Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/AS16276.roa
File: AS16276.roa (raw, json)
Hash identifier: bek8qGHzbKJRBnzDIa/8HwkS2TMDkqttVBD2KK8ktn0=
Subject key identifier: D1:92:85:9E:A0:0C:22:AD:65:E0:DB:03:55:3D:6D:99:2E:20:8C:B6
Certificate issuer: /CN=9dfbff217105df8877d463f6e9bac28a4084d20c
Certificate serial: 753BD5B0CB96CA727286F35E04C5ACBF4F11B92A
Authority key identifier: 9D:FB:FF:21:71:05:DF:88:77:D4:63:F6:E9:BA:C2:8A:40:84:D2:0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nfv_IXEF34h31GP26brCikCE0gw.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/AS16276.roa
Signing time: Fri 06 Mar 2026 07:56:57 +0000
ROA not before: Fri 06 Mar 2026 07:51:57 +0000
ROA not after: Fri 05 Mar 2027 07:56:57 +0000
asID: 16276
IP address blocks: 92.249.62.0/24 maxlen: 24
176.53.158.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/9DFBFF217105DF8877D463F6E9BAC28A4084D20C.crl
rsync://rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/9DFBFF217105DF8877D463F6E9BAC28A4084D20C.mft
rsync://rpki.ripe.net/repository/DEFAULT/nfv_IXEF34h31GP26brCikCE0gw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
75:3b:d5:b0:cb:96:ca:72:72:86:f3:5e:04:c5:ac:bf:4f:11:b9:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9dfbff217105df8877d463f6e9bac28a4084d20c
Validity
Not Before: Mar 6 07:51:57 2026 GMT
Not After : Mar 5 07:56:57 2027 GMT
Subject: CN=D192859EA00C22AD65E0DB03553D6D992E208CB6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:41:76:d0:4d:b3:78:0f:da:a3:e9:4b:b4:e1:
68:9b:41:a7:73:6a:2a:a7:e9:bd:65:bb:1f:65:dc:
7b:50:7b:89:fa:b1:ef:76:e5:c5:5e:ea:7a:6d:e2:
d2:b5:b0:6f:4f:d1:4e:69:25:6b:65:62:94:19:dd:
e0:35:4e:e3:4e:51:05:92:8f:60:78:00:81:68:4b:
27:03:fa:f1:de:ae:b4:3f:d3:1d:04:b8:0e:56:4c:
3a:d4:c6:73:d5:9f:1b:47:1d:36:26:98:6b:37:01:
af:1d:c7:07:b8:63:f0:da:4d:73:59:51:00:ba:3f:
aa:e3:68:bc:f5:aa:a0:d0:08:aa:c9:55:b7:74:d3:
2b:13:0d:6d:04:75:70:22:e7:57:c1:d1:1f:6c:66:
f5:e9:95:d7:bf:11:ea:ec:d2:14:21:38:4d:50:26:
6d:61:70:09:e9:77:56:92:31:57:cc:a0:47:a6:7d:
5a:67:e4:2e:9c:9c:fe:36:74:4c:6d:00:ae:2c:84:
f8:cd:7d:b5:4a:e8:6d:02:8a:3d:6d:cd:38:45:cc:
1a:2f:d0:6b:c3:3d:8b:2b:d5:d9:f0:0d:03:1a:58:
52:11:a9:21:e9:dc:da:ff:d6:f2:46:2c:61:33:3c:
9f:1b:8b:1b:e9:ff:d1:06:b6:76:f7:82:90:3c:54:
ce:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:92:85:9E:A0:0C:22:AD:65:E0:DB:03:55:3D:6D:99:2E:20:8C:B6
X509v3 Authority Key Identifier:
keyid:9D:FB:FF:21:71:05:DF:88:77:D4:63:F6:E9:BA:C2:8A:40:84:D2:0C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/9DFBFF217105DF8877D463F6E9BAC28A4084D20C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nfv_IXEF34h31GP26brCikCE0gw.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/AS16276.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.249.62.0/24
176.53.158.0/24
Signature Algorithm: sha256WithRSAEncryption
14:a1:74:e3:64:d6:b9:e3:8b:14:4a:98:ea:e8:a1:9a:f1:ee:
7a:92:1c:1b:db:85:3f:05:74:4f:3a:a0:74:d6:19:5a:1c:f7:
81:4b:59:fb:ae:ea:2e:19:df:86:dc:5a:28:dc:b9:16:49:8e:
df:8c:42:74:0f:24:6e:3a:91:cc:1b:be:65:19:8c:32:57:91:
06:14:1a:6a:f0:6f:8d:81:9a:d5:c7:8a:15:dd:b4:9d:3d:3b:
5d:3b:be:2f:b9:bf:51:1a:94:45:f0:d1:ac:e4:da:fd:d3:8d:
ce:e2:e2:36:48:33:c0:f8:08:51:72:d9:0c:ad:39:29:0e:c0:
18:8b:41:47:e0:f7:ab:70:0b:c1:af:fd:e9:a3:1e:7d:d7:4c:
bd:d0:58:93:e1:0b:7c:1f:64:9d:4f:7a:b7:1a:c8:a9:2a:62:
bd:52:5b:e0:39:1f:62:07:a9:62:81:b9:97:54:9f:54:ac:f5:
93:ae:6b:00:9c:35:7f:6a:be:e4:98:49:22:b3:ac:05:58:40:
52:34:d3:b2:e0:b9:64:30:45:78:b3:43:85:66:1a:c0:af:9b:
f3:c5:a5:2f:32:34:06:ae:07:88:e3:b4:77:e2:06:f3:5f:a3:
d1:28:d3:03:55:40:1d:3b:ca:21:ef:64:ee:16:06:a8:9f:a9:
cd:b7:8a:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 09:07:45 2026 by rpki-client