This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS9304.roa File: AS9304.roa (raw, json) Hash identifier: OIlC2uB+GhKYNQXi0+EjwbLT82oG7md1lGCcSvW0SrU= Subject key identifier: 43:3F:B1:C4:7E:C8:48:E2:DA:9B:8C:D1:86:57:3C:E8:86:35:73:A6 Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a Certificate serial: 7E98869A89A0D954B385751150673748444DCF45 Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS9304.roa Signing time: Fri 19 Dec 2025 10:54:17 +0000 ROA not before: Fri 19 Dec 2025 10:49:17 +0000 ROA not after: Fri 18 Dec 2026 10:54:17 +0000 asID: 9304 IP address blocks: 5.252.74.0/24 maxlen: 24 89.19.46.0/24 maxlen: 24 89.19.50.0/24 maxlen: 24 103.141.69.0/24 maxlen: 24 181.214.119.0/24 maxlen: 24 181.214.216.0/24 maxlen: 24 191.101.29.0/24 maxlen: 24 191.101.82.0/24 maxlen: 24 191.101.88.0/24 maxlen: 24 191.101.148.0/24 maxlen: 24 191.101.212.0/22 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.mft rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 16:15:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:98:86:9a:89:a0:d9:54:b3:85:75:11:50:67:37:48:44:4d:cf:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a Validity Not Before: Dec 19 10:49:17 2025 GMT Not After : Dec 18 10:54:17 2026 GMT Subject: CN=433FB1C47EC848E2DA9B8CD186573CE8863573A6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:e9:fa:96:8d:92:99:e4:68:ff:1f:ae:b3:56: 28:f9:80:b7:8c:3f:14:f4:73:c5:3e:d1:b1:44:79: 30:61:b0:6a:e9:d7:b8:01:37:ba:ed:d4:5c:e5:b4: a1:fa:6a:d5:97:c5:df:be:1b:69:f6:fa:a4:7a:2c: aa:39:98:67:6f:c0:d8:78:9f:39:5b:67:7e:92:0f: c3:61:7a:b2:89:bf:66:84:da:ca:ac:32:6b:9a:f0: e3:3e:32:30:38:e6:86:38:2f:b6:53:a8:3c:45:84: 5b:33:30:98:90:b1:12:42:6f:51:72:df:dd:45:e3: b3:66:68:5e:cb:b9:b5:84:97:56:3c:e0:29:a1:c2: f5:56:53:ba:9f:5f:b4:55:a3:21:c0:e3:95:c1:45: 2a:8c:3c:c7:9e:f6:9f:be:45:bc:0c:dc:ab:d1:2e: 22:97:f0:fd:6a:36:c0:88:b2:2e:be:12:5c:0b:fb: 85:ff:48:97:e3:b5:1e:d1:5f:e2:88:05:d3:7b:be: 5b:6e:fc:57:27:a2:e8:b8:81:19:22:68:00:fb:d4: f6:97:77:a6:9a:71:cd:be:8d:c4:6f:8f:a7:73:bb: a3:c2:3c:44:15:6c:88:88:7a:fe:66:ab:22:11:77: 8d:cb:a1:57:69:75:70:01:65:a7:48:f9:30:70:00: e1:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:3F:B1:C4:7E:C8:48:E2:DA:9B:8C:D1:86:57:3C:E8:86:35:73:A6 X509v3 Authority Key Identifier: keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS9304.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.252.74.0/24 89.19.46.0/24 89.19.50.0/24 103.141.69.0/24 181.214.119.0/24 181.214.216.0/24 191.101.29.0/24 191.101.82.0/24 191.101.88.0/24 191.101.148.0/24 191.101.212.0/22 Signature Algorithm: sha256WithRSAEncryption 1e:47:ff:cc:1b:17:6e:fd:b8:21:77:66:bf:29:78:52:d4:4f: 11:1a:bd:14:07:58:37:07:55:04:0a:36:ff:af:7d:de:b1:94: d5:1f:44:7d:c0:df:66:29:0c:c2:7f:5d:02:df:60:64:b3:43: f2:c1:7c:5b:2d:90:e7:a7:66:51:94:a0:f0:14:5f:df:1f:2e: 65:4c:fa:22:0b:9f:12:44:45:99:ed:e2:b6:9c:54:76:6e:bb: 17:3b:64:59:f1:8f:1d:78:e1:f7:ad:e6:9e:2d:47:6b:38:ba: 3b:98:fc:42:8e:a3:7f:24:92:b2:e3:b0:af:5e:50:bc:3c:66: 63:7d:d7:14:91:b1:28:b7:d1:13:b7:19:da:7b:1a:49:ec:d8: a7:0b:27:0c:01:59:78:08:fa:9c:bf:bc:e7:84:6a:50:84:c3: 4a:31:51:a4:7d:8e:4d:d1:26:f0:1c:6b:fb:26:04:10:46:fe: 90:32:b9:66:e9:da:69:bc:58:1f:8d:30:dd:95:82:57:c7:7d: 10:31:30:0c:27:9e:34:ca:99:dc:34:39:2b:69:01:00:34:90: 17:13:c2:fe:b4:66:91:2d:41:75:66:c5:a5:b3:67:07:ce:a1: 94:c6:a1:71:b0:6e:0a:86:dc:75:b3:46:9b:4e:aa:9d:ea:4c: 89:fd:07:3a -----BEGIN CERTIFICATE----- MIIFOjCCBCKgAwIBAgIUfpiGmomg2VSzhXURUGc3SERNz0UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjFiMWJiNDQ0NzcxOGYxNmIzZDM2Njc1ZDIwNWM0ZGVh NDFiYmEwYTAeFw0yNTEyMTkxMDQ5MTdaFw0yNjEyMTgxMDU0MTdaMDMxMTAvBgNV BAMTKDQzM0ZCMUM0N0VDODQ4RTJEQTlCOENEMTg2NTczQ0U4ODYzNTczQTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDi6fqWjZKZ5Gj/H66zVij5gLeM PxT0c8U+0bFEeTBhsGrp17gBN7rt1FzltKH6atWXxd++G2n2+qR6LKo5mGdvwNh4 nzlbZ36SD8NherKJv2aE2sqsMmua8OM+MjA45oY4L7ZTqDxFhFszMJiQsRJCb1Fy 391F47NmaF7LubWEl1Y84CmhwvVWU7qfX7RVoyHA45XBRSqMPMee9p++RbwM3KvR LiKX8P1qNsCIsi6+ElwL+4X/SJfjtR7RX+KIBdN7vltu/Fcnoui4gRkiaAD71PaX d6aacc2+jcRvj6dzu6PCPEQVbIiIev5mqyIRd43LoVdpdXABZadI+TBwAOGXAgMB AAGjggJEMIICQDAdBgNVHQ4EFgQUQz+xxH7ISOLam4zRhlc86IY1c6YwHwYDVR0j BBgwFoAUYbG7REdxjxaz02Z10gXE3qQbugowDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNTM3NDU5ZTctMmE4My00M2QxLTlhYTEtNTg0MTdhYmFj NGI2LzEvNjFCMUJCNDQ0NzcxOEYxNkIzRDM2Njc1RDIwNUM0REVBNDFCQkEwQS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1liRzdSRWR4anhhejAyWjEwZ1hFM3FR YnVnby5jZXIweQYIKwYBBQUHAQsEbTBrMGkGCCsGAQUFBzALhl1yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzUzNzQ1OWU3LTJhODMt NDNkMS05YWExLTU4NDE3YWJhYzRiNi8xL0FTOTMwNC5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjBbBggrBgEFBQcBBwEB/wRMMEowSAQCAAEwQgMEAAX8SgME AFkTLgMEAFkTMgMEAGeNRQMEALXWdwMEALXW2AMEAL9lHQMEAL9lUgMEAL9lWAME AL9llAMEAr9l1DANBgkqhkiG9w0BAQsFAAOCAQEAHkf/zBsXbv24IXdmvyl4UtRP ERq9FAdYNwdVBAo2/6993rGU1R9EfcDfZikMwn9dAt9gZLND8sF8Wy2Q56dmUZSg 8BRf3x8uZUz6IgufEkRFme3itpxUdm67FztkWfGPHXjh963mni1Hazi6O5j8Qo6j fySSsuOwr15QvDxmY33XFJGxKLfRE7cZ2nsaSezYpwsnDAFZeAj6nL+854RqUITD SjFRpH2OTdEm8Bxr+yYEEEb+kDK5ZunaabxYH40w3ZWCV8d9EDEwDCeeNMqZ3DQ5 K2kBADSQFxPC/rRmkS1BdWbFpbNnB86hlMahcbBuCobcdbNGm06qnepMif0HOg== -----END CERTIFICATE-----Generated at Sun Dec 21 05:49:17 2025 by rpki-client