This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS16276.roa File: AS16276.roa (raw, json) Hash identifier: lZrpssAQ3kh0yFliwkQHqqMc9wnh7A4LaQA53KrhtX4= Subject key identifier: A9:9E:F3:C5:1F:AB:DE:69:01:29:DD:D0:90:5A:65:23:73:2F:0D:35 Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f Certificate serial: 5D947BBF0F5F29A632F5203D33A94BAD9803C6D0 Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS16276.roa Signing time: Wed 10 Dec 2025 08:20:25 +0000 ROA not before: Wed 10 Dec 2025 08:15:25 +0000 ROA not after: Wed 09 Dec 2026 08:20:25 +0000 asID: 16276 IP address blocks: 46.202.232.0/22 maxlen: 24 46.202.240.0/22 maxlen: 24 46.203.108.0/22 maxlen: 24 46.203.116.0/22 maxlen: 24 46.203.128.0/22 maxlen: 24 46.203.140.0/22 maxlen: 24 46.203.188.0/24 maxlen: 24 91.124.43.0/24 maxlen: 24 91.124.99.0/24 maxlen: 24 91.124.192.0/24 maxlen: 24 91.124.196.0/24 maxlen: 24 91.124.199.0/24 maxlen: 24 92.113.13.0/24 maxlen: 24 92.113.67.0/24 maxlen: 24 92.113.74.0/24 maxlen: 24 92.113.77.0/24 maxlen: 24 92.113.80.0/24 maxlen: 24 178.93.237.0/24 maxlen: 24 178.95.186.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Dec 2025 13:23:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:94:7b:bf:0f:5f:29:a6:32:f5:20:3d:33:a9:4b:ad:98:03:c6:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f Validity Not Before: Dec 10 08:15:25 2025 GMT Not After : Dec 9 08:20:25 2026 GMT Subject: CN=A99EF3C51FABDE690129DDD0905A6523732F0D35 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:b0:01:44:83:4f:b2:bd:34:14:58:80:39:45: e2:de:b1:72:ba:0f:1c:15:0b:fc:aa:8b:e3:bb:0c: 0f:f8:4c:57:a3:df:da:e5:96:af:41:91:17:9b:51: 3b:d9:3f:d1:81:1b:a6:c2:79:87:fd:38:0d:08:9f: 6c:8a:39:33:f2:43:fe:d7:50:d3:57:57:1f:cd:9a: 6d:29:60:98:04:3d:bf:c4:73:c7:89:ec:b7:34:15: 25:2b:8c:f0:9c:19:91:29:49:e2:e8:6f:dc:fd:0d: 49:31:1d:89:58:90:92:d4:73:aa:fa:9a:a8:f5:39: ed:34:9f:78:94:7b:ec:8c:af:ea:fa:73:b4:75:49: 3a:83:5c:4d:be:2f:01:02:7d:db:be:da:35:50:67: 0d:f0:a0:d3:12:11:65:ed:9c:f3:0c:a6:85:75:d5: 57:2a:f2:5d:2c:99:a0:b7:1a:1c:99:62:e4:df:8d: f3:c1:09:fc:3d:8e:88:87:54:99:eb:ca:d8:9f:8c: 2f:6e:87:8a:9f:af:79:a6:b5:b7:1a:1f:dc:bd:be: 25:89:2f:29:97:13:8a:65:48:f2:af:46:73:85:af: 4e:3b:c0:84:9b:88:af:8d:4b:9d:3f:1e:ed:3e:df: fd:c8:de:8e:d3:b6:41:8d:02:94:15:00:31:14:0b: 1b:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:9E:F3:C5:1F:AB:DE:69:01:29:DD:D0:90:5A:65:23:73:2F:0D:35 X509v3 Authority Key Identifier: keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS16276.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 46.202.232.0/22 46.202.240.0/22 46.203.108.0/22 46.203.116.0/22 46.203.128.0/22 46.203.140.0/22 46.203.188.0/24 91.124.43.0/24 91.124.99.0/24 91.124.192.0/24 91.124.196.0/24 91.124.199.0/24 92.113.13.0/24 92.113.67.0/24 92.113.74.0/24 92.113.77.0/24 92.113.80.0/24 178.93.237.0/24 178.95.186.0/24 Signature Algorithm: sha256WithRSAEncryption a8:0c:5b:c7:70:5a:a4:1f:02:87:55:db:7c:9d:40:88:63:97: ed:f5:34:5c:00:b5:f8:75:e0:64:b1:b5:41:14:16:7a:38:81: d5:08:3c:54:40:b8:2a:c4:18:b5:d4:8a:60:ae:60:4a:a6:46: ed:c1:a4:3e:35:15:06:49:e6:fc:35:35:bb:1a:e6:b9:9a:2e: 6f:48:88:e2:62:d4:f1:9d:8a:2a:01:84:fd:c2:4f:af:0b:60: 08:13:71:91:45:3f:e7:f8:0c:c0:c3:85:58:71:4d:94:d2:52: a1:a5:79:98:d3:63:d0:ed:d1:ae:fe:ba:19:03:5d:63:6f:a7: cd:75:4e:7d:12:19:a3:7b:e9:8c:ec:2c:35:3d:78:51:a8:5a: 79:1b:01:d7:72:c1:4f:18:58:6d:49:3f:e1:93:c7:cc:0a:e1: cb:95:d0:87:2c:8d:ff:de:bc:c0:97:01:8f:af:a3:73:b1:a1: 42:75:a7:9e:5e:45:f5:25:dd:43:ed:f8:7a:ae:17:50:11:57: b1:ca:30:67:52:81:b4:13:33:63:4f:cf:c2:4c:e2:3f:c6:6b: 50:fd:48:ec:fe:c9:3b:23:df:b7:67:69:1d:77:d5:94:7f:a0: c3:52:ea:eb:cb:2c:5a:ab:f3:71:25:5f:2c:b1:f6:63:12:6e: bf:9d:e6:3b -----BEGIN CERTIFICATE----- MIIFbDCCBFSgAwIBAgIUXZR7vw9fKaYy9SA9M6lLrZgDxtAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOWJkODEzMzkxZTRhZjJhZTMxMDNjMTg5MWIyMjcyZDRk NWMxM2I1ZjAeFw0yNTEyMTAwODE1MjVaFw0yNjEyMDkwODIwMjVaMDMxMTAvBgNV BAMTKEE5OUVGM0M1MUZBQkRFNjkwMTI5REREMDkwNUE2NTIzNzMyRjBEMzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0sAFEg0+yvTQUWIA5ReLesXK6 DxwVC/yqi+O7DA/4TFej39rllq9BkRebUTvZP9GBG6bCeYf9OA0In2yKOTPyQ/7X UNNXVx/Nmm0pYJgEPb/Ec8eJ7Lc0FSUrjPCcGZEpSeLob9z9DUkxHYlYkJLUc6r6 mqj1Oe00n3iUe+yMr+r6c7R1STqDXE2+LwECfdu+2jVQZw3woNMSEWXtnPMMpoV1 1Vcq8l0smaC3GhyZYuTfjfPBCfw9joiHVJnrytifjC9uh4qfr3mmtbcaH9y9viWJ LymXE4plSPKvRnOFr047wISbiK+NS50/Hu0+3/3I3o7TtkGNApQVADEUCxu5AgMB AAGjggJ2MIICcjAdBgNVHQ4EFgQUqZ7zxR+r3mkBKd3QkFplI3MvDTUwHwYDVR0j BBgwFoAUm9gTOR5K8q4xA8GJGyJy1NXBO18wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYzQ3OGY2ZjUtNDQ5YS00ODI3LTk5ZDUtYmY2YjkzYThm NmI0LzAvOUJEODEzMzkxRTRBRjJBRTMxMDNDMTg5MUIyMjcyRDRENUMxM0I1Ri5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL205Z1RPUjVLOHE0eEE4R0pHeUp5MU5Y Qk8xOC5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2M0NzhmNmY1LTQ0OWEt NDgyNy05OWQ1LWJmNmI5M2E4ZjZiNC8wL0FTMTYyNzYucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwgYsGCCsGAQUFBwEHAQH/BHwwejB4BAIAATByAwQCLsro AwQCLsrwAwQCLstsAwQCLst0AwQCLsuAAwQCLsuMAwQALsu8AwQAW3wrAwQAW3xj AwQAW3zAAwQAW3zEAwQAW3zHAwQAXHENAwQAXHFDAwQAXHFKAwQAXHFNAwQAXHFQ AwQAsl3tAwQAsl+6MA0GCSqGSIb3DQEBCwUAA4IBAQCoDFvHcFqkHwKHVdt8nUCI Y5ft9TRcALX4deBksbVBFBZ6OIHVCDxUQLgqxBi11IpgrmBKpkbtwaQ+NRUGSeb8 NTW7Gua5mi5vSIjiYtTxnYoqAYT9wk+vC2AIE3GRRT/n+AzAw4VYcU2U0lKhpXmY 02PQ7dGu/roZA11jb6fNdU59Ehmje+mM7Cw1PXhRqFp5GwHXcsFPGFhtST/hk8fM CuHLldCHLI3/3rzAlwGPr6NzsaFCdaeeXkX1Jd1D7fh6rhdQEVexyjBnUoG0EzNj T8/CTOI/xmtQ/Ujs/sk7I9+3Z2kdd9WUf6DDUurryyxaq/NxJV8ssfZjEm6/neY7 -----END CERTIFICATE-----Generated at Sun Dec 14 00:02:01 2025 by rpki-client