This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c409d7b2-ee64-49f1-ad81-8e4a107d62e0/0/AS16276.roa File: AS16276.roa (raw, json) Hash identifier: 2O8i1lYDjvaWrrXBjIefR3A66j72f4E/BT7Wp4krpp0= Subject key identifier: 87:B7:87:93:0C:9C:F4:83:8E:A2:36:8C:7B:CA:17:7B:CF:6C:6E:75 Certificate issuer: /CN=88c14ec02adbf083138eddd47871176ddeb93d9d Certificate serial: 35BEA2EA143DFEB5441AB5751276012FA2E773F1 Authority key identifier: 88:C1:4E:C0:2A:DB:F0:83:13:8E:DD:D4:78:71:17:6D:DE:B9:3D:9D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iMFOwCrb8IMTjt3UeHEXbd65PZ0.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c409d7b2-ee64-49f1-ad81-8e4a107d62e0/0/AS16276.roa Signing time: Mon 29 Dec 2025 06:04:28 +0000 ROA not before: Mon 29 Dec 2025 05:59:28 +0000 ROA not after: Mon 28 Dec 2026 06:04:28 +0000 asID: 16276 IP address blocks: 143.20.66.0/24 maxlen: 24 143.20.141.0/24 maxlen: 24 143.20.195.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c409d7b2-ee64-49f1-ad81-8e4a107d62e0/0/88C14EC02ADBF083138EDDD47871176DDEB93D9D.crl rsync://rsync.paas.rpki.ripe.net/repository/c409d7b2-ee64-49f1-ad81-8e4a107d62e0/0/88C14EC02ADBF083138EDDD47871176DDEB93D9D.mft rsync://rpki.ripe.net/repository/DEFAULT/iMFOwCrb8IMTjt3UeHEXbd65PZ0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 16:55:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:be:a2:ea:14:3d:fe:b5:44:1a:b5:75:12:76:01:2f:a2:e7:73:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=88c14ec02adbf083138eddd47871176ddeb93d9d Validity Not Before: Dec 29 05:59:28 2025 GMT Not After : Dec 28 06:04:28 2026 GMT Subject: CN=87B787930C9CF4838EA2368C7BCA177BCF6C6E75 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:1e:1c:b1:df:82:52:fa:25:c4:f9:43:6c:66: 5c:98:ce:57:73:11:10:31:91:21:5c:66:ce:7e:6f: d8:3f:67:06:f0:77:85:c4:ce:84:5c:1d:08:f7:18: 75:ed:bd:d5:0a:19:c3:69:20:81:ea:3d:7f:84:4b: d4:c2:94:60:d6:5b:05:2f:43:f9:e7:7e:5a:b9:31: d0:82:43:6b:34:1e:3c:5a:4b:6a:d7:61:b4:0e:f7: 11:c2:94:09:a5:08:9c:02:7f:0f:33:b9:41:f8:c7: bd:88:bc:4e:81:dd:fc:19:61:6c:90:a2:87:22:48: 47:19:82:ef:79:e4:80:c1:4e:3d:bf:1e:cd:34:3c: f1:4f:ed:7f:08:92:d9:a8:0a:85:27:74:ba:37:ea: eb:54:31:cd:b8:15:48:3b:90:a7:21:3a:6c:63:4b: c6:b3:7a:3b:4b:ad:61:fd:50:bd:29:2d:7e:5c:1b: ba:8f:55:28:27:af:5c:ae:ec:1a:52:64:31:a1:bb: 03:0a:05:d5:eb:3d:2b:72:26:a4:0b:39:f9:10:f3: 5f:6d:2a:2e:bd:b0:f3:28:b6:f6:99:d5:08:95:ad: e8:18:c5:09:0e:44:5f:0c:ab:cf:74:a9:ef:1b:c5: a0:09:bb:05:f9:a5:fd:0d:49:b4:ba:78:80:da:a7: 32:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:B7:87:93:0C:9C:F4:83:8E:A2:36:8C:7B:CA:17:7B:CF:6C:6E:75 X509v3 Authority Key Identifier: keyid:88:C1:4E:C0:2A:DB:F0:83:13:8E:DD:D4:78:71:17:6D:DE:B9:3D:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/c409d7b2-ee64-49f1-ad81-8e4a107d62e0/0/88C14EC02ADBF083138EDDD47871176DDEB93D9D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iMFOwCrb8IMTjt3UeHEXbd65PZ0.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c409d7b2-ee64-49f1-ad81-8e4a107d62e0/0/AS16276.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 143.20.66.0/24 143.20.141.0/24 143.20.195.0/24 Signature Algorithm: sha256WithRSAEncryption 3a:ba:5b:5e:50:3b:6a:a3:86:e8:5e:02:7f:27:67:61:8e:2a: 33:ac:5f:7d:49:d5:e4:71:5c:3c:0d:26:c3:6f:44:bf:20:b8: 38:39:06:35:33:48:56:cb:92:09:1b:49:f4:36:2c:cb:87:e2: d6:66:c7:fe:87:c8:a3:3f:7e:bd:4a:f7:51:59:bd:1d:11:7f: 66:8d:60:b5:f7:6b:c2:88:06:ff:80:33:f3:a5:3c:bd:e9:f1: cd:94:be:6f:50:7a:ad:61:42:bf:fa:77:43:69:aa:e7:4b:1a: a0:36:aa:3f:29:e9:25:83:c6:20:82:30:a2:74:c3:0f:44:ed: 48:bc:1c:bd:a3:43:48:0c:bd:b4:05:d0:1c:1a:d4:06:ba:4a: d8:44:55:0b:b7:f6:7a:38:33:26:c5:03:fc:ef:0e:e7:cc:9e: 0d:3e:c1:86:9a:cc:7e:4d:54:a7:7b:0c:69:b0:c5:94:2a:77: 44:24:23:62:8a:2b:1e:5c:eb:21:af:21:03:1a:6b:f7:d0:3a: 96:c5:21:bf:2c:70:ec:b1:b0:00:81:be:5d:e6:be:48:13:18: fa:74:0a:13:08:ea:94:cd:98:f1:43:d2:ee:84:9e:e3:3a:b9: 92:ef:d7:ba:bb:92:f5:1a:26:c5:86:f9:1e:eb:30:1e:55:9b: 39:ec:73:55 -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgIUNb6i6hQ9/rVEGrV1EnYBL6Lnc/EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODhjMTRlYzAyYWRiZjA4MzEzOGVkZGQ0Nzg3MTE3NmRk ZWI5M2Q5ZDAeFw0yNTEyMjkwNTU5MjhaFw0yNjEyMjgwNjA0MjhaMDMxMTAvBgNV BAMTKDg3Qjc4NzkzMEM5Q0Y0ODM4RUEyMzY4QzdCQ0ExNzdCQ0Y2QzZFNzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0Hhyx34JS+iXE+UNsZlyYzldz ERAxkSFcZs5+b9g/Zwbwd4XEzoRcHQj3GHXtvdUKGcNpIIHqPX+ES9TClGDWWwUv Q/nnflq5MdCCQ2s0HjxaS2rXYbQO9xHClAmlCJwCfw8zuUH4x72IvE6B3fwZYWyQ oociSEcZgu955IDBTj2/Hs00PPFP7X8IktmoCoUndLo36utUMc24FUg7kKchOmxj S8azejtLrWH9UL0pLX5cG7qPVSgnr1yu7BpSZDGhuwMKBdXrPStyJqQLOfkQ819t Ki69sPMotvaZ1QiVregYxQkORF8Mq890qe8bxaAJuwX5pf0NSbS6eIDapzJFAgMB AAGjggIVMIICETAdBgNVHQ4EFgQUh7eHkwyc9IOOojaMe8oXe89sbnUwHwYDVR0j BBgwFoAUiMFOwCrb8IMTjt3UeHEXbd65PZ0wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYzQwOWQ3YjItZWU2NC00OWYxLWFkODEtOGU0YTEwN2Q2 MmUwLzAvODhDMTRFQzAyQURCRjA4MzEzOEVEREQ0Nzg3MTE3NkRERUI5M0Q5RC5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2lNRk93Q3JiOElNVGp0M1VlSEVYYmQ2 NVBaMC5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2M0MDlkN2IyLWVlNjQt NDlmMS1hZDgxLThlNGExMDdkNjJlMC8wL0FTMTYyNzYucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwKwYIKwYBBQUHAQcBAf8EHDAaMBgEAgABMBIDBACPFEID BACPFI0DBACPFMMwDQYJKoZIhvcNAQELBQADggEBADq6W15QO2qjhuheAn8nZ2GO KjOsX31J1eRxXDwNJsNvRL8guDg5BjUzSFbLkgkbSfQ2LMuH4tZmx/6HyKM/fr1K 91FZvR0Rf2aNYLX3a8KIBv+AM/OlPL3p8c2Uvm9Qeq1hQr/6d0NpqudLGqA2qj8p 6SWDxiCCMKJ0ww9E7Ui8HL2jQ0gMvbQF0Bwa1Aa6SthEVQu39no4MybFA/zvDufM ng0+wYaazH5NVKd7DGmwxZQqd0QkI2KKKx5c6yGvIQMaa/fQOpbFIb8scOyxsACB vl3mvkgTGPp0ChMI6pTNmPFD0u6EnuM6uZLv17q7kvUaJsWG+R7rMB5Vmznsc1U= -----END CERTIFICATE-----Generated at Mon Jan 19 20:01:43 2026 by rpki-client