Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS16276.roa
File: AS16276.roa (raw, json)
Hash identifier: SLxup+IEDTL8iXSF1Bvzt+UlvdyvbpO9wZlAd0BV1JQ=
Subject key identifier: A2:B5:9F:EA:B0:DD:5E:E8:CC:B7:A4:38:99:36:F8:9B:8E:EC:CD:C4
Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Certificate serial: 73F7E64529C45AC929F97C2CAF78DFB4C4385F9F
Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS16276.roa
Signing time: Fri 24 Oct 2025 02:41:50 +0000
ROA not before: Fri 24 Oct 2025 02:36:50 +0000
ROA not after: Fri 23 Oct 2026 02:41:50 +0000
asID: 16276
IP address blocks: 46.202.232.0/22 maxlen: 24
46.202.240.0/22 maxlen: 24
46.203.108.0/22 maxlen: 24
46.203.116.0/22 maxlen: 24
46.203.128.0/22 maxlen: 24
46.203.140.0/22 maxlen: 24
91.124.192.0/24 maxlen: 24
91.124.199.0/24 maxlen: 24
92.113.13.0/24 maxlen: 24
92.113.67.0/24 maxlen: 24
92.113.74.0/24 maxlen: 24
92.113.77.0/24 maxlen: 24
92.113.80.0/24 maxlen: 24
92.113.230.0/24 maxlen: 24
178.95.26.0/24 maxlen: 24
178.95.161.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft
rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
73:f7:e6:45:29:c4:5a:c9:29:f9:7c:2c:af:78:df:b4:c4:38:5f:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Validity
Not Before: Oct 24 02:36:50 2025 GMT
Not After : Oct 23 02:41:50 2026 GMT
Subject: CN=A2B59FEAB0DD5EE8CCB7A4389936F89B8EECCDC4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:90:8e:19:16:78:11:dc:72:12:c1:f3:d5:81:
47:3a:ae:77:53:99:ad:c8:27:ee:3b:dc:33:ee:1f:
d8:5b:1b:f2:76:00:fe:53:e3:70:c1:54:b1:69:73:
fc:47:00:22:47:8c:66:b8:00:fd:00:27:26:25:c4:
47:b4:2a:d3:f4:4c:25:40:37:c0:e3:de:f5:01:4a:
30:e3:e5:23:c9:d4:e6:ef:c6:77:d5:70:ef:1a:db:
70:e8:de:e7:11:27:b2:45:65:1f:e8:fa:57:b0:ff:
5d:87:4d:38:30:c5:83:20:50:8e:b0:78:d8:5a:a6:
6b:0f:78:02:06:4b:a3:be:39:30:27:bd:e0:5c:72:
cc:5f:13:d7:8d:a0:dc:d4:bc:53:c9:8b:ff:a3:f5:
6f:1f:13:46:93:dc:8c:22:c6:6d:96:f1:59:42:a6:
19:04:85:ec:79:87:1a:cd:c8:be:d1:5a:66:b9:d0:
66:1d:81:64:35:6e:dd:3d:38:93:1c:e5:89:c6:d7:
91:f8:60:34:2c:2e:cb:5a:53:ae:48:75:e3:82:2a:
4e:64:83:ad:ae:69:40:ee:a2:50:e0:10:db:c0:a9:
d2:1a:64:2c:d1:25:2b:87:65:76:8e:d7:01:84:a9:
82:49:f4:96:c7:b3:55:e7:5b:88:24:af:9e:6a:69:
6b:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:B5:9F:EA:B0:DD:5E:E8:CC:B7:A4:38:99:36:F8:9B:8E:EC:CD:C4
X509v3 Authority Key Identifier:
keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS16276.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.202.232.0/22
46.202.240.0/22
46.203.108.0/22
46.203.116.0/22
46.203.128.0/22
46.203.140.0/22
91.124.192.0/24
91.124.199.0/24
92.113.13.0/24
92.113.67.0/24
92.113.74.0/24
92.113.77.0/24
92.113.80.0/24
92.113.230.0/24
178.95.26.0/24
178.95.161.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:6f:0b:9e:27:f8:71:68:01:de:60:bb:18:2d:4d:3c:cd:b6:
d1:c4:71:6b:be:26:36:da:24:58:c2:28:eb:65:2e:07:b7:c6:
20:3d:4f:a2:63:62:ac:11:c8:6b:e1:b6:50:91:06:87:86:48:
26:bb:d2:cb:62:85:9d:30:36:93:0d:e8:d4:32:b9:c3:65:b0:
35:14:6a:ee:44:8f:f0:9e:be:e9:71:9e:0b:03:e7:4d:72:a1:
30:cd:e1:2c:c7:9d:0c:0c:d2:cb:13:85:2a:16:ba:0a:e6:20:
46:ee:03:a4:bd:03:58:b6:39:ff:ca:7e:11:c4:09:81:ba:54:
d5:ba:6a:74:bf:87:e5:34:2c:63:05:f0:0e:e9:bc:4f:a6:0a:
45:0f:b4:90:41:f9:71:3e:df:f8:94:61:54:d7:13:b2:33:4f:
65:2c:22:df:c7:de:af:c2:3f:ed:ca:7d:0d:39:c9:59:b9:02:
b4:b4:8f:55:78:83:fc:50:be:81:9b:97:37:c8:f5:7e:df:a6:
4a:34:b6:ba:7c:05:f8:92:a5:82:ff:ed:04:d6:85:7a:a9:0a:
47:91:6e:29:bc:be:0e:21:01:9d:4a:c6:d7:12:f9:86:19:55:
e9:d5:0c:ec:27:7d:5c:23:a2:3c:1a:37:88:c7:3c:90:03:5c:
4a:15:ed:eb
-----BEGIN CERTIFICATE-----
MIIFWTCCBEGgAwIBAgIUc/fmRSnEWskp+Xwsr3jftMQ4X58wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOWJkODEzMzkxZTRhZjJhZTMxMDNjMTg5MWIyMjcyZDRk
NWMxM2I1ZjAeFw0yNTEwMjQwMjM2NTBaFw0yNjEwMjMwMjQxNTBaMDMxMTAvBgNV
BAMTKEEyQjU5RkVBQjBERDVFRThDQ0I3QTQzODk5MzZGODlCOEVFQ0NEQzQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDikI4ZFngR3HISwfPVgUc6rndT
ma3IJ+473DPuH9hbG/J2AP5T43DBVLFpc/xHACJHjGa4AP0AJyYlxEe0KtP0TCVA
N8Dj3vUBSjDj5SPJ1ObvxnfVcO8a23Do3ucRJ7JFZR/o+lew/12HTTgwxYMgUI6w
eNhapmsPeAIGS6O+OTAnveBccsxfE9eNoNzUvFPJi/+j9W8fE0aT3Iwixm2W8VlC
phkEhex5hxrNyL7RWma50GYdgWQ1bt09OJMc5YnG15H4YDQsLstaU65IdeOCKk5k
g62uaUDuolDgENvAqdIaZCzRJSuHZXaO1wGEqYJJ9JbHs1XnW4gkr55qaWs1AgMB
AAGjggJjMIICXzAdBgNVHQ4EFgQUorWf6rDdXujMt6Q4mTb4m47szcQwHwYDVR0j
BBgwFoAUm9gTOR5K8q4xA8GJGyJy1NXBO18wDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvYzQ3OGY2ZjUtNDQ5YS00ODI3LTk5ZDUtYmY2YjkzYThm
NmI0LzAvOUJEODEzMzkxRTRBRjJBRTMxMDNDMTg5MUIyMjcyRDRENUMxM0I1Ri5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL205Z1RPUjVLOHE0eEE4R0pHeUp5MU5Y
Qk8xOC5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2M0NzhmNmY1LTQ0OWEt
NDgyNy05OWQ1LWJmNmI5M2E4ZjZiNC8wL0FTMTYyNzYucm9hMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIweQYIKwYBBQUHAQcBAf8EajBoMGYEAgABMGADBAIuyugD
BAIuyvADBAIuy2wDBAIuy3QDBAIuy4ADBAIuy4wDBABbfMADBABbfMcDBABccQ0D
BABccUMDBABccUoDBABccU0DBABccVADBABcceYDBACyXxoDBACyX6EwDQYJKoZI
hvcNAQELBQADggEBAKdvC54n+HFoAd5guxgtTTzNttHEcWu+JjbaJFjCKOtlLge3
xiA9T6JjYqwRyGvhtlCRBoeGSCa70stihZ0wNpMN6NQyucNlsDUUau5Ej/Cevulx
ngsD501yoTDN4SzHnQwM0ssThSoWugrmIEbuA6S9A1i2Of/KfhHECYG6VNW6anS/
h+U0LGMF8A7pvE+mCkUPtJBB+XE+3/iUYVTXE7IzT2UsIt/H3q/CP+3KfQ05yVm5
ArS0j1V4g/xQvoGblzfI9X7fpko0trp8BfiSpYL/7QTWhXqpCkeRbim8vg4hAZ1K
xtcS+YYZVenVDOwnfVwjojwaN4jHPJADXEoV7es=
-----END CERTIFICATE-----
Generated at Tue Nov 4 18:05:13 2025 by rpki-client