Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS16276.roa
File: AS16276.roa (raw, json)
Hash identifier: LooYFtqGI/DEynk3VHWX2foswmABa8K69j+FWELNwt8=
Subject key identifier: 6C:57:A0:07:60:10:7A:0E:1C:57:6D:26:E3:98:99:6E:1A:3C:8B:C3
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 40487F8E6D0983E8DFF8A5C4C1DD9E93E8359887
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS16276.roa
Signing time: Fri 08 May 2026 05:40:44 +0000
ROA not before: Fri 08 May 2026 05:35:44 +0000
ROA not after: Fri 07 May 2027 05:40:44 +0000
asID: 16276
IP address blocks: 82.21.139.0/24 maxlen: 24
82.22.15.0/24 maxlen: 24
82.22.18.0/24 maxlen: 24
82.22.25.0/24 maxlen: 24
82.22.51.0/24 maxlen: 24
82.22.118.0/24 maxlen: 24
82.24.96.0/22 maxlen: 24
82.24.190.0/24 maxlen: 24
82.25.146.0/23 maxlen: 24
82.26.81.0/24 maxlen: 24
82.26.176.0/21 maxlen: 24
82.26.184.0/21 maxlen: 24
82.29.126.0/24 maxlen: 24
82.38.2.0/24 maxlen: 24
82.38.32.0/24 maxlen: 24
82.38.35.0/24 maxlen: 24
82.38.82.0/24 maxlen: 24
82.38.124.0/22 maxlen: 24
82.38.140.0/22 maxlen: 24
82.38.152.0/22 maxlen: 24
82.38.156.0/22 maxlen: 24
82.38.160.0/22 maxlen: 24
82.38.164.0/22 maxlen: 24
82.38.224.0/22 maxlen: 24
82.38.228.0/22 maxlen: 24
82.38.232.0/22 maxlen: 24
82.38.236.0/22 maxlen: 24
82.38.240.0/22 maxlen: 24
82.38.244.0/22 maxlen: 24
82.38.248.0/22 maxlen: 24
82.38.252.0/22 maxlen: 24
82.39.108.0/24 maxlen: 24
82.39.138.0/24 maxlen: 24
82.39.156.0/22 maxlen: 24
82.39.176.0/22 maxlen: 24
82.39.180.0/22 maxlen: 24
82.39.216.0/22 maxlen: 24
82.39.224.0/22 maxlen: 24
82.40.0.0/22 maxlen: 24
82.40.4.0/22 maxlen: 24
82.40.8.0/22 maxlen: 24
82.40.12.0/22 maxlen: 24
82.40.16.0/22 maxlen: 24
82.41.44.0/22 maxlen: 24
82.41.52.0/22 maxlen: 24
82.41.68.0/22 maxlen: 24
82.41.80.0/22 maxlen: 24
82.41.88.0/22 maxlen: 24
82.41.100.0/22 maxlen: 24
82.41.104.0/22 maxlen: 24
82.41.108.0/22 maxlen: 24
82.41.124.0/22 maxlen: 24
82.41.134.0/24 maxlen: 24
82.41.148.0/22 maxlen: 24
82.41.152.0/22 maxlen: 24
82.41.160.0/22 maxlen: 24
82.41.164.0/22 maxlen: 24
82.41.172.0/22 maxlen: 24
82.41.176.0/22 maxlen: 24
82.41.184.0/22 maxlen: 24
82.41.188.0/22 maxlen: 24
82.41.204.0/22 maxlen: 24
82.41.212.0/22 maxlen: 24
82.41.224.0/22 maxlen: 24
82.41.228.0/22 maxlen: 24
82.47.36.0/23 maxlen: 23
82.47.185.0/24 maxlen: 24
2a13:9500:138::/48 maxlen: 48
2a13:9500:143::/48 maxlen: 48
2a13:9500:166::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
40:48:7f:8e:6d:09:83:e8:df:f8:a5:c4:c1:dd:9e:93:e8:35:98:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: May 8 05:35:44 2026 GMT
Not After : May 7 05:40:44 2027 GMT
Subject: CN=6C57A00760107A0E1C576D26E398996E1A3C8BC3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:09:31:db:bf:7c:02:18:72:21:87:64:1d:73:
36:d6:a5:36:df:42:e5:6f:66:bc:a4:57:b2:09:0c:
0e:4d:dc:ea:0a:4f:fd:d0:34:45:85:ae:fc:f9:69:
c0:1c:a8:03:47:12:27:83:bb:03:98:ed:65:d6:3b:
de:d7:32:a2:dc:9a:8c:64:0a:2f:b6:a5:be:dd:ac:
b1:31:74:01:4b:e2:a9:be:dd:d0:7f:ab:fc:78:28:
bb:bb:c7:e9:db:81:72:51:ce:d3:e8:8a:30:00:fa:
ef:44:37:28:1e:89:fe:b6:20:fb:b7:c5:99:22:2f:
aa:e7:f4:4c:24:14:a9:a0:28:f5:e3:63:20:0b:91:
6b:e7:33:df:ed:27:14:6e:c1:39:16:41:fb:9e:ba:
68:10:02:ac:33:3f:bc:04:e8:4b:e8:ea:93:0c:e9:
81:63:8d:42:c6:f5:ec:e8:c7:48:2f:ad:3b:e1:ea:
17:e4:12:58:6e:63:80:5f:f9:99:fb:f3:c8:92:81:
1f:ae:bf:7c:2f:57:fb:87:87:e2:5e:93:81:fb:8c:
c0:13:d1:fe:c6:3a:c8:a1:f1:5d:81:84:4d:1a:7a:
50:91:fa:0a:a9:a4:df:8c:57:0d:c6:22:67:15:96:
64:16:ac:e8:45:6f:f9:0d:c2:74:b3:97:57:e3:af:
8b:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:57:A0:07:60:10:7A:0E:1C:57:6D:26:E3:98:99:6E:1A:3C:8B:C3
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS16276.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.21.139.0/24
82.22.15.0/24
82.22.18.0/24
82.22.25.0/24
82.22.51.0/24
82.22.118.0/24
82.24.96.0/22
82.24.190.0/24
82.25.146.0/23
82.26.81.0/24
82.26.176.0/20
82.29.126.0/24
82.38.2.0/24
82.38.32.0/24
82.38.35.0/24
82.38.82.0/24
82.38.124.0/22
82.38.140.0/22
82.38.152.0-82.38.167.255
82.38.224.0/19
82.39.108.0/24
82.39.138.0/24
82.39.156.0/22
82.39.176.0/21
82.39.216.0/22
82.39.224.0/22
82.40.0.0-82.40.19.255
82.41.44.0/22
82.41.52.0/22
82.41.68.0/22
82.41.80.0/22
82.41.88.0/22
82.41.100.0-82.41.111.255
82.41.124.0/22
82.41.134.0/24
82.41.148.0-82.41.155.255
82.41.160.0/21
82.41.172.0-82.41.179.255
82.41.184.0/21
82.41.204.0/22
82.41.212.0/22
82.41.224.0/21
82.47.36.0/23
82.47.185.0/24
IPv6:
2a13:9500:138::/48
2a13:9500:143::/48
2a13:9500:166::/48
Signature Algorithm: sha256WithRSAEncryption
0e:88:ac:d8:44:ba:8d:3e:fd:8c:cc:d6:87:c5:2b:18:c8:91:
db:f0:90:52:f4:57:74:03:ca:97:84:16:24:2c:20:d9:25:29:
ad:e0:b8:6c:35:b7:17:99:ba:b5:d2:bb:a4:f0:2a:83:73:33:
d2:7b:5f:9f:54:90:ac:ab:45:23:48:5a:8f:92:a6:5a:56:33:
dc:3a:a8:4d:f2:b3:b8:72:ba:a6:5e:cf:ab:a4:30:6b:51:b1:
cd:d5:d9:ff:51:cb:84:11:f0:b6:7a:61:1a:49:70:ed:42:b6:
3a:5a:69:df:49:b9:fb:be:ee:bd:a4:58:68:50:05:e1:fb:21:
64:4e:25:b2:2a:b5:0e:5a:52:02:07:62:a5:9d:ac:4b:5b:9b:
c7:bb:08:99:cd:c7:df:47:eb:27:b2:d0:75:91:99:28:6c:8c:
2f:cb:b6:ce:5a:25:cc:76:8d:a4:6c:80:20:03:7c:82:1b:10:
fc:f6:6b:0e:f6:e3:5f:d9:c2:ea:1f:27:04:70:42:80:a3:32:
73:5a:5e:a0:9f:13:5c:f0:81:bc:2e:23:8a:d5:60:af:91:1e:
77:8a:7c:3f:a6:38:8d:ed:e8:66:08:26:22:08:74:3c:78:6c:
31:09:07:87:ba:00:c7:e5:dd:9e:a4:eb:6e:c4:35:09:76:16:
6d:e3:9a:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 23:39:59 2026 by rpki-client