This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS16276.roa File: AS16276.roa (raw, json) Hash identifier: eXrzwFS5c+lWunbU8/Zc034DciBfh/v9/7UGrh23L5M= Subject key identifier: 69:31:8D:C2:53:4A:39:70:1B:AA:1A:1B:55:CC:F8:7C:AA:F2:7D:1A Certificate issuer: /CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177 Certificate serial: 285FA484262DEFC0926AA21568A1920C3413EA2F Authority key identifier: D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS16276.roa Signing time: Wed 31 Dec 2025 19:22:54 +0000 ROA not before: Wed 31 Dec 2025 19:17:54 +0000 ROA not after: Wed 30 Dec 2026 19:22:54 +0000 asID: 16276 IP address blocks: 104.167.16.0/24 maxlen: 24 168.222.242.0/24 maxlen: 24 168.222.243.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 10 Jan 2026 12:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:5f:a4:84:26:2d:ef:c0:92:6a:a2:15:68:a1:92:0c:34:13:ea:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177 Validity Not Before: Dec 31 19:17:54 2025 GMT Not After : Dec 30 19:22:54 2026 GMT Subject: CN=69318DC2534A39701BAA1A1B55CCF87CAAF27D1A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:fa:d5:e7:80:c8:a1:25:56:1a:d9:be:47:2a: 0e:3e:78:0f:31:1c:4c:22:03:37:76:ba:52:1c:ec: 97:9f:38:5e:2d:cc:33:6b:23:70:fc:25:a2:82:bf: 4b:a2:dd:74:e0:19:32:89:8c:1a:e3:ef:a2:90:5e: 73:05:73:ff:02:72:64:f9:e6:39:17:eb:00:a2:41: cf:e1:60:c3:e4:a4:a0:05:90:60:f9:12:0e:74:91: bd:d3:ad:05:f2:aa:25:8b:eb:c4:d5:b7:52:b4:8f: b5:b4:99:b6:09:e0:db:22:c6:9c:ad:ef:5b:cb:d6: bb:db:62:23:a7:f1:de:c0:5e:ce:e7:e0:a3:67:15: 30:82:88:02:22:59:be:39:4f:18:8b:e2:7f:1d:8a: 27:3a:ac:e8:84:57:5b:40:ea:31:cf:e9:09:87:e4: 98:a6:c1:7f:7c:1d:9f:21:81:03:78:03:0a:6d:06: 25:90:c2:8b:e3:16:99:4c:0c:09:cf:0b:b7:ef:a5: 9d:b9:43:00:ff:ce:c1:89:e9:62:1c:7e:90:7f:45: 6a:0f:eb:bc:62:84:c5:28:e6:46:61:b9:41:65:6a: 0e:77:12:a2:c9:95:80:fe:db:17:58:e4:55:ea:06: cc:5e:23:e4:bc:e5:6d:cd:b8:01:80:fd:0f:e0:dc: 13:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:31:8D:C2:53:4A:39:70:1B:AA:1A:1B:55:CC:F8:7C:AA:F2:7D:1A X509v3 Authority Key Identifier: keyid:D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS16276.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 104.167.16.0/24 168.222.242.0/23 Signature Algorithm: sha256WithRSAEncryption 9c:ce:19:39:c6:b5:a6:55:12:32:bf:68:e5:ff:6f:0f:4e:76: 73:a6:59:5b:5d:03:3c:14:da:c9:15:0d:be:e8:bf:41:9a:8b: 4c:88:ea:aa:6d:06:88:77:4c:e2:52:53:09:12:d9:cb:8d:6b: c5:51:91:56:ec:06:ea:78:64:fd:aa:27:09:fe:1e:ec:db:53: d9:31:51:ef:30:b0:a7:42:7b:00:ff:ab:d4:58:0b:29:3d:c2: 01:a2:8a:5e:5c:5f:23:7f:32:a7:d1:a6:08:0c:72:26:a3:a0: 41:73:46:ff:00:d4:33:49:0b:68:e1:3c:12:8c:d9:26:20:e9: 4f:c5:de:bd:e4:c2:80:39:fd:48:d3:d6:f1:b9:62:c4:5a:61: df:fa:10:bf:81:81:e0:6f:6c:53:01:41:a8:a5:1d:26:ef:ed: 4b:9b:a5:e6:8b:08:33:1d:11:c1:b3:9c:23:cc:b7:02:e5:db: b5:47:58:0f:cf:bb:16:04:46:27:af:d1:07:4b:8d:a9:38:6a: 84:ad:8d:05:97:29:db:c0:6e:49:c0:ec:0f:79:79:46:1b:a6: 35:ec:e4:05:92:fd:cf:12:1d:95:a9:f4:8c:55:70:69:bd:d8: 72:97:13:50:99:35:56:cc:8e:5e:df:ff:dd:2a:51:1d:63:ce: e3:1b:4d:33 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUKF+khCYt78CSaqIVaKGSDDQT6i8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoZDE0YjZmY2YyYjJjNjliZTA4NWU5Zjk1OTg3MmRjYmU4 ZWE1NDE3NzAeFw0yNTEyMzExOTE3NTRaFw0yNjEyMzAxOTIyNTRaMDMxMTAvBgNV BAMTKDY5MzE4REMyNTM0QTM5NzAxQkFBMUExQjU1Q0NGODdDQUFGMjdEMUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDG+tXngMihJVYa2b5HKg4+eA8x HEwiAzd2ulIc7JefOF4tzDNrI3D8JaKCv0ui3XTgGTKJjBrj76KQXnMFc/8CcmT5 5jkX6wCiQc/hYMPkpKAFkGD5Eg50kb3TrQXyqiWL68TVt1K0j7W0mbYJ4Nsixpyt 71vL1rvbYiOn8d7AXs7n4KNnFTCCiAIiWb45TxiL4n8diic6rOiEV1tA6jHP6QmH 5JimwX98HZ8hgQN4AwptBiWQwovjFplMDAnPC7fvpZ25QwD/zsGJ6WIcfpB/RWoP 67xihMUo5kZhuUFlag53EqLJlYD+2xdY5FXqBsxeI+S85W3NuAGA/Q/g3BPRAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUaTGNwlNKOXAbqhobVcz4fKryfRowHwYDVR0j BBgwFoAU0Utvzyssab4IXp+VmHLcvo6lQXcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv cnkvOGE4NDhhZGY4NTBkMDYzZTAxODU3NTVjOTFiZTNmOWQvNy9EMTRCNkZDRjJC MkM2OUJFMDg1RTlGOTU5ODcyRENCRThFQTU0MTc3LmNybDBkBggrBgEFBQcBAQRY MFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5 L0RFRkFVTFQvMFV0dnp5c3NhYjRJWHAtVm1ITGN2bzZsUVhjLmNlcjBvBggrBgEF BQcBCwRjMGEwXwYIKwYBBQUHMAuGU3JzeW5jOi8vcnBraS1ycHMuYXJpbi5uZXQv cmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5MWJlM2Y5ZC83L0FT MTYyNzYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwJQYIKwYBBQUHAQcB Af8EFjAUMBIEAgABMAwDBABopxADBAGo3vIwDQYJKoZIhvcNAQELBQADggEBAJzO GTnGtaZVEjK/aOX/bw9OdnOmWVtdAzwU2skVDb7ov0Gai0yI6qptBoh3TOJSUwkS 2cuNa8VRkVbsBup4ZP2qJwn+HuzbU9kxUe8wsKdCewD/q9RYCyk9wgGiil5cXyN/ MqfRpggMciajoEFzRv8A1DNJC2jhPBKM2SYg6U/F3r3kwoA5/UjT1vG5YsRaYd/6 EL+BgeBvbFMBQailHSbv7UubpeaLCDMdEcGznCPMtwLl27VHWA/PuxYERiev0QdL jak4aoStjQWXKdvAbknA7A95eUYbpjXs5AWS/c8SHZWp9IxVcGm92HKXE1CZNVbM jl7f/90qUR1jzuMbTTM= -----END CERTIFICATE-----Generated at Fri Jan 9 18:11:26 2026 by rpki-client