This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS9304.roa File: AS9304.roa (raw, json) Hash identifier: KqOTociimV/3w2Rl288Uj83N93OAyOIm5O9RDGaLIfo= Subject key identifier: 84:D7:B6:DB:1F:ED:70:A9:A0:6D:37:D9:82:C2:62:FD:C6:6C:DD:ED Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Certificate serial: 55B94796C5D6B9F24508B5AF2125981639A32FEC Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS9304.roa Signing time: Wed 10 Dec 2025 10:15:24 +0000 ROA not before: Wed 10 Dec 2025 10:10:24 +0000 ROA not after: Wed 09 Dec 2026 10:15:24 +0000 asID: 9304 IP address blocks: 82.21.75.0/24 maxlen: 24 82.22.3.0/24 maxlen: 24 82.22.5.0/24 maxlen: 24 82.22.14.0/24 maxlen: 24 82.23.144.0/24 maxlen: 24 82.23.147.0/24 maxlen: 24 82.24.0.0/22 maxlen: 23 82.26.115.0/24 maxlen: 24 82.26.118.0/24 maxlen: 24 82.26.125.0/24 maxlen: 24 82.27.92.0/22 maxlen: 24 82.27.131.0/24 maxlen: 24 82.38.46.0/24 maxlen: 24 82.38.47.0/24 maxlen: 24 82.38.51.0/24 maxlen: 24 82.38.76.0/22 maxlen: 24 82.38.98.0/24 maxlen: 24 82.38.104.0/24 maxlen: 24 82.38.105.0/24 maxlen: 24 82.38.107.0/24 maxlen: 24 82.38.108.0/24 maxlen: 24 82.38.109.0/24 maxlen: 24 82.38.111.0/24 maxlen: 24 82.38.120.0/24 maxlen: 24 82.38.122.0/24 maxlen: 24 82.38.132.0/24 maxlen: 24 82.38.133.0/24 maxlen: 24 82.41.233.0/24 maxlen: 24 82.41.234.0/24 maxlen: 24 82.41.235.0/24 maxlen: 24 82.41.236.0/24 maxlen: 24 82.41.237.0/24 maxlen: 24 82.41.238.0/24 maxlen: 24 82.41.241.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 16 Dec 2025 20:52:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:b9:47:96:c5:d6:b9:f2:45:08:b5:af:21:25:98:16:39:a3:2f:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Validity Not Before: Dec 10 10:10:24 2025 GMT Not After : Dec 9 10:15:24 2026 GMT Subject: CN=84D7B6DB1FED70A9A06D37D982C262FDC66CDDED Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:a5:05:95:34:2f:c6:b6:17:87:2f:c7:75:a4: c7:da:03:0e:cd:77:1a:1a:d6:76:70:cd:83:22:e5: e0:b2:47:f1:45:55:6a:fe:fb:12:6a:42:27:1b:a4: 53:84:e5:80:dc:e0:1b:9d:09:0d:64:8d:1a:a0:46: 28:34:70:3f:19:84:86:6e:3b:41:d4:82:b5:7c:ec: 72:86:30:d4:96:c3:b7:b8:cb:b6:31:64:9b:04:6b: a2:3c:bc:04:aa:09:46:43:95:48:92:23:68:50:83: 40:ad:01:70:8c:6b:0e:e0:98:66:60:bd:12:44:7f: b0:fd:84:54:5c:11:a0:66:7e:31:e4:ce:b7:54:cd: 31:08:4a:4c:2d:9a:b2:dd:ee:08:f4:b7:82:ae:d6: 34:ad:a5:b7:b2:8b:7b:ae:b5:d0:25:df:12:fe:98: 33:16:d4:30:0e:9d:64:c2:09:cc:f0:79:cb:75:14: 73:35:8e:12:5e:d4:2b:75:b1:b5:bb:36:e7:ec:22: 09:e1:a9:57:bb:80:14:30:1f:1e:88:db:a3:a2:61: 65:b9:ea:cb:a9:93:7d:93:30:48:47:82:c4:ce:84: 82:b3:74:5c:ae:2d:79:1a:6c:f2:20:6e:dc:37:38: fc:dc:cc:ab:18:5f:f5:f8:69:25:38:fb:3c:3a:05: 22:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:D7:B6:DB:1F:ED:70:A9:A0:6D:37:D9:82:C2:62:FD:C6:6C:DD:ED X509v3 Authority Key Identifier: keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS9304.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 82.21.75.0/24 82.22.3.0/24 82.22.5.0/24 82.22.14.0/24 82.23.144.0/24 82.23.147.0/24 82.24.0.0/22 82.26.115.0/24 82.26.118.0/24 82.26.125.0/24 82.27.92.0/22 82.27.131.0/24 82.38.46.0/23 82.38.51.0/24 82.38.76.0/22 82.38.98.0/24 82.38.104.0/23 82.38.107.0-82.38.109.255 82.38.111.0/24 82.38.120.0/24 82.38.122.0/24 82.38.132.0/23 82.41.233.0-82.41.238.255 82.41.241.0/24 Signature Algorithm: sha256WithRSAEncryption a6:be:b7:d5:be:e0:46:27:12:cd:19:ea:e7:fe:76:ba:fc:b9: 53:71:6c:c8:c7:43:15:93:0b:af:80:90:34:73:6c:88:de:10: f2:d4:5c:c3:8e:9e:65:b3:5e:7c:a3:6a:bb:44:8c:36:3b:e1: f7:17:95:b1:30:92:84:ea:47:90:fb:b7:1f:b8:bf:55:d0:4f: d7:14:1c:82:5d:f2:e3:1e:a4:0c:34:56:7d:5c:f5:25:ca:50: a8:f6:85:32:6e:83:8f:4d:27:8b:c1:81:42:44:b7:ca:b2:fd: 48:33:10:4c:48:cb:ac:ec:bf:ba:28:05:ed:ce:ce:24:63:16: 5d:bc:ce:04:c1:97:1c:0e:e7:63:96:cf:f3:41:43:2e:07:d3: 2f:af:c6:19:08:01:86:d2:fb:f1:3a:c8:76:74:3c:6f:ea:b8: 53:c8:f4:81:af:d7:c4:ab:e3:2a:93:f3:a7:0f:04:48:5d:fe: 37:ca:5b:17:94:02:28:f3:0e:17:cb:94:d3:3f:b0:aa:52:f4: e3:1a:38:d2:06:9c:de:21:ce:57:b9:08:f8:0d:83:26:e8:e2: 57:8a:b7:8d:74:86:8f:5e:b0:b4:2b:fe:f9:40:15:b8:bb:f4: 2b:94:98:82:58:58:aa:58:44:c7:4d:11:c8:22:b6:0e:08:7d: 2f:78:fa:77 -----BEGIN CERTIFICATE----- MIIFnTCCBIWgAwIBAgIUVblHlsXWufJFCLWvISWYFjmjL+wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjE4Y2M2ZTI0MTA1ZGU2YzVjOTAwM2Q2NTI0Mzg5M2Ni M2NmZGQwMTAeFw0yNTEyMTAxMDEwMjRaFw0yNjEyMDkxMDE1MjRaMDMxMTAvBgNV BAMTKDg0RDdCNkRCMUZFRDcwQTlBMDZEMzdEOTgyQzI2MkZEQzY2Q0RERUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPpQWVNC/GtheHL8d1pMfaAw7N dxoa1nZwzYMi5eCyR/FFVWr++xJqQicbpFOE5YDc4BudCQ1kjRqgRig0cD8ZhIZu O0HUgrV87HKGMNSWw7e4y7YxZJsEa6I8vASqCUZDlUiSI2hQg0CtAXCMaw7gmGZg vRJEf7D9hFRcEaBmfjHkzrdUzTEISkwtmrLd7gj0t4Ku1jStpbeyi3uutdAl3xL+ mDMW1DAOnWTCCczwect1FHM1jhJe1Ct1sbW7NufsIgnhqVe7gBQwHx6I26OiYWW5 6supk32TMEhHgsTOhIKzdFyuLXkabPIgbtw3OPzczKsYX/X4aSU4+zw6BSLXAgMB AAGjggKnMIICozAdBgNVHQ4EFgQUhNe22x/tcKmgbTfZgsJi/cZs3e0wHwYDVR0j BBgwFoAUIYzG4kEF3mxckAPWUkOJPLPP3QEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYtYjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWEx YWY2LzAvMjE4Q0M2RTI0MTA1REU2QzVDOTAwM0Q2NTI0Mzg5M0NCM0NGREQwMS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0lZekc0a0VGM214Y2tBUFdVa09KUExQ UDNRRS5jZXIweQYIKwYBBQUHAQsEbTBrMGkGCCsGAQUFBzALhl1yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzcxOGExYjRmLWI2NGMt NDAyYy1iZTE1LWRkODJhNDFhMWFmNi8wL0FTOTMwNC5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjCBvQYIKwYBBQUHAQcBAf8Ega0wgaowgacEAgABMIGgAwQA UhVLAwQAUhYDAwQAUhYFAwQAUhYOAwQAUheQAwQAUheTAwQCUhgAAwQAUhpzAwQA Uhp2AwQAUhp9AwQCUhtcAwQAUhuDAwQBUiYuAwQAUiYzAwQCUiZMAwQAUiZiAwQB UiZoMAwDBABSJmsDBAFSJmwDBABSJm8DBABSJngDBABSJnoDBAFSJoQwDAMEAFIp 6QMEAFIp7gMEAFIp8TANBgkqhkiG9w0BAQsFAAOCAQEApr631b7gRicSzRnq5/52 uvy5U3FsyMdDFZMLr4CQNHNsiN4Q8tRcw46eZbNefKNqu0SMNjvh9xeVsTCShOpH kPu3H7i/VdBP1xQcgl3y4x6kDDRWfVz1JcpQqPaFMm6Dj00ni8GBQkS3yrL9SDMQ TEjLrOy/uigF7c7OJGMWXbzOBMGXHA7nY5bP80FDLgfTL6/GGQgBhtL78TrIdnQ8 b+q4U8j0ga/XxKvjKpPzpw8ESF3+N8pbF5QCKPMOF8uU0z+wqlL04xo40gac3iHO V7kI+A2DJujiV4q3jXSGj16wtCv++UAVuLv0K5SYglhYqlhEx00RyCK2Dgh9L3j6 dw== -----END CERTIFICATE-----Generated at Tue Dec 16 04:35:10 2025 by rpki-client