This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/AS16509.roa File: AS16509.roa (raw, json) Hash identifier: D8vipujSZjJIdBRi6Q9Y7dytU9jeKaC7WIgLEby8kMM= Subject key identifier: 4F:D7:9C:9B:5A:7F:60:6A:BA:4D:0B:03:B5:B1:55:CF:07:71:3E:EA Certificate issuer: /CN=9dfbff217105df8877d463f6e9bac28a4084d20c Certificate serial: 64801499E4962EB450E29F2EBD9A72986FE55364 Authority key identifier: 9D:FB:FF:21:71:05:DF:88:77:D4:63:F6:E9:BA:C2:8A:40:84:D2:0C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nfv_IXEF34h31GP26brCikCE0gw.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/AS16509.roa Signing time: Wed 04 Feb 2026 12:57:52 +0000 ROA not before: Wed 04 Feb 2026 12:52:52 +0000 ROA not after: Wed 03 Feb 2027 12:57:52 +0000 asID: 16509 IP address blocks: 85.8.144.0/23 maxlen: 24 85.8.146.0/23 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/9DFBFF217105DF8877D463F6E9BAC28A4084D20C.crl rsync://rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/9DFBFF217105DF8877D463F6E9BAC28A4084D20C.mft rsync://rpki.ripe.net/repository/DEFAULT/nfv_IXEF34h31GP26brCikCE0gw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 06 Feb 2026 12:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:80:14:99:e4:96:2e:b4:50:e2:9f:2e:bd:9a:72:98:6f:e5:53:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9dfbff217105df8877d463f6e9bac28a4084d20c Validity Not Before: Feb 4 12:52:52 2026 GMT Not After : Feb 3 12:57:52 2027 GMT Subject: CN=4FD79C9B5A7F606ABA4D0B03B5B155CF07713EEA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:1c:fd:76:2e:85:a2:ca:61:ff:b1:71:b6:5a: c9:7e:8e:6d:d0:75:3b:e5:77:c7:0e:cb:2e:ae:da: 53:9e:f1:5a:f9:bb:95:4c:ad:e0:a6:26:21:35:c0: dd:0b:f9:82:2f:1f:75:78:05:72:74:de:b1:8d:dc: 6d:f8:b3:9b:84:0e:ac:62:b4:97:92:3f:24:4a:57: 67:39:3b:df:c3:97:3a:ea:05:0f:d1:90:98:79:3a: 8a:c2:23:68:ee:33:2a:8f:6b:c9:20:4a:0d:d7:25: 86:24:72:3c:db:21:e0:b6:66:34:e3:87:3a:b0:c2: 36:bc:95:98:c1:5e:76:b9:42:73:e6:c7:6e:ea:be: 57:ec:2b:54:4a:f9:59:64:a0:d4:78:14:5f:90:43: 64:60:e8:81:c5:e7:8d:c1:f7:89:a8:5a:ef:76:59: 0d:17:df:cd:91:74:ae:0a:4e:ad:65:63:50:bc:9c: 86:e9:1d:53:da:80:b5:94:9c:66:08:d7:d4:e8:99: 4d:b7:af:04:e7:4f:c4:5f:22:e7:bc:9d:80:58:12: e5:d1:58:51:ea:11:f8:4a:a7:4c:0b:59:62:ef:fd: 55:1d:3d:e7:7c:c5:0b:28:85:f9:49:ac:99:1a:a8: 6b:ff:a7:49:dc:58:5c:4b:54:4f:be:df:6b:02:5c: 3f:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:D7:9C:9B:5A:7F:60:6A:BA:4D:0B:03:B5:B1:55:CF:07:71:3E:EA X509v3 Authority Key Identifier: keyid:9D:FB:FF:21:71:05:DF:88:77:D4:63:F6:E9:BA:C2:8A:40:84:D2:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/9DFBFF217105DF8877D463F6E9BAC28A4084D20C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nfv_IXEF34h31GP26brCikCE0gw.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/AS16509.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 85.8.144.0/22 Signature Algorithm: sha256WithRSAEncryption 16:d7:d7:eb:38:6a:34:fc:78:de:ff:a9:7d:b2:b7:08:68:a3: 29:7f:fc:e8:ac:aa:56:ae:0a:3d:96:03:89:9c:68:55:8b:f0: ea:ef:ce:af:90:a2:b2:bf:fd:a8:a0:d6:68:fe:d0:75:dd:9e: 86:fa:f0:fa:65:57:9a:78:e0:cc:95:fc:bb:5b:4a:8e:34:27: e3:0a:0f:f2:1c:17:9a:41:b6:99:0d:a9:ee:bf:dd:8c:65:41: 38:e4:2f:a9:24:20:0c:e2:27:d2:6e:8d:8e:9a:99:be:7a:25: 6c:b0:41:58:17:6c:19:22:89:68:d3:6b:f6:bc:e7:c3:51:6f: 32:10:62:18:e2:ba:a8:0b:64:31:24:3f:53:be:3f:20:8e:a6: f8:22:71:96:a2:19:b6:4c:07:ee:ff:a3:19:f1:8d:17:d7:06: 5d:b5:7c:d0:d8:42:ae:f8:9f:5e:20:2e:9c:4a:29:56:e3:8d: 57:74:a4:26:d6:ab:b6:9b:8c:a4:66:b3:8b:eb:83:86:e9:c4: 63:8a:bb:c6:1d:67:9f:4b:2b:24:85:60:6d:2a:f5:b9:0f:4f: 9c:7e:96:6b:6b:b1:ff:2b:de:85:63:0c:73:c3:eb:c5:0c:cb: c1:c4:0c:40:b4:be:74:5e:af:27:f0:72:50:4b:9c:19:7b:3e: 01:c2:ae:a7 -----BEGIN CERTIFICATE----- MIIE/zCCA+egAwIBAgIUZIAUmeSWLrRQ4p8uvZpymG/lU2QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOWRmYmZmMjE3MTA1ZGY4ODc3ZDQ2M2Y2ZTliYWMyOGE0 MDg0ZDIwYzAeFw0yNjAyMDQxMjUyNTJaFw0yNzAyMDMxMjU3NTJaMDMxMTAvBgNV BAMTKDRGRDc5QzlCNUE3RjYwNkFCQTREMEIwM0I1QjE1NUNGMDc3MTNFRUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTHP12LoWiymH/sXG2Wsl+jm3Q dTvld8cOyy6u2lOe8Vr5u5VMreCmJiE1wN0L+YIvH3V4BXJ03rGN3G34s5uEDqxi tJeSPyRKV2c5O9/DlzrqBQ/RkJh5OorCI2juMyqPa8kgSg3XJYYkcjzbIeC2ZjTj hzqwwja8lZjBXna5QnPmx27qvlfsK1RK+VlkoNR4FF+QQ2Rg6IHF543B94moWu92 WQ0X382RdK4KTq1lY1C8nIbpHVPagLWUnGYI19TomU23rwTnT8RfIue8nYBYEuXR WFHqEfhKp0wLWWLv/VUdPed8xQsohflJrJkaqGv/p0ncWFxLVE++32sCXD/nAgMB AAGjggIJMIICBTAdBgNVHQ4EFgQUT9ecm1p/YGq6TQsDtbFVzwdxPuowHwYDVR0j BBgwFoAUnfv/IXEF34h31GP26brCikCE0gwwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNTViNGQ5ZTgtNDExMS00Mzk0LWEzYTYtYmQ4MjUxZTdm YmJkLzAvOURGQkZGMjE3MTA1REY4ODc3RDQ2M0Y2RTlCQUMyOEE0MDg0RDIwQy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL25mdl9JWEVGMzRoMzFHUDI2YnJDaWtD RTBndy5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzU1YjRkOWU4LTQxMTEt NDM5NC1hM2E2LWJkODI1MWU3ZmJiZC8wL0FTMTY1MDkucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJVCJAw DQYJKoZIhvcNAQELBQADggEBABbX1+s4ajT8eN7/qX2ytwhooyl//OisqlauCj2W A4mcaFWL8Orvzq+QorK//aig1mj+0HXdnob68PplV5p44MyV/LtbSo40J+MKD/Ic F5pBtpkNqe6/3YxlQTjkL6kkIAziJ9JujY6amb56JWywQVgXbBkiiWjTa/a858NR bzIQYhjiuqgLZDEkP1O+PyCOpvgicZaiGbZMB+7/oxnxjRfXBl21fNDYQq74n14g LpxKKVbjjVd0pCbWq7abjKRms4vrg4bpxGOKu8YdZ59LKySFYG0q9bkPT5x+lmtr sf8r3oVjDHPD68UMy8HEDEC0vnReryfwclBLnBl7PgHCrqc= -----END CERTIFICATE-----Generated at Thu Feb 5 13:52:59 2026 by rpki-client