Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/AS16276.roa
File: AS16276.roa (raw, json)
Hash identifier: fu3ltW98BRHm9kgKVEYFqPOKtdfXLnSYhX9mPb4S/7Q=
Subject key identifier: 50:2C:2D:56:8E:13:13:A8:1C:2F:16:B1:E5:F2:01:15:FA:BD:12:3B
Certificate issuer: /CN=9dfbff217105df8877d463f6e9bac28a4084d20c
Certificate serial: 4C93AF5A188AC4610300C71E0D7BAE98F091C9E7
Authority key identifier: 9D:FB:FF:21:71:05:DF:88:77:D4:63:F6:E9:BA:C2:8A:40:84:D2:0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nfv_IXEF34h31GP26brCikCE0gw.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/AS16276.roa
Signing time: Wed 18 Feb 2026 14:34:18 +0000
ROA not before: Wed 18 Feb 2026 14:29:18 +0000
ROA not after: Wed 17 Feb 2027 14:34:18 +0000
asID: 16276
IP address blocks: 176.53.158.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/9DFBFF217105DF8877D463F6E9BAC28A4084D20C.crl
rsync://rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/9DFBFF217105DF8877D463F6E9BAC28A4084D20C.mft
rsync://rpki.ripe.net/repository/DEFAULT/nfv_IXEF34h31GP26brCikCE0gw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4c:93:af:5a:18:8a:c4:61:03:00:c7:1e:0d:7b:ae:98:f0:91:c9:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9dfbff217105df8877d463f6e9bac28a4084d20c
Validity
Not Before: Feb 18 14:29:18 2026 GMT
Not After : Feb 17 14:34:18 2027 GMT
Subject: CN=502C2D568E1313A81C2F16B1E5F20115FABD123B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:cb:c0:45:9a:3e:77:d8:a5:10:47:7e:1a:dc:
50:93:a0:54:52:15:6a:36:13:17:1f:f0:93:45:a0:
4c:0e:db:bc:40:47:c3:52:57:bc:4a:cf:93:48:d3:
34:88:cb:68:3d:ee:45:7d:9d:52:4c:78:90:c3:8c:
7c:07:00:53:16:17:ee:f1:a0:d9:76:e2:09:1a:16:
ff:8f:47:6e:e8:3c:ff:52:bd:95:85:d8:74:c1:d1:
cf:11:e5:12:bd:01:12:e3:59:24:ca:6f:8d:42:ff:
d1:de:e1:d8:f2:ab:52:34:c2:e7:e2:e9:31:84:24:
99:01:64:4f:90:df:a7:7f:42:46:d6:14:6d:2e:54:
06:e9:d7:36:45:31:a4:d9:ff:46:7f:83:fa:87:b1:
47:6b:02:2a:7a:a8:ed:ab:0a:ad:c2:e6:01:13:4d:
77:a3:09:d6:2f:99:0a:7e:6e:52:8f:22:7a:1c:7b:
40:f4:cc:5a:7b:d5:9b:29:a2:cf:24:9e:a1:c0:f2:
cb:dc:06:12:3b:9f:5e:67:7a:ae:60:c0:bb:d7:09:
1e:69:0b:8d:c6:59:c4:66:7e:cc:32:21:25:ff:3f:
92:10:a1:11:29:01:75:92:cf:36:88:be:64:93:1b:
6f:7d:a6:57:15:42:60:e8:29:81:a8:0e:61:5a:4d:
ee:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:2C:2D:56:8E:13:13:A8:1C:2F:16:B1:E5:F2:01:15:FA:BD:12:3B
X509v3 Authority Key Identifier:
keyid:9D:FB:FF:21:71:05:DF:88:77:D4:63:F6:E9:BA:C2:8A:40:84:D2:0C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/9DFBFF217105DF8877D463F6E9BAC28A4084D20C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nfv_IXEF34h31GP26brCikCE0gw.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/AS16276.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.53.158.0/24
Signature Algorithm: sha256WithRSAEncryption
db:7b:53:24:6f:e2:d5:ba:d9:b2:09:e4:02:a3:e3:70:92:89:
96:b3:78:62:da:07:23:95:99:f3:7a:66:d4:bd:f6:48:9b:83:
85:92:e1:d2:e1:ce:a2:57:fc:e2:29:98:54:38:96:76:d7:ec:
26:56:bf:bd:62:53:f1:8c:46:ad:af:ef:9c:59:43:d0:67:fd:
64:9a:80:30:9d:5a:57:74:6f:ef:8b:ba:ba:95:f4:b5:bb:dd:
3a:4d:46:28:c3:9a:f0:6e:f9:35:8c:66:ff:3a:01:09:2b:bf:
bb:ec:c2:7b:31:dc:30:28:fc:32:55:fe:0a:f0:34:5d:58:ae:
5b:67:87:ae:bc:ec:71:46:0d:e6:db:56:85:fe:ad:d2:94:52:
e2:d4:cd:8a:c1:42:ec:04:53:c8:c7:2e:39:c8:29:a4:78:3d:
30:c2:1c:c1:80:95:d3:8b:06:5a:60:ee:b1:3f:6a:6f:01:3c:
a9:b2:43:d0:c9:1f:7d:62:5c:a9:11:25:f9:0c:a4:9e:87:68:
f6:b1:1e:7e:f8:9c:53:fd:e1:f6:b5:09:02:1a:49:b4:9a:e3:
88:bc:c5:bb:02:3e:69:3d:f7:87:87:46:a5:a5:59:58:6b:4a:
21:b9:12:2f:1d:33:ca:46:e1:5c:01:2d:59:23:91:6a:5d:ac:
48:63:66:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 09:35:09 2026 by rpki-client