This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS401322.roa File: AS401322.roa (raw, json) Hash identifier: RUqjt23m3j/lgvJITd1MFPjhQTnP6bVJ8DWuUVQYqKo= Subject key identifier: 44:2F:F4:E3:89:90:AA:BA:F5:F0:37:CF:A5:CA:4A:BB:96:C6:EF:53 Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f Certificate serial: 362AE4294F6D550BC5BADF287F1F86D3E5AFE10F Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS401322.roa Signing time: Mon 29 Dec 2025 07:51:33 +0000 ROA not before: Mon 29 Dec 2025 07:46:33 +0000 ROA not after: Mon 28 Dec 2026 07:51:33 +0000 asID: 401322 IP address blocks: 91.124.177.0/24 maxlen: 24 95.135.202.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 31 Dec 2025 23:41:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:2a:e4:29:4f:6d:55:0b:c5:ba:df:28:7f:1f:86:d3:e5:af:e1:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f Validity Not Before: Dec 29 07:46:33 2025 GMT Not After : Dec 28 07:51:33 2026 GMT Subject: CN=442FF4E38990AABAF5F037CFA5CA4ABB96C6EF53 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:16:ed:3d:fb:6d:0b:75:fd:80:fb:1e:2a:4e: 4d:fd:11:0e:ba:59:01:1a:90:ff:07:1a:20:f3:1e: 04:59:9d:c1:0c:c4:95:36:09:c0:f8:52:95:41:91: aa:fb:22:e6:1e:a1:da:7e:de:22:d8:6c:86:f3:42: 7c:29:31:d1:aa:05:b6:54:fb:a7:4c:98:52:9f:37: 0d:86:95:78:e7:c3:03:91:d9:5a:f4:2f:c0:d4:4e: cf:3e:dd:c2:34:be:81:67:3f:36:6d:7c:76:9d:08: 63:17:0d:0d:44:93:21:52:bc:c8:d9:20:dc:61:26: 60:1a:eb:95:ab:63:93:8a:6b:a7:ad:c4:ba:f8:98: 98:e3:0e:21:ea:c4:8e:11:bb:38:57:9b:66:ba:42: 7d:5a:30:ca:7b:67:a2:1a:89:01:a1:5c:2c:bb:06: b5:26:37:a8:7c:c1:6b:42:82:5f:2a:87:5e:af:9b: 21:87:56:a2:1b:3a:54:76:dc:b2:33:4c:5c:28:25: 29:09:6d:b9:a7:57:41:af:0c:c8:a4:01:1e:fd:7a: fd:5c:ae:ab:f8:7e:8a:db:4e:4c:12:98:0f:7e:12: e9:46:b5:21:b9:11:91:d0:92:25:17:dc:c9:1a:80: e4:ea:38:f2:ad:06:ff:a8:92:e1:fc:bf:c7:7e:1c: ec:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:2F:F4:E3:89:90:AA:BA:F5:F0:37:CF:A5:CA:4A:BB:96:C6:EF:53 X509v3 Authority Key Identifier: keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS401322.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.124.177.0/24 95.135.202.0/24 Signature Algorithm: sha256WithRSAEncryption 4c:36:d8:28:7f:84:a5:96:e8:c6:09:c0:43:83:a7:46:9a:42: cb:3d:51:18:28:30:b1:a0:c1:8a:88:76:89:59:f5:e5:f5:ea: c6:dc:0e:e6:a5:8f:f1:1b:05:60:5e:9d:25:8a:f8:82:e8:4b: f8:f4:2a:1d:39:ef:06:2c:0a:47:78:3b:45:c8:58:df:92:02: 93:2b:d5:50:c8:a0:2c:29:0c:4c:25:a3:24:98:52:d8:2a:c0: 60:e2:d9:14:d5:15:1c:a8:54:5d:0e:43:1a:f9:e3:5b:b8:30: 9f:e8:60:8d:a1:38:78:f0:46:b8:11:31:2b:a5:93:f5:3e:af: e1:fc:ea:9b:8d:7b:83:be:5b:00:e2:17:64:44:6e:26:1a:24: b2:de:d5:d6:e9:18:5f:a8:3c:3e:e1:ad:a3:db:45:b3:97:20: 14:b6:f5:c6:6d:fa:c0:d8:54:03:de:4e:2f:5e:5d:73:6b:13: dd:a8:0b:e7:de:6f:02:a7:2f:c7:0f:7b:b7:87:c6:32:d7:35: 45:ab:b4:db:2d:a2:79:81:79:4e:8b:14:f1:72:22:6c:81:4b: e2:9f:79:3c:ea:e6:91:5a:6e:f5:bc:15:93:c0:51:ec:63:f1: d2:8c:7c:3e:29:b3:2d:17:ce:25:7d:f8:56:ba:b2:32:91:53: 28:1b:7d:28 -----BEGIN CERTIFICATE----- MIIFBjCCA+6gAwIBAgIUNirkKU9tVQvFut8ofx+G0+Wv4Q8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOWJkODEzMzkxZTRhZjJhZTMxMDNjMTg5MWIyMjcyZDRk NWMxM2I1ZjAeFw0yNTEyMjkwNzQ2MzNaFw0yNjEyMjgwNzUxMzNaMDMxMTAvBgNV BAMTKDQ0MkZGNEUzODk5MEFBQkFGNUYwMzdDRkE1Q0E0QUJCOTZDNkVGNTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOFu09+20Ldf2A+x4qTk39EQ66 WQEakP8HGiDzHgRZncEMxJU2CcD4UpVBkar7IuYeodp+3iLYbIbzQnwpMdGqBbZU +6dMmFKfNw2GlXjnwwOR2Vr0L8DUTs8+3cI0voFnPzZtfHadCGMXDQ1EkyFSvMjZ INxhJmAa65WrY5OKa6etxLr4mJjjDiHqxI4RuzhXm2a6Qn1aMMp7Z6IaiQGhXCy7 BrUmN6h8wWtCgl8qh16vmyGHVqIbOlR23LIzTFwoJSkJbbmnV0GvDMikAR79ev1c rqv4forbTkwSmA9+EulGtSG5EZHQkiUX3MkagOTqOPKtBv+okuH8v8d+HOw1AgMB AAGjggIQMIICDDAdBgNVHQ4EFgQURC/044mQqrr18DfPpcpKu5bG71MwHwYDVR0j BBgwFoAUm9gTOR5K8q4xA8GJGyJy1NXBO18wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYzQ3OGY2ZjUtNDQ5YS00ODI3LTk5ZDUtYmY2YjkzYThm NmI0LzAvOUJEODEzMzkxRTRBRjJBRTMxMDNDMTg5MUIyMjcyRDRENUMxM0I1Ri5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL205Z1RPUjVLOHE0eEE4R0pHeUp5MU5Y Qk8xOC5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2M0NzhmNmY1LTQ0OWEt NDgyNy05OWQ1LWJmNmI5M2E4ZjZiNC8wL0FTNDAxMzIyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAW3yx AwQAX4fKMA0GCSqGSIb3DQEBCwUAA4IBAQBMNtgof4SllujGCcBDg6dGmkLLPVEY KDCxoMGKiHaJWfXl9erG3A7mpY/xGwVgXp0liviC6Ev49CodOe8GLApHeDtFyFjf kgKTK9VQyKAsKQxMJaMkmFLYKsBg4tkU1RUcqFRdDkMa+eNbuDCf6GCNoTh48Ea4 ETErpZP1Pq/h/OqbjXuDvlsA4hdkRG4mGiSy3tXW6RhfqDw+4a2j20WzlyAUtvXG bfrA2FQD3k4vXl1zaxPdqAvn3m8Cpy/HD3u3h8Yy1zVFq7TbLaJ5gXlOixTxciJs gUvin3k86uaRWm71vBWTwFHsY/HSjHw+KbMtF84lffhWurIykVMoG30o -----END CERTIFICATE-----Generated at Wed Dec 31 06:39:44 2025 by rpki-client