Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS16276.roa
File: AS16276.roa (raw, json)
Hash identifier: EJH02cZCJAZZTSDu3FeNvE27yXhbUtIm18TCUsSyakg=
Subject key identifier: BE:9C:93:9C:51:8E:28:D3:0C:1D:3D:81:F9:0E:ED:6C:25:E5:06:AD
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 012CBD6A3F40A27E91F9AF7DCE8899EE8F20D91E
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS16276.roa
Signing time: Thu 30 Apr 2026 14:39:47 +0000
ROA not before: Thu 30 Apr 2026 14:34:47 +0000
ROA not after: Thu 29 Apr 2027 14:39:47 +0000
asID: 16276
IP address blocks: 2.58.172.0/24 maxlen: 24
89.19.44.0/24 maxlen: 24
181.41.194.0/24 maxlen: 24
191.96.140.0/23 maxlen: 23
191.101.150.0/24 maxlen: 24
191.101.218.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.mft
rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 08:12:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:2c:bd:6a:3f:40:a2:7e:91:f9:af:7d:ce:88:99:ee:8f:20:d9:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Apr 30 14:34:47 2026 GMT
Not After : Apr 29 14:39:47 2027 GMT
Subject: CN=BE9C939C518E28D30C1D3D81F90EED6C25E506AD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:ee:c6:8f:54:9a:c3:9d:f4:29:f8:67:b5:48:
3a:71:29:5b:03:d2:22:e9:04:f1:3f:ab:7c:64:f4:
c5:70:b3:77:7d:76:e0:b2:60:e6:22:a5:6b:97:af:
c0:8b:eb:18:53:37:8e:cb:dd:6d:d1:6e:e8:ec:38:
71:d3:06:d1:b9:d8:24:8e:05:ff:e6:d1:26:63:ad:
07:9c:24:e0:e3:c4:33:4f:20:3c:a1:f3:08:1b:9b:
b7:31:f0:1c:c4:bc:c3:cf:5b:60:71:96:ce:e9:86:
c7:ba:2b:1a:11:12:f2:bd:3e:9b:d7:6f:80:51:50:
cf:a0:df:cb:d2:f2:c8:03:6c:03:19:14:47:cc:b1:
56:09:39:c5:7f:b7:5e:11:ec:9d:db:1b:90:45:f1:
ff:85:cc:7e:67:bb:e0:c4:cf:e5:e1:26:3f:de:19:
3a:16:33:f3:72:2a:23:f0:26:b4:5d:e4:dd:57:35:
ee:2a:6d:52:c5:33:aa:5f:2f:9d:6f:ac:af:32:e3:
f9:31:26:be:fa:b4:5e:a7:70:d1:f6:7d:52:62:0b:
1a:ef:b7:47:be:c4:5f:90:36:76:6c:fb:95:3e:0b:
f1:76:3d:78:8f:3d:97:e3:c4:21:7f:97:c4:69:27:
27:1c:72:6b:78:52:80:51:40:e2:12:2c:fe:57:40:
32:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:9C:93:9C:51:8E:28:D3:0C:1D:3D:81:F9:0E:ED:6C:25:E5:06:AD
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS16276.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.58.172.0/24
89.19.44.0/24
181.41.194.0/24
191.96.140.0/23
191.101.150.0/24
191.101.218.0/24
Signature Algorithm: sha256WithRSAEncryption
63:e1:f2:f6:d5:fe:9b:e3:5b:ab:fd:4b:d4:aa:61:5b:e7:7b:
5e:80:26:8f:4a:6f:15:d0:5f:91:d3:80:04:1b:f7:1e:97:08:
4f:f0:bd:ad:06:77:9e:67:da:51:77:d7:c0:86:f7:92:6e:84:
03:55:da:68:f0:82:0b:d6:01:5c:4b:ff:39:d3:7c:bb:98:6e:
a3:59:9e:d7:08:6e:5f:f9:a2:45:38:af:16:5e:d5:d7:6e:b4:
06:49:6c:88:ee:e2:9e:4c:ca:9f:26:f7:eb:b2:0d:16:5c:5c:
a1:db:87:bd:32:73:5b:10:af:56:86:81:34:b2:fb:12:e5:18:
84:d3:23:48:72:f0:18:c6:ba:bc:e3:94:d4:8d:2f:70:5c:b1:
4d:23:7d:b5:c3:76:dc:65:89:37:9f:ee:1d:7e:c8:36:70:5f:
f9:84:23:cd:79:f2:b0:45:bd:0a:af:1a:da:e1:26:7c:c4:9a:
c4:0f:45:e6:56:e8:1f:34:0a:cf:4a:e7:28:50:4c:00:82:28:
c0:d5:db:bf:bc:c8:56:e4:30:c7:ac:75:1d:5c:48:f6:58:d8:
d7:7d:49:7b:7f:03:fb:f8:de:77:93:ed:e1:81:da:b3:36:ed:
96:3a:f6:da:b6:03:00:59:8b:82:20:27:63:82:72:11:84:bd:
24:73:ae:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 01:25:45 2026 by rpki-client