Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS16276.roa
File: AS16276.roa (raw, json)
Hash identifier: CewOXWG/kyktg/0MzdzBKHOwCI0MtF62ilSERDImAYQ=
Subject key identifier: F5:2A:D2:02:44:C2:8B:8E:53:14:D4:32:24:AE:C2:9C:31:D5:36:63
Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Certificate serial: 138E50029B530FD6A546ED720E34CF892944A048
Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS16276.roa
Signing time: Fri 27 Feb 2026 13:42:51 +0000
ROA not before: Fri 27 Feb 2026 13:37:51 +0000
ROA not after: Fri 26 Feb 2027 13:42:51 +0000
asID: 16276
IP address blocks: 46.202.232.0/22 maxlen: 24
46.202.240.0/22 maxlen: 24
46.203.87.0/24 maxlen: 24
46.203.108.0/22 maxlen: 24
46.203.116.0/22 maxlen: 24
46.203.128.0/22 maxlen: 24
46.203.140.0/22 maxlen: 24
91.124.192.0/24 maxlen: 24
91.124.199.0/24 maxlen: 24
92.113.13.0/24 maxlen: 24
92.113.67.0/24 maxlen: 24
92.113.74.0/24 maxlen: 24
92.113.77.0/24 maxlen: 24
92.113.80.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft
rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 08:09:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
13:8e:50:02:9b:53:0f:d6:a5:46:ed:72:0e:34:cf:89:29:44:a0:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Validity
Not Before: Feb 27 13:37:51 2026 GMT
Not After : Feb 26 13:42:51 2027 GMT
Subject: CN=F52AD20244C28B8E5314D43224AEC29C31D53663
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:08:99:ab:c9:b3:34:05:66:24:9a:f4:30:45:
51:fd:85:9d:7f:8c:dc:c0:e0:2d:73:57:db:cd:97:
2a:52:31:0d:85:e1:49:44:a7:fd:fa:2b:d3:3e:03:
6a:0f:e3:39:b5:64:cd:17:3a:88:c6:78:3a:26:6d:
4c:f9:92:6f:18:47:87:51:49:12:f8:54:a3:85:12:
80:94:dc:eb:ad:e4:bc:2f:1c:c0:50:d2:f4:a5:ff:
c4:4a:df:1b:89:34:de:02:36:46:66:bb:85:b2:ce:
b6:be:d5:ba:59:2b:01:28:7f:c5:83:a0:d8:19:3a:
87:b4:f0:19:48:e7:8c:a1:c4:2a:18:32:56:60:df:
dd:d8:14:24:bb:4d:a9:0e:b5:a2:92:3c:e7:2f:35:
60:fa:b0:92:7f:3e:1c:ba:c1:66:dd:53:76:89:16:
6b:36:c7:b9:e9:99:ad:ec:d1:36:58:c7:81:c2:a1:
2c:b4:ba:ef:63:e0:03:86:d1:24:ff:b4:6e:93:75:
a9:49:a0:3d:66:62:75:26:a7:fb:c2:66:0f:62:c7:
28:ae:3a:a0:07:27:08:04:46:99:11:7f:da:9d:f5:
f8:42:44:a2:74:4d:c0:16:3a:5e:1b:48:eb:89:63:
ac:74:31:cc:fc:22:ab:98:19:42:29:c6:b1:5d:f1:
1a:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:2A:D2:02:44:C2:8B:8E:53:14:D4:32:24:AE:C2:9C:31:D5:36:63
X509v3 Authority Key Identifier:
keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS16276.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.202.232.0/22
46.202.240.0/22
46.203.87.0/24
46.203.108.0/22
46.203.116.0/22
46.203.128.0/22
46.203.140.0/22
91.124.192.0/24
91.124.199.0/24
92.113.13.0/24
92.113.67.0/24
92.113.74.0/24
92.113.77.0/24
92.113.80.0/24
Signature Algorithm: sha256WithRSAEncryption
34:2b:1f:18:25:fe:c0:d9:d9:84:55:c6:62:63:d6:0b:90:9c:
25:a2:d7:4c:e2:7d:1d:a8:14:0e:86:3b:27:01:5f:e4:cd:13:
f7:39:fe:33:85:24:49:71:5d:8b:c8:81:17:ec:66:65:45:1e:
ea:eb:71:c9:0d:9c:a2:ba:ea:cc:e8:58:d4:59:aa:88:96:59:
19:f0:4a:4c:d6:ac:66:b1:21:34:f6:7c:a6:f4:43:43:91:c2:
69:25:71:0f:43:8f:74:1c:7f:3a:39:9f:29:1d:a2:dd:09:11:
58:b4:e3:39:69:98:30:81:d2:80:ce:1c:2d:7e:a9:9c:28:e5:
ac:9b:1b:ee:f2:f5:d6:86:c3:3d:27:81:0f:6a:77:d8:71:ba:
fd:37:01:1e:b6:a3:d9:be:b4:db:b6:97:89:fc:43:9c:99:f2:
42:fc:43:89:91:c3:1e:94:19:6e:85:eb:43:c6:3a:75:5b:18:
9d:55:44:fe:5a:09:88:bf:b9:65:f8:bb:15:3b:d9:9b:cc:5d:
54:9a:55:4e:4a:52:b8:4c:33:e0:ca:fa:bd:6a:65:db:ee:5d:
b2:55:57:71:e9:2e:14:09:ba:4e:d4:b8:e7:8c:c1:14:d7:8f:
f2:77:54:75:0e:1f:55:73:29:6d:0e:ec:2f:f6:c4:09:59:ee:
f8:99:a1:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 20:10:50 2026 by rpki-client