Route Origin Authorization

$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS16276.roa
File:                     AS16276.roa (raw, json)
Hash identifier:          fgOb2FXqgbOo2ehTG+PXLj/X8DRCJMqov7aRlgkucng=
Subject key identifier:   4D:8C:14:BB:E5:A0:8C:BF:9A:53:62:C6:CB:17:15:94:43:E7:95:C2
Certificate issuer:       /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial:       5B86AA0094D3CB984B5F8FFF22B89BCCEE85C99A
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access:      rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS16276.roa
Signing time:             Tue 14 Jul 2026 11:02:55 +0000
ROA not before:           Tue 14 Jul 2026 10:57:55 +0000
ROA not after:            Tue 13 Jul 2027 11:02:55 +0000
asID:                     16276
IP address blocks:        82.21.139.0/24 maxlen: 24
                          82.22.15.0/24 maxlen: 24
                          82.22.18.0/24 maxlen: 24
                          82.22.25.0/24 maxlen: 24
                          82.22.51.0/24 maxlen: 24
                          82.22.118.0/24 maxlen: 24
                          82.24.96.0/22 maxlen: 24
                          82.24.190.0/24 maxlen: 24
                          82.25.146.0/23 maxlen: 24
                          82.26.81.0/24 maxlen: 24
                          82.26.176.0/21 maxlen: 24
                          82.26.184.0/21 maxlen: 24
                          82.27.122.0/24 maxlen: 24
                          82.29.126.0/24 maxlen: 24
                          82.38.2.0/24 maxlen: 24
                          82.38.35.0/24 maxlen: 24
                          82.38.82.0/24 maxlen: 24
                          82.38.124.0/22 maxlen: 24
                          82.38.140.0/22 maxlen: 24
                          82.38.152.0/22 maxlen: 24
                          82.38.156.0/22 maxlen: 24
                          82.38.160.0/22 maxlen: 24
                          82.38.164.0/22 maxlen: 24
                          82.38.224.0/22 maxlen: 24
                          82.38.228.0/22 maxlen: 24
                          82.38.232.0/22 maxlen: 24
                          82.38.236.0/22 maxlen: 24
                          82.38.240.0/22 maxlen: 24
                          82.38.244.0/22 maxlen: 24
                          82.38.248.0/22 maxlen: 24
                          82.38.252.0/22 maxlen: 24
                          82.39.108.0/24 maxlen: 24
                          82.39.119.0/24 maxlen: 24
                          82.39.156.0/22 maxlen: 24
                          82.39.176.0/22 maxlen: 24
                          82.39.180.0/22 maxlen: 24
                          82.39.216.0/22 maxlen: 24
                          82.39.224.0/22 maxlen: 24
                          82.40.0.0/22 maxlen: 24
                          82.40.4.0/22 maxlen: 24
                          82.40.8.0/22 maxlen: 24
                          82.40.12.0/22 maxlen: 24
                          82.40.16.0/22 maxlen: 24
                          82.41.44.0/22 maxlen: 24
                          82.41.52.0/22 maxlen: 24
                          82.41.68.0/22 maxlen: 24
                          82.41.80.0/22 maxlen: 24
                          82.41.88.0/22 maxlen: 24
                          82.41.100.0/22 maxlen: 24
                          82.41.104.0/22 maxlen: 24
                          82.41.108.0/22 maxlen: 24
                          82.41.124.0/22 maxlen: 24
                          82.41.134.0/24 maxlen: 24
                          82.41.148.0/22 maxlen: 24
                          82.41.152.0/22 maxlen: 24
                          82.41.160.0/22 maxlen: 24
                          82.41.164.0/22 maxlen: 24
                          82.41.172.0/22 maxlen: 24
                          82.41.176.0/22 maxlen: 24
                          82.41.184.0/22 maxlen: 24
                          82.41.188.0/22 maxlen: 24
                          82.41.204.0/22 maxlen: 24
                          82.41.212.0/22 maxlen: 24
                          82.41.224.0/22 maxlen: 24
                          82.41.228.0/22 maxlen: 24
                          82.47.36.0/23 maxlen: 23
                          82.47.63.0/24 maxlen: 24
                          82.47.98.0/24 maxlen: 24
                          84.75.33.0/24 maxlen: 24
                          178.83.45.0/24 maxlen: 24
                          178.83.46.0/24 maxlen: 24
                          2a13:9500:138::/48 maxlen: 48
                          2a13:9500:143::/48 maxlen: 48
                          2a13:9500:166::/48 maxlen: 48
                          2a13:9500:18e::/48 maxlen: 48
Validation:               OK
Signature path:           rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
                          rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 18 Jul 2026 16:14:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            5b:86:aa:00:94:d3:cb:98:4b:5f:8f:ff:22:b8:9b:cc:ee:85:c9:9a
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
        Validity
            Not Before: Jul 14 10:57:55 2026 GMT
            Not After : Jul 13 11:02:55 2027 GMT
        Subject: CN=4D8C14BBE5A08CBF9A5362C6CB17159443E795C2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a1:e1:30:01:29:29:c5:3d:7f:2a:50:79:a3:bb:
                    62:ab:65:f9:1a:5c:10:3b:8b:b7:7c:46:36:0c:2e:
                    5b:c3:73:75:c5:36:fd:cf:b1:39:5a:be:1e:19:40:
                    9b:6b:dd:65:55:6a:e0:7c:05:51:d9:87:b4:dd:82:
                    9e:7f:71:0f:aa:3a:c8:07:47:e3:0b:ac:6c:ee:59:
                    2d:23:a8:09:b7:33:12:70:49:8c:bc:b5:49:b7:96:
                    e1:75:41:0a:4e:86:42:ff:10:69:f0:21:b4:64:1b:
                    81:aa:43:0e:0b:87:7f:89:e6:ce:3c:86:f9:80:f1:
                    64:43:b6:1b:5c:cf:f0:65:79:36:dd:ef:d5:98:c2:
                    90:c3:f7:ab:9e:ff:60:22:4f:57:f3:6b:95:99:a9:
                    4e:9e:91:81:48:2b:2c:58:f2:d6:89:c7:a4:a6:8f:
                    85:bd:f9:21:43:80:86:cd:e8:c6:bd:22:89:63:14:
                    8c:ce:e9:08:a2:ff:10:57:ab:3a:16:a5:d9:1c:3f:
                    d1:64:f2:3c:46:a3:14:0b:75:8d:56:43:09:1e:3b:
                    62:42:1d:24:1a:e6:9f:c0:72:71:f3:c8:43:16:33:
                    46:99:0b:ed:d0:ef:0e:3f:13:1e:9c:a4:85:32:8e:
                    48:42:f3:1a:30:1e:a8:6d:8e:aa:c5:d2:10:24:66:
                    c8:e3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                4D:8C:14:BB:E5:A0:8C:BF:9A:53:62:C6:CB:17:15:94:43:E7:95:C2
            X509v3 Authority Key Identifier:
                keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer

            Subject Information Access:
                Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS16276.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  82.21.139.0/24
                  82.22.15.0/24
                  82.22.18.0/24
                  82.22.25.0/24
                  82.22.51.0/24
                  82.22.118.0/24
                  82.24.96.0/22
                  82.24.190.0/24
                  82.25.146.0/23
                  82.26.81.0/24
                  82.26.176.0/20
                  82.27.122.0/24
                  82.29.126.0/24
                  82.38.2.0/24
                  82.38.35.0/24
                  82.38.82.0/24
                  82.38.124.0/22
                  82.38.140.0/22
                  82.38.152.0-82.38.167.255
                  82.38.224.0/19
                  82.39.108.0/24
                  82.39.119.0/24
                  82.39.156.0/22
                  82.39.176.0/21
                  82.39.216.0/22
                  82.39.224.0/22
                  82.40.0.0-82.40.19.255
                  82.41.44.0/22
                  82.41.52.0/22
                  82.41.68.0/22
                  82.41.80.0/22
                  82.41.88.0/22
                  82.41.100.0-82.41.111.255
                  82.41.124.0/22
                  82.41.134.0/24
                  82.41.148.0-82.41.155.255
                  82.41.160.0/21
                  82.41.172.0-82.41.179.255
                  82.41.184.0/21
                  82.41.204.0/22
                  82.41.212.0/22
                  82.41.224.0/21
                  82.47.36.0/23
                  82.47.63.0/24
                  82.47.98.0/24
                  84.75.33.0/24
                  178.83.45.0-178.83.46.255
                IPv6:
                  2a13:9500:138::/48
                  2a13:9500:143::/48
                  2a13:9500:166::/48
                  2a13:9500:18e::/48

    Signature Algorithm: sha256WithRSAEncryption
         61:d0:cb:33:26:53:d1:94:76:85:3d:d3:e1:8e:dc:a3:85:14:
         00:d4:5d:e4:e8:28:f1:81:d0:e4:95:80:72:2e:4c:7e:61:6a:
         bf:c4:2e:49:28:16:a1:0a:1b:02:66:c3:dc:26:ff:20:f4:75:
         6c:3a:3d:e4:03:6a:2e:27:da:8d:7a:64:49:bd:20:75:6c:75:
         a6:24:5b:f4:16:09:07:6d:ab:19:38:c9:4b:94:2a:79:8b:a8:
         41:c1:03:50:ef:2f:41:fc:ec:c8:0a:99:0f:1b:e7:a5:31:da:
         81:34:50:ab:bc:dd:9f:92:aa:f9:a8:ee:56:03:e8:ec:e7:4d:
         98:78:a4:04:5b:f3:78:1d:05:45:2c:83:92:68:27:0f:09:58:
         53:60:b5:c7:3a:ba:65:01:db:32:8f:2d:e7:76:9b:f1:b3:b1:
         8c:dd:b9:f4:a7:1a:98:d4:ab:e4:8d:2d:29:a3:81:4b:0d:e3:
         e5:d9:25:5d:ca:eb:ac:d6:02:67:b5:2f:f9:39:ac:0c:70:27:
         bf:d7:a1:47:a8:1d:1e:41:03:9a:5f:f1:7c:e5:f1:13:c3:83:
         38:29:47:3a:81:a6:9d:c1:5f:06:48:27:37:41:18:56:fc:23:
         1d:c2:92:e3:ae:bd:42:d9:29:43:e0:e5:ad:6d:41:fe:43:01:
         af:eb:d2:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 17 23:06:53 2026 by rpki-client