Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS16125.roa
File: AS16125.roa (raw, json)
Hash identifier: zPG4BcckY9mjrEm32BymCHvlq9F2VuftWSPlkagBdpE=
Subject key identifier: 08:9B:24:DD:BE:79:8B:16:7C:DF:76:A7:5D:8F:B9:F4:7C:F1:7C:8B
Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Certificate serial: 1347B7179F0B9DB3A04EE801A20214EB24494264
Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS16125.roa
Signing time: Wed 06 May 2026 11:19:53 +0000
ROA not before: Wed 06 May 2026 11:14:53 +0000
ROA not after: Wed 05 May 2027 11:19:53 +0000
asID: 16125
IP address blocks: 46.202.39.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft
rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 May 2026 13:58:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
13:47:b7:17:9f:0b:9d:b3:a0:4e:e8:01:a2:02:14:eb:24:49:42:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Validity
Not Before: May 6 11:14:53 2026 GMT
Not After : May 5 11:19:53 2027 GMT
Subject: CN=089B24DDBE798B167CDF76A75D8FB9F47CF17C8B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:e2:d9:ac:33:8d:92:66:59:46:ef:0f:54:15:
bd:2b:f3:4f:4a:29:dc:1c:7c:f5:36:f8:d0:e9:38:
8b:23:06:6d:ec:5b:30:9a:33:ed:4b:7f:9a:cd:c5:
52:21:3e:67:98:c0:59:56:5b:5b:c5:7f:6e:c9:b4:
61:57:3c:f8:95:fb:a3:65:26:15:d6:36:40:50:37:
99:ee:00:8f:d6:25:27:8c:ef:80:8b:19:cd:be:88:
41:d4:f3:ea:d7:f8:d2:a2:6b:08:92:1b:b3:60:39:
0b:88:f3:ef:e5:8a:21:bd:33:77:c5:c8:e5:5f:b3:
84:3e:e5:7b:ef:50:2c:42:6f:78:eb:05:06:a1:95:
97:cd:8e:ff:4d:8c:7f:e9:5c:89:fa:92:85:54:dc:
bb:d2:85:ef:a2:b1:2f:df:cc:d8:c3:04:ee:64:ec:
0e:10:32:cf:2d:7f:b5:ee:e2:87:b8:ee:f2:14:0f:
22:21:e1:a8:cd:6b:60:31:d1:27:19:9c:59:79:b8:
83:6e:f5:00:54:f4:50:d9:69:1c:b0:48:04:f0:7f:
eb:58:90:ad:90:fd:50:7f:ed:1e:0a:32:29:b6:03:
77:dd:a4:62:c1:e7:e2:f4:43:f9:c5:d2:ad:f0:09:
d0:38:28:e9:ab:de:6f:ae:3c:45:60:78:01:34:74:
5a:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:9B:24:DD:BE:79:8B:16:7C:DF:76:A7:5D:8F:B9:F4:7C:F1:7C:8B
X509v3 Authority Key Identifier:
keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS16125.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.202.39.0/24
Signature Algorithm: sha256WithRSAEncryption
9e:fe:cc:2d:95:17:3e:f0:a4:1c:78:50:1b:14:d0:2f:c6:5f:
e0:44:4f:e0:9d:81:58:8a:ab:57:5f:8d:11:0d:2f:67:50:83:
cd:bf:e2:91:d6:92:1c:72:b8:0e:10:7a:aa:71:99:fa:ec:75:
7c:a0:a1:77:6e:a8:f5:54:18:8e:78:16:97:9f:c3:9e:9d:23:
f1:ce:ed:8b:3d:b5:3d:02:94:f5:4a:e3:13:90:f3:e1:3d:e1:
e3:b4:c8:9b:45:25:33:f0:9a:ee:e3:68:1a:6e:f4:cf:ed:7d:
35:b0:ee:11:b4:73:e5:92:2a:fc:86:e4:70:2b:23:94:74:13:
90:1f:4a:f6:77:96:24:60:a2:88:b1:50:f1:0e:56:31:58:31:
b5:a2:5c:8b:ad:b9:44:ac:36:24:80:74:b9:96:73:55:7e:94:
99:a3:93:ee:8b:2f:38:3a:c1:aa:c1:2f:e1:50:63:33:b9:6a:
8c:04:94:fc:f3:b3:54:ff:91:63:61:03:10:6e:bd:07:56:6d:
20:c3:23:7d:cd:3a:a2:e4:8e:c3:36:8d:5b:52:6d:51:48:35:
e8:ea:d7:49:e8:6d:dc:b6:3a:34:df:51:ff:7c:89:10:8d:9d:
e6:13:8a:ed:78:fe:eb:41:03:bb:64:ee:bd:ec:fe:03:f2:d3:
83:b7:43:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 6 17:22:56 2026 by rpki-client