This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS9304.roa File: AS9304.roa (raw, json) Hash identifier: EyvQJNUj3iN1XlRm1W3PYk6G4ojny27QRZCfhuCllEE= Subject key identifier: 55:88:4D:B9:52:6F:4B:CA:54:03:53:84:D8:43:B9:E4:E0:58:C1:21 Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a Certificate serial: 0B40E7A3A7099286A0B7D1EA0B0A54B1FE9A2D52 Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS9304.roa Signing time: Wed 21 Jan 2026 15:02:16 +0000 ROA not before: Wed 21 Jan 2026 14:57:16 +0000 ROA not after: Wed 20 Jan 2027 15:02:16 +0000 asID: 9304 IP address blocks: 5.252.74.0/24 maxlen: 24 89.19.46.0/24 maxlen: 24 89.19.50.0/24 maxlen: 24 179.61.140.0/24 maxlen: 24 179.61.150.0/24 maxlen: 24 191.101.29.0/24 maxlen: 24 191.101.83.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.mft rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 03:48:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:40:e7:a3:a7:09:92:86:a0:b7:d1:ea:0b:0a:54:b1:fe:9a:2d:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a Validity Not Before: Jan 21 14:57:16 2026 GMT Not After : Jan 20 15:02:16 2027 GMT Subject: CN=55884DB9526F4BCA54035384D843B9E4E058C121 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:c0:b3:76:86:a2:0a:80:0c:f2:60:27:da:96: 49:bd:27:cc:68:8b:3e:92:0f:11:d5:00:36:c6:f2: 27:98:03:6b:c8:f7:4f:e5:2f:aa:52:14:6a:70:06: 48:58:da:38:d6:46:a4:dd:ad:75:a8:c0:34:ad:a7: 88:ff:24:73:e3:cd:02:5e:a7:da:10:2e:65:7a:78: 0d:b3:d2:54:12:96:1a:65:30:16:fb:9e:e4:31:ca: 29:23:4c:ad:8d:b2:d9:2b:fb:ed:26:c0:3d:3a:b8: 0c:00:a3:2f:a5:f9:1d:8a:a0:62:e9:3a:59:ab:a4: 0e:a4:55:d8:b2:ce:d3:e4:b3:b8:27:a8:4c:a9:13: 30:bb:1d:e9:97:96:82:7c:f9:cd:83:04:0f:60:f9: 34:54:e9:4e:6d:8c:0c:0f:4d:7b:e7:75:53:ea:ce: c7:01:51:cd:12:45:97:e9:3b:47:ef:4b:75:14:70: 66:51:da:10:bd:0f:a2:78:4d:0f:3a:2f:09:5f:01: 3e:a0:87:eb:8a:62:3c:ff:e0:20:32:7a:7e:4b:a1: 4b:98:4b:07:3f:8b:f0:83:d3:67:68:af:6a:ea:f3: 4f:7b:fc:8c:ed:89:1e:bc:68:a9:dd:33:a9:14:9c: 81:e0:b1:a0:76:d1:e0:7a:0b:3d:05:54:18:59:23: de:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:88:4D:B9:52:6F:4B:CA:54:03:53:84:D8:43:B9:E4:E0:58:C1:21 X509v3 Authority Key Identifier: keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS9304.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.252.74.0/24 89.19.46.0/24 89.19.50.0/24 179.61.140.0/24 179.61.150.0/24 191.101.29.0/24 191.101.83.0/24 Signature Algorithm: sha256WithRSAEncryption 63:8e:15:28:8c:45:57:3e:81:94:bd:69:14:e0:27:ce:90:17: f6:8e:7d:81:33:20:c3:09:68:13:89:18:d5:6e:a2:a2:10:b4: 3a:8a:97:d4:44:45:e3:df:f2:80:b2:30:63:a9:09:80:33:ba: 1f:76:bc:4b:57:79:5a:23:e7:a5:30:16:f2:8e:a4:59:41:1e: 2a:b6:4f:cd:4e:55:f4:76:e4:1d:41:44:48:6a:fe:6f:6c:df: 85:17:81:4c:52:e6:14:e8:c7:a3:8d:12:3d:10:34:88:85:73: 69:d7:90:60:ad:a0:3b:94:c4:0a:7f:8d:a9:c7:af:55:76:5c: d2:8a:ae:36:70:a2:45:a7:00:3f:a4:47:a2:c5:1f:c9:36:0b: 1a:2c:51:a3:d5:74:5c:e5:9d:a8:d2:04:54:67:94:23:f2:3c: bb:9d:38:fd:13:9d:32:01:5b:98:13:a2:32:89:cc:9e:a8:87: bf:61:35:bb:06:e2:a4:b9:14:e9:a8:7c:f0:6d:5d:ea:a2:3e: f9:1d:ba:4f:53:55:60:8e:6c:80:d0:06:40:80:2f:0d:95:f4: 60:ed:6b:d4:e7:1f:21:06:9e:d6:d7:cc:d1:ea:4a:70:90:5e: 7f:cb:42:b8:ae:10:2d:2d:ef:35:6e:e1:68:26:8c:de:09:08: f6:b1:b2:ba -----BEGIN CERTIFICATE----- MIIFIjCCBAqgAwIBAgIUC0Dno6cJkoagt9HqCwpUsf6aLVIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjFiMWJiNDQ0NzcxOGYxNmIzZDM2Njc1ZDIwNWM0ZGVh NDFiYmEwYTAeFw0yNjAxMjExNDU3MTZaFw0yNzAxMjAxNTAyMTZaMDMxMTAvBgNV BAMTKDU1ODg0REI5NTI2RjRCQ0E1NDAzNTM4NEQ4NDNCOUU0RTA1OEMxMjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQClwLN2hqIKgAzyYCfalkm9J8xo iz6SDxHVADbG8ieYA2vI90/lL6pSFGpwBkhY2jjWRqTdrXWowDStp4j/JHPjzQJe p9oQLmV6eA2z0lQSlhplMBb7nuQxyikjTK2Nstkr++0mwD06uAwAoy+l+R2KoGLp OlmrpA6kVdiyztPks7gnqEypEzC7HemXloJ8+c2DBA9g+TRU6U5tjAwPTXvndVPq zscBUc0SRZfpO0fvS3UUcGZR2hC9D6J4TQ86LwlfAT6gh+uKYjz/4CAyen5LoUuY Swc/i/CD02dor2rq8097/IztiR68aKndM6kUnIHgsaB20eB6Cz0FVBhZI97JAgMB AAGjggIsMIICKDAdBgNVHQ4EFgQUVYhNuVJvS8pUA1OE2EO55OBYwSEwHwYDVR0j BBgwFoAUYbG7REdxjxaz02Z10gXE3qQbugowDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNTM3NDU5ZTctMmE4My00M2QxLTlhYTEtNTg0MTdhYmFj NGI2LzEvNjFCMUJCNDQ0NzcxOEYxNkIzRDM2Njc1RDIwNUM0REVBNDFCQkEwQS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1liRzdSRWR4anhhejAyWjEwZ1hFM3FR YnVnby5jZXIweQYIKwYBBQUHAQsEbTBrMGkGCCsGAQUFBzALhl1yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzUzNzQ1OWU3LTJhODMt NDNkMS05YWExLTU4NDE3YWJhYzRiNi8xL0FTOTMwNC5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjBDBggrBgEFBQcBBwEB/wQ0MDIwMAQCAAEwKgMEAAX8SgME AFkTLgMEAFkTMgMEALM9jAMEALM9lgMEAL9lHQMEAL9lUzANBgkqhkiG9w0BAQsF AAOCAQEAY44VKIxFVz6BlL1pFOAnzpAX9o59gTMgwwloE4kY1W6iohC0OoqX1ERF 49/ygLIwY6kJgDO6H3a8S1d5WiPnpTAW8o6kWUEeKrZPzU5V9HbkHUFESGr+b2zf hReBTFLmFOjHo40SPRA0iIVzadeQYK2gO5TECn+NqcevVXZc0oquNnCiRacAP6RH osUfyTYLGixRo9V0XOWdqNIEVGeUI/I8u504/ROdMgFbmBOiMonMnqiHv2E1uwbi pLkU6ah88G1d6qI++R26T1NVYI5sgNAGQIAvDZX0YO1r1OcfIQae1tfM0epKcJBe f8tCuK4QLS3vNW7haCaM3gkI9rGyug== -----END CERTIFICATE-----Generated at Sun Jan 25 11:50:08 2026 by rpki-client