This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS16276.roa File: AS16276.roa (raw, json) Hash identifier: k+tq8mG+UG0D3PZ79evwDPsSpzN6Tno2Eyj3mO9MCTo= Subject key identifier: 26:EB:A2:0B:B0:6A:04:B3:2E:6F:A5:75:F8:D0:05:21:30:1B:65:A8 Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc Certificate serial: 5B97861F50825787F7B83F283AF399CB5FD013FF Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS16276.roa Signing time: Mon 15 Dec 2025 10:48:14 +0000 ROA not before: Mon 15 Dec 2025 10:43:14 +0000 ROA not after: Mon 14 Dec 2026 10:48:14 +0000 asID: 16276 IP address blocks: 96.62.105.0/24 maxlen: 24 96.62.231.0/24 maxlen: 24 143.14.59.0/24 maxlen: 24 143.14.68.0/24 maxlen: 24 143.14.81.0/24 maxlen: 24 143.14.231.0/24 maxlen: 24 143.14.252.0/24 maxlen: 24 146.103.10.0/24 maxlen: 24 147.79.31.0/24 maxlen: 24 148.135.192.0/24 maxlen: 24 150.241.209.0/24 maxlen: 24 155.117.212.0/23 maxlen: 23 162.141.71.0/24 maxlen: 24 167.148.125.0/24 maxlen: 24 167.148.193.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.mft rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 17 Dec 2025 14:45:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:97:86:1f:50:82:57:87:f7:b8:3f:28:3a:f3:99:cb:5f:d0:13:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc Validity Not Before: Dec 15 10:43:14 2025 GMT Not After : Dec 14 10:48:14 2026 GMT Subject: CN=26EBA20BB06A04B32E6FA575F8D00521301B65A8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:1f:01:73:d8:77:8d:9c:1f:6b:d0:c2:83:57: a9:de:eb:4a:d7:5d:7a:9f:6c:ec:20:ef:83:13:68: 89:d5:f2:41:43:9d:eb:58:22:08:ac:bb:a3:e6:03: 06:7b:f3:d8:da:e4:f7:97:cf:15:5e:fd:e5:80:07: 4b:da:26:9e:f5:19:d6:49:9f:6b:92:70:f6:8c:5a: 12:d1:a1:a3:81:ca:65:27:83:b9:fb:22:92:6e:fb: fb:79:98:df:a4:1d:d2:4a:30:81:40:90:f5:e7:43: 6b:8b:34:0c:74:66:d7:00:38:33:6e:3c:f0:08:b9: 49:94:ac:fa:e9:64:df:f9:af:cd:ed:87:96:02:98: 7b:69:00:e9:64:25:1e:33:ad:ca:62:df:23:ba:50: 6d:01:13:4f:3a:a3:a4:3e:99:66:0f:ea:ba:8b:33: 13:f2:8c:72:e9:67:00:7a:2e:9f:d6:e5:7e:0f:6a: e0:44:7f:1b:0e:0e:31:a2:55:f1:e4:0e:06:ac:00: 84:fd:c1:44:27:74:0b:80:5b:89:63:f1:23:47:df: c1:1a:d0:05:b2:1d:31:dd:30:33:9e:95:dd:91:f4: 0e:8f:39:7a:ed:51:b3:95:2e:77:32:6d:bf:9f:52: 72:29:86:3b:87:c1:3c:89:fd:39:c2:f1:f1:f0:ac: 35:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:EB:A2:0B:B0:6A:04:B3:2E:6F:A5:75:F8:D0:05:21:30:1B:65:A8 X509v3 Authority Key Identifier: keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS16276.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.62.105.0/24 96.62.231.0/24 143.14.59.0/24 143.14.68.0/24 143.14.81.0/24 143.14.231.0/24 143.14.252.0/24 146.103.10.0/24 147.79.31.0/24 148.135.192.0/24 150.241.209.0/24 155.117.212.0/23 162.141.71.0/24 167.148.125.0/24 167.148.193.0/24 Signature Algorithm: sha256WithRSAEncryption 65:c2:eb:8d:ba:a7:6b:22:4b:eb:70:b2:af:47:99:d7:ef:4b: f6:97:40:2b:ff:91:85:49:15:59:1e:58:e9:00:3d:64:56:9f: 56:0a:e1:d8:6c:7c:95:6c:e6:06:55:34:75:4a:b1:57:71:69: b5:e9:69:ea:0a:12:92:e0:36:a5:28:28:97:e6:e6:fc:4a:42: 29:31:3d:d9:f3:a0:14:77:4e:39:9d:94:c9:47:f1:ea:a6:c8: 19:1a:32:fb:18:f7:23:1d:1d:66:9a:9b:bd:69:37:50:8a:85: 6e:2e:43:b1:78:46:db:ad:0b:4b:29:48:9a:e9:cf:95:52:b0: 7f:46:d9:61:ca:ec:24:95:0e:1d:d0:34:cb:6e:ff:a3:0f:92: 62:be:10:90:8d:31:ed:92:9a:79:81:2a:43:4a:12:ae:63:b1: a7:cf:fb:9a:e9:c3:fe:81:11:36:7f:cf:fc:92:3f:e7:86:ac: 16:63:62:82:79:46:ec:1e:ba:84:b1:22:24:bf:20:ea:12:56: 85:cb:33:c4:17:96:c4:79:87:85:53:71:4e:8a:a8:6d:61:d8: 51:3a:b9:09:4f:48:8b:5c:cd:7c:db:53:ac:bd:a4:d6:0a:a5: e6:5f:6a:f5:bb:13:97:0a:e1:ce:4c:14:15:ba:37:57:34:e3: cc:4a:f5:d0 -----BEGIN CERTIFICATE----- MIIFUzCCBDugAwIBAgIUW5eGH1CCV4f3uD8oOvOZy1/QE/8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNGZjMzM2YmY5ZjNkZTVjZTQxNDE0YmQxOTcxOTQ1ZjRi MjQ2YmZjYzAeFw0yNTEyMTUxMDQzMTRaFw0yNjEyMTQxMDQ4MTRaMDMxMTAvBgNV BAMTKDI2RUJBMjBCQjA2QTA0QjMyRTZGQTU3NUY4RDAwNTIxMzAxQjY1QTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjHwFz2HeNnB9r0MKDV6ne60rX XXqfbOwg74MTaInV8kFDnetYIgisu6PmAwZ789ja5PeXzxVe/eWAB0vaJp71GdZJ n2uScPaMWhLRoaOBymUng7n7IpJu+/t5mN+kHdJKMIFAkPXnQ2uLNAx0ZtcAODNu PPAIuUmUrPrpZN/5r83th5YCmHtpAOlkJR4zrcpi3yO6UG0BE086o6Q+mWYP6rqL MxPyjHLpZwB6Lp/W5X4PauBEfxsODjGiVfHkDgasAIT9wUQndAuAW4lj8SNH38Ea 0AWyHTHdMDOeld2R9A6POXrtUbOVLncybb+fUnIphjuHwTyJ/TnC8fHwrDUFAgMB AAGjggJdMIICWTAdBgNVHQ4EFgQUJuuiC7BqBLMub6V1+NAFITAbZagwHwYDVR0j BBgwFoAUT8M2v5895c5BQUvRlxlF9LJGv8wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMDliZTNhYWUtYWVhMS00MWRjLWIxYjktOTVhYzU5MTgy NDRkLzAvNEZDMzM2QkY5RjNERTVDRTQxNDE0QkQxOTcxOTQ1RjRCMjQ2QkZDQy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1Q4TTJ2NTg5NWM1QlFVdlJseGxGOUxK R3Y4dy5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzA5YmUzYWFlLWFlYTEt NDFkYy1iMWI5LTk1YWM1OTE4MjQ0ZC8wL0FTMTYyNzYucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwcwYIKwYBBQUHAQcBAf8EZDBiMGAEAgABMFoDBABgPmkD BABgPucDBACPDjsDBACPDkQDBACPDlEDBACPDucDBACPDvwDBACSZwoDBACTTx8D BACUh8ADBACW8dEDBAGbddQDBACijUcDBACnlH0DBACnlMEwDQYJKoZIhvcNAQEL BQADggEBAGXC6426p2siS+twsq9HmdfvS/aXQCv/kYVJFVkeWOkAPWRWn1YK4dhs fJVs5gZVNHVKsVdxabXpaeoKEpLgNqUoKJfm5vxKQikxPdnzoBR3TjmdlMlH8eqm yBkaMvsY9yMdHWaam71pN1CKhW4uQ7F4RtutC0spSJrpz5VSsH9G2WHK7CSVDh3Q NMtu/6MPkmK+EJCNMe2SmnmBKkNKEq5jsafP+5rpw/6BETZ/z/ySP+eGrBZjYoJ5 RuweuoSxIiS/IOoSVoXLM8QXlsR5h4VTcU6KqG1h2FE6uQlPSItczXzbU6y9pNYK peZfavW7E5cK4c5MFBW6N1c048xK9dA= -----END CERTIFICATE-----Generated at Tue Dec 16 19:10:15 2025 by rpki-client