Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS16276.roa
File: AS16276.roa (raw, json)
Hash identifier: tOaaAEGs6Z2Dsze1/aqPvRHFavfTv+/VqPvJ8L86V98=
Subject key identifier: DF:AD:74:E7:1A:FB:12:C7:3D:09:D7:E8:5C:98:63:BD:40:C5:18:DC
Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Certificate serial: 4AA1DC4A46DC92C79A9D1859A9960D8B44CE1F29
Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS16276.roa
Signing time: Sat 11 Apr 2026 15:28:00 +0000
ROA not before: Sat 11 Apr 2026 15:23:00 +0000
ROA not after: Sat 10 Apr 2027 15:28:00 +0000
asID: 16276
IP address blocks: 46.202.232.0/22 maxlen: 24
46.202.240.0/22 maxlen: 24
46.203.108.0/22 maxlen: 24
46.203.116.0/22 maxlen: 24
46.203.128.0/22 maxlen: 24
46.203.140.0/22 maxlen: 24
91.124.14.0/24 maxlen: 24
91.124.192.0/24 maxlen: 24
91.124.199.0/24 maxlen: 24
92.113.13.0/24 maxlen: 24
92.113.67.0/24 maxlen: 24
92.113.74.0/24 maxlen: 24
92.113.77.0/24 maxlen: 24
92.113.80.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft
rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4a:a1:dc:4a:46:dc:92:c7:9a:9d:18:59:a9:96:0d:8b:44:ce:1f:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Validity
Not Before: Apr 11 15:23:00 2026 GMT
Not After : Apr 10 15:28:00 2027 GMT
Subject: CN=DFAD74E71AFB12C73D09D7E85C9863BD40C518DC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:c6:ae:97:08:d5:a4:1c:20:a8:26:2c:ff:76:
1e:65:df:3b:6b:a4:03:f4:18:8b:84:cf:bb:29:15:
ed:16:94:bf:c4:7b:32:84:de:7e:24:79:b9:51:c3:
ef:d2:96:ac:dd:41:8f:a3:05:ae:7f:77:2b:0d:01:
fc:bb:0c:c8:36:c0:80:08:7e:6c:55:21:53:29:c3:
4c:39:3e:5c:1b:83:3d:ed:f6:6c:f4:3b:f8:b5:0f:
a6:dc:d2:25:df:45:51:50:84:88:a5:8b:79:5d:ed:
d1:d7:79:82:92:28:d4:9b:7f:cb:20:92:0f:46:0a:
3c:b6:49:af:a0:9d:a3:20:e5:34:09:f1:94:20:62:
95:01:91:58:17:1f:b8:65:28:b1:2a:36:7a:9c:ff:
5c:47:d0:95:cf:43:f3:85:99:ef:37:39:83:5f:d6:
b5:34:0e:12:f2:f2:9c:30:e3:cb:27:f9:ed:46:24:
2f:15:66:a9:d8:69:e9:40:de:1f:f4:33:de:77:59:
ac:db:e4:17:af:41:cc:0e:8c:8f:76:02:f3:f0:7d:
e4:43:f0:8f:8e:cc:10:72:f0:39:03:dd:dd:16:45:
36:11:1c:b2:c7:94:2e:cc:17:b6:ba:da:fa:f2:90:
05:33:6b:a8:2d:d9:3b:cd:c4:67:77:cf:c6:fd:45:
7a:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:AD:74:E7:1A:FB:12:C7:3D:09:D7:E8:5C:98:63:BD:40:C5:18:DC
X509v3 Authority Key Identifier:
keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS16276.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.202.232.0/22
46.202.240.0/22
46.203.108.0/22
46.203.116.0/22
46.203.128.0/22
46.203.140.0/22
91.124.14.0/24
91.124.192.0/24
91.124.199.0/24
92.113.13.0/24
92.113.67.0/24
92.113.74.0/24
92.113.77.0/24
92.113.80.0/24
Signature Algorithm: sha256WithRSAEncryption
53:8f:04:45:ac:cc:76:72:33:a7:79:57:93:34:1a:8e:4e:3c:
95:d6:7e:ef:a2:1c:b2:ec:ed:0e:26:65:67:17:89:13:57:8b:
d6:75:4e:9c:63:c9:39:4d:8c:2c:f1:8b:21:1b:34:43:4f:63:
df:e5:77:c0:93:c7:3e:7b:ba:d0:2d:61:00:2a:5f:ad:19:93:
13:4e:3f:18:7a:63:0d:cd:db:01:46:01:ee:e2:2f:02:0f:79:
51:a6:95:f8:ba:44:44:82:cb:7b:30:21:f9:38:06:f4:49:83:
3b:76:da:71:de:06:04:35:2b:5b:ff:ed:b6:d0:d8:c1:be:28:
9b:d9:71:17:06:b4:0f:c6:11:34:e3:0d:34:34:09:3c:c1:0d:
8c:0a:30:a9:1d:f7:a1:98:f7:f8:af:06:88:a6:ca:b2:ce:46:
6c:d6:99:2c:b2:a2:9a:fc:86:8c:e9:1c:1e:0b:f8:55:0b:e0:
a5:6c:b4:bd:c7:cd:e8:f1:be:c5:b8:da:fc:cf:e8:94:d4:13:
09:15:36:41:0a:f4:0c:17:de:bb:10:67:e0:d4:a4:f8:54:ae:
e6:73:f8:f8:3f:06:79:1f:1a:8b:32:c4:63:f7:ef:9e:be:7a:
d6:7e:c2:b8:65:64:3e:16:ce:16:26:71:cb:24:d8:36:a2:70:
33:bc:e8:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 05:52:27 2026 by rpki-client