Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS216050.roa
File: AS216050.roa (raw, json)
Hash identifier: U9EQ2VwrhaP64JxNryT5CmIMgu3wGlBjiTI1JfUlBG0=
Subject key identifier: EC:DB:5A:C6:89:FD:52:83:55:55:E8:96:DB:7B:CE:F2:C4:BD:1E:42
Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Certificate serial: 62AB1C4A4340D5D778707A6AF7294D4B88CCDBC3
Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS216050.roa
Signing time: Sun 01 Mar 2026 00:13:13 +0000
ROA not before: Sun 01 Mar 2026 00:08:13 +0000
ROA not after: Sun 28 Feb 2027 00:13:13 +0000
asID: 216050
IP address blocks: 46.202.204.0/24 maxlen: 24
46.202.205.0/24 maxlen: 24
46.203.151.0/24 maxlen: 24
46.203.165.0/24 maxlen: 24
46.203.166.0/24 maxlen: 24
46.203.167.0/24 maxlen: 24
46.203.170.0/24 maxlen: 24
46.203.181.0/24 maxlen: 24
46.203.191.0/24 maxlen: 24
46.203.192.0/24 maxlen: 24
46.203.193.0/24 maxlen: 24
46.203.194.0/24 maxlen: 24
46.203.211.0/24 maxlen: 24
46.203.240.0/24 maxlen: 24
91.124.39.0/24 maxlen: 24
91.124.48.0/24 maxlen: 24
91.124.50.0/24 maxlen: 24
91.124.51.0/24 maxlen: 24
92.112.131.0/24 maxlen: 24
92.113.41.0/24 maxlen: 24
92.113.55.0/24 maxlen: 24
92.113.65.0/24 maxlen: 24
92.113.68.0/24 maxlen: 24
92.113.69.0/24 maxlen: 24
92.113.75.0/24 maxlen: 24
92.113.76.0/24 maxlen: 24
92.113.78.0/24 maxlen: 24
92.113.79.0/24 maxlen: 24
92.113.81.0/24 maxlen: 24
92.113.82.0/24 maxlen: 24
92.113.84.0/24 maxlen: 24
92.113.85.0/24 maxlen: 24
92.113.87.0/24 maxlen: 24
92.113.88.0/24 maxlen: 24
92.113.90.0/24 maxlen: 24
92.113.166.0/24 maxlen: 24
92.113.167.0/24 maxlen: 24
95.135.51.0/24 maxlen: 24
95.135.73.0/24 maxlen: 24
95.135.111.0/24 maxlen: 24
95.135.114.0/24 maxlen: 24
95.135.115.0/24 maxlen: 24
95.135.128.0/24 maxlen: 24
95.135.129.0/24 maxlen: 24
95.135.130.0/24 maxlen: 24
95.135.131.0/24 maxlen: 24
95.135.132.0/24 maxlen: 24
95.135.133.0/24 maxlen: 24
95.135.235.0/24 maxlen: 24
178.92.32.0/24 maxlen: 24
178.92.33.0/24 maxlen: 24
178.92.35.0/24 maxlen: 24
178.92.57.0/24 maxlen: 24
178.92.63.0/24 maxlen: 24
178.94.163.0/24 maxlen: 24
178.94.164.0/24 maxlen: 24
178.94.165.0/24 maxlen: 24
178.94.166.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft
rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 08:09:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
62:ab:1c:4a:43:40:d5:d7:78:70:7a:6a:f7:29:4d:4b:88:cc:db:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Validity
Not Before: Mar 1 00:08:13 2026 GMT
Not After : Feb 28 00:13:13 2027 GMT
Subject: CN=ECDB5AC689FD52835555E896DB7BCEF2C4BD1E42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:56:50:21:a7:33:43:68:47:76:68:75:c0:5a:
a9:6a:57:e9:76:45:ca:09:e2:16:03:84:e1:58:36:
78:a1:92:ab:de:69:25:be:01:89:12:9e:92:9b:76:
0d:f2:b1:ad:9e:5f:fa:a4:73:b2:15:63:91:b4:fc:
5a:42:ee:8b:ad:0a:9c:f2:ad:2f:44:7b:4e:a8:c9:
9f:58:b0:f5:bf:35:30:c4:c4:96:18:46:17:0c:cc:
f2:82:fd:00:29:c6:10:fa:fc:7a:66:b2:8f:50:c8:
84:01:b1:57:88:d3:19:5c:13:81:cd:13:50:04:3a:
8c:bf:f4:5c:bd:b9:ab:01:6c:50:db:08:32:30:b4:
2a:b5:cc:46:d2:ce:ee:f5:4c:0f:20:66:8b:85:61:
aa:de:4d:31:1b:e0:6b:b2:a9:af:03:a5:d5:f3:1d:
7b:e4:f5:7e:ef:43:62:50:76:b1:e6:d7:a4:54:b3:
b3:41:fb:ac:51:a3:4b:81:b1:19:29:28:e6:9d:5e:
9e:33:db:f6:7d:8c:b1:52:b6:4c:36:02:3b:e3:b8:
0a:ce:05:b0:98:31:53:5a:38:d6:ec:7e:64:46:b0:
7f:7c:ef:d7:5b:f0:aa:30:9f:df:68:b7:c8:7d:10:
61:aa:ba:26:67:d0:b3:6f:27:26:cd:31:95:e4:ce:
61:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:DB:5A:C6:89:FD:52:83:55:55:E8:96:DB:7B:CE:F2:C4:BD:1E:42
X509v3 Authority Key Identifier:
keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS216050.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.202.204.0/23
46.203.151.0/24
46.203.165.0-46.203.167.255
46.203.170.0/24
46.203.181.0/24
46.203.191.0-46.203.194.255
46.203.211.0/24
46.203.240.0/24
91.124.39.0/24
91.124.48.0/24
91.124.50.0/23
92.112.131.0/24
92.113.41.0/24
92.113.55.0/24
92.113.65.0/24
92.113.68.0/23
92.113.75.0-92.113.76.255
92.113.78.0/23
92.113.81.0-92.113.82.255
92.113.84.0/23
92.113.87.0-92.113.88.255
92.113.90.0/24
92.113.166.0/23
95.135.51.0/24
95.135.73.0/24
95.135.111.0/24
95.135.114.0/23
95.135.128.0-95.135.133.255
95.135.235.0/24
178.92.32.0/23
178.92.35.0/24
178.92.57.0/24
178.92.63.0/24
178.94.163.0-178.94.166.255
Signature Algorithm: sha256WithRSAEncryption
47:25:ce:15:46:5c:f7:10:e9:ab:c3:b4:bd:58:8a:a9:e3:90:
96:43:16:52:14:2a:9b:86:a5:47:5e:e1:97:d4:77:d4:aa:d5:
3c:85:e4:02:d0:75:b4:39:75:b7:cf:4b:d7:43:23:25:e7:44:
c3:02:6b:65:dd:e4:f5:c3:4c:2e:ef:bb:a0:58:42:d1:8c:d6:
2e:82:7b:66:98:8e:50:56:e3:df:f6:62:a6:23:14:34:e4:2b:
97:85:64:15:fd:10:a8:58:80:b0:7d:99:c1:d9:4a:ac:e0:e3:
58:92:e7:3a:0b:95:c2:4f:8c:17:22:cd:45:62:9d:dd:fd:0b:
63:29:bf:cf:d2:62:12:84:8b:36:cb:8a:89:4d:2b:e7:5e:c6:
cf:cf:4f:ab:be:2e:6c:79:0e:22:0f:51:eb:60:0f:5b:b0:2a:
44:60:bc:dc:1f:e2:87:1b:91:f1:ed:4e:cd:8a:64:8a:04:52:
c3:a2:f4:df:7d:9f:fb:61:9d:4a:3b:ef:94:e6:de:87:4f:48:
2f:d3:10:38:8b:80:88:9d:32:4f:b9:33:f5:fd:6d:04:af:fa:
93:37:0f:4d:ff:b3:20:16:f6:7f:9b:20:3a:20:3d:00:eb:82:
86:f8:a6:15:08:88:57:3a:5f:26:37:f4:bb:39:4f:13:ce:e8:
b9:27:a5:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 20:10:39 2026 by rpki-client