This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS395374.roa File: AS395374.roa (raw, json) Hash identifier: rkXo/9Kr6wqKVTxMiYDlvVCnFFBqFWbbVayXhRw0iZY= Subject key identifier: 8D:5D:A9:9E:6F:E2:DA:C4:14:97:E3:1F:68:0A:15:3D:88:F9:01:AF Certificate issuer: /CN=03b1ba3fdb91d8d9ea76c5776320eb7eb2d6ed9d Certificate serial: 1DC849E4511D2FC9E1194DC8D7F4CFA66BCA76BF Authority key identifier: 03:B1:BA:3F:DB:91:D8:D9:EA:76:C5:77:63:20:EB:7E:B2:D6:ED:9D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A7G6P9uR2NnqdsV3YyDrfrLW7Z0.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS395374.roa Signing time: Fri 14 Nov 2025 11:06:58 +0000 ROA not before: Fri 14 Nov 2025 11:01:58 +0000 ROA not after: Fri 13 Nov 2026 11:06:58 +0000 asID: 395374 IP address blocks: 45.158.9.0/24 maxlen: 24 152.89.250.0/24 maxlen: 24 194.147.4.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/03B1BA3FDB91D8D9EA76C5776320EB7EB2D6ED9D.crl rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/03B1BA3FDB91D8D9EA76C5776320EB7EB2D6ED9D.mft rsync://rpki.ripe.net/repository/DEFAULT/A7G6P9uR2NnqdsV3YyDrfrLW7Z0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:c8:49:e4:51:1d:2f:c9:e1:19:4d:c8:d7:f4:cf:a6:6b:ca:76:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=03b1ba3fdb91d8d9ea76c5776320eb7eb2d6ed9d Validity Not Before: Nov 14 11:01:58 2025 GMT Not After : Nov 13 11:06:58 2026 GMT Subject: CN=8D5DA99E6FE2DAC41497E31F680A153D88F901AF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:e4:88:b4:2f:99:3b:9d:da:3c:b5:90:52:a2: 79:9b:1a:3d:b5:af:b6:60:df:5f:b4:9a:0e:d8:4c: 5e:9b:8a:5d:d7:eb:90:16:98:ff:19:36:98:0e:a3: 6c:12:46:77:f6:a0:7d:3a:00:ee:52:b1:4d:e1:79: f1:89:d5:48:86:52:fd:2e:33:e8:df:b4:82:21:8b: 01:a5:dc:da:99:1d:de:a7:32:64:e0:56:d7:ec:99: 9a:6b:6e:63:7b:c1:4f:2c:93:47:79:54:e6:46:ba: 2a:27:1c:07:c3:5f:dd:da:14:65:6d:ec:ea:c2:ef: 71:68:fb:4e:84:a5:a1:5a:f4:81:0b:ce:6b:4c:48: 92:fd:7d:5b:4a:cf:8c:bb:0c:d3:f4:67:8c:97:d9: 9c:3f:80:b9:c9:62:32:ab:b8:c2:39:8a:5d:90:1c: 03:b5:74:96:01:ee:15:d7:1d:dc:db:af:a1:3e:3a: 65:28:cf:dd:7d:e9:82:56:90:ed:41:49:7e:17:eb: 6a:70:31:b7:b3:40:30:6e:be:0f:86:4a:29:ec:87: c5:5d:41:59:4f:23:e1:9b:38:58:cc:0a:0b:32:bb: 53:18:09:e5:48:b3:b3:69:c6:3e:c7:45:18:1d:f6: 5c:00:44:9e:5b:ab:4e:ae:2e:f3:7b:9c:3d:2e:b3: 61:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:5D:A9:9E:6F:E2:DA:C4:14:97:E3:1F:68:0A:15:3D:88:F9:01:AF X509v3 Authority Key Identifier: keyid:03:B1:BA:3F:DB:91:D8:D9:EA:76:C5:77:63:20:EB:7E:B2:D6:ED:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/03B1BA3FDB91D8D9EA76C5776320EB7EB2D6ED9D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A7G6P9uR2NnqdsV3YyDrfrLW7Z0.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS395374.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.158.9.0/24 152.89.250.0/24 194.147.4.0/24 Signature Algorithm: sha256WithRSAEncryption 22:3b:82:fb:61:b1:79:a0:fc:8b:cd:39:11:03:ff:6e:3a:00: d0:d8:26:a9:78:94:c7:e4:0e:8a:d4:7b:ce:ce:f7:a9:64:75: 40:d7:4f:39:3e:b3:20:4d:63:24:eb:98:02:30:06:e3:3b:0e: e0:95:e5:bb:5a:82:cf:9a:f4:7a:a1:bc:9a:b9:97:4a:bc:47: 78:2b:68:c4:9b:5a:82:0d:6f:f7:ed:1b:7b:25:bb:06:d1:b1: 88:8a:34:b2:61:7f:67:fd:55:37:fe:c7:2c:53:01:83:84:c4: 6b:56:bc:86:cd:5b:05:d5:35:be:dd:e7:de:89:0e:3d:4e:47: 17:b8:ef:d9:8f:a2:8a:ee:d1:ca:1d:95:8a:20:2c:21:c9:c6: 14:83:6a:92:89:0f:cb:b0:25:d2:1b:8f:1d:88:d3:af:8d:e9: d5:ba:2a:a5:ce:54:20:fa:64:f8:0c:71:ea:16:89:a1:93:32: d0:df:70:b7:16:1d:b4:40:e0:be:f1:b2:92:b4:ab:46:63:7a: a9:b5:5b:94:72:ba:29:7a:e6:30:1b:a8:21:dd:77:f8:c0:d7: f8:09:5c:70:49:18:f6:38:d2:ed:7d:36:5e:27:3a:8c:cf:e7: 5f:50:a4:5f:7d:7c:86:31:68:12:f2:1a:fa:55:31:6d:b9:6a: 63:4b:53:4b -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgIUHchJ5FEdL8nhGU3I1/TPpmvKdr8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDNiMWJhM2ZkYjkxZDhkOWVhNzZjNTc3NjMyMGViN2Vi MmQ2ZWQ5ZDAeFw0yNTExMTQxMTAxNThaFw0yNjExMTMxMTA2NThaMDMxMTAvBgNV BAMTKDhENURBOTlFNkZFMkRBQzQxNDk3RTMxRjY4MEExNTNEODhGOTAxQUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC15Ii0L5k7ndo8tZBSonmbGj21 r7Zg31+0mg7YTF6bil3X65AWmP8ZNpgOo2wSRnf2oH06AO5SsU3hefGJ1UiGUv0u M+jftIIhiwGl3NqZHd6nMmTgVtfsmZprbmN7wU8sk0d5VOZGuionHAfDX93aFGVt 7OrC73Fo+06EpaFa9IELzmtMSJL9fVtKz4y7DNP0Z4yX2Zw/gLnJYjKruMI5il2Q HAO1dJYB7hXXHdzbr6E+OmUoz9196YJWkO1BSX4X62pwMbezQDBuvg+GSinsh8Vd QVlPI+GbOFjMCgsyu1MYCeVIs7Npxj7HRRgd9lwARJ5bq06uLvN7nD0us2GpAgMB AAGjggIWMIICEjAdBgNVHQ4EFgQUjV2pnm/i2sQUl+MfaAoVPYj5Aa8wHwYDVR0j BBgwFoAUA7G6P9uR2NnqdsV3YyDrfrLW7Z0wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvN2ZmMGY1NTUtZGJhNy00MTkyLWEwMWQtZjY5MTZkNWJi ODRlLzAvMDNCMUJBM0ZEQjkxRDhEOUVBNzZDNTc3NjMyMEVCN0VCMkQ2RUQ5RC5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0E3RzZQOXVSMk5ucWRzVjNZeURyZnJM VzdaMC5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzdmZjBmNTU1LWRiYTct NDE5Mi1hMDFkLWY2OTE2ZDViYjg0ZS8wL0FTMzk1Mzc0LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQALZ4J AwQAmFn6AwQAwpMEMA0GCSqGSIb3DQEBCwUAA4IBAQAiO4L7YbF5oPyLzTkRA/9u OgDQ2CapeJTH5A6K1HvOzvepZHVA1085PrMgTWMk65gCMAbjOw7gleW7WoLPmvR6 obyauZdKvEd4K2jEm1qCDW/37Rt7JbsG0bGIijSyYX9n/VU3/scsUwGDhMRrVryG zVsF1TW+3efeiQ49TkcXuO/Zj6KK7tHKHZWKICwhycYUg2qSiQ/LsCXSG48diNOv jenVuiqlzlQg+mT4DHHqFomhkzLQ33C3Fh20QOC+8bKStKtGY3qptVuUcropeuYw G6gh3Xf4wNf4CVxwSRj2ONLtfTZeJzqMz+dfUKRffXyGMWgS8hr6VTFtuWpjS1NL -----END CERTIFICATE-----Generated at Sat Dec 6 18:36:49 2025 by rpki-client