Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS16276.roa
File: AS16276.roa (raw, json)
Hash identifier: ZbE3dV548EQc+dneEh5KymgGt+u8T9yGpocZ757t4WI=
Subject key identifier: A2:6B:71:F8:9D:E7:02:7D:E6:16:F1:5E:C2:5A:D8:6A:29:9C:6A:AF
Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Certificate serial: 71AF321C9989F00A7C229F1AE07E64F835F9E298
Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS16276.roa
Signing time: Sun 07 Jun 2026 15:44:36 +0000
ROA not before: Sun 07 Jun 2026 15:39:36 +0000
ROA not after: Sun 06 Jun 2027 15:44:36 +0000
asID: 16276
IP address blocks: 46.202.232.0/22 maxlen: 24
46.202.240.0/22 maxlen: 24
46.203.108.0/22 maxlen: 24
46.203.116.0/22 maxlen: 24
46.203.128.0/22 maxlen: 24
46.203.140.0/22 maxlen: 24
91.124.14.0/24 maxlen: 24
91.124.192.0/24 maxlen: 24
91.124.199.0/24 maxlen: 24
92.113.13.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft
rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
71:af:32:1c:99:89:f0:0a:7c:22:9f:1a:e0:7e:64:f8:35:f9:e2:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Validity
Not Before: Jun 7 15:39:36 2026 GMT
Not After : Jun 6 15:44:36 2027 GMT
Subject: CN=A26B71F89DE7027DE616F15EC25AD86A299C6AAF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:3f:2b:f8:7b:29:78:ca:6d:cd:97:24:0a:12:
35:4f:73:83:db:a4:14:77:27:21:46:dd:9c:39:43:
71:34:1b:a8:d0:1c:92:b4:68:ac:81:ce:81:0c:bd:
4c:fe:8b:49:20:aa:35:ec:3b:d6:3f:f7:9c:2d:69:
7d:d5:6c:c4:3c:66:f2:98:26:63:02:e6:4f:f8:cd:
78:23:fe:85:53:23:d6:6c:0e:1b:24:6a:34:ea:09:
e5:d8:a2:8f:8d:56:46:72:65:bc:b1:12:ab:5f:8f:
cc:0d:5c:61:a4:56:b6:d0:cc:5c:4f:3a:85:7d:f1:
81:87:96:7c:b2:99:76:27:ad:bc:c4:98:c9:13:e7:
37:b0:6d:3a:81:45:a1:91:07:72:3a:55:49:78:58:
97:be:d5:10:52:ec:32:98:f6:84:8a:6a:99:7b:fa:
e3:21:c8:12:a9:ba:9c:36:64:af:66:cd:9a:e4:f7:
15:92:53:38:77:60:e6:dc:ee:a4:58:61:bd:fe:8d:
51:0f:f6:f3:72:6c:ef:a1:c8:2a:1b:3b:5a:b8:10:
06:af:a7:11:65:70:f4:af:28:b1:14:ea:94:ca:b5:
3e:bf:17:ac:fb:33:8f:27:94:ed:0f:c0:de:55:49:
35:f3:6d:46:38:68:e3:16:b7:4f:05:d6:4f:c8:ee:
9c:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:6B:71:F8:9D:E7:02:7D:E6:16:F1:5E:C2:5A:D8:6A:29:9C:6A:AF
X509v3 Authority Key Identifier:
keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS16276.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.202.232.0/22
46.202.240.0/22
46.203.108.0/22
46.203.116.0/22
46.203.128.0/22
46.203.140.0/22
91.124.14.0/24
91.124.192.0/24
91.124.199.0/24
92.113.13.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:c2:1d:ff:d5:47:f7:c7:8e:b2:2f:1d:be:60:97:dd:17:53:
62:e6:9f:d8:1e:ee:e5:06:c7:bc:49:47:55:d5:ad:d4:6a:9b:
1b:13:40:f8:29:4f:de:25:24:87:1d:ca:0a:35:c3:bb:82:f0:
19:dd:ea:1b:16:b3:3d:27:de:32:c4:1e:22:82:41:6b:2a:cb:
c1:75:ac:7a:96:aa:ce:0c:ff:c3:66:fd:6b:54:3b:0d:47:a4:
c9:a6:46:52:21:2b:e6:b6:49:8f:3c:34:21:1a:fb:19:cb:fc:
cd:9c:10:05:b7:2f:bd:01:a1:8d:fd:0d:39:95:76:2d:49:b5:
4c:10:1f:9c:b2:3c:73:b4:28:93:2b:9a:20:91:62:d1:8a:ce:
10:78:81:45:6f:9f:54:8c:f3:eb:2d:ba:ea:05:d5:be:35:a7:
f7:30:53:2f:f7:a9:dc:fe:52:f6:fd:45:72:1e:d0:13:10:23:
7f:7b:53:12:9c:11:8f:ac:a4:ff:e8:6b:fd:ae:f9:2e:e3:82:
31:57:8e:15:15:95:b3:e9:40:47:50:49:63:32:a5:60:f8:00:
64:7c:db:d3:23:5f:18:b2:43:36:cf:1d:fd:2a:a4:e5:42:cd:
69:c9:21:a2:97:25:85:f0:1e:9d:dc:0f:95:9a:f8:b5:65:10:
19:23:4e:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 06:46:38 2026 by rpki-client