This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS16509.roa File: AS16509.roa (raw, json) Hash identifier: SgZbvjTnBtemo+/m1OiST99f/mZpJQFnYL3uaQI5GLA= Subject key identifier: 57:9B:5C:78:77:9E:CA:9D:79:43:92:00:2C:33:64:EC:AF:11:59:1B Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Certificate serial: 07E1CEA2BE55AF8767D9C99DA49DDCE6C8EE46C6 Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS16509.roa Signing time: Thu 04 Dec 2025 08:26:31 +0000 ROA not before: Thu 04 Dec 2025 08:21:31 +0000 ROA not after: Thu 03 Dec 2026 08:26:31 +0000 asID: 16509 IP address blocks: 82.21.28.0/22 maxlen: 24 82.24.100.0/24 maxlen: 24 82.26.154.0/24 maxlen: 24 82.26.201.0/24 maxlen: 24 82.29.0.0/24 maxlen: 24 82.29.2.0/24 maxlen: 24 82.29.3.0/24 maxlen: 24 82.29.4.0/24 maxlen: 24 82.29.102.0/24 maxlen: 24 82.29.104.0/24 maxlen: 24 82.29.105.0/24 maxlen: 24 2a13:9500:110::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:e1:ce:a2:be:55:af:87:67:d9:c9:9d:a4:9d:dc:e6:c8:ee:46:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Validity Not Before: Dec 4 08:21:31 2025 GMT Not After : Dec 3 08:26:31 2026 GMT Subject: CN=579B5C78779ECA9D794392002C3364ECAF11591B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:73:1a:89:1d:50:96:9a:ea:70:96:88:d9:83: 33:a4:d2:a4:e7:b7:27:09:2e:7b:7f:d4:6c:55:39: 12:88:61:31:4c:eb:4a:b3:18:5f:99:84:44:f7:df: 56:bc:da:60:60:3e:10:98:89:32:16:46:e3:95:c5: 2e:08:2f:26:b8:06:51:ce:5f:30:e7:91:e6:ca:01: 53:b5:8d:e9:91:dd:b2:50:85:e8:90:df:80:11:c3: aa:8d:7d:4d:22:d3:12:0a:10:7c:d6:0c:ca:1b:aa: df:e1:08:8d:89:8b:6e:11:fe:26:8d:8c:75:c6:d8: 35:a4:83:ec:ef:60:cf:1c:bd:49:52:48:6b:d9:34: b2:ca:eb:9b:aa:14:86:f8:e7:dc:14:9f:1d:5d:81: 21:2c:9e:28:4a:e7:7d:9b:c6:24:11:a5:c2:ac:93: 04:0c:fd:b6:ff:ea:64:e7:df:1d:42:8e:d1:9e:91: 13:9d:10:62:3f:5b:6e:51:cf:15:f8:23:0d:e2:72: 5d:16:b5:f1:39:f2:33:18:50:32:31:e4:de:7c:27: 31:72:c6:cb:cc:be:91:35:1b:c8:4a:a0:51:89:d4: 83:5b:da:75:ba:52:31:6f:12:7b:03:af:eb:42:01: 92:90:48:e5:74:77:40:e1:65:cf:0c:e4:03:43:14: b3:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:9B:5C:78:77:9E:CA:9D:79:43:92:00:2C:33:64:EC:AF:11:59:1B X509v3 Authority Key Identifier: keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS16509.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 82.21.28.0/22 82.24.100.0/24 82.26.154.0/24 82.26.201.0/24 82.29.0.0/24 82.29.2.0-82.29.4.255 82.29.102.0/24 82.29.104.0/23 IPv6: 2a13:9500:110::/48 Signature Algorithm: sha256WithRSAEncryption 1c:e5:0c:6e:ba:e7:77:24:90:9e:e3:78:db:b0:61:db:8b:a8: 7d:a6:2b:11:ad:3f:f6:bc:76:e9:8d:f6:4a:b8:53:cf:ec:17: df:7f:26:51:19:e6:61:6c:d7:84:2d:db:0c:53:02:30:ac:5a: 8f:49:59:20:c3:3b:2e:21:b7:40:c8:2a:42:e9:8b:4b:9f:5d: 81:f3:42:b5:23:58:12:fa:aa:5c:45:98:26:c1:c2:0e:10:8e: 1a:e6:c4:80:7f:b0:7e:5a:ac:bd:40:2b:77:d6:ea:20:bf:f5: c8:dc:e1:b9:47:6a:a6:a2:38:eb:33:a1:38:b8:19:d4:50:e2: b9:31:e0:5a:3e:f0:ad:7d:7a:c9:87:11:af:39:f9:09:13:35: c0:73:e6:25:74:47:74:3a:6a:f6:67:8d:62:30:8a:9a:6b:28: b3:dd:34:29:7f:cb:88:1e:53:7e:51:33:be:69:c2:84:b3:e2: 97:7c:36:24:08:68:4c:e1:a7:c0:7b:20:f3:0d:27:5e:58:62: fd:c0:39:71:65:1c:32:a3:50:3f:50:d4:38:58:9d:a7:d7:85: 65:a5:c9:53:f8:4a:9f:62:0a:c3:c3:f7:c9:94:24:ba:23:cd: 0d:6f:37:7a:d7:ae:a1:fc:5d:4c:cd:05:d5:ad:c7:75:ab:d5: ac:d4:e3:13 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgIUB+HOor5Vr4dn2cmdpJ3c5sjuRsYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjE4Y2M2ZTI0MTA1ZGU2YzVjOTAwM2Q2NTI0Mzg5M2Ni M2NmZGQwMTAeFw0yNTEyMDQwODIxMzFaFw0yNjEyMDMwODI2MzFaMDMxMTAvBgNV BAMTKDU3OUI1Qzc4Nzc5RUNBOUQ3OTQzOTIwMDJDMzM2NEVDQUYxMTU5MUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDucxqJHVCWmupwlojZgzOk0qTn tycJLnt/1GxVORKIYTFM60qzGF+ZhET331a82mBgPhCYiTIWRuOVxS4ILya4BlHO XzDnkebKAVO1jemR3bJQheiQ34ARw6qNfU0i0xIKEHzWDMobqt/hCI2Ji24R/iaN jHXG2DWkg+zvYM8cvUlSSGvZNLLK65uqFIb459wUnx1dgSEsnihK532bxiQRpcKs kwQM/bb/6mTn3x1CjtGekROdEGI/W25RzxX4Iw3icl0WtfE58jMYUDIx5N58JzFy xsvMvpE1G8hKoFGJ1INb2nW6UjFvEnsDr+tCAZKQSOV0d0DhZc8M5ANDFLM7AgMB AAGjggJMMIICSDAdBgNVHQ4EFgQUV5tceHeeyp15Q5IALDNk7K8RWRswHwYDVR0j BBgwFoAUIYzG4kEF3mxckAPWUkOJPLPP3QEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYtYjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWEx YWY2LzAvMjE4Q0M2RTI0MTA1REU2QzVDOTAwM0Q2NTI0Mzg5M0NCM0NGREQwMS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0lZekc0a0VGM214Y2tBUFdVa09KUExQ UDNRRS5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzcxOGExYjRmLWI2NGMt NDAyYy1iZTE1LWRkODJhNDFhMWFmNi8wL0FTMTY1MDkucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwYgYIKwYBBQUHAQcBAf8EUzBRMD4EAgABMDgDBAJSFRwD BABSGGQDBABSGpoDBABSGskDBABSHQAwDAMEAVIdAgMEAFIdBAMEAFIdZgMEAVId aDAPBAIAAjAJAwcAKhOVAAEQMA0GCSqGSIb3DQEBCwUAA4IBAQAc5Qxuuud3JJCe 43jbsGHbi6h9pisRrT/2vHbpjfZKuFPP7BfffyZRGeZhbNeELdsMUwIwrFqPSVkg wzsuIbdAyCpC6YtLn12B80K1I1gS+qpcRZgmwcIOEI4a5sSAf7B+Wqy9QCt31uog v/XI3OG5R2qmojjrM6E4uBnUUOK5MeBaPvCtfXrJhxGvOfkJEzXAc+YldEd0Omr2 Z41iMIqaayiz3TQpf8uIHlN+UTO+acKEs+KXfDYkCGhM4afAeyDzDSdeWGL9wDlx ZRwyo1A/UNQ4WJ2n14VlpclT+EqfYgrDw/fJlCS6I80Nbzd6166h/F1MzQXVrcd1 q9Ws1OMT -----END CERTIFICATE-----Generated at Sat Dec 6 09:50:43 2025 by rpki-client