This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS16276.roa File: AS16276.roa (raw, json) Hash identifier: SNRNRuhgD+bJqTC6JEXFT7COhkEyfafnc2M5CK/RkVw= Subject key identifier: 99:6B:D6:0F:C9:AA:AC:07:BC:4A:46:48:42:36:8A:18:D4:7F:40:5A Certificate issuer: /CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177 Certificate serial: 67E2061DE2BC33028BF5DACD270A83081740F323 Authority key identifier: D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS16276.roa Signing time: Thu 20 Nov 2025 22:36:02 +0000 ROA not before: Thu 20 Nov 2025 22:31:02 +0000 ROA not after: Thu 19 Nov 2026 22:36:02 +0000 asID: 16276 IP address blocks: 85.155.225.0/24 maxlen: 24 104.167.16.0/24 maxlen: 24 168.222.242.0/24 maxlen: 24 168.222.243.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 23 Nov 2025 12:00:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:e2:06:1d:e2:bc:33:02:8b:f5:da:cd:27:0a:83:08:17:40:f3:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177 Validity Not Before: Nov 20 22:31:02 2025 GMT Not After : Nov 19 22:36:02 2026 GMT Subject: CN=996BD60FC9AAAC07BC4A464842368A18D47F405A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:93:20:4c:97:52:e5:38:8b:f1:b0:14:80:80: e6:70:a0:f8:e3:23:0b:c5:0e:dd:bf:55:c6:8a:fd: 09:31:ff:94:dd:07:67:53:f9:40:aa:f4:97:f7:58: c8:23:6c:43:96:6e:40:9d:10:4e:31:2d:12:5a:36: d1:48:9c:5e:c8:98:e2:5a:ae:af:4e:5b:e1:0f:50: e4:ef:06:ab:ac:54:ac:59:12:8a:d6:c9:64:93:93: a3:c1:6e:37:b0:89:f8:ac:80:19:f2:a3:a6:c4:65: 8f:ce:5f:7c:b4:e6:0f:33:3c:f6:9b:63:6a:b1:ea: 56:e6:2b:1a:99:15:c8:12:dd:60:a4:cb:a4:eb:72: 99:7b:bd:c1:fd:13:6d:d4:b7:34:01:21:dc:a6:cf: 3a:df:4a:79:a3:e4:c4:eb:e1:af:fe:be:29:87:4e: ac:bb:cc:4d:a9:cd:05:5c:d2:c6:ca:80:89:f7:ab: 74:92:5d:04:c3:6e:ae:d8:45:46:7c:ed:2d:56:2d: e8:a1:5d:8a:36:0c:9e:49:b8:34:a9:02:56:5e:2b: 51:57:c0:e4:fc:44:e1:70:da:93:93:18:2e:36:3c: a6:dc:9d:86:c7:46:96:26:3f:f5:e5:a0:39:84:1e: 44:b5:4c:0a:6f:1c:30:a5:2d:9c:f0:27:94:cc:8c: 07:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:6B:D6:0F:C9:AA:AC:07:BC:4A:46:48:42:36:8A:18:D4:7F:40:5A X509v3 Authority Key Identifier: keyid:D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS16276.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 85.155.225.0/24 104.167.16.0/24 168.222.242.0/23 Signature Algorithm: sha256WithRSAEncryption 15:17:64:02:97:4a:01:ab:84:1a:a9:e8:f0:01:d2:dc:93:7d: 8a:e7:fc:15:78:cc:1f:93:c4:bc:b8:4b:12:93:05:e0:96:0a: 4d:32:88:83:07:4e:ba:2d:4b:ec:b2:7e:78:0a:20:cb:14:e4: 1c:f0:a2:0b:52:5c:91:5e:23:a8:9c:19:a3:ae:29:a6:e8:4c: 36:9d:d0:db:a9:9d:70:c5:24:d5:6c:41:15:97:0e:7b:68:ec: 82:d3:c5:84:fe:8f:ae:6f:99:18:7d:9e:d6:08:9e:8d:2a:12: d8:bd:7a:d3:48:9d:24:64:9f:51:15:22:aa:b3:79:25:5d:ae: bf:ed:89:21:92:90:9d:d4:2e:82:8c:d4:e4:ab:8b:01:37:15: 0b:39:5d:3c:0b:2b:0e:d5:6e:9f:34:1f:a5:b5:45:57:a2:f4: b7:83:f1:10:c6:db:9b:66:42:a9:0b:2a:30:70:e1:6e:9b:78: 7b:a9:80:f8:c5:b1:7f:23:c6:9a:ad:13:d1:50:95:42:99:81: 69:5f:ed:32:84:42:16:0f:2c:ad:62:e0:8f:cd:82:19:d2:11: 9b:07:55:59:c0:09:f9:d1:bd:a8:cc:34:30:3a:be:3d:89:b3: 4d:85:03:56:ed:b1:bd:ed:eb:b5:d1:76:55:38:9b:a6:8d:5f: d4:0b:b3:fb -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgIUZ+IGHeK8MwKL9drNJwqDCBdA8yMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoZDE0YjZmY2YyYjJjNjliZTA4NWU5Zjk1OTg3MmRjYmU4 ZWE1NDE3NzAeFw0yNTExMjAyMjMxMDJaFw0yNjExMTkyMjM2MDJaMDMxMTAvBgNV BAMTKDk5NkJENjBGQzlBQUFDMDdCQzRBNDY0ODQyMzY4QTE4RDQ3RjQwNUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrkyBMl1LlOIvxsBSAgOZwoPjj IwvFDt2/VcaK/Qkx/5TdB2dT+UCq9Jf3WMgjbEOWbkCdEE4xLRJaNtFInF7ImOJa rq9OW+EPUOTvBqusVKxZEorWyWSTk6PBbjewifisgBnyo6bEZY/OX3y05g8zPPab Y2qx6lbmKxqZFcgS3WCky6Trcpl7vcH9E23UtzQBIdymzzrfSnmj5MTr4a/+vimH Tqy7zE2pzQVc0sbKgIn3q3SSXQTDbq7YRUZ87S1WLeihXYo2DJ5JuDSpAlZeK1FX wOT8ROFw2pOTGC42PKbcnYbHRpYmP/XloDmEHkS1TApvHDClLZzwJ5TMjAcJAgMB AAGjggH6MIIB9jAdBgNVHQ4EFgQUmWvWD8mqrAe8SkZIQjaKGNR/QFowHwYDVR0j BBgwFoAU0Utvzyssab4IXp+VmHLcvo6lQXcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv cnkvOGE4NDhhZGY4NTBkMDYzZTAxODU3NTVjOTFiZTNmOWQvNy9EMTRCNkZDRjJC MkM2OUJFMDg1RTlGOTU5ODcyRENCRThFQTU0MTc3LmNybDBkBggrBgEFBQcBAQRY MFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5 L0RFRkFVTFQvMFV0dnp5c3NhYjRJWHAtVm1ITGN2bzZsUVhjLmNlcjBvBggrBgEF BQcBCwRjMGEwXwYIKwYBBQUHMAuGU3JzeW5jOi8vcnBraS1ycHMuYXJpbi5uZXQv cmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5MWJlM2Y5ZC83L0FT MTYyNzYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwKwYIKwYBBQUHAQcB Af8EHDAaMBgEAgABMBIDBABVm+EDBABopxADBAGo3vIwDQYJKoZIhvcNAQELBQAD ggEBABUXZAKXSgGrhBqp6PAB0tyTfYrn/BV4zB+TxLy4SxKTBeCWCk0yiIMHTrot S+yyfngKIMsU5BzwogtSXJFeI6icGaOuKaboTDad0NupnXDFJNVsQRWXDnto7ILT xYT+j65vmRh9ntYIno0qEti9etNInSRkn1EVIqqzeSVdrr/tiSGSkJ3ULoKM1OSr iwE3FQs5XTwLKw7Vbp80H6W1RVei9LeD8RDG25tmQqkLKjBw4W6beHupgPjFsX8j xpqtE9FQlUKZgWlf7TKEQhYPLK1i4I/NghnSEZsHVVnACfnRvajMNDA6vj2Js02F A1btsb3t67XRdlU4m6aNX9QLs/s= -----END CERTIFICATE-----Generated at Sat Nov 22 21:48:40 2025 by rpki-client