This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS16509.roa File: AS16509.roa (raw, json) Hash identifier: abejkKeox6Fr2jCrpBUfgmXKpCZB43YbAaW/3NYHUys= Subject key identifier: 1D:18:ED:B8:CD:1E:C6:22:01:96:EB:10:E9:DB:55:A8:19:93:C0:82 Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Certificate serial: 5372A8D3A1549507D7B4E0FA7AB985945B8809E6 Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS16509.roa Signing time: Thu 06 Nov 2025 16:36:33 +0000 ROA not before: Thu 06 Nov 2025 16:31:33 +0000 ROA not after: Thu 05 Nov 2026 16:36:33 +0000 asID: 16509 IP address blocks: 82.21.28.0/22 maxlen: 24 82.22.10.0/23 maxlen: 23 82.24.100.0/24 maxlen: 24 82.26.154.0/24 maxlen: 24 82.26.201.0/24 maxlen: 24 82.29.0.0/24 maxlen: 24 82.29.2.0/24 maxlen: 24 82.29.3.0/24 maxlen: 24 82.29.4.0/24 maxlen: 24 82.29.102.0/24 maxlen: 24 82.29.104.0/24 maxlen: 24 82.29.105.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 19 Nov 2025 08:00:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:72:a8:d3:a1:54:95:07:d7:b4:e0:fa:7a:b9:85:94:5b:88:09:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Validity Not Before: Nov 6 16:31:33 2025 GMT Not After : Nov 5 16:36:33 2026 GMT Subject: CN=1D18EDB8CD1EC6220196EB10E9DB55A81993C082 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:1b:b4:72:7f:f6:06:53:bd:ef:0e:15:35:b9: 39:4e:f2:4c:e9:ca:51:f0:7f:54:da:7f:ef:b1:e2: d8:c3:4b:0f:58:fb:6d:ef:d1:6b:ee:4c:e2:8d:e6: 3c:42:76:94:a5:84:75:23:74:13:9a:c2:3a:f2:18: df:22:aa:15:9f:51:b8:3a:7c:80:25:db:b0:5b:42: 8d:80:e1:1b:f6:33:07:54:37:78:e4:1f:51:c7:74: c0:6a:3c:91:52:15:8e:c3:be:1f:c9:d5:a2:ed:44: a7:54:91:4e:e9:ac:4e:8c:f6:20:d7:5a:c1:70:47: 2f:30:79:f4:ad:52:05:c4:37:c9:a7:9e:6c:16:22: 3e:47:4b:f2:19:95:29:38:34:1b:c3:de:db:7f:48: 7e:6c:ee:c5:b8:9d:ef:63:07:2c:2c:6e:0e:66:c3: 2a:ab:76:a1:9c:8f:f0:09:39:d7:9f:9d:ff:97:f8: 97:0a:38:cc:67:b4:5f:4f:ed:6d:f6:28:ad:de:24: 2f:95:c5:b9:77:78:91:bf:c6:19:a6:a3:c6:fa:76: 69:eb:0b:e4:71:3e:f3:34:61:cb:46:c0:c0:d0:ff: df:38:16:a1:e7:8a:44:a3:03:77:8c:33:f6:ab:f9: 96:06:f1:30:89:45:99:9e:32:bc:b0:c9:42:1c:ce: 36:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:18:ED:B8:CD:1E:C6:22:01:96:EB:10:E9:DB:55:A8:19:93:C0:82 X509v3 Authority Key Identifier: keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS16509.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 82.21.28.0/22 82.22.10.0/23 82.24.100.0/24 82.26.154.0/24 82.26.201.0/24 82.29.0.0/24 82.29.2.0-82.29.4.255 82.29.102.0/24 82.29.104.0/23 Signature Algorithm: sha256WithRSAEncryption 61:86:56:10:1d:4e:9c:00:3a:7f:df:55:9b:fa:b9:93:9c:01: a1:cb:d7:9e:a8:4f:a9:cf:f3:29:91:0a:dd:5f:87:2e:c5:23: c5:cc:eb:ed:f5:22:89:3f:8c:52:bd:a7:7d:d5:0f:b0:61:7c: 3a:d9:af:5c:7d:88:db:49:ec:5c:3f:f8:f8:b0:26:26:74:0f: 54:54:c2:81:60:35:00:a6:b1:a5:3c:8e:5f:04:64:c7:75:e5: 25:0f:4b:ee:fb:a4:6b:ea:88:17:4a:b9:16:6b:10:24:13:6f: 84:f0:ed:a1:43:5b:20:66:a9:af:a4:eb:c2:c5:06:70:a2:bd: 83:78:71:c2:a9:7a:43:78:65:92:03:b6:87:21:b1:c0:36:fe: b0:20:00:9c:35:99:45:e3:8b:3e:ad:9b:6d:60:ff:a1:6a:05: 70:1b:4a:fa:68:d9:9e:44:c4:4a:12:1b:9a:cb:5e:85:e4:a6: 05:bb:9e:d9:22:38:20:f2:2c:ab:ee:a6:7d:42:b1:8a:55:55: cc:c6:21:c5:d2:68:c3:6a:1e:89:27:b8:e5:53:e5:ad:80:2b: ba:e7:b6:b7:d7:01:46:fa:6c:74:c1:0d:bb:b4:21:c6:c7:4e: 20:be:d0:a3:57:6b:79:0d:2d:c9:c6:89:f2:e1:02:27:bd:92: a8:3e:c0:8c -----BEGIN CERTIFICATE----- MIIFNzCCBB+gAwIBAgIUU3Ko06FUlQfXtOD6ermFlFuICeYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjE4Y2M2ZTI0MTA1ZGU2YzVjOTAwM2Q2NTI0Mzg5M2Ni M2NmZGQwMTAeFw0yNTExMDYxNjMxMzNaFw0yNjExMDUxNjM2MzNaMDMxMTAvBgNV BAMTKDFEMThFREI4Q0QxRUM2MjIwMTk2RUIxMEU5REI1NUE4MTk5M0MwODIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+G7Ryf/YGU73vDhU1uTlO8kzp ylHwf1Taf++x4tjDSw9Y+23v0WvuTOKN5jxCdpSlhHUjdBOawjryGN8iqhWfUbg6 fIAl27BbQo2A4Rv2MwdUN3jkH1HHdMBqPJFSFY7Dvh/J1aLtRKdUkU7prE6M9iDX WsFwRy8wefStUgXEN8mnnmwWIj5HS/IZlSk4NBvD3tt/SH5s7sW4ne9jBywsbg5m wyqrdqGcj/AJOdefnf+X+JcKOMxntF9P7W32KK3eJC+Vxbl3eJG/xhmmo8b6dmnr C+RxPvM0YctGwMDQ/984FqHnikSjA3eMM/ar+ZYG8TCJRZmeMrywyUIczjbhAgMB AAGjggJBMIICPTAdBgNVHQ4EFgQUHRjtuM0exiIBlusQ6dtVqBmTwIIwHwYDVR0j BBgwFoAUIYzG4kEF3mxckAPWUkOJPLPP3QEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYtYjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWEx YWY2LzAvMjE4Q0M2RTI0MTA1REU2QzVDOTAwM0Q2NTI0Mzg5M0NCM0NGREQwMS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0lZekc0a0VGM214Y2tBUFdVa09KUExQ UDNRRS5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzcxOGExYjRmLWI2NGMt NDAyYy1iZTE1LWRkODJhNDFhMWFmNi8wL0FTMTY1MDkucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwVwYIKwYBBQUHAQcBAf8ESDBGMEQEAgABMD4DBAJSFRwD BAFSFgoDBABSGGQDBABSGpoDBABSGskDBABSHQAwDAMEAVIdAgMEAFIdBAMEAFId ZgMEAVIdaDANBgkqhkiG9w0BAQsFAAOCAQEAYYZWEB1OnAA6f99Vm/q5k5wBocvX nqhPqc/zKZEK3V+HLsUjxczr7fUiiT+MUr2nfdUPsGF8OtmvXH2I20nsXD/4+LAm JnQPVFTCgWA1AKaxpTyOXwRkx3XlJQ9L7vuka+qIF0q5FmsQJBNvhPDtoUNbIGap r6TrwsUGcKK9g3hxwql6Q3hlkgO2hyGxwDb+sCAAnDWZReOLPq2bbWD/oWoFcBtK +mjZnkTEShIbmsteheSmBbue2SI4IPIsq+6mfUKxilVVzMYhxdJow2oeiSe45VPl rYAruue2t9cBRvpsdMENu7QhxsdOIL7Qo1dreQ0tycaJ8uECJ72SqD7AjA== -----END CERTIFICATE-----Generated at Tue Nov 18 13:10:47 2025 by rpki-client