This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS16509.roa File: AS16509.roa (raw, json) Hash identifier: D3ujpJkIKpQ5N+TI6VqbZQ9ZIQqCcjpMr17CVCEztM4= Subject key identifier: 5F:AF:46:65:D3:5E:FA:03:B1:E3:71:4F:56:17:17:FA:E3:F3:55:63 Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc Certificate serial: 316106B8002EF59083371DF6B24D8D7CF8131D93 Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS16509.roa Signing time: Wed 17 Dec 2025 01:18:32 +0000 ROA not before: Wed 17 Dec 2025 01:13:32 +0000 ROA not after: Wed 16 Dec 2026 01:18:32 +0000 asID: 16509 IP address blocks: 96.62.208.0/22 maxlen: 22 140.233.128.0/19 maxlen: 24 143.14.227.0/24 maxlen: 24 145.223.64.0/24 maxlen: 24 145.223.65.0/24 maxlen: 24 146.103.60.0/24 maxlen: 24 146.103.62.0/23 maxlen: 24 147.79.25.0/24 maxlen: 24 148.135.180.0/24 maxlen: 24 148.135.186.0/24 maxlen: 24 150.241.253.0/24 maxlen: 24 155.117.0.0/24 maxlen: 24 155.117.60.0/24 maxlen: 24 155.117.185.0/24 maxlen: 24 155.117.187.0/24 maxlen: 24 155.117.203.0/24 maxlen: 24 162.141.159.0/24 maxlen: 24 162.141.180.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.mft rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 16:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:61:06:b8:00:2e:f5:90:83:37:1d:f6:b2:4d:8d:7c:f8:13:1d:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc Validity Not Before: Dec 17 01:13:32 2025 GMT Not After : Dec 16 01:18:32 2026 GMT Subject: CN=5FAF4665D35EFA03B1E3714F561717FAE3F35563 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:39:67:07:23:2f:cb:c4:3d:bc:53:45:26:e0: ba:9e:82:6c:6f:57:5e:3a:94:3a:f7:5c:a6:fa:8c: c5:a5:8e:93:cc:3a:70:5a:c8:70:c4:94:0b:21:99: a6:35:53:da:af:47:a4:4d:00:b0:0e:60:c4:97:d4: 80:ef:bf:10:ca:01:4f:c1:20:b8:09:b4:7e:24:05: 61:4c:10:26:2a:11:7c:ac:62:48:db:5a:5d:1b:ce: 93:f2:c6:a1:04:fa:79:86:6f:85:be:93:0c:21:95: ea:61:2a:68:7e:ae:56:0b:6e:b2:2f:32:a1:7b:cd: 47:8c:54:3d:3d:ae:4b:ee:99:88:f0:e3:a1:60:3e: 05:a9:d6:0e:32:48:de:d7:bf:e0:eb:b9:cf:76:29: 60:9d:8f:3b:c4:6e:e5:50:11:71:ed:2f:f4:ae:f1: 74:34:1c:4c:12:30:02:d5:eb:60:1b:c8:ad:fb:67: 3e:2b:fa:90:17:5a:d0:9e:2b:65:83:09:08:3b:c9: de:12:c9:f8:11:da:0e:72:1a:80:f4:9f:40:69:67: 7a:b7:19:5a:52:c0:8e:8c:a2:e5:a0:25:bd:96:bc: f8:b1:7e:fe:a7:0e:51:42:be:9e:08:2c:a4:b5:4f: f1:f5:8e:cd:14:d7:89:03:a5:5c:26:53:47:66:23: 41:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:AF:46:65:D3:5E:FA:03:B1:E3:71:4F:56:17:17:FA:E3:F3:55:63 X509v3 Authority Key Identifier: keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS16509.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.62.208.0/22 140.233.128.0/19 143.14.227.0/24 145.223.64.0/23 146.103.60.0/24 146.103.62.0/23 147.79.25.0/24 148.135.180.0/24 148.135.186.0/24 150.241.253.0/24 155.117.0.0/24 155.117.60.0/24 155.117.185.0/24 155.117.187.0/24 155.117.203.0/24 162.141.159.0/24 162.141.180.0/24 Signature Algorithm: sha256WithRSAEncryption 18:3e:8e:24:6b:eb:c0:b7:f6:fa:bb:a1:de:10:a1:05:f9:02: ac:f9:0a:65:ce:21:2d:bd:86:d1:04:c0:61:d5:0f:6e:6b:c5: 81:84:8c:11:84:34:46:c8:1a:41:d2:33:ef:27:98:36:28:08: e8:6f:55:38:2b:d6:7d:c7:b5:c0:a5:13:2a:ce:69:88:ff:1b: c3:52:c7:cc:d2:a1:32:56:7b:8e:2e:b8:c0:05:e7:fd:0a:b3: dd:04:46:67:90:b6:05:12:08:45:83:15:61:4e:e7:3a:ba:ba: 7c:47:04:b5:a8:5e:eb:f5:bb:fc:0e:10:94:13:12:a9:bb:ed: 70:30:b0:bf:62:f0:3c:e1:a0:18:f1:97:e2:cc:7a:0a:55:44: 06:ef:eb:f8:36:f2:0a:da:2a:1a:b9:b6:3f:ae:c7:4f:67:97: 73:a9:c0:ce:6b:aa:15:36:52:28:30:fd:92:99:17:86:48:39: db:83:5a:42:8e:32:89:bd:91:d8:94:a4:d1:98:2b:c1:b7:ed: 64:d7:3c:e9:53:c3:a3:93:c2:e6:a6:cf:70:2b:64:09:2e:5e: 63:bd:08:53:57:fa:4e:0c:a7:52:2c:d1:75:12:5f:10:9b:09: 8e:0b:32:01:e5:f3:cb:48:7a:cc:e7:8d:76:91:2d:29:66:38: f6:a8:c3:e3 -----BEGIN CERTIFICATE----- MIIFXzCCBEegAwIBAgIUMWEGuAAu9ZCDNx32sk2NfPgTHZMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNGZjMzM2YmY5ZjNkZTVjZTQxNDE0YmQxOTcxOTQ1ZjRi MjQ2YmZjYzAeFw0yNTEyMTcwMTEzMzJaFw0yNjEyMTYwMTE4MzJaMDMxMTAvBgNV BAMTKDVGQUY0NjY1RDM1RUZBMDNCMUUzNzE0RjU2MTcxN0ZBRTNGMzU1NjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDcOWcHIy/LxD28U0Um4Lqegmxv V146lDr3XKb6jMWljpPMOnBayHDElAshmaY1U9qvR6RNALAOYMSX1IDvvxDKAU/B ILgJtH4kBWFMECYqEXysYkjbWl0bzpPyxqEE+nmGb4W+kwwhlephKmh+rlYLbrIv MqF7zUeMVD09rkvumYjw46FgPgWp1g4ySN7Xv+Druc92KWCdjzvEbuVQEXHtL/Su 8XQ0HEwSMALV62AbyK37Zz4r+pAXWtCeK2WDCQg7yd4SyfgR2g5yGoD0n0BpZ3q3 GVpSwI6MouWgJb2WvPixfv6nDlFCvp4ILKS1T/H1js0U14kDpVwmU0dmI0GHAgMB AAGjggJpMIICZTAdBgNVHQ4EFgQUX69GZdNe+gOx43FPVhcX+uPzVWMwHwYDVR0j BBgwFoAUT8M2v5895c5BQUvRlxlF9LJGv8wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMDliZTNhYWUtYWVhMS00MWRjLWIxYjktOTVhYzU5MTgy NDRkLzAvNEZDMzM2QkY5RjNERTVDRTQxNDE0QkQxOTcxOTQ1RjRCMjQ2QkZDQy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1Q4TTJ2NTg5NWM1QlFVdlJseGxGOUxK R3Y4dy5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzA5YmUzYWFlLWFlYTEt NDFkYy1iMWI5LTk1YWM1OTE4MjQ0ZC8wL0FTMTY1MDkucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwfwYIKwYBBQUHAQcBAf8EcDBuMGwEAgABMGYDBAJgPtAD BAWM6YADBACPDuMDBAGR30ADBACSZzwDBAGSZz4DBACTTxkDBACUh7QDBACUh7oD BACW8f0DBACbdQADBACbdTwDBACbdbkDBACbdbsDBACbdcsDBACijZ8DBACijbQw DQYJKoZIhvcNAQELBQADggEBABg+jiRr68C39vq7od4QoQX5Aqz5CmXOIS29htEE wGHVD25rxYGEjBGENEbIGkHSM+8nmDYoCOhvVTgr1n3HtcClEyrOaYj/G8NSx8zS oTJWe44uuMAF5/0Ks90ERmeQtgUSCEWDFWFO5zq6unxHBLWoXuv1u/wOEJQTEqm7 7XAwsL9i8DzhoBjxl+LMegpVRAbv6/g28graKhq5tj+ux09nl3OpwM5rqhU2Uigw /ZKZF4ZIOduDWkKOMom9kdiUpNGYK8G37WTXPOlTw6OTwuamz3ArZAkuXmO9CFNX +k4Mp1Is0XUSXxCbCY4LMgHl88tIesznjXaRLSlmOPaow+M= -----END CERTIFICATE-----Generated at Fri Dec 19 23:23:26 2025 by rpki-client