing time: Sun 23 Nov 2025 23:59:25 +0000 ROA not before: Sun 23 Nov 2025 23:54:25 +0000 ROA not after: Sun 22 Nov 2026 23:59:25 +0000 asID: 397630 IP address blocks: 91.124.36.0/24 maxlen: 24 92.112.141.0/24 maxlen: 24 92.112.144.0/24 maxlen: 24 95.135.183.0/24 maxlen: 24 178.92.246.0/24 maxlen: 24 178.93.30.0/24 maxlen: 24 178.94.149.0/24 maxlen: 24 178.95.225.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 02 Dec 2025 00:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:a5:3b:5e:38:79:0d:43:ce:40:6c:39:1e:98:1f:de:2d:78:19:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f Validity Not Before: Nov 23 23:54:25 2025 GMT Not After : Nov 22 23:59:25 2026 GMT Subject: CN=546ADD5FDCF89B88F7C3512623158959FBB9B00A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:a0:05:d1:0b:6a:f0:9e:9a:fa:dd:0e:3b:bd: d8:1f:7a:89:53:fd:bc:2c:0d:90:59:ff:1a:04:18: da:80:86:2d:be:16:70:29:4f:1b:2d:5b:1d:bf:6d: fe:1a:29:f7:38:40:61:11:35:94:9a:5d:cc:82:ca: 1b:e1:a9:d0:bd:8b:f0:ff:31:ea:3f:20:4a:5e:de: b1:32:0d:29:1d:dd:0a:40:02:35:fc:4d:ff:90:24: 21:75:91:61:46:0b:1a:18:df:49:6a:ec:70:92:af: f8:11:f5:15:77:0b:c0:87:67:a0:c4:47:1b:bd:e6: 11:88:38:16:13:ee:d4:12:b7:04:2d:e3:4d:ea:3b: 1f:cb:26:47:f3:e1:a0:f5:23:16:06:c7:f5:39:f7: ec:90:5c:fe:aa:7b:9d:43:f1:9b:6e:19:d4:f0:78: 48:bb:97:0a:10:71:95:8b:20:a4:5f:6d:66:7e:2d: 20:40:11:e0:2e:bd:97:ca:f6:a0:ad:7d:73:a5:d6: b9:eb:7f:ff:57:a2:61:f5:43:82:10:b0:dd:97:e4: c0:f8:7e:a8:3d:53:d2:1c:8a:a5:d9:bf:3f:97:57: eb:c8:d1:e5:c2:87:4b:f9:33:43:30:5f:c3:7e:5d: 40:7c:1a:39:68:5f:62:38:26:db:70:25:a0:03:a2: ce:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:6A:DD:5F:DC:F8:9B:88:F7:C3:51:26:23:15:89:59:FB:B9:B0:0A X509v3 Authority Key Identifier: keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS397630.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.124.36.0/24 92.112.141.0/24 92.112.144.0/24 95.135.183.0/24 178.92.246.0/24 178.93.30.0/24 178.94.149.0/24 178.95.225.0/24 Signature Algorithm: sha256WithRSAEncryption 88:c4:44:04:bd:a4:69:68:40:75:b0:22:3f:72:62:e8:8c:5a: aa:04:0f:35:5c:a8:20:0c:85:c0:29:41:18:7f:b1:6f:61:75: 85:ec:6c:66:5b:90:1c:7c:b4:62:69:75:22:98:80:ce:62:d4: 99:75:c8:36:1c:23:3f:5c:ef:0e:b3:62:1a:20:fa:a3:7a:09: b7:c0:47:d4:49:93:53:17:0e:c0:48:cc:34:97:71:36:d4:2d: 36:07:3f:3b:32:7b:d5:26:51:0f:10:7f:32:d6:7a:46:7e:6e: b2:fe:21:f1:1b:8f:cf:63:2f:cf:9d:56:89:0e:72:1b:14:6a: ec:df:e3:11:9f:da:b4:55:ec:ba:00:ae:82:5a:65:ef:f1:da: 70:7b:a6:b8:cf:a9:90:b9:36:07:72:cb:d0:4a:0b:51:b5:a5: 88:6c:a2:7f:6d:7d:34:60:f5:f5:81:c2:68:0c:61:08:ff:52: b5:f1:39:fb:b6:77:1b:c6:f5:aa:b3:b7:1e:84:66:87:6f:6e: 74:8a:76:4f:8b:e3:cd:5b:b6:e3:44:5b:ff:54:69:40:29:8c: 66:52:66:6f:8a:4f:d5:91:de:4c:72:59:80:00:f0:52:6f:5e: f1:b0:3d:bd:6c:fd:14:2a:1f:47:fc:87:a7:15:0e:0d:cc:80: 88:6c:1a:35 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUTqU7Xjh5DUPOQGw5Hpgf3i14GeYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOWJkODEzMzkxZTRhZjJhZTMxMDNjMTg5MWIyMjcyZDRk NWMxM2I1ZjAeFw0yNTExMjMyMzU0MjVaFw0yNjExMjIyMzU5MjVaMDMxMTAvBgNV BAMTKDU0NkFERDVGRENGODlCODhGN0MzNTEyNjIzMTU4OTU5RkJCOUIwMEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyoAXRC2rwnpr63Q47vdgfeolT /bwsDZBZ/xoEGNqAhi2+FnApTxstWx2/bf4aKfc4QGERNZSaXcyCyhvhqdC9i/D/ Meo/IEpe3rEyDSkd3QpAAjX8Tf+QJCF1kWFGCxoY30lq7HCSr/gR9RV3C8CHZ6DE Rxu95hGIOBYT7tQStwQt403qOx/LJkfz4aD1IxYGx/U59+yQXP6qe51D8ZtuGdTw eEi7lwoQcZWLIKRfbWZ+LSBAEeAuvZfK9qCtfXOl1rnrf/9XomH1Q4IQsN2X5MD4 fqg9U9IciqXZvz+XV+vI0eXCh0v5M0MwX8N+XUB8GjloX2I4JttwJaADos5rAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUVGrdX9z4m4j3w1EmIxWJWfu5sAowHwYDVR0j BBgwFoAUm9gTOR5K8q4xA8GJGyJy1NXBO18wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYzQ3OGY2ZjUtNDQ5YS00ODI3LTk5ZDUtYmY2YjkzYThm NmI0LzAvOUJEODEzMzkxRTRBRjJBRTMxMDNDMTg5MUIyMjcyRDRENUMxM0I1Ri5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL205Z1RPUjVLOHE0eEE4R0pHeUp5MU5Y Qk8xOC5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2M0NzhmNmY1LTQ0OWEt NDgyNy05OWQ1LWJmNmI5M2E4ZjZiNC8wL0FTMzk3NjMwLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMEkGCCsGAQUFBwEHAQH/BDowODA2BAIAATAwAwQAW3wk AwQAXHCNAwQAXHCQAwQAX4e3AwQAslz2AwQAsl0eAwQAsl6VAwQAsl/hMA0GCSqG SIb3DQEBCwUAA4IBAQCIxEQEvaRpaEB1sCI/cmLojFqqBA81XKggDIXAKUEYf7Fv YXWF7GxmW5AcfLRiaXUimIDOYtSZdcg2HCM/XO8Os2IaIPqjegm3wEfUSZNTFw7A SMw0l3E21C02Bz87MnvVJlEPEH8y1npGfm6y/iHxG4/PYy/PnVaJDnIbFGrs3+MR n9q0Vey6AK6CWmXv8dpwe6a4z6mQuTYHcsvQSgtRtaWIbKJ/bX00YPX1gcJoDGEI /1K18Tn7tncbxvWqs7cehGaHb250inZPi+PNW7bjRFv/VGlAKYxmUmZvik/Vkd5M clmAAPBSb17xsD29bP0UKh9H/IenFQ4NzICIbBo1 -----END CERTIFICATE-----Generated at Mon Dec 1 07:52:19 2025 by rpki-client