This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS16276.roa File: AS16276.roa (raw, json) Hash identifier: tPPojlkX15MV2BTRaAy5DQ4Ms7QwEzVQWYKouKLXgBk= Subject key identifier: BF:77:AC:B8:CA:4E:7D:33:A9:B9:94:12:B1:F4:7F:6C:D9:82:12:C1 Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f Certificate serial: 0A61D7DCA3ADD7FC55587F0B2978398AC471E862 Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS16276.roa Signing time: Mon 15 Dec 2025 10:48:13 +0000 ROA not before: Mon 15 Dec 2025 10:43:13 +0000 ROA not after: Mon 14 Dec 2026 10:48:13 +0000 asID: 16276 IP address blocks: 46.202.232.0/22 maxlen: 24 46.202.240.0/22 maxlen: 24 46.203.108.0/22 maxlen: 24 46.203.116.0/22 maxlen: 24 46.203.128.0/22 maxlen: 24 46.203.140.0/22 maxlen: 24 91.124.43.0/24 maxlen: 24 91.124.99.0/24 maxlen: 24 91.124.192.0/24 maxlen: 24 91.124.196.0/24 maxlen: 24 91.124.199.0/24 maxlen: 24 92.113.13.0/24 maxlen: 24 92.113.67.0/24 maxlen: 24 92.113.74.0/24 maxlen: 24 92.113.77.0/24 maxlen: 24 92.113.80.0/24 maxlen: 24 178.93.124.0/24 maxlen: 24 178.93.237.0/24 maxlen: 24 178.95.186.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 00:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:61:d7:dc:a3:ad:d7:fc:55:58:7f:0b:29:78:39:8a:c4:71:e8:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f Validity Not Before: Dec 15 10:43:13 2025 GMT Not After : Dec 14 10:48:13 2026 GMT Subject: CN=BF77ACB8CA4E7D33A9B99412B1F47F6CD98212C1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:a3:cf:d2:f2:da:d2:86:b9:4f:fa:0a:42:1a: f5:63:69:5a:0d:b8:50:01:ae:31:21:11:66:54:76: 3c:30:fe:3b:c4:84:4f:9c:71:18:1b:32:eb:d2:4b: 22:b1:29:74:0e:52:d0:75:50:b9:7d:03:5b:f5:1f: ed:e5:bb:4f:f2:b8:26:d4:43:59:e7:2e:d0:34:50: 64:45:98:ca:1d:32:c6:5c:44:d2:79:dd:f5:4b:43: c5:bf:7e:7f:f6:b6:d5:a5:2d:6f:c0:df:4f:ac:58: f8:c5:a9:eb:c6:99:0a:2c:2a:f8:8b:5d:a6:72:32: 96:8e:53:e7:e3:1d:ee:07:94:d0:5f:f2:f2:01:7d: 41:61:11:3e:fb:d3:7f:c8:3d:5e:3c:d3:ca:2e:e8: 5a:b6:ce:53:11:fe:22:c2:2d:1a:56:bd:eb:14:a8: 67:fa:2b:66:5e:c6:02:61:31:84:29:ec:78:79:6a: fa:9c:9d:c3:2e:06:7c:a4:16:ea:b9:ff:4f:f3:b2: 13:6b:0f:68:c7:88:f9:ce:f4:95:3f:e5:e4:85:10: f4:6b:fd:30:11:b4:77:0d:ae:35:50:00:b3:68:44: ab:4d:ff:0a:fb:c7:11:bc:de:47:4a:5e:e4:97:4b: 42:d2:50:9a:a4:57:31:f2:1c:ff:52:c3:5d:49:72: 92:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:77:AC:B8:CA:4E:7D:33:A9:B9:94:12:B1:F4:7F:6C:D9:82:12:C1 X509v3 Authority Key Identifier: keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS16276.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 46.202.232.0/22 46.202.240.0/22 46.203.108.0/22 46.203.116.0/22 46.203.128.0/22 46.203.140.0/22 91.124.43.0/24 91.124.99.0/24 91.124.192.0/24 91.124.196.0/24 91.124.199.0/24 92.113.13.0/24 92.113.67.0/24 92.113.74.0/24 92.113.77.0/24 92.113.80.0/24 178.93.124.0/24 178.93.237.0/24 178.95.186.0/24 Signature Algorithm: sha256WithRSAEncryption a0:00:93:27:c5:09:8e:bf:cb:67:85:c7:d3:53:8d:24:e7:62: 8e:43:43:6b:54:f0:39:85:b3:bd:98:64:1d:59:02:fc:41:63: 38:6c:60:fa:8b:d1:42:02:7c:7f:81:ff:0d:a9:a9:ee:3f:60: 09:39:6b:c5:e5:bd:c8:9c:8c:49:f7:59:df:2e:a1:80:43:d3: 86:c0:db:d8:bb:64:6d:75:8e:6f:13:5a:cf:97:da:ab:86:96: 53:12:69:25:77:36:18:68:79:67:fb:17:4c:7b:af:44:2e:18: 3a:29:80:6e:a5:35:ec:e0:60:a3:d2:14:79:45:ae:38:53:67: 40:c3:df:a7:57:9e:97:ac:9c:38:a4:b1:9a:89:4a:58:21:97: a6:ce:7d:66:48:b2:9a:d8:13:09:51:a0:2c:49:c3:a6:be:26: b8:e3:44:c1:2f:66:7a:89:1d:4a:16:e9:e1:87:05:90:84:33: 9c:4a:b3:cf:c0:40:81:59:8d:38:ca:39:c3:2e:f7:c7:74:c8: 07:f0:44:6f:70:f7:a6:dd:31:ba:a9:8d:5a:11:9d:86:67:06: 4b:b8:84:42:0c:17:45:71:8c:d6:83:bf:71:d4:d9:3b:ad:d6: 86:10:d7:45:d8:d5:01:5e:49:a0:9f:04:33:21:64:b0:19:58: 2f:b0:65:f5 -----BEGIN CERTIFICATE----- MIIFbDCCBFSgAwIBAgIUCmHX3KOt1/xVWH8LKXg5isRx6GIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOWJkODEzMzkxZTRhZjJhZTMxMDNjMTg5MWIyMjcyZDRk NWMxM2I1ZjAeFw0yNTEyMTUxMDQzMTNaFw0yNjEyMTQxMDQ4MTNaMDMxMTAvBgNV BAMTKEJGNzdBQ0I4Q0E0RTdEMzNBOUI5OTQxMkIxRjQ3RjZDRDk4MjEyQzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+o8/S8trShrlP+gpCGvVjaVoN uFABrjEhEWZUdjww/jvEhE+ccRgbMuvSSyKxKXQOUtB1ULl9A1v1H+3lu0/yuCbU Q1nnLtA0UGRFmModMsZcRNJ53fVLQ8W/fn/2ttWlLW/A30+sWPjFqevGmQosKviL XaZyMpaOU+fjHe4HlNBf8vIBfUFhET7703/IPV4808ou6Fq2zlMR/iLCLRpWvesU qGf6K2ZexgJhMYQp7Hh5avqcncMuBnykFuq5/0/zshNrD2jHiPnO9JU/5eSFEPRr /TARtHcNrjVQALNoRKtN/wr7xxG83kdKXuSXS0LSUJqkVzHyHP9Sw11JcpKBAgMB AAGjggJ2MIICcjAdBgNVHQ4EFgQUv3esuMpOfTOpuZQSsfR/bNmCEsEwHwYDVR0j BBgwFoAUm9gTOR5K8q4xA8GJGyJy1NXBO18wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYzQ3OGY2ZjUtNDQ5YS00ODI3LTk5ZDUtYmY2YjkzYThm NmI0LzAvOUJEODEzMzkxRTRBRjJBRTMxMDNDMTg5MUIyMjcyRDRENUMxM0I1Ri5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL205Z1RPUjVLOHE0eEE4R0pHeUp5MU5Y Qk8xOC5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2M0NzhmNmY1LTQ0OWEt NDgyNy05OWQ1LWJmNmI5M2E4ZjZiNC8wL0FTMTYyNzYucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwgYsGCCsGAQUFBwEHAQH/BHwwejB4BAIAATByAwQCLsro AwQCLsrwAwQCLstsAwQCLst0AwQCLsuAAwQCLsuMAwQAW3wrAwQAW3xjAwQAW3zA AwQAW3zEAwQAW3zHAwQAXHENAwQAXHFDAwQAXHFKAwQAXHFNAwQAXHFQAwQAsl18 AwQAsl3tAwQAsl+6MA0GCSqGSIb3DQEBCwUAA4IBAQCgAJMnxQmOv8tnhcfTU40k 52KOQ0NrVPA5hbO9mGQdWQL8QWM4bGD6i9FCAnx/gf8NqanuP2AJOWvF5b3InIxJ 91nfLqGAQ9OGwNvYu2RtdY5vE1rPl9qrhpZTEmkldzYYaHln+xdMe69ELhg6KYBu pTXs4GCj0hR5Ra44U2dAw9+nV56XrJw4pLGaiUpYIZemzn1mSLKa2BMJUaAsScOm via440TBL2Z6iR1KFunhhwWQhDOcSrPPwECBWY04yjnDLvfHdMgH8ERvcPem3TG6 qY1aEZ2GZwZLuIRCDBdFcYzWg79x1Nk7rdaGENdF2NUBXkmgnwQzIWSwGVgvsGX1 -----END CERTIFICATE-----Generated at Sun Dec 21 07:19:00 2025 by rpki-client