Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS16276.roa
File: AS16276.roa (raw, json)
Hash identifier: JeuKOGkwL3wkU+VCks1mam/eXHg7QtRuLj2y6H0aJ8g=
Subject key identifier: 02:D3:D7:F4:41:3C:1D:E7:56:5D:E5:40:1A:FF:8E:1C:F5:99:C4:DA
Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Certificate serial: 1B14B04B9F8C5D4857751C7E6B77D75670BB5C0F
Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS16276.roa
Signing time: Thu 09 Oct 2025 08:13:18 +0000
ROA not before: Thu 09 Oct 2025 08:08:18 +0000
ROA not after: Thu 08 Oct 2026 08:13:18 +0000
asID: 16276
IP address blocks: 96.62.105.0/24 maxlen: 24
140.150.153.0/24 maxlen: 24
143.14.59.0/24 maxlen: 24
143.14.68.0/24 maxlen: 24
143.14.231.0/24 maxlen: 24
143.14.252.0/24 maxlen: 24
146.103.10.0/24 maxlen: 24
150.241.209.0/24 maxlen: 24
155.117.212.0/23 maxlen: 23
155.117.255.0/24 maxlen: 24
162.141.96.0/24 maxlen: 24
162.141.104.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.mft
rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1b:14:b0:4b:9f:8c:5d:48:57:75:1c:7e:6b:77:d7:56:70:bb:5c:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Validity
Not Before: Oct 9 08:08:18 2025 GMT
Not After : Oct 8 08:13:18 2026 GMT
Subject: CN=02D3D7F4413C1DE7565DE5401AFF8E1CF599C4DA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:7a:65:c9:46:65:c6:e0:27:5a:49:3f:45:49:
d5:5f:06:cb:84:c2:0a:76:dc:b6:5a:86:8b:b6:7b:
f5:b6:5e:d1:1e:ae:3c:24:0b:cb:1e:53:48:3f:56:
d3:a0:f6:9b:68:13:2c:f3:9d:62:ad:c9:a9:8d:1d:
b7:03:cc:38:c2:dc:17:41:25:bc:59:e8:21:6d:bd:
86:82:79:08:ae:da:a1:97:99:0f:f0:02:dc:14:f1:
32:d1:b5:56:b3:ba:60:07:c7:9f:ff:03:e7:47:a0:
40:ac:a0:f9:9f:d9:4b:53:6a:96:5e:25:52:c3:18:
0e:8d:77:e7:13:14:b8:a9:79:a7:0d:af:17:a9:73:
e5:4a:64:d5:6a:96:77:b0:9d:ce:bd:7b:9e:b5:38:
f1:4e:97:95:9f:af:70:89:e7:dc:e4:44:dc:80:be:
1e:0e:4f:b5:73:ec:e7:21:85:29:86:f4:46:8b:f6:
74:cc:0f:3e:ab:8e:29:90:ff:dd:26:82:dd:27:c8:
09:3b:47:30:ff:56:ea:7d:15:b7:0e:ec:c3:7d:60:
f6:af:78:cc:fd:35:3d:85:79:f6:94:2f:9c:f9:54:
2a:06:56:72:bd:bb:00:ef:0b:03:bf:6a:ce:96:c8:
7b:b9:f2:0e:64:c8:6c:dd:61:4b:99:cf:59:2b:00:
8a:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:D3:D7:F4:41:3C:1D:E7:56:5D:E5:40:1A:FF:8E:1C:F5:99:C4:DA
X509v3 Authority Key Identifier:
keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS16276.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
96.62.105.0/24
140.150.153.0/24
143.14.59.0/24
143.14.68.0/24
143.14.231.0/24
143.14.252.0/24
146.103.10.0/24
150.241.209.0/24
155.117.212.0/23
155.117.255.0/24
162.141.96.0/24
162.141.104.0/23
Signature Algorithm: sha256WithRSAEncryption
90:b1:b5:4a:5b:5e:28:cf:1f:be:9f:62:e8:00:28:97:47:a9:
20:ee:d5:ee:37:bd:b3:28:05:a2:17:cb:c5:16:b0:d9:98:b0:
29:84:f4:4d:02:8b:4a:2a:a3:fa:e3:94:57:6b:9a:75:25:52:
9a:db:2c:f2:11:0e:b8:b5:cd:81:ca:b4:8c:44:8a:3e:2d:d1:
c2:2a:ae:fe:5f:3c:6b:d4:0b:76:dd:e6:02:b6:59:f9:4d:69:
0b:7e:57:70:23:4e:89:b3:19:f5:be:52:20:92:bb:bf:0d:05:
86:b3:ff:38:8c:36:cd:2c:cf:9a:b5:b1:0e:d0:db:ab:a6:e9:
6b:ac:69:8d:77:36:e1:f0:ec:42:0b:76:28:b1:d0:8d:48:56:
60:b2:56:55:d2:14:7e:4c:cf:f4:bd:e1:13:c5:4d:a8:d2:79:
45:c8:92:22:b5:e8:48:be:d0:b3:8d:d0:28:e8:87:ba:57:39:
36:d1:95:56:cf:d4:57:60:4c:7c:5c:fa:c7:dd:48:2b:84:d6:
47:94:f6:dc:67:e3:4b:f6:f4:db:b6:a3:94:f5:18:71:8c:78:
4a:80:73:0f:9e:a0:52:d9:a3:a5:50:5c:9b:76:08:1c:76:0a:
4f:46:2c:4a:25:04:a3:27:d2:a8:18:df:09:eb:c2:19:98:ef:
a5:5f:71:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 20:56:09 2025 by rpki-client