Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS16276.roa
File: AS16276.roa (raw, json)
Hash identifier: a2GEHOOlbsLSTF9D9mTxe43HGrPM1C0R8i9szBoNBVs=
Subject key identifier: BC:45:34:AA:E9:A9:CA:41:0D:C5:FB:46:E2:B3:98:7F:ED:B7:77:CE
Certificate issuer: /CN=03b1ba3fdb91d8d9ea76c5776320eb7eb2d6ed9d
Certificate serial: 533774089BF982A0DF65697371DE3BF8B9942EE9
Authority key identifier: 03:B1:BA:3F:DB:91:D8:D9:EA:76:C5:77:63:20:EB:7E:B2:D6:ED:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A7G6P9uR2NnqdsV3YyDrfrLW7Z0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS16276.roa
Signing time: Mon 29 Sep 2025 08:43:59 +0000
ROA not before: Mon 29 Sep 2025 08:38:59 +0000
ROA not after: Mon 28 Sep 2026 08:43:59 +0000
asID: 16276
IP address blocks: 45.149.185.0/24 maxlen: 24
91.199.168.0/24 maxlen: 24
193.111.117.0/24 maxlen: 24
193.111.124.0/24 maxlen: 24
193.142.18.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/03B1BA3FDB91D8D9EA76C5776320EB7EB2D6ED9D.crl
rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/03B1BA3FDB91D8D9EA76C5776320EB7EB2D6ED9D.mft
rsync://rpki.ripe.net/repository/DEFAULT/A7G6P9uR2NnqdsV3YyDrfrLW7Z0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
53:37:74:08:9b:f9:82:a0:df:65:69:73:71:de:3b:f8:b9:94:2e:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=03b1ba3fdb91d8d9ea76c5776320eb7eb2d6ed9d
Validity
Not Before: Sep 29 08:38:59 2025 GMT
Not After : Sep 28 08:43:59 2026 GMT
Subject: CN=BC4534AAE9A9CA410DC5FB46E2B3987FEDB777CE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:42:e3:ba:22:4b:9c:51:04:1d:7e:15:f9:27:
0d:d0:32:f2:c6:07:96:bd:69:1b:2e:6b:16:91:c4:
26:51:7d:26:4b:af:8e:11:0e:2d:4a:8a:e3:ce:5b:
a0:34:c7:d6:11:b5:a5:60:43:16:df:34:86:ca:22:
84:b4:c4:c0:0f:75:16:fa:3d:f5:b3:34:00:a8:d9:
aa:c4:dc:f2:b5:77:15:26:86:e4:b6:5b:c7:61:8e:
ea:d2:15:aa:37:71:19:81:aa:8b:16:72:93:0f:f1:
6b:8e:b5:ab:fb:5b:e6:67:86:be:7b:31:b5:0a:c0:
0c:15:1b:a3:09:eb:31:3f:da:dd:96:27:8b:71:77:
02:da:24:04:f5:7d:1b:79:67:dd:bb:e2:a6:c1:bf:
a8:73:21:fa:4e:f1:6d:eb:ba:7e:4e:15:e0:6e:99:
aa:ac:9d:7a:4a:a7:4d:cd:c6:7b:29:f4:7d:64:b6:
23:7d:63:90:fd:01:05:0a:d9:34:da:d2:28:f4:c8:
04:d1:b9:fd:70:20:10:c7:44:e5:fd:d7:6e:d7:dd:
6e:fe:ce:91:54:2b:32:29:33:1d:ea:59:68:36:4d:
fa:30:5f:d4:d7:8e:f7:44:41:74:04:fe:00:2c:e8:
d6:bf:d4:96:64:54:b6:dc:38:0d:93:9b:7f:eb:f7:
17:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:45:34:AA:E9:A9:CA:41:0D:C5:FB:46:E2:B3:98:7F:ED:B7:77:CE
X509v3 Authority Key Identifier:
keyid:03:B1:BA:3F:DB:91:D8:D9:EA:76:C5:77:63:20:EB:7E:B2:D6:ED:9D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/03B1BA3FDB91D8D9EA76C5776320EB7EB2D6ED9D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A7G6P9uR2NnqdsV3YyDrfrLW7Z0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS16276.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.149.185.0/24
91.199.168.0/24
193.111.117.0/24
193.111.124.0/24
193.142.18.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:8f:f6:5b:5d:96:cf:4f:16:1f:6e:a4:4c:b5:df:c1:23:ba:
35:3f:b0:6c:0c:ea:8b:c4:4e:09:54:94:47:c0:a5:5a:9b:28:
c4:24:51:cb:a7:3a:1f:b2:87:ed:d3:5e:14:56:ec:8a:b7:de:
66:e0:61:8d:34:fe:c4:b6:77:23:de:29:14:59:54:23:90:c9:
49:f8:14:1d:93:28:f2:84:f5:c4:de:0d:91:6b:31:cb:69:64:
69:5d:84:0a:bc:dc:a9:a7:9b:fb:7a:1c:6f:88:3c:2f:ce:36:
a7:36:8f:b9:a1:05:9f:64:19:26:90:bd:43:2f:25:c4:40:9c:
72:b4:ad:d7:95:ca:59:a2:65:8a:74:c5:f8:88:b9:34:3d:9b:
c8:37:40:58:f9:b7:45:77:87:76:a3:c7:14:5b:e0:22:e8:70:
97:3c:62:0c:20:9a:b8:6d:7d:91:12:30:07:ab:da:b2:04:8f:
f1:17:ab:dc:4d:fe:59:86:f8:ff:52:3c:1a:e0:18:23:a5:b1:
f3:0f:a4:08:f7:45:51:bc:c4:b2:ca:69:af:d7:36:a2:e1:a9:
ac:e1:55:c5:fb:1c:27:39:46:a7:a5:5c:68:73:c0:17:15:14:
76:96:9c:c5:9c:83:f1:b0:a5:45:34:35:63:a7:ab:fe:8a:3c:
6c:fd:84:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 20:57:49 2025 by rpki-client