Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS16276.roa
File: AS16276.roa (raw, json)
Hash identifier: UrKUE83VSpVnGACusENSCSAhtl0StoMXwDwrfFl6kyg=
Subject key identifier: C3:45:76:FC:5C:95:BC:3D:CB:DB:37:CA:7A:D0:99:30:AF:3F:2F:9F
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 73EDA788DD6F831DF91B8BB3D275369B87D4454A
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS16276.roa
Signing time: Thu 26 Feb 2026 15:33:27 +0000
ROA not before: Thu 26 Feb 2026 15:28:27 +0000
ROA not after: Thu 25 Feb 2027 15:33:27 +0000
asID: 16276
IP address blocks: 82.21.139.0/24 maxlen: 24
82.22.15.0/24 maxlen: 24
82.22.18.0/24 maxlen: 24
82.22.25.0/24 maxlen: 24
82.22.118.0/24 maxlen: 24
82.24.96.0/22 maxlen: 24
82.25.146.0/23 maxlen: 24
82.26.81.0/24 maxlen: 24
82.26.176.0/21 maxlen: 24
82.26.184.0/21 maxlen: 24
82.29.126.0/24 maxlen: 24
82.38.2.0/24 maxlen: 24
82.38.32.0/24 maxlen: 24
82.38.82.0/24 maxlen: 24
82.38.124.0/22 maxlen: 24
82.38.140.0/22 maxlen: 24
82.38.152.0/22 maxlen: 24
82.38.156.0/22 maxlen: 24
82.38.160.0/22 maxlen: 24
82.38.164.0/22 maxlen: 24
82.38.224.0/22 maxlen: 24
82.38.228.0/22 maxlen: 24
82.38.232.0/22 maxlen: 24
82.38.236.0/22 maxlen: 24
82.38.240.0/22 maxlen: 24
82.38.244.0/22 maxlen: 24
82.38.248.0/22 maxlen: 24
82.38.252.0/22 maxlen: 24
82.39.108.0/24 maxlen: 24
82.39.138.0/24 maxlen: 24
82.39.156.0/22 maxlen: 24
82.39.176.0/22 maxlen: 24
82.39.180.0/22 maxlen: 24
82.39.216.0/22 maxlen: 24
82.39.224.0/22 maxlen: 24
82.40.0.0/22 maxlen: 24
82.40.4.0/22 maxlen: 24
82.40.8.0/22 maxlen: 24
82.40.12.0/22 maxlen: 24
82.40.16.0/22 maxlen: 24
82.41.44.0/22 maxlen: 24
82.41.52.0/22 maxlen: 24
82.41.68.0/22 maxlen: 24
82.41.80.0/22 maxlen: 24
82.41.88.0/22 maxlen: 24
82.41.100.0/22 maxlen: 24
82.41.104.0/22 maxlen: 24
82.41.108.0/22 maxlen: 24
82.41.124.0/22 maxlen: 24
82.41.148.0/22 maxlen: 24
82.41.152.0/22 maxlen: 24
82.41.160.0/22 maxlen: 24
82.41.164.0/22 maxlen: 24
82.41.172.0/22 maxlen: 24
82.41.176.0/22 maxlen: 24
82.41.184.0/22 maxlen: 24
82.41.188.0/22 maxlen: 24
82.41.204.0/22 maxlen: 24
82.41.212.0/22 maxlen: 24
82.41.224.0/22 maxlen: 24
82.41.228.0/22 maxlen: 24
2a13:9500:138::/48 maxlen: 48
2a13:9500:143::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
73:ed:a7:88:dd:6f:83:1d:f9:1b:8b:b3:d2:75:36:9b:87:d4:45:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Feb 26 15:28:27 2026 GMT
Not After : Feb 25 15:33:27 2027 GMT
Subject: CN=C34576FC5C95BC3DCBDB37CA7AD09930AF3F2F9F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:e7:9e:34:03:92:11:4c:79:d5:37:58:d9:f8:
8e:ed:b7:9a:b1:57:77:e8:fb:32:e2:ef:a3:c2:9d:
36:c8:48:de:b5:d9:f8:49:5a:10:f6:53:a7:f1:b7:
7b:9f:64:79:13:7f:9d:95:1a:ee:69:b3:9e:e3:17:
9d:93:ce:5c:36:c2:c4:c0:14:c6:43:36:8d:e6:67:
7c:9d:1e:9b:61:94:6c:78:02:89:9b:98:11:03:27:
d4:9e:e7:0c:96:97:56:9b:ce:86:83:b2:af:59:3e:
6a:87:7d:f7:3e:eb:fb:e3:d3:b4:52:d5:1b:25:48:
67:b9:70:6b:f7:23:5e:9b:ce:bf:f0:70:47:d4:da:
be:11:11:a3:10:0e:e7:62:b2:2d:bd:7b:72:31:fa:
7f:66:88:e3:6a:77:20:5f:2b:9d:91:e0:03:18:7e:
d9:75:90:74:a5:28:61:c6:82:d8:45:28:16:0f:b7:
cf:7d:e6:d5:04:f3:be:96:a4:ec:95:b1:09:75:f6:
67:ac:87:0a:af:ab:ba:80:34:36:1b:35:4b:c0:3f:
ab:c5:74:a7:f1:28:8d:b3:bc:82:00:c2:db:d3:f7:
55:1c:5b:8f:b3:53:98:4c:c8:76:04:35:b2:0e:fc:
bc:1c:15:3e:29:12:4d:14:87:41:c5:45:b4:4e:07:
c6:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:45:76:FC:5C:95:BC:3D:CB:DB:37:CA:7A:D0:99:30:AF:3F:2F:9F
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS16276.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.21.139.0/24
82.22.15.0/24
82.22.18.0/24
82.22.25.0/24
82.22.118.0/24
82.24.96.0/22
82.25.146.0/23
82.26.81.0/24
82.26.176.0/20
82.29.126.0/24
82.38.2.0/24
82.38.32.0/24
82.38.82.0/24
82.38.124.0/22
82.38.140.0/22
82.38.152.0-82.38.167.255
82.38.224.0/19
82.39.108.0/24
82.39.138.0/24
82.39.156.0/22
82.39.176.0/21
82.39.216.0/22
82.39.224.0/22
82.40.0.0-82.40.19.255
82.41.44.0/22
82.41.52.0/22
82.41.68.0/22
82.41.80.0/22
82.41.88.0/22
82.41.100.0-82.41.111.255
82.41.124.0/22
82.41.148.0-82.41.155.255
82.41.160.0/21
82.41.172.0-82.41.179.255
82.41.184.0/21
82.41.204.0/22
82.41.212.0/22
82.41.224.0/21
IPv6:
2a13:9500:138::/48
2a13:9500:143::/48
Signature Algorithm: sha256WithRSAEncryption
47:b7:cf:6e:14:88:8a:52:38:7a:61:57:ce:99:6d:e7:a4:d6:
92:80:7b:09:d5:c4:49:00:90:82:f0:db:d4:c2:5e:8c:4b:3f:
2b:ea:82:01:a1:2c:4b:0f:46:22:18:e8:44:7f:4e:c9:f7:6a:
be:87:be:97:e5:07:bb:c6:38:78:c5:4b:c4:f5:55:c0:b1:ef:
15:b3:90:b1:8e:2c:fb:20:3a:64:24:82:79:9c:79:24:59:9b:
34:6e:02:b9:27:9f:49:32:02:e0:30:cc:0b:15:5c:a1:92:8f:
36:f8:01:62:6a:0d:c6:90:e3:fe:4c:cd:46:68:ac:27:31:b7:
f6:61:c3:d8:52:38:62:ec:0b:ef:dd:dc:1e:12:6a:38:a2:49:
8e:5c:be:ea:3d:f9:c9:9a:43:08:c4:86:ff:09:f6:03:ab:e8:
1d:0a:53:4c:5f:cd:d7:30:52:ff:83:f9:e6:d6:ad:fe:e6:62:
80:49:c0:1c:78:9b:93:1a:45:c7:21:4f:36:d5:aa:64:28:33:
e6:04:56:33:ef:34:d8:ca:b8:12:fe:30:5a:ca:e0:2b:1e:4d:
0c:21:81:06:58:c0:ba:94:25:e6:68:f5:f4:41:39:36:1e:8e:
45:73:4b:e5:07:9e:26:e3:ac:72:24:41:c8:c0:8a:2b:3b:ca:
3b:33:ef:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 03:19:26 2026 by rpki-client