This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS16509.roa File: AS16509.roa (raw, json) Hash identifier: 8vSsG9wvllPNEyOouLwWYIME1dY+2RFzIZ0+mV+5hq8= Subject key identifier: 03:F9:19:01:5B:BA:AD:15:89:20:7D:62:96:9C:04:30:13:74:DA:70 Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a Certificate serial: 5B4105235C2747B32922FC6B57EE2EF3CD5F1BC3 Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS16509.roa Signing time: Tue 16 Dec 2025 11:08:22 +0000 ROA not before: Tue 16 Dec 2025 11:03:22 +0000 ROA not after: Tue 15 Dec 2026 11:08:22 +0000 asID: 16509 IP address blocks: 181.214.94.0/24 maxlen: 24 181.214.110.0/24 maxlen: 24 181.215.206.0/23 maxlen: 24 185.135.159.0/24 maxlen: 24 185.137.12.0/24 maxlen: 24 185.137.13.0/24 maxlen: 24 191.96.204.0/24 maxlen: 24 191.101.111.0/24 maxlen: 24 191.101.223.0/24 maxlen: 24 213.109.169.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.mft rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 12:07:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:41:05:23:5c:27:47:b3:29:22:fc:6b:57:ee:2e:f3:cd:5f:1b:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a Validity Not Before: Dec 16 11:03:22 2025 GMT Not After : Dec 15 11:08:22 2026 GMT Subject: CN=03F919015BBAAD1589207D62969C04301374DA70 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:d3:56:a5:6b:a3:6c:6e:95:0a:13:9d:52:93: 94:fe:25:9b:31:8d:04:54:bf:52:17:3e:77:2f:2f: 3b:b9:e8:e3:28:bb:9b:94:ae:85:1e:c7:1a:e9:d5: e6:e6:94:75:34:20:15:c6:0f:81:d2:0a:21:85:94: 2d:e9:cd:e5:49:6b:59:c1:6c:ca:58:93:c4:48:42: dc:b2:e3:05:37:5d:33:c9:18:9e:d9:90:9f:3c:83: 52:ad:98:48:90:31:f2:e6:db:58:4d:b5:9e:d5:a3: 1a:0a:c0:11:29:d0:6c:ab:6c:c5:7b:4c:55:22:f7: 82:d5:76:aa:32:15:f8:cd:8f:fd:7b:a2:ce:96:ad: 2f:3d:7e:42:ca:e7:ea:49:da:61:53:16:ce:b9:75: 4d:4b:e5:e0:47:91:53:61:b2:3a:a7:ef:e3:f1:e0: c6:9d:15:aa:c3:8a:0d:88:58:f9:46:9e:98:1f:37: f7:5e:80:46:82:67:4e:e5:db:d2:1f:be:de:69:5a: 8a:19:a7:23:46:9e:c9:13:94:de:fd:01:ba:bc:15: 88:e7:fe:10:70:86:bd:83:d9:b9:be:77:31:36:77: 85:c4:9a:6a:b5:d4:18:4c:50:1b:75:93:3a:cb:41: 02:14:c1:c9:08:08:fb:76:17:fd:07:05:bb:34:ae: a5:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:F9:19:01:5B:BA:AD:15:89:20:7D:62:96:9C:04:30:13:74:DA:70 X509v3 Authority Key Identifier: keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS16509.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 181.214.94.0/24 181.214.110.0/24 181.215.206.0/23 185.135.159.0/24 185.137.12.0/23 191.96.204.0/24 191.101.111.0/24 191.101.223.0/24 213.109.169.0/24 Signature Algorithm: sha256WithRSAEncryption 20:ff:dd:98:48:6b:0c:14:d4:81:80:7c:58:b7:81:87:46:b3: 44:75:6c:dc:a7:44:56:bd:8c:dc:d4:2b:6f:22:f8:fd:88:f7: 99:ad:66:22:3b:c4:35:18:f1:96:05:4d:4e:a3:7b:e3:8d:99: 46:1b:64:03:85:ce:b2:f6:b2:55:9b:02:70:b5:62:17:da:6f: fb:28:ee:9b:58:cf:5a:34:d3:06:5d:19:f1:7e:5a:de:b2:9e: 7f:2c:af:6f:82:28:af:c5:8d:3f:b0:46:1f:93:92:2e:63:70: a7:95:8b:1e:ed:01:dc:95:f0:d8:a5:1d:e2:31:40:5a:4c:14: e0:a3:9f:b2:3f:c4:75:33:3f:67:92:5f:e4:c6:2f:36:5e:ae: bb:8e:28:20:6c:a5:15:29:5f:49:27:2a:e5:a0:72:43:e3:3c: dd:eb:52:96:4f:00:5d:c0:26:28:76:48:70:4d:ec:8e:2a:44: a6:58:5c:4c:9f:ae:cc:8f:04:a0:e0:66:31:a8:c5:51:20:88: eb:72:7b:33:9d:b6:f3:83:b3:e4:1d:3f:3b:8c:38:81:e9:8d: 06:bd:1d:1b:b5:10:7e:68:21:8f:d3:af:38:64:0c:15:85:16: ed:f4:24:d3:fe:36:94:86:f3:e5:16:44:06:e1:38:40:4c:87: 04:66:14:74 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUW0EFI1wnR7MpIvxrV+4u881fG8MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjFiMWJiNDQ0NzcxOGYxNmIzZDM2Njc1ZDIwNWM0ZGVh NDFiYmEwYTAeFw0yNTEyMTYxMTAzMjJaFw0yNjEyMTUxMTA4MjJaMDMxMTAvBgNV BAMTKDAzRjkxOTAxNUJCQUFEMTU4OTIwN0Q2Mjk2OUMwNDMwMTM3NERBNzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDW01ala6NsbpUKE51Sk5T+JZsx jQRUv1IXPncvLzu56OMou5uUroUexxrp1ebmlHU0IBXGD4HSCiGFlC3pzeVJa1nB bMpYk8RIQtyy4wU3XTPJGJ7ZkJ88g1KtmEiQMfLm21hNtZ7VoxoKwBEp0GyrbMV7 TFUi94LVdqoyFfjNj/17os6WrS89fkLK5+pJ2mFTFs65dU1L5eBHkVNhsjqn7+Px 4MadFarDig2IWPlGnpgfN/degEaCZ07l29Ifvt5pWooZpyNGnskTlN79Abq8FYjn /hBwhr2D2bm+dzE2d4XEmmq11BhMUBt1kzrLQQIUwckICPt2F/0HBbs0rqWLAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUA/kZAVu6rRWJIH1ilpwEMBN02nAwHwYDVR0j BBgwFoAUYbG7REdxjxaz02Z10gXE3qQbugowDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNTM3NDU5ZTctMmE4My00M2QxLTlhYTEtNTg0MTdhYmFj NGI2LzEvNjFCMUJCNDQ0NzcxOEYxNkIzRDM2Njc1RDIwNUM0REVBNDFCQkEwQS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1liRzdSRWR4anhhejAyWjEwZ1hFM3FR YnVnby5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzUzNzQ1OWU3LTJhODMt NDNkMS05YWExLTU4NDE3YWJhYzRiNi8xL0FTMTY1MDkucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwTwYIKwYBBQUHAQcBAf8EQDA+MDwEAgABMDYDBAC11l4D BAC11m4DBAG1184DBAC5h58DBAG5iQwDBAC/YMwDBAC/ZW8DBAC/Zd8DBADVbakw DQYJKoZIhvcNAQELBQADggEBACD/3ZhIawwU1IGAfFi3gYdGs0R1bNynRFa9jNzU K28i+P2I95mtZiI7xDUY8ZYFTU6je+ONmUYbZAOFzrL2slWbAnC1Yhfab/so7ptY z1o00wZdGfF+Wt6ynn8sr2+CKK/FjT+wRh+Tki5jcKeVix7tAdyV8NilHeIxQFpM FOCjn7I/xHUzP2eSX+TGLzZerruOKCBspRUpX0knKuWgckPjPN3rUpZPAF3AJih2 SHBN7I4qRKZYXEyfrsyPBKDgZjGoxVEgiOtyezOdtvODs+QdPzuMOIHpjQa9HRu1 EH5oIY/TrzhkDBWFFu30JNP+NpSG8+UWRAbhOEBMhwRmFHQ= -----END CERTIFICATE-----Generated at Fri Dec 19 21:48:33 2025 by rpki-client