This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS395374.roa File: AS395374.roa (raw, json) Hash identifier: YPzwMHIo5GPq6IxfzCbFWIcHZbo2+XuAwmVqG5GXRWk= Subject key identifier: 50:08:01:0D:E3:AB:21:E9:FF:23:BF:8C:BC:D9:46:62:3B:16:D8:A1 Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f Certificate serial: 0676D9FCFDC712D1277B7CF6942E953DD7F90084 Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS395374.roa Signing time: Tue 20 Jan 2026 13:27:23 +0000 ROA not before: Tue 20 Jan 2026 13:22:23 +0000 ROA not after: Tue 19 Jan 2027 13:27:23 +0000 asID: 395374 IP address blocks: 95.134.5.0/24 maxlen: 24 95.134.76.0/24 maxlen: 24 95.134.98.0/24 maxlen: 24 95.134.121.0/24 maxlen: 24 178.93.128.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 03:44:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:76:d9:fc:fd:c7:12:d1:27:7b:7c:f6:94:2e:95:3d:d7:f9:00:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f Validity Not Before: Jan 20 13:22:23 2026 GMT Not After : Jan 19 13:27:23 2027 GMT Subject: CN=5008010DE3AB21E9FF23BF8CBCD946623B16D8A1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:08:73:65:98:45:a9:44:19:dc:0c:2c:6f:9c: 4d:0f:9a:59:d2:9f:d8:b2:56:89:55:e7:58:95:b8: 2d:58:38:66:5d:22:c1:b7:f3:88:1c:73:09:6f:a6: 3a:f1:3e:45:91:43:9c:97:8e:0d:64:0e:45:5e:7a: 3c:43:5c:63:60:6b:64:1e:e4:3e:48:c3:87:ed:07: ed:34:b2:e5:80:ea:b7:bc:99:20:52:59:11:20:0a: 7a:eb:37:98:5a:f0:6a:d0:6b:4b:09:8c:29:32:86: fe:c8:16:f0:b7:e0:79:bc:39:2e:cd:12:4f:e4:d4: b1:d3:5e:c4:c8:81:1b:b6:88:4e:dc:8e:ca:02:d0: 63:7f:32:21:11:4b:32:a1:1a:51:74:75:35:55:1b: c7:e2:c9:df:31:54:e2:a1:2d:56:a4:b9:2b:e3:1d: ea:59:d8:c9:ec:66:7b:d0:74:cc:c4:84:88:86:ac: 16:f2:78:44:1b:08:fe:62:c5:99:d7:25:b0:a8:74: 83:1e:71:b3:e8:9b:be:46:7f:f2:8e:e7:31:af:75: 71:fc:24:4f:b2:0e:e0:a7:68:9e:08:92:64:f7:8f: db:29:13:8e:22:01:5b:94:fc:82:c1:8e:e5:76:2c: 17:17:96:d7:80:38:0f:67:7a:16:c4:f5:ab:cd:35: 4c:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:08:01:0D:E3:AB:21:E9:FF:23:BF:8C:BC:D9:46:62:3B:16:D8:A1 X509v3 Authority Key Identifier: keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS395374.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 95.134.5.0/24 95.134.76.0/24 95.134.98.0/24 95.134.121.0/24 178.93.128.0/24 Signature Algorithm: sha256WithRSAEncryption 15:54:8a:2a:29:8a:67:03:a3:68:24:3d:80:7d:78:1d:0e:72: 46:74:75:1e:f4:eb:8e:ee:82:4f:a4:d0:4a:9f:e2:b3:55:fb: 9f:38:6e:f2:c4:3a:a1:7d:09:99:64:51:75:24:ab:9a:96:21: b4:80:26:a8:a8:fd:73:99:74:0b:29:3d:fe:2d:08:f3:e1:34: 87:0e:9e:bc:fc:ba:3a:69:84:cf:f1:0b:fa:51:17:5d:0d:58: 01:64:94:7b:24:d2:7e:af:01:13:06:04:69:3b:94:f7:27:b2: a1:1e:97:6a:5e:3e:cf:8a:17:50:e8:4a:61:d7:7e:64:16:88: be:c5:0e:ac:ac:19:f1:d9:20:c1:94:18:f8:b0:bf:fa:2e:03: 74:8e:b7:13:7b:54:63:db:16:72:82:fc:81:de:3a:60:7e:df: 21:0a:a7:af:b5:3c:71:cc:c0:c0:da:c8:e9:04:09:d1:4d:65: 7d:66:77:04:58:2d:39:49:19:ec:cd:99:12:07:b5:be:f4:53: f5:35:ec:59:a3:57:c7:79:fe:56:47:cc:a8:fe:7f:b0:0a:62: 3b:03:36:e2:10:22:c5:48:5f:12:68:d9:cc:f6:17:f6:54:95: 5f:bc:56:e1:0f:80:47:99:6f:0c:40:cb:a1:71:98:55:96:43: 73:54:d2:47 -----BEGIN CERTIFICATE----- MIIFGDCCBACgAwIBAgIUBnbZ/P3HEtEne3z2lC6VPdf5AIQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOWJkODEzMzkxZTRhZjJhZTMxMDNjMTg5MWIyMjcyZDRk NWMxM2I1ZjAeFw0yNjAxMjAxMzIyMjNaFw0yNzAxMTkxMzI3MjNaMDMxMTAvBgNV BAMTKDUwMDgwMTBERTNBQjIxRTlGRjIzQkY4Q0JDRDk0NjYyM0IxNkQ4QTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDzCHNlmEWpRBncDCxvnE0PmlnS n9iyVolV51iVuC1YOGZdIsG384gccwlvpjrxPkWRQ5yXjg1kDkVeejxDXGNga2Qe 5D5Iw4ftB+00suWA6re8mSBSWREgCnrrN5ha8GrQa0sJjCkyhv7IFvC34Hm8OS7N Ek/k1LHTXsTIgRu2iE7cjsoC0GN/MiERSzKhGlF0dTVVG8fiyd8xVOKhLVakuSvj HepZ2MnsZnvQdMzEhIiGrBbyeEQbCP5ixZnXJbCodIMecbPom75Gf/KO5zGvdXH8 JE+yDuCnaJ4IkmT3j9spE44iAVuU/ILBjuV2LBcXlteAOA9nehbE9avNNUwdAgMB AAGjggIiMIICHjAdBgNVHQ4EFgQUUAgBDeOrIen/I7+MvNlGYjsW2KEwHwYDVR0j BBgwFoAUm9gTOR5K8q4xA8GJGyJy1NXBO18wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYzQ3OGY2ZjUtNDQ5YS00ODI3LTk5ZDUtYmY2YjkzYThm NmI0LzAvOUJEODEzMzkxRTRBRjJBRTMxMDNDMTg5MUIyMjcyRDRENUMxM0I1Ri5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL205Z1RPUjVLOHE0eEE4R0pHeUp5MU5Y Qk8xOC5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2M0NzhmNmY1LTQ0OWEt NDgyNy05OWQ1LWJmNmI5M2E4ZjZiNC8wL0FTMzk1Mzc0LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMDcGCCsGAQUFBwEHAQH/BCgwJjAkBAIAATAeAwQAX4YF AwQAX4ZMAwQAX4ZiAwQAX4Z5AwQAsl2AMA0GCSqGSIb3DQEBCwUAA4IBAQAVVIoq KYpnA6NoJD2AfXgdDnJGdHUe9OuO7oJPpNBKn+KzVfufOG7yxDqhfQmZZFF1JKua liG0gCaoqP1zmXQLKT3+LQjz4TSHDp68/Lo6aYTP8Qv6URddDVgBZJR7JNJ+rwET BgRpO5T3J7KhHpdqXj7PihdQ6Eph135kFoi+xQ6srBnx2SDBlBj4sL/6LgN0jrcT e1Rj2xZygvyB3jpgft8hCqevtTxxzMDA2sjpBAnRTWV9ZncEWC05SRnszZkSB7W+ 9FP1NexZo1fHef5WR8yo/n+wCmI7AzbiECLFSF8SaNnM9hf2VJVfvFbhD4BHmW8M QMuhcZhVlkNzVNJH -----END CERTIFICATE-----Generated at Sun Jan 25 11:50:15 2026 by rpki-client