This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS58061.roa File: AS58061.roa (raw, json) Hash identifier: I5+0SkoygETTVk+UYAen36cTg3dOaCTe7XtvBEo6jjs= Subject key identifier: 89:93:42:08:9F:35:B5:85:D3:14:EF:72:C1:5E:61:9E:35:88:AD:7F Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f Certificate serial: 5DD9DEA0D2E60E5957217B76B3CA272283BE66E8 Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS58061.roa Signing time: Mon 26 Jan 2026 00:03:33 +0000 ROA not before: Sun 25 Jan 2026 23:58:33 +0000 ROA not after: Mon 25 Jan 2027 00:03:33 +0000 asID: 58061 IP address blocks: 91.124.35.0/24 maxlen: 24 91.124.49.0/24 maxlen: 24 91.124.54.0/24 maxlen: 24 91.124.81.0/24 maxlen: 24 91.124.148.0/24 maxlen: 24 91.124.255.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:d9:de:a0:d2:e6:0e:59:57:21:7b:76:b3:ca:27:22:83:be:66:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f Validity Not Before: Jan 25 23:58:33 2026 GMT Not After : Jan 25 00:03:33 2027 GMT Subject: CN=899342089F35B585D314EF72C15E619E3588AD7F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:e1:b7:21:e2:d2:d3:89:4f:ba:9a:16:77:aa: f2:b9:70:91:f2:db:c7:65:ce:0e:53:9d:89:a9:85: 96:90:a5:f8:dd:09:89:b1:ba:a3:8c:93:0b:50:88: 16:ed:4e:4b:6f:51:db:93:8f:10:c5:6e:f0:77:ff: 9e:53:d8:89:54:2c:53:08:49:38:1a:0e:0c:00:bf: d7:c8:3e:47:c9:6c:01:c2:0f:34:dc:ea:2f:24:55: f0:54:04:ad:0d:ad:9e:f0:ef:84:99:06:96:28:96: 88:30:32:6b:4b:6a:cf:d9:ea:88:91:12:23:e4:af: 87:8f:a3:0b:f5:4d:0a:33:10:0e:f6:e0:29:3a:e4: 57:1c:15:c5:4f:1c:93:5b:5e:b5:6e:ff:cf:d6:0f: 90:d8:ec:89:22:4b:21:72:70:f5:28:a1:54:a3:4f: 16:c0:23:bd:64:14:b5:cc:9c:c1:1f:b3:29:80:fe: af:b2:f3:09:e4:2d:09:51:b5:85:2f:ed:1a:df:d8: 26:00:23:29:b4:a7:bc:ac:6e:9f:7b:ac:bd:88:74: aa:e2:15:df:96:4c:5e:17:b2:fd:50:46:e2:0c:17: 20:a1:48:71:cc:d5:64:00:fa:cd:b1:8d:ef:96:e0: 75:a1:fd:d6:89:cd:a6:36:90:7b:83:2d:19:c5:a9: 04:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:93:42:08:9F:35:B5:85:D3:14:EF:72:C1:5E:61:9E:35:88:AD:7F X509v3 Authority Key Identifier: keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS58061.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.124.35.0/24 91.124.49.0/24 91.124.54.0/24 91.124.81.0/24 91.124.148.0/24 91.124.255.0/24 Signature Algorithm: sha256WithRSAEncryption 4b:fd:f9:da:8c:60:98:e5:a8:e2:3f:c0:4c:f5:18:ff:d6:a6: 9f:69:8a:43:c1:86:87:07:ab:55:f7:c2:60:59:d7:50:4d:3d: 0e:cb:3d:aa:88:ec:c1:bc:e4:4d:0e:d5:ca:71:72:b5:89:c7: 3b:c0:3d:10:a6:a7:7d:4e:36:d7:4c:f5:66:ac:b5:35:68:9d: a7:1b:01:0b:ad:71:15:a6:fd:88:96:5e:8f:8e:00:0e:4b:57: 62:1a:f2:cf:e8:e0:86:e2:30:96:36:50:d0:cc:b6:9d:4e:d4: 60:0b:75:c7:f2:b4:7f:d5:51:1c:e1:14:11:6f:a6:6d:d6:5f: f5:55:46:7b:ab:43:8c:74:42:1a:c7:f8:8f:87:0c:ad:ef:40: 31:3d:06:fb:1f:a2:3e:33:d8:5f:e2:22:5b:b5:5f:47:90:c9: 61:99:e3:d6:ce:ed:cd:e0:b2:c4:1f:ba:e1:16:5c:09:31:53: 2c:1d:29:19:59:72:71:ed:a6:34:18:51:46:d4:f4:63:65:c3: 5f:6c:e8:22:f5:fa:64:6f:d9:47:28:a3:9b:27:33:7a:42:c7: ab:b5:30:58:34:f8:b4:c8:44:b0:d6:7b:c1:66:a2:eb:90:05: 33:9c:4b:b2:09:e9:b2:8d:9b:24:9d:1f:a5:40:0f:90:7a:bd: 3e:c7:a7:a1 -----BEGIN CERTIFICATE----- MIIFHTCCBAWgAwIBAgIUXdneoNLmDllXIXt2s8onIoO+ZugwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOWJkODEzMzkxZTRhZjJhZTMxMDNjMTg5MWIyMjcyZDRk NWMxM2I1ZjAeFw0yNjAxMjUyMzU4MzNaFw0yNzAxMjUwMDAzMzNaMDMxMTAvBgNV BAMTKDg5OTM0MjA4OUYzNUI1ODVEMzE0RUY3MkMxNUU2MTlFMzU4OEFEN0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCP4bch4tLTiU+6mhZ3qvK5cJHy 28dlzg5TnYmphZaQpfjdCYmxuqOMkwtQiBbtTktvUduTjxDFbvB3/55T2IlULFMI STgaDgwAv9fIPkfJbAHCDzTc6i8kVfBUBK0NrZ7w74SZBpYologwMmtLas/Z6oiR EiPkr4ePowv1TQozEA724Ck65FccFcVPHJNbXrVu/8/WD5DY7IkiSyFycPUooVSj TxbAI71kFLXMnMEfsymA/q+y8wnkLQlRtYUv7Rrf2CYAIym0p7ysbp97rL2IdKri Fd+WTF4Xsv1QRuIMFyChSHHM1WQA+s2xje+W4HWh/daJzaY2kHuDLRnFqQQjAgMB AAGjggInMIICIzAdBgNVHQ4EFgQUiZNCCJ81tYXTFO9ywV5hnjWIrX8wHwYDVR0j BBgwFoAUm9gTOR5K8q4xA8GJGyJy1NXBO18wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYzQ3OGY2ZjUtNDQ5YS00ODI3LTk5ZDUtYmY2YjkzYThm NmI0LzAvOUJEODEzMzkxRTRBRjJBRTMxMDNDMTg5MUIyMjcyRDRENUMxM0I1Ri5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL205Z1RPUjVLOHE0eEE4R0pHeUp5MU5Y Qk8xOC5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2M0NzhmNmY1LTQ0OWEt NDgyNy05OWQ1LWJmNmI5M2E4ZjZiNC8wL0FTNTgwNjEucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwPQYIKwYBBQUHAQcBAf8ELjAsMCoEAgABMCQDBABbfCMD BABbfDEDBABbfDYDBABbfFEDBABbfJQDBABbfP8wDQYJKoZIhvcNAQELBQADggEB AEv9+dqMYJjlqOI/wEz1GP/Wpp9pikPBhocHq1X3wmBZ11BNPQ7LPaqI7MG85E0O 1cpxcrWJxzvAPRCmp31ONtdM9WastTVonacbAQutcRWm/YiWXo+OAA5LV2Ia8s/o 4IbiMJY2UNDMtp1O1GALdcfytH/VURzhFBFvpm3WX/VVRnurQ4x0QhrH+I+HDK3v QDE9Bvsfoj4z2F/iIlu1X0eQyWGZ49bO7c3gssQfuuEWXAkxUywdKRlZcnHtpjQY UUbU9GNlw19s6CL1+mRv2Ucoo5snM3pCx6u1MFg0+LTIRLDWe8FmouuQBTOcS7IJ 6bKNmySdH6VAD5B6vT7Hp6E= -----END CERTIFICATE-----Generated at Mon Jan 26 07:44:35 2026 by rpki-client