Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS16276.roa
File: AS16276.roa (raw, json)
Hash identifier: L2sWT4Rv2Koh9C/d19HDyz2AmRYq9UjZLGMqj3kuABc=
Subject key identifier: 7D:FE:35:94:2F:15:02:CA:DE:24:1B:F7:99:20:9D:0F:98:6B:35:7B
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 656555F03ED636DC56D2FCC9A8C4749A6E5CE31D
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS16276.roa
Signing time: Wed 11 Jun 2025 12:03:09 +0000
ROA not before: Wed 11 Jun 2025 11:58:09 +0000
ROA not after: Wed 10 Jun 2026 12:03:09 +0000
asID: 16276
IP address blocks: 82.22.118.0/24 maxlen: 24
82.22.196.0/24 maxlen: 24
82.24.96.0/22 maxlen: 24
82.26.202.0/24 maxlen: 24
82.27.197.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
65:65:55:f0:3e:d6:36:dc:56:d2:fc:c9:a8:c4:74:9a:6e:5c:e3:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Jun 11 11:58:09 2025 GMT
Not After : Jun 10 12:03:09 2026 GMT
Subject: CN=7DFE35942F1502CADE241BF799209D0F986B357B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:3a:72:07:85:d0:2d:4b:24:02:29:79:39:f8:
e5:1e:57:b2:2e:d4:f6:5a:15:09:6d:7d:26:fd:47:
28:29:ca:24:24:5a:02:b5:0f:31:35:6e:5b:01:18:
e9:4f:23:73:bd:ff:84:b5:1f:be:26:79:9b:97:60:
55:97:bf:d2:16:6d:3f:25:85:6b:0a:d2:57:b8:6f:
c6:fb:cc:ae:d4:03:e5:05:24:0c:8b:c1:4c:97:5f:
a4:a4:92:a5:11:f7:8a:a2:a8:03:0a:af:1c:f1:2b:
26:4c:61:63:32:76:41:f9:15:fc:fc:e9:01:02:45:
b6:c0:da:b6:08:32:7e:8d:31:0b:c9:9f:88:9f:e4:
a9:e9:14:22:31:af:2b:70:b2:7b:03:31:c6:83:97:
0a:00:f4:b4:f1:3a:f8:5f:b8:2e:b8:21:78:3c:f5:
5d:97:6d:e2:7b:26:fb:22:f5:40:3f:23:71:90:bb:
3d:c9:06:6b:6d:c3:a4:d6:43:06:30:c4:97:ec:05:
87:95:74:f9:41:ec:fc:63:00:d3:6e:c0:d3:f7:b2:
da:b0:f8:21:d4:aa:0c:5b:51:0c:f1:61:3c:12:73:
fd:5f:bd:d3:67:f5:a7:11:d3:23:22:b9:d2:82:97:
66:66:44:bc:df:67:84:f6:2c:0e:64:2a:45:cd:71:
03:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:FE:35:94:2F:15:02:CA:DE:24:1B:F7:99:20:9D:0F:98:6B:35:7B
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS16276.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.22.118.0/24
82.22.196.0/24
82.24.96.0/22
82.26.202.0/24
82.27.197.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:db:43:fe:29:69:a1:78:ef:88:4e:17:e4:e6:29:26:d1:77:
3a:c7:dc:60:c0:b8:28:cc:1c:88:01:c5:fe:6a:d0:be:d2:38:
52:a5:5e:aa:3a:2b:bf:f9:e7:75:81:56:c7:e9:10:ba:b7:15:
94:7a:06:b3:f5:1f:a8:67:f8:a7:3b:de:16:3e:e4:50:88:48:
44:17:84:8d:1c:ec:59:fb:98:1f:07:71:71:76:0d:f7:e0:d2:
52:ad:29:7d:28:68:f2:a3:e8:d9:d3:66:1d:58:3a:9f:1a:71:
86:ff:a5:94:3f:89:83:95:dc:ec:b0:aa:21:63:94:dc:5e:a5:
5a:7f:5d:b2:59:42:2a:f1:6d:7f:82:e2:07:70:87:7d:18:fb:
36:9d:1a:7c:cd:4f:14:bb:df:f3:86:9e:d7:07:bd:fa:a5:88:
5d:8a:cd:0c:73:c0:78:b0:09:f1:f9:45:04:55:15:08:97:ae:
f7:b9:6e:6f:fe:f2:cc:20:b6:50:9d:1c:cb:ca:f7:26:1b:16:
fa:9e:b9:10:e8:1b:7b:a5:51:61:25:35:b1:97:f8:a2:a6:97:
c7:da:ff:46:ad:ca:07:1b:8f:03:2e:a5:9c:9b:d4:1d:20:ef:
3c:79:64:64:53:90:85:c4:79:f9:59:e0:51:1c:af:ab:af:f9:
15:ea:eb:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 10:57:19 2025 by rpki-client