This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS16276.roa File: AS16276.roa (raw, json) Hash identifier: 0ec7eOzPjnz2QPSHOF4xG3RHd4r5QIDnwa+SGxYJLaA= Subject key identifier: 0B:F1:A7:61:0D:97:04:4A:9B:D4:E1:75:DB:B2:77:77:52:20:DA:E4 Certificate issuer: /CN=c2302af143c15daad50042d8455e689d0828eca9 Certificate serial: 2B419B19CE1691D4F2A580822EEC95BA0CF742E4 Authority key identifier: C2:30:2A:F1:43:C1:5D:AA:D5:00:42:D8:45:5E:68:9D:08:28:EC:A9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS16276.roa Signing time: Mon 29 Dec 2025 06:05:16 +0000 ROA not before: Mon 29 Dec 2025 06:00:16 +0000 ROA not after: Mon 28 Dec 2026 06:05:16 +0000 asID: 16276 IP address blocks: 141.11.31.0/24 maxlen: 24 141.11.39.0/24 maxlen: 24 141.11.40.0/24 maxlen: 24 141.11.49.0/24 maxlen: 24 141.11.74.0/23 maxlen: 23 141.11.79.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/C2302AF143C15DAAD50042D8455E689D0828ECA9.crl rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/C2302AF143C15DAAD50042D8455E689D0828ECA9.mft rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 21 Jan 2026 13:28:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:41:9b:19:ce:16:91:d4:f2:a5:80:82:2e:ec:95:ba:0c:f7:42:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c2302af143c15daad50042d8455e689d0828eca9 Validity Not Before: Dec 29 06:00:16 2025 GMT Not After : Dec 28 06:05:16 2026 GMT Subject: CN=0BF1A7610D97044A9BD4E175DBB277775220DAE4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:09:de:dd:a8:da:f8:e9:95:c3:cf:17:3c:27: e9:d3:ee:80:b2:8e:8d:b2:42:98:00:94:f9:ef:7c: 40:3b:cb:60:8e:83:04:7d:2a:33:b8:2c:83:88:93: b3:e0:a3:30:cd:21:11:fb:2d:c4:64:e3:c9:79:db: de:44:8b:cf:aa:f7:b1:6a:7f:67:70:a8:3c:72:f1: 1c:2e:2c:9a:6a:fb:b5:87:dd:5d:e1:bb:2e:d3:94: 46:d8:02:30:d1:11:45:0e:16:6a:8d:9d:44:1b:e5: 3f:a3:52:44:87:73:90:03:69:0a:b2:2e:f5:4f:99: 65:ed:0b:94:ad:f3:6c:55:27:30:29:52:62:45:83: 0e:a1:2c:9f:d0:c2:4a:9b:b1:b8:57:1b:75:9a:de: 36:6d:18:37:c3:db:d2:03:4b:47:99:6a:cf:67:53: 56:dc:00:2f:e7:49:7e:f3:ca:1e:ab:04:64:3e:c7: 54:5d:a4:93:83:0f:2f:70:3b:6b:c5:76:f2:24:a8: d9:56:c7:34:e6:41:4a:78:97:8a:57:17:15:4e:87: 93:9c:b8:42:8c:2f:8b:e2:34:c9:75:47:16:15:9f: 62:bf:6b:40:3b:7d:e5:b5:1a:e5:a1:14:06:a6:08: 9e:b4:76:7e:06:54:3c:9a:d1:5e:53:e4:d6:f6:43: be:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:F1:A7:61:0D:97:04:4A:9B:D4:E1:75:DB:B2:77:77:52:20:DA:E4 X509v3 Authority Key Identifier: keyid:C2:30:2A:F1:43:C1:5D:AA:D5:00:42:D8:45:5E:68:9D:08:28:EC:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/C2302AF143C15DAAD50042D8455E689D0828ECA9.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS16276.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 141.11.31.0/24 141.11.39.0-141.11.40.255 141.11.49.0/24 141.11.74.0/23 141.11.79.0/24 Signature Algorithm: sha256WithRSAEncryption 83:3a:9d:2c:6c:a1:db:d2:d4:9e:cb:ef:06:fe:05:59:1d:2d: de:5e:d1:5d:33:59:5e:f8:34:3b:fa:38:d7:b2:b4:36:4c:e0: aa:3d:22:a4:56:dd:61:0f:5e:2e:c6:c1:6e:4f:ff:d9:a6:df: 96:04:39:fb:cc:0b:c8:50:b5:11:8d:cd:0c:94:d6:92:0e:d1: c2:14:c8:da:6c:49:c8:ec:48:f2:38:0a:2f:f5:bc:4a:a9:e0: df:09:ed:b8:b2:6a:c6:e0:7e:22:2e:ed:23:13:91:3e:c9:e3: c4:56:93:da:49:40:74:32:82:6c:4b:69:3e:09:e6:47:0f:1e: ca:b6:d5:c1:c2:0c:ce:91:66:21:45:50:ca:b6:db:f9:5c:48: ca:ad:91:4a:9a:1b:b6:1f:01:42:ec:42:8b:49:e3:61:15:5e: 2c:cf:26:e8:1e:ef:07:7c:dc:a8:7c:55:77:22:10:52:7d:3e: 88:fa:a6:1b:04:a9:04:29:9b:77:05:d7:51:dc:aa:4b:d7:81: fe:c7:2e:cb:0b:df:ef:44:30:57:03:c4:14:90:20:d0:bc:75: 30:a7:f1:7d:8b:5d:d5:4a:8a:c3:94:87:6c:13:3c:6c:20:76: 3f:80:ec:fa:25:27:6d:07:69:e3:41:1f:cd:8d:e2:f7:52:1d: a5:b9:59:ef -----BEGIN CERTIFICATE----- MIIFHzCCBAegAwIBAgIUK0GbGc4WkdTypYCCLuyVugz3QuQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYzIzMDJhZjE0M2MxNWRhYWQ1MDA0MmQ4NDU1ZTY4OWQw ODI4ZWNhOTAeFw0yNTEyMjkwNjAwMTZaFw0yNjEyMjgwNjA1MTZaMDMxMTAvBgNV BAMTKDBCRjFBNzYxMEQ5NzA0NEE5QkQ0RTE3NURCQjI3Nzc3NTIyMERBRTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsCd7dqNr46ZXDzxc8J+nT7oCy jo2yQpgAlPnvfEA7y2COgwR9KjO4LIOIk7PgozDNIRH7LcRk48l5295Ei8+q97Fq f2dwqDxy8RwuLJpq+7WH3V3huy7TlEbYAjDREUUOFmqNnUQb5T+jUkSHc5ADaQqy LvVPmWXtC5St82xVJzApUmJFgw6hLJ/QwkqbsbhXG3Wa3jZtGDfD29IDS0eZas9n U1bcAC/nSX7zyh6rBGQ+x1RdpJODDy9wO2vFdvIkqNlWxzTmQUp4l4pXFxVOh5Oc uEKML4viNMl1RxYVn2K/a0A7feW1GuWhFAamCJ60dn4GVDya0V5T5Nb2Q76vAgMB AAGjggIpMIICJTAdBgNVHQ4EFgQUC/GnYQ2XBEqb1OF127J3d1Ig2uQwHwYDVR0j BBgwFoAUwjAq8UPBXarVAELYRV5onQgo7KkwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYTkzY2I1NWMtOTU3MS00NGM4LTkwZTEtOTY1YjkyNzY5 ZTRlLzAvQzIzMDJBRjE0M0MxNURBQUQ1MDA0MkQ4NDU1RTY4OUQwODI4RUNBOS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3dqQXE4VVBCWGFyVkFFTFlSVjVvblFn bzdLay5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2E5M2NiNTVjLTk1NzEt NDRjOC05MGUxLTk2NWI5Mjc2OWU0ZS8wL0FTMTYyNzYucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwPwYIKwYBBQUHAQcBAf8EMDAuMCwEAgABMCYDBACNCx8w DAMEAI0LJwMEAI0LKAMEAI0LMQMEAY0LSgMEAI0LTzANBgkqhkiG9w0BAQsFAAOC AQEAgzqdLGyh29LUnsvvBv4FWR0t3l7RXTNZXvg0O/o417K0Nkzgqj0ipFbdYQ9e LsbBbk//2abflgQ5+8wLyFC1EY3NDJTWkg7RwhTI2mxJyOxI8jgKL/W8Sqng3wnt uLJqxuB+Ii7tIxORPsnjxFaT2klAdDKCbEtpPgnmRw8eyrbVwcIMzpFmIUVQyrbb +VxIyq2RSpobth8BQuxCi0njYRVeLM8m6B7vB3zcqHxVdyIQUn0+iPqmGwSpBCmb dwXXUdyqS9eB/scuywvf70QwVwPEFJAg0Lx1MKfxfYtd1UqKw5SHbBM8bCB2P4Ds +iUnbQdp40EfzY3i91IdpblZ7w== -----END CERTIFICATE-----Generated at Tue Jan 20 22:20:36 2026 by rpki-client