This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS16509.roa File: AS16509.roa (raw, json) Hash identifier: f2YOf9MrDhiawhsPyScEcec8r+hdiEwr0z9IzJtYwqs= Subject key identifier: 7D:7B:45:5F:80:BF:79:D8:D2:9C:37:95:BE:BB:16:30:3E:1C:B8:80 Certificate issuer: /CN=03b1ba3fdb91d8d9ea76c5776320eb7eb2d6ed9d Certificate serial: 50D78753A4DE47D0BD7977D725814FCB8EA03023 Authority key identifier: 03:B1:BA:3F:DB:91:D8:D9:EA:76:C5:77:63:20:EB:7E:B2:D6:ED:9D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A7G6P9uR2NnqdsV3YyDrfrLW7Z0.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS16509.roa Signing time: Mon 01 Dec 2025 13:43:13 +0000 ROA not before: Mon 01 Dec 2025 13:38:13 +0000 ROA not after: Mon 30 Nov 2026 13:43:13 +0000 asID: 16509 IP address blocks: 45.149.101.0/24 maxlen: 24 45.155.17.0/24 maxlen: 24 193.164.10.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/03B1BA3FDB91D8D9EA76C5776320EB7EB2D6ED9D.crl rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/03B1BA3FDB91D8D9EA76C5776320EB7EB2D6ED9D.mft rsync://rpki.ripe.net/repository/DEFAULT/A7G6P9uR2NnqdsV3YyDrfrLW7Z0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:d7:87:53:a4:de:47:d0:bd:79:77:d7:25:81:4f:cb:8e:a0:30:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=03b1ba3fdb91d8d9ea76c5776320eb7eb2d6ed9d Validity Not Before: Dec 1 13:38:13 2025 GMT Not After : Nov 30 13:43:13 2026 GMT Subject: CN=7D7B455F80BF79D8D29C3795BEBB16303E1CB880 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:53:e2:32:7a:59:1c:21:de:f6:1e:4e:de:6f: 7a:15:d5:39:35:5a:c4:ea:02:ed:2b:75:f0:ad:fd: 69:1e:63:a9:9b:69:2e:cd:5e:e8:9b:79:38:f8:96: 29:b7:c1:da:b2:b9:03:55:22:76:dd:5c:b3:9e:49: 5c:56:3d:5b:61:9d:65:6a:98:2f:44:e8:27:ed:9e: b7:8e:7f:d8:31:1b:a6:64:69:0f:a4:45:c4:cf:57: dd:bd:2b:15:4e:4e:ad:18:5a:ee:e2:92:a5:cf:05: 13:47:3c:8f:3d:a2:27:d7:14:49:71:da:6b:9d:90: e3:5d:f1:76:db:12:0c:57:3e:08:80:81:74:68:49: ff:21:1d:61:10:8c:4e:e9:2f:cb:70:9b:7d:d4:55: 4d:5f:16:1e:72:79:0e:2f:a3:57:60:37:85:0b:b8: c0:a3:a3:4b:52:3a:21:48:a5:1c:b5:f0:5b:2c:fe: e5:13:70:c4:b5:89:28:d0:45:6d:29:e3:8a:b2:1d: 94:59:e3:6e:01:c2:71:a4:8e:a1:7c:92:75:3e:02: 91:0b:f5:51:4b:8f:e9:98:88:7d:da:cf:8e:99:c7: d8:3b:3a:93:d3:28:5c:fa:54:1d:c7:b8:b4:a3:9f: 7a:5c:8c:d9:d9:1b:1f:81:31:b2:65:68:2e:e7:42: 57:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:7B:45:5F:80:BF:79:D8:D2:9C:37:95:BE:BB:16:30:3E:1C:B8:80 X509v3 Authority Key Identifier: keyid:03:B1:BA:3F:DB:91:D8:D9:EA:76:C5:77:63:20:EB:7E:B2:D6:ED:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/03B1BA3FDB91D8D9EA76C5776320EB7EB2D6ED9D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A7G6P9uR2NnqdsV3YyDrfrLW7Z0.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS16509.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.149.101.0/24 45.155.17.0/24 193.164.10.0/24 Signature Algorithm: sha256WithRSAEncryption 67:a7:f1:bc:29:6b:af:6d:00:7b:11:f0:f5:22:ce:c8:92:48: c0:d0:2c:19:c0:66:f3:79:51:86:f3:26:03:c8:bf:c1:bc:7a: 7d:7a:bd:62:2d:af:07:4d:24:e2:b7:ee:fc:80:99:57:cd:e4: 06:e1:59:ff:2f:fc:96:40:ae:8d:b0:27:c5:e3:56:25:2f:c0: 66:9a:42:15:7f:dd:22:11:d0:bf:1f:c0:35:ac:0b:03:b3:13: be:6c:ab:95:e5:c8:e9:96:b0:99:ba:7c:1a:b6:9e:44:e1:33: 2c:6f:55:e8:9a:1e:ae:ac:4f:7a:9f:c9:de:fd:33:09:aa:c5: d6:6c:ff:d8:22:a0:f8:63:c6:e2:0a:3a:99:a4:e4:89:d7:8a: 19:3a:d4:8b:dc:48:36:4a:07:9f:2b:8e:40:a8:14:b1:c1:c8: 3a:91:91:a2:40:cb:2e:f2:67:15:67:78:f7:00:c7:02:de:4c: 20:55:cf:35:4b:cf:f3:f7:19:95:de:75:8d:59:d3:13:48:72: 11:b2:9f:07:2b:a0:d2:50:7f:97:6d:88:12:3c:85:8d:5d:bb: e7:db:83:16:37:2b:a4:e9:7c:ad:78:29:16:b0:b9:46:43:71: 12:21:4b:b5:9a:d9:b4:ee:8c:b0:75:d7:f8:95:14:ee:ca:56: 3d:92:4f:14 -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgIUUNeHU6TeR9C9eXfXJYFPy46gMCMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDNiMWJhM2ZkYjkxZDhkOWVhNzZjNTc3NjMyMGViN2Vi MmQ2ZWQ5ZDAeFw0yNTEyMDExMzM4MTNaFw0yNjExMzAxMzQzMTNaMDMxMTAvBgNV BAMTKDdEN0I0NTVGODBCRjc5RDhEMjlDMzc5NUJFQkIxNjMwM0UxQ0I4ODAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCTU+IyelkcId72Hk7eb3oV1Tk1 WsTqAu0rdfCt/WkeY6mbaS7NXuibeTj4lim3wdqyuQNVInbdXLOeSVxWPVthnWVq mC9E6CftnreOf9gxG6ZkaQ+kRcTPV929KxVOTq0YWu7ikqXPBRNHPI89oifXFElx 2mudkONd8XbbEgxXPgiAgXRoSf8hHWEQjE7pL8twm33UVU1fFh5yeQ4vo1dgN4UL uMCjo0tSOiFIpRy18Fss/uUTcMS1iSjQRW0p44qyHZRZ424BwnGkjqF8knU+ApEL 9VFLj+mYiH3az46Zx9g7OpPTKFz6VB3HuLSjn3pcjNnZGx+BMbJlaC7nQldtAgMB AAGjggIVMIICETAdBgNVHQ4EFgQUfXtFX4C/edjSnDeVvrsWMD4cuIAwHwYDVR0j BBgwFoAUA7G6P9uR2NnqdsV3YyDrfrLW7Z0wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvN2ZmMGY1NTUtZGJhNy00MTkyLWEwMWQtZjY5MTZkNWJi ODRlLzAvMDNCMUJBM0ZEQjkxRDhEOUVBNzZDNTc3NjMyMEVCN0VCMkQ2RUQ5RC5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0E3RzZQOXVSMk5ucWRzVjNZeURyZnJM VzdaMC5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzdmZjBmNTU1LWRiYTct NDE5Mi1hMDFkLWY2OTE2ZDViYjg0ZS8wL0FTMTY1MDkucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwKwYIKwYBBQUHAQcBAf8EHDAaMBgEAgABMBIDBAAtlWUD BAAtmxEDBADBpAowDQYJKoZIhvcNAQELBQADggEBAGen8bwpa69tAHsR8PUizsiS SMDQLBnAZvN5UYbzJgPIv8G8en16vWItrwdNJOK37vyAmVfN5AbhWf8v/JZAro2w J8XjViUvwGaaQhV/3SIR0L8fwDWsCwOzE75sq5XlyOmWsJm6fBq2nkThMyxvVeia Hq6sT3qfyd79MwmqxdZs/9gioPhjxuIKOpmk5InXihk61IvcSDZKB58rjkCoFLHB yDqRkaJAyy7yZxVnePcAxwLeTCBVzzVLz/P3GZXedY1Z0xNIchGynwcroNJQf5dt iBI8hY1du+fbgxY3K6TpfK14KRawuUZDcRIhS7Wa2bTujLB11/iVFO7KVj2STxQ= -----END CERTIFICATE-----Generated at Sat Dec 6 21:33:07 2025 by rpki-client