This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS401322.roa File: AS401322.roa (raw, json) Hash identifier: hFA3njMuCt2cwGOLtkjlrox8xxVtL6hMAmoPgEYNJqg= Subject key identifier: E8:AF:4A:CE:87:6D:9F:7A:74:7C:B3:AA:BE:4E:0B:42:31:82:9E:0B Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f Certificate serial: 4016AD7F095CC640D85487B9C030C93866DAA030 Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS401322.roa Signing time: Fri 23 Jan 2026 13:21:10 +0000 ROA not before: Fri 23 Jan 2026 13:16:10 +0000 ROA not after: Fri 22 Jan 2027 13:21:10 +0000 asID: 401322 IP address blocks: 91.124.177.0/24 maxlen: 24 92.113.194.0/24 maxlen: 24 92.113.198.0/24 maxlen: 24 95.135.202.0/24 maxlen: 24 178.93.76.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 03:44:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:16:ad:7f:09:5c:c6:40:d8:54:87:b9:c0:30:c9:38:66:da:a0:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f Validity Not Before: Jan 23 13:16:10 2026 GMT Not After : Jan 22 13:21:10 2027 GMT Subject: CN=E8AF4ACE876D9F7A747CB3AABE4E0B4231829E0B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:0d:61:db:a8:56:b4:1c:9d:26:c3:24:34:72: 51:f8:20:67:74:f4:2f:0f:82:92:b8:ef:53:01:6b: 2e:22:b6:99:03:cb:ce:a5:03:a6:0b:7c:79:98:bc: c0:d9:2f:79:4e:f1:2f:a4:77:ec:33:59:ed:4d:48: f0:e4:1c:e4:95:f6:6d:b2:4f:1b:3d:c4:49:1a:1c: 33:ef:b6:49:ed:52:bd:b4:c0:4f:60:6e:4d:f7:32: 38:e2:40:fd:b0:f8:56:51:44:81:75:9c:ea:55:70: 74:4c:e8:52:95:7a:2b:8f:ec:f2:54:e3:6a:9c:92: a4:95:0c:5c:94:56:ff:6a:c0:fa:3d:f0:99:8d:d5: 2f:c7:e5:25:5f:80:99:be:ec:ca:b1:38:63:96:db: 7e:1a:91:18:a9:d4:65:0f:45:d5:7a:63:4c:c8:4a: 81:f0:8d:9a:7b:df:1e:eb:89:f4:06:67:a1:9d:f4: 9b:ea:92:6e:c2:bb:13:1a:3f:11:3d:f3:de:b3:e7: be:04:f8:e7:07:72:23:7a:a9:93:30:75:0c:3e:1d: d7:b2:c3:ae:6f:aa:c6:e8:9a:d8:8b:1b:32:98:89: f9:78:4c:85:b2:5b:20:b0:3f:9d:fb:79:49:99:47: 81:50:38:ac:bb:09:d3:4b:6c:70:ce:61:7f:fa:2f: ee:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:AF:4A:CE:87:6D:9F:7A:74:7C:B3:AA:BE:4E:0B:42:31:82:9E:0B X509v3 Authority Key Identifier: keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS401322.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.124.177.0/24 92.113.194.0/24 92.113.198.0/24 95.135.202.0/24 178.93.76.0/24 Signature Algorithm: sha256WithRSAEncryption 4e:b5:6f:a4:e2:b7:10:91:3d:eb:56:f2:51:50:39:73:fa:39: da:10:b9:e2:92:ac:80:ba:25:43:78:0c:c3:42:25:59:16:6e: 5a:33:af:64:25:bf:a8:9c:05:d2:62:c7:71:21:52:3a:82:02: 1c:fa:2c:2a:19:f4:29:76:6a:79:4c:4c:08:10:f4:71:d0:ef: c0:15:41:90:19:84:5b:92:da:c4:3e:ec:48:79:7a:b5:bd:e7: d4:68:42:86:6c:c7:02:9e:dd:c4:e2:0e:53:cb:70:ff:d0:60: 64:05:83:dd:19:2f:a1:1f:3e:7e:b4:64:f7:11:c8:6d:6c:7b: 83:ae:01:cb:69:bd:40:db:46:97:75:5e:61:d0:af:94:f1:d3: ad:55:e5:dd:db:84:62:d6:b1:c8:69:d8:fc:5d:54:3e:05:ba: d1:84:9a:5c:89:65:3a:a6:d1:e9:0d:84:42:c5:24:da:be:34: 1a:25:57:79:30:c7:8a:52:6f:0f:5a:29:1b:1b:38:49:06:55: d7:4a:fc:58:a9:bb:37:7f:35:53:27:99:bf:73:c1:1f:0e:a1: b1:9c:1f:50:3d:b1:10:0e:92:42:30:bf:7f:06:10:10:40:11: 58:a4:dc:2d:80:a9:19:db:4c:26:ca:0b:aa:6c:29:00:d0:56: 9f:33:ef:9b -----BEGIN CERTIFICATE----- MIIFGDCCBACgAwIBAgIUQBatfwlcxkDYVIe5wDDJOGbaoDAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOWJkODEzMzkxZTRhZjJhZTMxMDNjMTg5MWIyMjcyZDRk NWMxM2I1ZjAeFw0yNjAxMjMxMzE2MTBaFw0yNzAxMjIxMzIxMTBaMDMxMTAvBgNV BAMTKEU4QUY0QUNFODc2RDlGN0E3NDdDQjNBQUJFNEUwQjQyMzE4MjlFMEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdDWHbqFa0HJ0mwyQ0clH4IGd0 9C8PgpK471MBay4itpkDy86lA6YLfHmYvMDZL3lO8S+kd+wzWe1NSPDkHOSV9m2y Txs9xEkaHDPvtkntUr20wE9gbk33MjjiQP2w+FZRRIF1nOpVcHRM6FKVeiuP7PJU 42qckqSVDFyUVv9qwPo98JmN1S/H5SVfgJm+7MqxOGOW234akRip1GUPRdV6Y0zI SoHwjZp73x7rifQGZ6Gd9Jvqkm7CuxMaPxE9896z574E+OcHciN6qZMwdQw+Hdey w65vqsbomtiLGzKYifl4TIWyWyCwP537eUmZR4FQOKy7CdNLbHDOYX/6L+7nAgMB AAGjggIiMIICHjAdBgNVHQ4EFgQU6K9Kzodtn3p0fLOqvk4LQjGCngswHwYDVR0j BBgwFoAUm9gTOR5K8q4xA8GJGyJy1NXBO18wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYzQ3OGY2ZjUtNDQ5YS00ODI3LTk5ZDUtYmY2YjkzYThm NmI0LzAvOUJEODEzMzkxRTRBRjJBRTMxMDNDMTg5MUIyMjcyRDRENUMxM0I1Ri5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL205Z1RPUjVLOHE0eEE4R0pHeUp5MU5Y Qk8xOC5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2M0NzhmNmY1LTQ0OWEt NDgyNy05OWQ1LWJmNmI5M2E4ZjZiNC8wL0FTNDAxMzIyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMDcGCCsGAQUFBwEHAQH/BCgwJjAkBAIAATAeAwQAW3yx AwQAXHHCAwQAXHHGAwQAX4fKAwQAsl1MMA0GCSqGSIb3DQEBCwUAA4IBAQBOtW+k 4rcQkT3rVvJRUDlz+jnaELnikqyAuiVDeAzDQiVZFm5aM69kJb+onAXSYsdxIVI6 ggIc+iwqGfQpdmp5TEwIEPRx0O/AFUGQGYRbktrEPuxIeXq1vefUaEKGbMcCnt3E 4g5Ty3D/0GBkBYPdGS+hHz5+tGT3EchtbHuDrgHLab1A20aXdV5h0K+U8dOtVeXd 24Ri1rHIadj8XVQ+BbrRhJpciWU6ptHpDYRCxSTavjQaJVd5MMeKUm8PWikbGzhJ BlXXSvxYqbs3fzVTJ5m/c8EfDqGxnB9QPbEQDpJCML9/BhAQQBFYpNwtgKkZ20wm yguqbCkA0FafM++b -----END CERTIFICATE-----Generated at Sun Jan 25 16:10:21 2026 by rpki-client