This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS16276.roa File: AS16276.roa (raw, json) Hash identifier: ze1ZmaxjtSiN0mOkKLbbfzAH0C7/OdYMW59oSDnFtvs= Subject key identifier: 1E:0C:1F:3D:04:39:E1:00:B3:7C:31:93:70:75:4D:4D:82:2F:59:89 Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Certificate serial: 7083529EA8841401A9C79ACA29FFF0491B81D019 Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS16276.roa Signing time: Mon 15 Dec 2025 10:46:15 +0000 ROA not before: Mon 15 Dec 2025 10:41:15 +0000 ROA not after: Mon 14 Dec 2026 10:46:15 +0000 asID: 16276 IP address blocks: 82.21.139.0/24 maxlen: 24 82.22.15.0/24 maxlen: 24 82.22.18.0/24 maxlen: 24 82.22.25.0/24 maxlen: 24 82.22.118.0/24 maxlen: 24 82.24.96.0/22 maxlen: 24 82.25.146.0/23 maxlen: 24 82.26.81.0/24 maxlen: 24 82.26.176.0/21 maxlen: 24 82.26.184.0/21 maxlen: 24 82.38.28.0/24 maxlen: 24 82.38.32.0/24 maxlen: 24 82.38.60.0/24 maxlen: 24 82.38.62.0/24 maxlen: 24 82.38.82.0/24 maxlen: 24 82.38.139.0/24 maxlen: 24 82.38.171.0/24 maxlen: 24 82.39.108.0/24 maxlen: 24 82.39.138.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 16 Dec 2025 15:30:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:83:52:9e:a8:84:14:01:a9:c7:9a:ca:29:ff:f0:49:1b:81:d0:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Validity Not Before: Dec 15 10:41:15 2025 GMT Not After : Dec 14 10:46:15 2026 GMT Subject: CN=1E0C1F3D0439E100B37C319370754D4D822F5989 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:57:33:0e:57:f4:fb:f0:95:cb:36:56:6f:8f: 09:53:44:47:f9:55:2f:8c:4f:7e:d7:74:22:72:3e: ef:15:37:04:7a:9c:78:29:7a:e1:c2:bf:5e:61:45: 48:81:69:76:d4:86:a5:5d:13:f0:9c:1f:11:0f:8c: 85:76:f1:f6:24:12:22:26:3e:14:a3:57:ea:d1:cd: 76:46:ff:39:33:f5:d9:71:cb:46:68:b0:bd:7d:d3: 1d:ad:a0:82:f8:28:bb:24:68:fa:f7:fb:a6:28:a6: fb:7b:e5:1d:7d:d4:12:b4:4a:e9:13:cf:e7:96:42: 87:ac:05:0f:f1:6d:da:3b:ae:46:0c:f3:5a:5a:69: 5c:4a:db:3d:24:25:01:22:39:e2:1e:c6:33:93:71: 77:3c:ef:78:4a:a1:0f:a4:e7:b3:b9:f9:53:51:5c: c8:68:cc:59:11:00:75:0f:aa:47:a9:a3:e8:0a:22: d2:48:41:10:f6:32:bd:0c:8f:fa:6f:77:b2:79:6c: 02:3b:20:7e:67:61:9f:c3:b2:05:9a:0b:c6:47:52: 52:3f:9c:58:d7:27:36:8a:bd:35:74:4f:69:8e:f1: bc:f5:52:e2:d0:c1:a6:30:c7:55:6a:87:01:4c:29: 17:8c:96:94:19:bd:7b:6d:ef:0e:48:ea:72:85:9e: ca:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:0C:1F:3D:04:39:E1:00:B3:7C:31:93:70:75:4D:4D:82:2F:59:89 X509v3 Authority Key Identifier: keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS16276.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 82.21.139.0/24 82.22.15.0/24 82.22.18.0/24 82.22.25.0/24 82.22.118.0/24 82.24.96.0/22 82.25.146.0/23 82.26.81.0/24 82.26.176.0/20 82.38.28.0/24 82.38.32.0/24 82.38.60.0/24 82.38.62.0/24 82.38.82.0/24 82.38.139.0/24 82.38.171.0/24 82.39.108.0/24 82.39.138.0/24 Signature Algorithm: sha256WithRSAEncryption 43:ef:3a:6c:58:4e:25:17:2b:01:90:ab:68:c9:9f:c6:6e:33: 5e:f9:7b:28:22:88:74:ae:11:36:90:0e:3d:85:50:71:44:ce: 36:e5:28:e1:b5:75:c5:81:67:35:a6:b7:6f:c3:54:30:08:3b: 6c:36:56:f6:da:11:fb:0f:3d:05:c9:6f:38:44:77:75:72:67: 86:8a:7e:4f:14:06:45:3b:5a:27:3a:86:ea:b8:dc:32:24:50: 3b:cf:d6:ab:ec:29:c5:83:3d:86:69:0d:54:88:f6:48:a4:8d: f1:2c:0a:00:c7:f8:34:bc:bc:b3:ac:b4:3f:3f:a2:22:23:7f: 55:f7:04:ae:96:46:5b:57:85:c9:28:f2:e9:e5:bc:5f:a8:f6: 21:26:de:b0:3b:e6:b1:4a:81:71:ed:39:c7:fa:63:cc:b9:26: 5c:11:a3:20:54:b8:de:2e:61:27:29:69:9c:82:92:c2:d1:70: b4:30:9a:a4:b8:c4:f0:64:3b:f3:9a:2f:43:82:d9:d7:74:ad: 9d:a6:4a:35:cb:d2:92:9b:e7:7f:6d:3f:4c:af:34:4c:af:30: 50:10:a0:56:87:98:99:72:7b:63:b9:6e:ad:21:bc:77:08:71: 1f:1b:c8:44:04:dc:ab:db:62:fa:e3:3a:fc:e0:f6:ed:d2:6b: b9:4f:7d:81 -----BEGIN CERTIFICATE----- MIIFZjCCBE6gAwIBAgIUcINSnqiEFAGpx5rKKf/wSRuB0BkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjE4Y2M2ZTI0MTA1ZGU2YzVjOTAwM2Q2NTI0Mzg5M2Ni M2NmZGQwMTAeFw0yNTEyMTUxMDQxMTVaFw0yNjEyMTQxMDQ2MTVaMDMxMTAvBgNV BAMTKDFFMEMxRjNEMDQzOUUxMDBCMzdDMzE5MzcwNzU0RDREODIyRjU5ODkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/VzMOV/T78JXLNlZvjwlTREf5 VS+MT37XdCJyPu8VNwR6nHgpeuHCv15hRUiBaXbUhqVdE/CcHxEPjIV28fYkEiIm PhSjV+rRzXZG/zkz9dlxy0ZosL190x2toIL4KLskaPr3+6Yopvt75R191BK0SukT z+eWQoesBQ/xbdo7rkYM81paaVxK2z0kJQEiOeIexjOTcXc873hKoQ+k57O5+VNR XMhozFkRAHUPqkepo+gKItJIQRD2Mr0Mj/pvd7J5bAI7IH5nYZ/DsgWaC8ZHUlI/ nFjXJzaKvTV0T2mO8bz1UuLQwaYwx1VqhwFMKReMlpQZvXtt7w5I6nKFnspfAgMB AAGjggJwMIICbDAdBgNVHQ4EFgQUHgwfPQQ54QCzfDGTcHVNTYIvWYkwHwYDVR0j BBgwFoAUIYzG4kEF3mxckAPWUkOJPLPP3QEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYtYjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWEx YWY2LzAvMjE4Q0M2RTI0MTA1REU2QzVDOTAwM0Q2NTI0Mzg5M0NCM0NGREQwMS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0lZekc0a0VGM214Y2tBUFdVa09KUExQ UDNRRS5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzcxOGExYjRmLWI2NGMt NDAyYy1iZTE1LWRkODJhNDFhMWFmNi8wL0FTMTYyNzYucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwgYUGCCsGAQUFBwEHAQH/BHYwdDByBAIAATBsAwQAUhWL AwQAUhYPAwQAUhYSAwQAUhYZAwQAUhZ2AwQCUhhgAwQBUhmSAwQAUhpRAwQEUhqw AwQAUiYcAwQAUiYgAwQAUiY8AwQAUiY+AwQAUiZSAwQAUiaLAwQAUiarAwQAUids AwQAUieKMA0GCSqGSIb3DQEBCwUAA4IBAQBD7zpsWE4lFysBkKtoyZ/GbjNe+Xso Ioh0rhE2kA49hVBxRM425SjhtXXFgWc1prdvw1QwCDtsNlb22hH7Dz0FyW84RHd1 cmeGin5PFAZFO1onOobquNwyJFA7z9ar7CnFgz2GaQ1UiPZIpI3xLAoAx/g0vLyz rLQ/P6IiI39V9wSulkZbV4XJKPLp5bxfqPYhJt6wO+axSoFx7TnH+mPMuSZcEaMg VLjeLmEnKWmcgpLC0XC0MJqkuMTwZDvzmi9DgtnXdK2dpko1y9KSm+d/bT9MrzRM rzBQEKBWh5iZcntjuW6tIbx3CHEfG8hEBNyr22L64zr84Pbt0mu5T32B -----END CERTIFICATE-----Generated at Mon Dec 15 19:47:39 2025 by rpki-client