This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS16276.roa File: AS16276.roa (raw, json) Hash identifier: pARi2ZtzVbDFTzEj+Sr/1uy0ur8+mgIXZBQOH55k4yM= Subject key identifier: 7D:B1:6D:75:49:D9:E2:B8:E0:B5:96:6C:55:68:3E:D3:EC:D9:65:0B Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Certificate serial: 5794DAA348859F769D8204FC77566C53B9DFE558 Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS16276.roa Signing time: Mon 01 Dec 2025 06:56:53 +0000 ROA not before: Mon 01 Dec 2025 06:51:53 +0000 ROA not after: Mon 30 Nov 2026 06:56:53 +0000 asID: 16276 IP address blocks: 82.21.139.0/24 maxlen: 24 82.22.15.0/24 maxlen: 24 82.22.18.0/24 maxlen: 24 82.22.25.0/24 maxlen: 24 82.22.118.0/24 maxlen: 24 82.24.96.0/22 maxlen: 24 82.25.146.0/23 maxlen: 24 82.26.81.0/24 maxlen: 24 82.26.176.0/21 maxlen: 24 82.26.184.0/21 maxlen: 24 82.38.28.0/24 maxlen: 24 82.38.32.0/24 maxlen: 24 82.38.60.0/24 maxlen: 24 82.38.62.0/24 maxlen: 24 82.38.82.0/24 maxlen: 24 82.38.139.0/24 maxlen: 24 82.39.108.0/24 maxlen: 24 82.39.138.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:94:da:a3:48:85:9f:76:9d:82:04:fc:77:56:6c:53:b9:df:e5:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Validity Not Before: Dec 1 06:51:53 2025 GMT Not After : Nov 30 06:56:53 2026 GMT Subject: CN=7DB16D7549D9E2B8E0B5966C55683ED3ECD9650B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:dd:be:e1:93:e2:06:85:77:ad:9d:09:b9:68: 31:f0:c1:f8:47:db:cf:1d:4d:5e:70:e1:99:6a:da: b0:89:be:4a:a3:de:bc:21:4c:b2:17:c4:ef:7a:38: 6d:19:c7:1f:54:67:24:b7:56:6c:5b:e3:9b:0f:c2: f1:f3:ca:e7:6b:8c:7b:9e:ed:0c:17:21:33:0a:3a: 4b:49:a0:1a:d7:01:37:ff:ff:0f:cd:d6:0b:a5:73: c5:95:cb:9f:2e:fd:f4:d8:0d:dd:c0:03:d8:4c:0f: 60:d5:9e:9d:6d:b3:45:68:bb:a8:1d:38:a7:6f:42: cf:69:75:07:e3:5a:43:06:66:80:78:7a:18:3b:c6: 10:23:f9:5a:fa:0e:27:01:90:d5:54:25:d1:21:08: 23:85:a1:ea:e9:08:78:a3:5f:d6:f6:d8:34:5b:d3: 24:0f:5a:ed:11:bd:44:24:61:30:b1:fd:fb:e7:1a: 56:5c:10:89:8d:86:8b:53:9f:3e:60:8e:17:e3:7a: e4:8c:db:44:6f:4c:89:48:71:67:5e:81:d3:43:76: 3f:50:d1:74:fa:10:ac:81:61:2e:22:f1:f2:7e:d1: 18:1c:41:bc:ea:0f:7b:24:34:ee:79:e8:49:aa:e1: 8a:c7:6d:bc:35:52:1c:dc:c5:c5:8c:b6:10:22:c2: 1f:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:B1:6D:75:49:D9:E2:B8:E0:B5:96:6C:55:68:3E:D3:EC:D9:65:0B X509v3 Authority Key Identifier: keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS16276.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 82.21.139.0/24 82.22.15.0/24 82.22.18.0/24 82.22.25.0/24 82.22.118.0/24 82.24.96.0/22 82.25.146.0/23 82.26.81.0/24 82.26.176.0/20 82.38.28.0/24 82.38.32.0/24 82.38.60.0/24 82.38.62.0/24 82.38.82.0/24 82.38.139.0/24 82.39.108.0/24 82.39.138.0/24 Signature Algorithm: sha256WithRSAEncryption 31:8e:ed:56:51:be:b0:75:84:c2:b6:79:fb:e4:f8:c5:d8:1d: 23:93:62:28:c4:2c:9b:82:0d:f8:88:d9:23:b0:94:09:dc:6c: 12:9a:f2:bc:b7:e3:7a:09:77:5f:2b:21:20:fe:af:3a:fb:d0: 66:b2:37:12:48:05:a9:14:39:b7:7d:ad:d4:18:22:6c:5b:72: 66:ad:ff:17:86:df:3f:99:26:51:eb:b8:34:fa:9e:8f:cb:64: 9f:a0:f2:3a:61:79:b1:17:10:e8:1b:d4:0b:33:e4:96:26:8e: 63:4c:14:af:4a:39:97:9b:8e:1f:b1:aa:aa:e9:54:b9:78:d0: fd:6a:3f:d8:76:2d:82:4e:d5:11:a6:89:c0:53:95:ec:b4:8f: ff:c5:ba:4e:05:67:d8:be:b0:2b:87:1e:8c:4d:6e:c1:0c:2b: 32:df:6e:fa:97:bf:ff:66:ed:4a:3a:c1:ba:39:8a:30:d5:da: 01:42:35:ce:97:92:bf:66:95:8b:c1:45:98:03:00:43:47:1b: 6b:10:cc:aa:5f:88:23:ea:6d:d0:b9:15:98:6d:31:e0:c9:8d: 4f:13:cb:fc:f9:15:14:4f:0c:78:ee:a1:fe:48:42:fb:70:5b: fd:c2:a4:c5:e4:d1:7c:58:f8:ff:57:17:a9:55:49:83:de:d2: 80:62:39:6a -----BEGIN CERTIFICATE----- MIIFXzCCBEegAwIBAgIUV5Tao0iFn3adggT8d1ZsU7nf5VgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjE4Y2M2ZTI0MTA1ZGU2YzVjOTAwM2Q2NTI0Mzg5M2Ni M2NmZGQwMTAeFw0yNTEyMDEwNjUxNTNaFw0yNjExMzAwNjU2NTNaMDMxMTAvBgNV BAMTKDdEQjE2RDc1NDlEOUUyQjhFMEI1OTY2QzU1NjgzRUQzRUNEOTY1MEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC93b7hk+IGhXetnQm5aDHwwfhH 288dTV5w4Zlq2rCJvkqj3rwhTLIXxO96OG0Zxx9UZyS3Vmxb45sPwvHzyudrjHue 7QwXITMKOktJoBrXATf//w/N1gulc8WVy58u/fTYDd3AA9hMD2DVnp1ts0Vou6gd OKdvQs9pdQfjWkMGZoB4ehg7xhAj+Vr6DicBkNVUJdEhCCOFoerpCHijX9b22DRb 0yQPWu0RvUQkYTCx/fvnGlZcEImNhotTnz5gjhfjeuSM20RvTIlIcWdegdNDdj9Q 0XT6EKyBYS4i8fJ+0RgcQbzqD3skNO556Emq4YrHbbw1UhzcxcWMthAiwh+JAgMB AAGjggJpMIICZTAdBgNVHQ4EFgQUfbFtdUnZ4rjgtZZsVWg+0+zZZQswHwYDVR0j BBgwFoAUIYzG4kEF3mxckAPWUkOJPLPP3QEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYtYjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWEx YWY2LzAvMjE4Q0M2RTI0MTA1REU2QzVDOTAwM0Q2NTI0Mzg5M0NCM0NGREQwMS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0lZekc0a0VGM214Y2tBUFdVa09KUExQ UDNRRS5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzcxOGExYjRmLWI2NGMt NDAyYy1iZTE1LWRkODJhNDFhMWFmNi8wL0FTMTYyNzYucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwfwYIKwYBBQUHAQcBAf8EcDBuMGwEAgABMGYDBABSFYsD BABSFg8DBABSFhIDBABSFhkDBABSFnYDBAJSGGADBAFSGZIDBABSGlEDBARSGrAD BABSJhwDBABSJiADBABSJjwDBABSJj4DBABSJlIDBABSJosDBABSJ2wDBABSJ4ow DQYJKoZIhvcNAQELBQADggEBADGO7VZRvrB1hMK2efvk+MXYHSOTYijELJuCDfiI 2SOwlAncbBKa8ry343oJd18rISD+rzr70GayNxJIBakUObd9rdQYImxbcmat/xeG 3z+ZJlHruDT6no/LZJ+g8jphebEXEOgb1Asz5JYmjmNMFK9KOZebjh+xqqrpVLl4 0P1qP9h2LYJO1RGmicBTley0j//Fuk4FZ9i+sCuHHoxNbsEMKzLfbvqXv/9m7Uo6 wbo5ijDV2gFCNc6Xkr9mlYvBRZgDAENHG2sQzKpfiCPqbdC5FZhtMeDJjU8Ty/z5 FRRPDHjuof5IQvtwW/3CpMXk0XxY+P9XF6lVSYPe0oBiOWo= -----END CERTIFICATE-----Generated at Sat Dec 6 17:36:13 2025 by rpki-client