This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS9304.roa File: AS9304.roa (raw, json) Hash identifier: 1up2fsQodd1/jLRnwWk7uVe3HuEbwDV9ddd44mfe89Y= Subject key identifier: DD:01:3F:27:4D:D1:06:36:0A:FC:43:6C:7E:7D:72:A7:45:5B:50:B5 Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a Certificate serial: 276D6B249BACFE6FB496D8978FEB364FEB220F1B Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS9304.roa Signing time: Mon 01 Dec 2025 12:27:16 +0000 ROA not before: Mon 01 Dec 2025 12:22:16 +0000 ROA not after: Mon 30 Nov 2026 12:27:16 +0000 asID: 9304 IP address blocks: 5.182.110.0/24 maxlen: 24 5.252.74.0/24 maxlen: 24 45.139.180.0/24 maxlen: 24 45.139.182.0/24 maxlen: 24 89.19.46.0/24 maxlen: 24 89.19.50.0/24 maxlen: 24 92.119.33.0/24 maxlen: 24 103.141.68.0/24 maxlen: 24 103.141.69.0/24 maxlen: 24 109.106.3.0/24 maxlen: 24 181.214.119.0/24 maxlen: 24 181.214.148.0/24 maxlen: 24 181.214.154.0/24 maxlen: 24 181.214.161.0/24 maxlen: 24 181.214.201.0/24 maxlen: 24 181.214.216.0/24 maxlen: 24 191.96.88.0/24 maxlen: 24 191.96.89.0/24 maxlen: 24 191.96.91.0/24 maxlen: 24 191.96.99.0/24 maxlen: 24 191.101.9.0/24 maxlen: 24 191.101.88.0/24 maxlen: 24 191.101.102.0/24 maxlen: 24 191.101.116.0/24 maxlen: 24 191.101.120.0/24 maxlen: 24 191.101.124.0/24 maxlen: 24 191.101.148.0/24 maxlen: 24 191.101.212.0/22 maxlen: 24 191.101.238.0/23 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.mft rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 22:12:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:6d:6b:24:9b:ac:fe:6f:b4:96:d8:97:8f:eb:36:4f:eb:22:0f:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a Validity Not Before: Dec 1 12:22:16 2025 GMT Not After : Nov 30 12:27:16 2026 GMT Subject: CN=DD013F274DD106360AFC436C7E7D72A7455B50B5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:2b:1d:c9:04:b8:cc:06:92:6e:4f:94:f3:da: b2:28:fd:a3:8b:2c:c3:57:34:cf:74:a5:67:26:58: 4e:f9:36:20:77:b3:30:3c:aa:3d:82:a7:0a:84:4c: 8f:40:9b:e0:86:79:7f:73:64:7e:58:4e:2f:70:dd: 10:71:93:43:a1:28:ef:4e:73:84:c6:1e:a4:b3:1b: 5e:0b:7d:f4:ab:44:59:f1:dc:ac:54:45:0b:5c:93: 33:d3:54:a3:e6:9b:ed:51:69:13:f2:d1:0e:13:6f: 76:d9:46:da:2d:14:e7:24:cb:91:51:42:e1:1c:aa: e3:f7:f7:98:13:5f:32:d1:81:77:34:66:09:e3:cf: f8:63:b9:44:48:4f:c8:7e:92:d6:00:94:d5:84:82: 8c:72:97:73:b7:51:40:00:3b:fb:10:65:ce:dc:81: 83:8a:fe:0c:61:9d:10:1d:a0:21:c9:4a:a6:67:f1: cb:24:3c:3c:a8:9a:84:7d:c7:6c:2e:57:bd:02:53: bc:13:5b:2f:73:18:07:ae:bf:b4:e8:24:8c:84:63: 1d:9a:43:6f:f7:44:f3:8a:b0:66:bd:fb:10:4f:ba: 78:53:61:4c:1e:43:bf:22:05:83:31:74:26:1c:04: 48:11:18:de:f4:b3:4b:9c:ab:3a:55:ca:c4:73:3f: 4f:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:01:3F:27:4D:D1:06:36:0A:FC:43:6C:7E:7D:72:A7:45:5B:50:B5 X509v3 Authority Key Identifier: keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS9304.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.182.110.0/24 5.252.74.0/24 45.139.180.0/24 45.139.182.0/24 89.19.46.0/24 89.19.50.0/24 92.119.33.0/24 103.141.68.0/23 109.106.3.0/24 181.214.119.0/24 181.214.148.0/24 181.214.154.0/24 181.214.161.0/24 181.214.201.0/24 181.214.216.0/24 191.96.88.0/23 191.96.91.0/24 191.96.99.0/24 191.101.9.0/24 191.101.88.0/24 191.101.102.0/24 191.101.116.0/24 191.101.120.0/24 191.101.124.0/24 191.101.148.0/24 191.101.212.0/22 191.101.238.0/23 Signature Algorithm: sha256WithRSAEncryption 22:f4:c4:de:dc:dc:6f:0a:6e:6a:64:79:cf:83:b1:ad:cd:16: d2:bd:43:2a:e3:1b:fc:b9:b2:5f:eb:01:82:6d:e9:c0:74:7d: a6:f8:32:85:c2:a2:06:9d:f5:b2:b6:88:e8:e2:63:0d:dc:c9: 41:43:68:37:fd:9d:b2:98:1f:2c:ff:d6:34:7f:bd:a4:62:c4: 26:0b:35:3e:d7:96:15:67:e9:6d:5a:f8:99:69:08:4a:d1:5a: f0:92:e4:91:5a:c8:6e:82:54:c7:ff:54:18:fc:48:e2:90:62: 9e:e5:ee:4f:8e:40:a9:78:3a:7f:20:30:0d:d1:5b:af:d0:40: cd:95:4f:04:48:41:04:01:0d:a7:c4:5c:72:3e:4c:51:63:74: 12:5c:2f:03:be:65:d9:22:9c:56:d4:ef:4f:55:cc:33:32:7c: 26:b4:ce:b1:16:6e:08:ae:56:91:95:aa:aa:63:9f:24:89:d0: 90:76:b9:23:6d:6c:cc:b6:d1:ef:17:ec:1b:cc:93:9e:a6:ed: 2c:da:fc:85:14:25:89:fa:34:d2:d5:a4:4e:d7:88:89:81:ce: 42:e9:9e:29:44:71:c0:6f:2a:4b:c5:10:23:59:88:a2:c7:63: d3:0e:9d:c5:13:82:48:f5:4d:32:4a:a6:41:30:36:28:68:dd: 2b:be:e4:64 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUJ21rJJus/m+0ltiXj+s2T+siDxswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjFiMWJiNDQ0NzcxOGYxNmIzZDM2Njc1ZDIwNWM0ZGVh NDFiYmEwYTAeFw0yNTEyMDExMjIyMTZaFw0yNjExMzAxMjI3MTZaMDMxMTAvBgNV BAMTKEREMDEzRjI3NEREMTA2MzYwQUZDNDM2QzdFN0Q3MkE3NDU1QjUwQjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGKx3JBLjMBpJuT5Tz2rIo/aOL LMNXNM90pWcmWE75NiB3szA8qj2CpwqETI9Am+CGeX9zZH5YTi9w3RBxk0OhKO9O c4TGHqSzG14LffSrRFnx3KxURQtckzPTVKPmm+1RaRPy0Q4Tb3bZRtotFOcky5FR QuEcquP395gTXzLRgXc0Zgnjz/hjuURIT8h+ktYAlNWEgoxyl3O3UUAAO/sQZc7c gYOK/gxhnRAdoCHJSqZn8cskPDyomoR9x2wuV70CU7wTWy9zGAeuv7ToJIyEYx2a Q2/3RPOKsGa9+xBPunhTYUweQ78iBYMxdCYcBEgRGN70s0ucqzpVysRzP0/PAgMB AAGjggKpMIICpTAdBgNVHQ4EFgQU3QE/J03RBjYK/ENsfn1yp0VbULUwHwYDVR0j BBgwFoAUYbG7REdxjxaz02Z10gXE3qQbugowDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNTM3NDU5ZTctMmE4My00M2QxLTlhYTEtNTg0MTdhYmFj NGI2LzEvNjFCMUJCNDQ0NzcxOEYxNkIzRDM2Njc1RDIwNUM0REVBNDFCQkEwQS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1liRzdSRWR4anhhejAyWjEwZ1hFM3FR YnVnby5jZXIweQYIKwYBBQUHAQsEbTBrMGkGCCsGAQUFBzALhl1yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzUzNzQ1OWU3LTJhODMt NDNkMS05YWExLTU4NDE3YWJhYzRiNi8xL0FTOTMwNC5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjCBvwYIKwYBBQUHAQcBAf8Ega8wgawwgakEAgABMIGiAwQA BbZuAwQABfxKAwQALYu0AwQALYu2AwQAWRMuAwQAWRMyAwQAXHchAwQBZ41EAwQA bWoDAwQAtdZ3AwQAtdaUAwQAtdaaAwQAtdahAwQAtdbJAwQAtdbYAwQBv2BYAwQA v2BbAwQAv2BjAwQAv2UJAwQAv2VYAwQAv2VmAwQAv2V0AwQAv2V4AwQAv2V8AwQA v2WUAwQCv2XUAwQBv2XuMA0GCSqGSIb3DQEBCwUAA4IBAQAi9MTe3NxvCm5qZHnP g7GtzRbSvUMq4xv8ubJf6wGCbenAdH2m+DKFwqIGnfWytojo4mMN3MlBQ2g3/Z2y mB8s/9Y0f72kYsQmCzU+15YVZ+ltWviZaQhK0VrwkuSRWshuglTH/1QY/EjikGKe 5e5PjkCpeDp/IDAN0Vuv0EDNlU8ESEEEAQ2nxFxyPkxRY3QSXC8DvmXZIpxW1O9P VcwzMnwmtM6xFm4IrlaRlaqqY58kidCQdrkjbWzMttHvF+wbzJOepu0s2vyFFCWJ +jTS1aRO14iJgc5C6Z4pRHHAbypLxRAjWYiix2PTDp3FE4JI9U0ySqZBMDYoaN0r vuRk -----END CERTIFICATE-----Generated at Sat Dec 6 12:47:52 2025 by rpki-client