This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS16276.roa File: AS16276.roa (raw, json) Hash identifier: lEkrXcbwurWHhpWJltYP/Gg7vg2wU6K6OEyyHVT/Hek= Subject key identifier: 39:52:C3:6E:30:12:53:09:67:A0:D7:40:9B:DC:F5:4D:CD:C9:41:9B Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc Certificate serial: 60F9F1AB40D00186402D42996164A3402C5194E4 Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS16276.roa Signing time: Thu 04 Dec 2025 03:47:38 +0000 ROA not before: Thu 04 Dec 2025 03:42:38 +0000 ROA not after: Thu 03 Dec 2026 03:47:38 +0000 asID: 16276 IP address blocks: 96.62.105.0/24 maxlen: 24 140.150.238.0/24 maxlen: 24 140.150.239.0/24 maxlen: 24 143.14.59.0/24 maxlen: 24 143.14.68.0/24 maxlen: 24 143.14.81.0/24 maxlen: 24 143.14.231.0/24 maxlen: 24 143.14.252.0/24 maxlen: 24 146.103.10.0/24 maxlen: 24 148.135.192.0/24 maxlen: 24 150.241.209.0/24 maxlen: 24 155.117.212.0/23 maxlen: 23 162.141.71.0/24 maxlen: 24 167.148.121.0/24 maxlen: 24 167.148.125.0/24 maxlen: 24 167.148.193.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.mft rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:f9:f1:ab:40:d0:01:86:40:2d:42:99:61:64:a3:40:2c:51:94:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc Validity Not Before: Dec 4 03:42:38 2025 GMT Not After : Dec 3 03:47:38 2026 GMT Subject: CN=3952C36E3012530967A0D7409BDCF54DCDC9419B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:32:ad:e4:9a:14:8b:5d:94:52:72:e2:09:aa: de:32:a4:d8:cf:0d:49:aa:67:17:ec:d0:ef:b1:8d: c1:2d:41:70:f3:07:49:88:93:e5:14:3d:72:5b:76: c3:91:b4:ee:01:bc:d0:9e:4e:84:b6:cb:57:80:f4: bc:29:72:04:ff:46:0a:14:af:86:52:18:f2:61:f3: 99:56:7f:58:76:64:b1:64:c8:28:5f:36:48:78:f4: 50:2d:b5:e5:f6:7c:46:69:00:18:1f:f1:5a:f4:f4: fb:18:2a:41:cd:fa:b6:f3:d3:96:40:88:a8:3d:11: 90:d7:74:91:bd:15:09:d8:ec:42:1f:81:ca:26:98: 8b:76:5c:ff:a3:b5:24:e9:bd:51:f6:3b:c5:08:22: ed:74:0b:34:bb:fc:24:94:ec:ad:26:ce:b9:45:dc: da:85:b0:58:2c:15:d8:c3:e2:2b:4d:07:1d:56:38: 5c:93:7c:9f:14:6a:e6:9f:5b:25:38:16:45:59:dd: c6:34:ed:f7:9d:40:d4:18:1a:64:9a:60:7d:aa:de: 84:f2:f2:81:4d:e4:88:f9:ca:31:75:16:96:00:0e: 96:f9:62:51:49:41:0c:89:62:68:55:8f:39:4a:a5: aa:5c:61:cf:3f:3c:6c:66:e9:a8:b5:9c:b4:1e:e9: 10:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:52:C3:6E:30:12:53:09:67:A0:D7:40:9B:DC:F5:4D:CD:C9:41:9B X509v3 Authority Key Identifier: keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS16276.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.62.105.0/24 140.150.238.0/23 143.14.59.0/24 143.14.68.0/24 143.14.81.0/24 143.14.231.0/24 143.14.252.0/24 146.103.10.0/24 148.135.192.0/24 150.241.209.0/24 155.117.212.0/23 162.141.71.0/24 167.148.121.0/24 167.148.125.0/24 167.148.193.0/24 Signature Algorithm: sha256WithRSAEncryption 9d:6b:68:07:76:a1:06:44:6a:89:bc:d0:bc:ae:f1:b1:3b:c3: 64:b8:15:b3:10:51:c4:aa:78:d0:6b:ad:dc:a3:b1:e1:36:4d: 6b:f5:03:a0:14:33:b6:fc:88:3b:70:b7:19:9b:30:9c:9c:c2: 54:a6:f0:ff:2f:4e:e2:89:73:95:fd:e8:cb:92:92:65:45:54: 45:a9:f7:f9:39:87:7d:ea:2b:3c:68:65:55:22:c4:b0:9b:b6: b2:e0:a6:dd:a4:c2:78:44:16:f1:3a:94:9b:5b:ab:2a:c3:a4: 0a:18:80:49:ae:d6:5c:0d:6e:53:80:06:60:e9:7e:87:ba:81: 8c:fe:cd:07:25:32:a8:29:cc:9e:0d:1a:1a:c1:da:22:0a:73: ae:bd:cf:48:03:d7:23:d2:65:00:19:90:1e:5a:0f:48:d0:11: 25:e5:59:ef:25:fd:d6:c2:15:69:3d:e0:fb:39:64:1a:5d:10: 2f:55:e7:06:e4:7b:60:fc:bb:e3:85:81:b0:48:6f:01:ce:28: 23:11:c0:0b:97:44:b7:48:94:73:26:a0:a1:85:c1:ef:af:84: 86:cb:6a:0a:03:88:9e:65:0d:33:fb:26:c0:cd:99:e0:fe:32: 57:96:d5:f7:76:80:fa:e8:8d:f6:b0:61:3f:89:df:c7:bd:1a: 09:fd:ff:c1 -----BEGIN CERTIFICATE----- MIIFUzCCBDugAwIBAgIUYPnxq0DQAYZALUKZYWSjQCxRlOQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNGZjMzM2YmY5ZjNkZTVjZTQxNDE0YmQxOTcxOTQ1ZjRi MjQ2YmZjYzAeFw0yNTEyMDQwMzQyMzhaFw0yNjEyMDMwMzQ3MzhaMDMxMTAvBgNV BAMTKDM5NTJDMzZFMzAxMjUzMDk2N0EwRDc0MDlCRENGNTREQ0RDOTQxOUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGMq3kmhSLXZRScuIJqt4ypNjP DUmqZxfs0O+xjcEtQXDzB0mIk+UUPXJbdsORtO4BvNCeToS2y1eA9LwpcgT/RgoU r4ZSGPJh85lWf1h2ZLFkyChfNkh49FAtteX2fEZpABgf8Vr09PsYKkHN+rbz05ZA iKg9EZDXdJG9FQnY7EIfgcommIt2XP+jtSTpvVH2O8UIIu10CzS7/CSU7K0mzrlF 3NqFsFgsFdjD4itNBx1WOFyTfJ8UauafWyU4FkVZ3cY07fedQNQYGmSaYH2q3oTy 8oFN5Ij5yjF1FpYADpb5YlFJQQyJYmhVjzlKpapcYc8/PGxm6ai1nLQe6RDpAgMB AAGjggJdMIICWTAdBgNVHQ4EFgQUOVLDbjASUwlnoNdAm9z1Tc3JQZswHwYDVR0j BBgwFoAUT8M2v5895c5BQUvRlxlF9LJGv8wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMDliZTNhYWUtYWVhMS00MWRjLWIxYjktOTVhYzU5MTgy NDRkLzAvNEZDMzM2QkY5RjNERTVDRTQxNDE0QkQxOTcxOTQ1RjRCMjQ2QkZDQy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1Q4TTJ2NTg5NWM1QlFVdlJseGxGOUxK R3Y4dy5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzA5YmUzYWFlLWFlYTEt NDFkYy1iMWI5LTk1YWM1OTE4MjQ0ZC8wL0FTMTYyNzYucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwcwYIKwYBBQUHAQcBAf8EZDBiMGAEAgABMFoDBABgPmkD BAGMlu4DBACPDjsDBACPDkQDBACPDlEDBACPDucDBACPDvwDBACSZwoDBACUh8AD BACW8dEDBAGbddQDBACijUcDBACnlHkDBACnlH0DBACnlMEwDQYJKoZIhvcNAQEL BQADggEBAJ1raAd2oQZEaom80Lyu8bE7w2S4FbMQUcSqeNBrrdyjseE2TWv1A6AU M7b8iDtwtxmbMJycwlSm8P8vTuKJc5X96MuSkmVFVEWp9/k5h33qKzxoZVUixLCb trLgpt2kwnhEFvE6lJtbqyrDpAoYgEmu1lwNblOABmDpfoe6gYz+zQclMqgpzJ4N GhrB2iIKc669z0gD1yPSZQAZkB5aD0jQESXlWe8l/dbCFWk94Ps5ZBpdEC9V5wbk e2D8u+OFgbBIbwHOKCMRwAuXRLdIlHMmoKGFwe+vhIbLagoDiJ5lDTP7JsDNmeD+ MleW1fd2gProjfawYT+J38e9Ggn9/8E= -----END CERTIFICATE-----Generated at Sat Dec 6 19:01:02 2025 by rpki-client