Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/AS16276.roa
File: AS16276.roa (raw, json)
Hash identifier: RdS51Q09jw4uu0bGRQz/zvbasBuhUEDGQ3ujS4wAgPI=
Subject key identifier: 53:BD:41:D4:89:97:B8:2B:D8:2F:5B:95:E7:0B:B5:D4:64:8D:29:A0
Certificate issuer: /CN=7051b4c2f7ae9ef80b53000b32ab8f5d2f2f415b
Certificate serial: 2C821FA11824330252DE8A6CC7CA9310AA464722
Authority key identifier: 70:51:B4:C2:F7:AE:9E:F8:0B:53:00:0B:32:AB:8F:5D:2F:2F:41:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cFG0wveunvgLUwALMquPXS8vQVs.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/AS16276.roa
Signing time: Mon 25 Aug 2025 10:07:19 +0000
ROA not before: Mon 25 Aug 2025 10:02:19 +0000
ROA not after: Mon 24 Aug 2026 10:07:19 +0000
asID: 16276
IP address blocks: 176.53.158.0/24 maxlen: 24
193.32.204.0/24 maxlen: 24
193.32.206.0/24 maxlen: 24
193.32.207.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/7051B4C2F7AE9EF80B53000B32AB8F5D2F2F415B.crl
rsync://rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/7051B4C2F7AE9EF80B53000B32AB8F5D2F2F415B.mft
rsync://rpki.ripe.net/repository/DEFAULT/cFG0wveunvgLUwALMquPXS8vQVs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 07 Sep 2025 07:44:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2c:82:1f:a1:18:24:33:02:52:de:8a:6c:c7:ca:93:10:aa:46:47:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7051b4c2f7ae9ef80b53000b32ab8f5d2f2f415b
Validity
Not Before: Aug 25 10:02:19 2025 GMT
Not After : Aug 24 10:07:19 2026 GMT
Subject: CN=53BD41D48997B82BD82F5B95E70BB5D4648D29A0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:7f:3c:ec:01:8d:fb:02:c4:26:fe:11:ef:ef:
8c:66:1d:06:b7:50:cd:8e:dc:f3:41:c8:b1:27:d0:
02:fe:ed:90:aa:9b:b2:52:04:4d:30:ea:23:f9:87:
65:a6:ec:ec:d9:39:5c:eb:78:d6:07:1d:87:47:3e:
5f:3f:8c:d1:5f:3e:25:e5:03:b6:f6:eb:e4:03:da:
58:f6:3d:ca:af:0c:2d:5a:a0:c3:e0:d6:75:b4:1b:
5d:41:80:b1:b7:9d:8b:fd:73:4b:8d:a3:89:b8:7f:
2f:e5:11:9c:63:53:f8:ea:f7:66:3d:60:09:38:9d:
e2:d1:e0:ce:19:88:71:c4:02:79:00:be:39:0a:0e:
b8:b0:d1:54:d9:7a:cc:b7:11:da:97:29:eb:52:d8:
a9:34:7e:3c:d4:f7:45:5f:ca:e6:81:93:59:79:5c:
39:05:8a:60:52:e8:c3:a3:68:8c:fb:3a:09:69:b0:
aa:7c:03:c8:57:2c:43:bb:de:7a:42:05:91:ff:7e:
b9:c0:4d:99:2a:ac:b9:12:70:1b:a1:3b:bd:78:fa:
94:5c:67:ab:66:07:2b:8d:0a:fa:53:3b:ed:47:0d:
6d:1d:4c:2c:73:16:d7:68:3b:15:91:c7:66:e0:c9:
09:bc:70:bb:ea:d2:09:62:58:0e:d9:c5:34:96:e1:
63:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:BD:41:D4:89:97:B8:2B:D8:2F:5B:95:E7:0B:B5:D4:64:8D:29:A0
X509v3 Authority Key Identifier:
keyid:70:51:B4:C2:F7:AE:9E:F8:0B:53:00:0B:32:AB:8F:5D:2F:2F:41:5B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/7051B4C2F7AE9EF80B53000B32AB8F5D2F2F415B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cFG0wveunvgLUwALMquPXS8vQVs.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/AS16276.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.53.158.0/24
193.32.204.0/24
193.32.206.0/23
Signature Algorithm: sha256WithRSAEncryption
7a:10:66:93:50:80:9d:70:38:01:36:96:1e:5c:b8:72:aa:d2:
c1:91:25:f4:2c:02:e7:09:81:e1:00:d1:93:1c:e2:74:96:f9:
8b:4f:02:7b:8e:e1:c2:5f:3c:70:1d:6a:cd:80:00:91:5f:11:
80:35:4f:49:4e:06:04:23:8e:c9:83:c9:1e:ea:76:9b:99:2d:
34:7b:0a:dd:31:40:c4:05:5e:b6:19:8c:17:76:1b:3e:3c:9e:
0c:7a:3d:6a:f9:94:9c:5d:35:34:e5:68:fa:6e:5f:05:c3:c9:
2c:bb:8b:21:66:37:03:50:27:3c:af:b0:51:57:48:37:73:ca:
7d:df:07:f1:9e:6a:15:ef:d6:4e:1f:a1:62:1f:04:d2:d5:3f:
c6:6d:ef:21:7c:40:2b:12:77:f4:4a:d9:26:63:c7:6d:33:4b:
38:64:dd:cd:59:b4:c9:77:1f:e6:6d:20:13:fe:42:35:97:61:
a4:28:7c:f9:49:bf:fa:24:1e:59:f8:aa:d7:3a:96:2e:b8:73:
20:96:ff:14:e9:48:3d:1c:a0:f2:91:95:90:98:5a:57:c1:88:
14:3c:db:f7:5a:b0:f3:8f:8e:71:3a:bf:56:81:2f:4d:ec:8b:
bb:3e:bd:df:fc:7d:b8:48:5e:fb:64:23:50:a2:80:b6:e6:cb:
6e:06:b8:e7
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sat Sep 6 16:40:10 2025 by rpki-client