Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS16276.roa
File: AS16276.roa (raw, json)
Hash identifier: oEboKxGuv1pEs/1BCocamg1dzJuoUkt4XAz3X/g0WmM=
Subject key identifier: E0:85:83:19:C2:89:24:11:A4:15:83:2F:03:A7:DD:E9:6E:5B:A4:53
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 6E67A88249DF6C43F4226C5073FDA4D349491420
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS16276.roa
Signing time: Mon 08 Jun 2026 18:22:41 +0000
ROA not before: Mon 08 Jun 2026 18:17:41 +0000
ROA not after: Mon 07 Jun 2027 18:22:41 +0000
asID: 16276
IP address blocks: 82.21.139.0/24 maxlen: 24
82.22.15.0/24 maxlen: 24
82.22.18.0/24 maxlen: 24
82.22.25.0/24 maxlen: 24
82.22.51.0/24 maxlen: 24
82.22.118.0/24 maxlen: 24
82.24.96.0/22 maxlen: 24
82.24.190.0/24 maxlen: 24
82.25.146.0/23 maxlen: 24
82.26.81.0/24 maxlen: 24
82.26.176.0/21 maxlen: 24
82.26.184.0/21 maxlen: 24
82.29.126.0/24 maxlen: 24
82.38.2.0/24 maxlen: 24
82.38.32.0/24 maxlen: 24
82.38.35.0/24 maxlen: 24
82.38.82.0/24 maxlen: 24
82.38.124.0/22 maxlen: 24
82.38.140.0/22 maxlen: 24
82.38.152.0/22 maxlen: 24
82.38.156.0/22 maxlen: 24
82.38.160.0/22 maxlen: 24
82.38.164.0/22 maxlen: 24
82.38.224.0/22 maxlen: 24
82.38.228.0/22 maxlen: 24
82.38.232.0/22 maxlen: 24
82.38.236.0/22 maxlen: 24
82.38.240.0/22 maxlen: 24
82.38.244.0/22 maxlen: 24
82.38.248.0/22 maxlen: 24
82.38.252.0/22 maxlen: 24
82.39.108.0/24 maxlen: 24
82.39.156.0/22 maxlen: 24
82.39.176.0/22 maxlen: 24
82.39.180.0/22 maxlen: 24
82.39.216.0/22 maxlen: 24
82.39.224.0/22 maxlen: 24
82.40.0.0/22 maxlen: 24
82.40.4.0/22 maxlen: 24
82.40.8.0/22 maxlen: 24
82.40.12.0/22 maxlen: 24
82.40.16.0/22 maxlen: 24
82.41.44.0/22 maxlen: 24
82.41.52.0/22 maxlen: 24
82.41.68.0/22 maxlen: 24
82.41.80.0/22 maxlen: 24
82.41.88.0/22 maxlen: 24
82.41.100.0/22 maxlen: 24
82.41.104.0/22 maxlen: 24
82.41.108.0/22 maxlen: 24
82.41.124.0/22 maxlen: 24
82.41.134.0/24 maxlen: 24
82.41.148.0/22 maxlen: 24
82.41.152.0/22 maxlen: 24
82.41.160.0/22 maxlen: 24
82.41.164.0/22 maxlen: 24
82.41.172.0/22 maxlen: 24
82.41.176.0/22 maxlen: 24
82.41.184.0/22 maxlen: 24
82.41.188.0/22 maxlen: 24
82.41.204.0/22 maxlen: 24
82.41.212.0/22 maxlen: 24
82.41.224.0/22 maxlen: 24
82.41.228.0/22 maxlen: 24
82.47.36.0/23 maxlen: 23
82.47.63.0/24 maxlen: 24
82.47.98.0/24 maxlen: 24
82.47.185.0/24 maxlen: 24
178.83.45.0/24 maxlen: 24
178.83.46.0/24 maxlen: 24
2a13:9500:138::/48 maxlen: 48
2a13:9500:143::/48 maxlen: 48
2a13:9500:166::/48 maxlen: 48
2a13:9500:18e::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 13 Jun 2026 15:07:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6e:67:a8:82:49:df:6c:43:f4:22:6c:50:73:fd:a4:d3:49:49:14:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Jun 8 18:17:41 2026 GMT
Not After : Jun 7 18:22:41 2027 GMT
Subject: CN=E0858319C2892411A415832F03A7DDE96E5BA453
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:fa:d8:d5:b6:76:a0:01:4c:60:98:6a:b7:68:
e8:a3:f4:e9:9d:c1:ea:ef:d3:2f:d0:7a:b4:00:8e:
1b:1b:ff:99:00:65:c7:7b:e9:67:19:0e:48:7d:90:
68:4e:bf:32:97:c8:bc:ed:8b:f4:70:6e:23:ec:10:
7c:20:96:d7:08:e6:c7:ec:9d:ab:5b:45:49:9a:14:
44:58:d8:87:05:bb:93:0e:c8:e5:ea:1f:f5:8e:94:
b4:cc:ac:5f:80:94:55:36:f8:8b:48:d7:1e:bb:3a:
55:a0:2b:1b:ed:de:83:d0:44:ca:ef:89:61:69:53:
73:98:ce:e6:3f:ea:43:91:bf:ae:cb:e4:5c:43:28:
d5:57:f7:35:e3:8e:9a:6c:5c:7a:83:79:71:53:06:
cb:34:cc:b0:e0:d9:f2:02:19:84:8d:0e:12:5d:95:
82:70:d2:75:5b:9d:94:40:ab:c9:0a:94:72:6a:c4:
ea:1f:61:df:42:89:e1:ac:f7:3d:0b:4e:bb:c6:47:
0e:e9:61:43:e0:6b:2c:97:37:5e:bc:42:98:5c:13:
77:91:bf:c7:64:84:f8:36:a3:fc:27:33:d3:a9:37:
e4:a9:f3:2d:04:1a:3d:cc:85:9c:d5:1c:72:5f:21:
fe:bd:a4:52:31:16:7f:98:92:49:a3:e0:ea:60:9b:
5e:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:85:83:19:C2:89:24:11:A4:15:83:2F:03:A7:DD:E9:6E:5B:A4:53
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS16276.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.21.139.0/24
82.22.15.0/24
82.22.18.0/24
82.22.25.0/24
82.22.51.0/24
82.22.118.0/24
82.24.96.0/22
82.24.190.0/24
82.25.146.0/23
82.26.81.0/24
82.26.176.0/20
82.29.126.0/24
82.38.2.0/24
82.38.32.0/24
82.38.35.0/24
82.38.82.0/24
82.38.124.0/22
82.38.140.0/22
82.38.152.0-82.38.167.255
82.38.224.0/19
82.39.108.0/24
82.39.156.0/22
82.39.176.0/21
82.39.216.0/22
82.39.224.0/22
82.40.0.0-82.40.19.255
82.41.44.0/22
82.41.52.0/22
82.41.68.0/22
82.41.80.0/22
82.41.88.0/22
82.41.100.0-82.41.111.255
82.41.124.0/22
82.41.134.0/24
82.41.148.0-82.41.155.255
82.41.160.0/21
82.41.172.0-82.41.179.255
82.41.184.0/21
82.41.204.0/22
82.41.212.0/22
82.41.224.0/21
82.47.36.0/23
82.47.63.0/24
82.47.98.0/24
82.47.185.0/24
178.83.45.0-178.83.46.255
IPv6:
2a13:9500:138::/48
2a13:9500:143::/48
2a13:9500:166::/48
2a13:9500:18e::/48
Signature Algorithm: sha256WithRSAEncryption
9d:88:7f:8e:79:0d:df:c5:d7:64:93:3c:6c:87:f3:5d:a8:5f:
2e:0f:50:f3:60:75:7f:86:1d:00:80:b5:09:f6:79:3e:5a:c5:
d3:b0:b1:30:04:24:35:bd:01:29:4c:2f:3d:2e:aa:b8:b5:ec:
fa:e7:9f:86:f8:25:84:4f:e4:2c:84:1e:6e:79:89:ab:22:6e:
60:45:34:e0:83:c3:cc:c0:95:7e:91:3b:a3:ef:1e:2e:0a:3a:
4b:89:f9:06:31:2c:bd:3f:24:a6:8d:ea:b8:94:42:bd:c7:26:
be:47:b9:3d:e7:ce:b9:d0:50:ea:f8:1a:1e:be:8b:7e:c6:92:
39:1c:47:8e:6f:f1:03:11:78:85:56:94:62:06:1a:0b:64:03:
48:7b:bf:e6:64:46:01:f4:32:1b:11:60:6e:53:33:07:dc:86:
d7:5a:e2:a6:f3:2e:23:8f:0c:fa:f8:e3:2b:04:45:3f:4a:e9:
bf:4b:bd:8c:69:bd:26:87:a8:70:59:a5:2c:e5:54:ff:ce:6e:
94:a9:f4:29:47:1d:50:06:d7:8f:50:99:4f:7d:b1:8a:a4:f5:
70:f5:b3:a0:b7:48:65:4e:2d:c8:2b:4f:c7:d4:2c:69:99:dd:
42:43:33:4b:1a:41:1a:63:66:7e:de:f1:db:b7:80:0c:7c:c6:
7f:53:3d:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 05:42:55 2026 by rpki-client