This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c409d7b2-ee64-49f1-ad81-8e4a107d62e0/0/AS16276.roa File: AS16276.roa (raw, json) Hash identifier: aAtXpDy836FzV4AOmvCO8H9NCgv8I4ScZ80uQWtfOoE= Subject key identifier: 8C:7E:81:A0:1C:93:68:07:FC:43:26:C6:6C:AA:D4:5B:AD:57:AE:06 Certificate issuer: /CN=88c14ec02adbf083138eddd47871176ddeb93d9d Certificate serial: 19C72C9CD24AF856CDF3FA661AD85F697EEA3ACA Authority key identifier: 88:C1:4E:C0:2A:DB:F0:83:13:8E:DD:D4:78:71:17:6D:DE:B9:3D:9D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iMFOwCrb8IMTjt3UeHEXbd65PZ0.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c409d7b2-ee64-49f1-ad81-8e4a107d62e0/0/AS16276.roa Signing time: Mon 15 Dec 2025 10:46:16 +0000 ROA not before: Mon 15 Dec 2025 10:41:16 +0000 ROA not after: Mon 14 Dec 2026 10:46:16 +0000 asID: 16276 IP address blocks: 143.20.66.0/24 maxlen: 24 143.20.141.0/24 maxlen: 24 143.20.195.0/24 maxlen: 24 143.20.223.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c409d7b2-ee64-49f1-ad81-8e4a107d62e0/0/88C14EC02ADBF083138EDDD47871176DDEB93D9D.crl rsync://rsync.paas.rpki.ripe.net/repository/c409d7b2-ee64-49f1-ad81-8e4a107d62e0/0/88C14EC02ADBF083138EDDD47871176DDEB93D9D.mft rsync://rpki.ripe.net/repository/DEFAULT/iMFOwCrb8IMTjt3UeHEXbd65PZ0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 17:25:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:c7:2c:9c:d2:4a:f8:56:cd:f3:fa:66:1a:d8:5f:69:7e:ea:3a:ca Signature Algorithm: sha256WithRSAEncryption Issuer: CN=88c14ec02adbf083138eddd47871176ddeb93d9d Validity Not Before: Dec 15 10:41:16 2025 GMT Not After : Dec 14 10:46:16 2026 GMT Subject: CN=8C7E81A01C936807FC4326C66CAAD45BAD57AE06 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:11:ad:5e:3d:ac:5d:24:36:d5:1c:0c:82:4a: d7:bd:b6:a6:11:9e:f8:4b:56:e4:19:00:0c:9a:bb: 0f:3c:52:ae:a5:f1:66:0f:ba:90:e2:5b:0e:d3:e6: 3b:3a:cc:d0:88:9c:de:c6:48:3e:7d:ac:13:13:bf: bc:73:a1:91:ab:2c:f7:22:b1:ad:4d:09:fb:21:cf: c8:b0:85:29:9a:51:f7:b6:7c:04:75:d0:08:5f:62: 60:a0:df:4c:b4:8a:99:94:24:8e:88:35:a4:86:9f: 89:cf:26:f4:f8:c1:94:c6:6c:41:92:93:01:15:9f: f2:54:51:48:df:92:e5:55:b0:ed:6d:4a:4c:2c:d8: c0:f6:f2:d8:cf:75:a0:5f:4a:0a:f5:fa:d8:6b:cd: f9:88:58:69:5c:51:ed:ec:ec:91:1b:5e:8c:4c:94: d8:fd:33:27:3b:85:5e:bf:37:7f:58:9a:c4:38:7a: 08:11:f6:c5:f0:40:c7:d2:fd:97:ff:17:b5:4f:4b: 41:16:b3:c8:6e:be:0f:10:53:c5:f0:0a:63:4e:4e: 0e:39:53:06:17:0a:80:54:44:3d:df:09:b4:32:55: 2e:a3:6a:fd:12:d5:62:e0:1c:17:d9:0f:5e:a1:ff: 2d:e4:2b:38:10:2a:cd:a1:83:dc:1c:e9:e1:c0:c7: 41:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:7E:81:A0:1C:93:68:07:FC:43:26:C6:6C:AA:D4:5B:AD:57:AE:06 X509v3 Authority Key Identifier: keyid:88:C1:4E:C0:2A:DB:F0:83:13:8E:DD:D4:78:71:17:6D:DE:B9:3D:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/c409d7b2-ee64-49f1-ad81-8e4a107d62e0/0/88C14EC02ADBF083138EDDD47871176DDEB93D9D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iMFOwCrb8IMTjt3UeHEXbd65PZ0.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c409d7b2-ee64-49f1-ad81-8e4a107d62e0/0/AS16276.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 143.20.66.0/24 143.20.141.0/24 143.20.195.0/24 143.20.223.0/24 Signature Algorithm: sha256WithRSAEncryption 55:d7:19:8a:eb:a1:69:61:c4:9c:14:09:35:23:b7:e9:87:b4: 51:cd:7f:5d:39:60:59:a9:a8:10:01:1d:be:89:c6:7a:e6:16: 2c:a2:9a:2a:b1:51:88:b2:62:83:a2:20:06:6a:a6:b6:73:46: 17:e7:5e:29:b8:16:ac:23:ff:8d:d7:5c:0f:a0:df:db:fb:56: b0:df:4c:b8:cf:d0:1e:12:12:c7:ac:ea:f4:f7:2b:cc:ab:18: 42:02:d6:4a:02:07:d6:08:c4:85:73:57:db:d5:16:f9:28:76: 9a:8d:72:94:b1:08:be:2a:0e:06:fa:25:9c:b4:f7:ff:77:7f: 61:e0:30:5a:f3:f8:2b:6e:6c:c6:8a:3b:47:7f:5c:b1:e8:12: 5e:6f:c6:85:6a:64:7a:1f:55:67:0a:d3:a3:8a:f4:b0:7d:67: 0d:96:03:08:09:94:6c:ae:ac:74:46:d9:8e:6b:bd:64:8e:3b: 30:88:77:3a:e8:11:46:e3:bb:80:b1:cc:59:5d:66:ea:97:cd: 25:38:48:7d:75:92:74:43:4d:1c:7a:90:46:24:f7:81:eb:88: 94:9e:3c:39:53:aa:c8:2f:0c:50:16:84:46:63:8d:dd:dc:89: 96:04:20:eb:93:a6:c4:82:7a:ed:93:60:e8:9b:71:20:69:dc: 68:fe:7f:ef -----BEGIN CERTIFICATE----- MIIFETCCA/mgAwIBAgIUGccsnNJK+FbN8/pmGthfaX7qOsowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODhjMTRlYzAyYWRiZjA4MzEzOGVkZGQ0Nzg3MTE3NmRk ZWI5M2Q5ZDAeFw0yNTEyMTUxMDQxMTZaFw0yNjEyMTQxMDQ2MTZaMDMxMTAvBgNV BAMTKDhDN0U4MUEwMUM5MzY4MDdGQzQzMjZDNjZDQUFENDVCQUQ1N0FFMDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/Ea1ePaxdJDbVHAyCSte9tqYR nvhLVuQZAAyauw88Uq6l8WYPupDiWw7T5js6zNCInN7GSD59rBMTv7xzoZGrLPci sa1NCfshz8iwhSmaUfe2fAR10AhfYmCg30y0ipmUJI6INaSGn4nPJvT4wZTGbEGS kwEVn/JUUUjfkuVVsO1tSkws2MD28tjPdaBfSgr1+thrzfmIWGlcUe3s7JEbXoxM lNj9Myc7hV6/N39YmsQ4eggR9sXwQMfS/Zf/F7VPS0EWs8huvg8QU8XwCmNOTg45 UwYXCoBURD3fCbQyVS6jav0S1WLgHBfZD16h/y3kKzgQKs2hg9wc6eHAx0HrAgMB AAGjggIbMIICFzAdBgNVHQ4EFgQUjH6BoByTaAf8QybGbKrUW61XrgYwHwYDVR0j BBgwFoAUiMFOwCrb8IMTjt3UeHEXbd65PZ0wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYzQwOWQ3YjItZWU2NC00OWYxLWFkODEtOGU0YTEwN2Q2 MmUwLzAvODhDMTRFQzAyQURCRjA4MzEzOEVEREQ0Nzg3MTE3NkRERUI5M0Q5RC5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2lNRk93Q3JiOElNVGp0M1VlSEVYYmQ2 NVBaMC5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2M0MDlkN2IyLWVlNjQt NDlmMS1hZDgxLThlNGExMDdkNjJlMC8wL0FTMTYyNzYucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwMQYIKwYBBQUHAQcBAf8EIjAgMB4EAgABMBgDBACPFEID BACPFI0DBACPFMMDBACPFN8wDQYJKoZIhvcNAQELBQADggEBAFXXGYrroWlhxJwU CTUjt+mHtFHNf105YFmpqBABHb6JxnrmFiyimiqxUYiyYoOiIAZqprZzRhfnXim4 Fqwj/43XXA+g39v7VrDfTLjP0B4SEses6vT3K8yrGEIC1koCB9YIxIVzV9vVFvko dpqNcpSxCL4qDgb6JZy09/93f2HgMFrz+CtubMaKO0d/XLHoEl5vxoVqZHofVWcK 06OK9LB9Zw2WAwgJlGyurHRG2Y5rvWSOOzCIdzroEUbju4CxzFldZuqXzSU4SH11 knRDTRx6kEYk94HriJSePDlTqsgvDFAWhEZjjd3ciZYEIOuTpsSCeu2TYOibcSBp 3Gj+f+8= -----END CERTIFICATE-----Generated at Sun Dec 21 10:32:09 2025 by rpki-client