Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/22db7555-9aa4-4983-9316-73809dd354bc/0/AS834.roa
File: AS834.roa (raw, json)
Hash identifier: dfyfJaUN9bGlFPLUAPyIgV1DoG8xTLtyTfoeU2WbWcU=
Subject key identifier: 2D:54:24:2D:04:C3:8F:DE:1C:F7:86:CB:A9:8B:B8:48:C4:28:9A:5E
Certificate issuer: /CN=3feccb17be51ee59ec74d64eed917e221ee28a1b
Certificate serial: 37C35263141319D6BD398D44763BAF40DD33DD6D
Authority key identifier: 3F:EC:CB:17:BE:51:EE:59:EC:74:D6:4E:ED:91:7E:22:1E:E2:8A:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P-zLF75R7lnsdNZO7ZF-Ih7iihs.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/22db7555-9aa4-4983-9316-73809dd354bc/0/AS834.roa
Signing time: Sun 19 Oct 2025 12:54:44 +0000
ROA not before: Sun 19 Oct 2025 12:49:44 +0000
ROA not after: Sun 18 Oct 2026 12:54:44 +0000
asID: 834
IP address blocks: 46.236.213.0/24 maxlen: 24
46.236.223.0/24 maxlen: 24
82.139.193.0/24 maxlen: 24
82.139.194.0/24 maxlen: 24
82.139.205.0/24 maxlen: 24
82.139.206.0/24 maxlen: 24
82.139.231.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/22db7555-9aa4-4983-9316-73809dd354bc/0/3FECCB17BE51EE59EC74D64EED917E221EE28A1B.crl
rsync://rsync.paas.rpki.ripe.net/repository/22db7555-9aa4-4983-9316-73809dd354bc/0/3FECCB17BE51EE59EC74D64EED917E221EE28A1B.mft
rsync://rpki.ripe.net/repository/DEFAULT/P-zLF75R7lnsdNZO7ZF-Ih7iihs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
37:c3:52:63:14:13:19:d6:bd:39:8d:44:76:3b:af:40:dd:33:dd:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3feccb17be51ee59ec74d64eed917e221ee28a1b
Validity
Not Before: Oct 19 12:49:44 2025 GMT
Not After : Oct 18 12:54:44 2026 GMT
Subject: CN=2D54242D04C38FDE1CF786CBA98BB848C4289A5E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:0c:ba:e8:71:7b:f0:2d:ce:3d:e0:f1:b5:df:
34:45:57:55:6b:16:2e:2f:1e:62:4b:79:3a:cc:d0:
67:41:a5:aa:1a:6f:16:a3:7d:ef:39:0b:bf:01:5e:
84:4f:5c:4f:8c:b1:f4:e1:49:6f:12:b5:69:fa:c3:
39:7a:d4:6b:ba:37:ec:96:06:cf:af:20:f6:5b:a7:
db:e7:69:f1:00:54:f0:8f:1e:e4:6a:6b:7d:6d:fe:
70:98:ef:e5:97:aa:a8:93:c3:38:42:d9:ad:e7:30:
ef:ab:49:4f:9a:ac:10:fc:38:a1:c2:f3:cf:8f:75:
38:80:4f:f0:7b:be:6c:91:2a:ed:d0:69:a6:96:f9:
08:fe:9d:49:3c:d0:e9:f1:44:9e:da:6f:f6:af:2d:
27:39:65:ca:71:df:a2:d1:55:68:71:61:60:f6:aa:
f6:fe:00:93:41:6c:da:1a:14:61:3d:46:d2:4f:24:
c8:08:92:68:45:7a:1b:3b:9d:8c:72:07:5e:8b:5d:
b2:87:8e:34:14:83:43:36:ee:4a:ee:81:26:4e:b3:
b4:7c:9b:e0:e0:82:cc:8c:8b:74:d1:f0:10:b7:9e:
d2:9a:5a:66:16:d8:16:a6:6b:04:dc:0d:08:3d:55:
f6:e9:6e:84:5b:3d:40:99:3a:ca:9a:9d:b2:8d:ef:
b2:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:54:24:2D:04:C3:8F:DE:1C:F7:86:CB:A9:8B:B8:48:C4:28:9A:5E
X509v3 Authority Key Identifier:
keyid:3F:EC:CB:17:BE:51:EE:59:EC:74:D6:4E:ED:91:7E:22:1E:E2:8A:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/22db7555-9aa4-4983-9316-73809dd354bc/0/3FECCB17BE51EE59EC74D64EED917E221EE28A1B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P-zLF75R7lnsdNZO7ZF-Ih7iihs.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/22db7555-9aa4-4983-9316-73809dd354bc/0/AS834.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.236.213.0/24
46.236.223.0/24
82.139.193.0-82.139.194.255
82.139.205.0-82.139.206.255
82.139.231.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:91:25:5f:94:9b:2c:db:e9:b4:a7:2a:d9:17:90:2d:32:56:
38:ab:48:32:06:d0:8a:65:89:0f:2f:b7:6e:a1:85:80:53:d8:
02:fd:87:1e:7f:a6:a1:ea:56:a4:2e:bb:ae:52:68:17:5c:c7:
0b:2c:25:54:65:14:ba:7c:a4:34:d6:8b:d8:a5:42:35:52:bc:
6e:ca:a1:bd:58:16:d6:c9:2d:8e:43:bb:bb:37:ec:78:85:ab:
40:58:5b:ce:65:d6:70:b5:1b:99:8b:8f:b7:3f:90:61:b6:e3:
b8:ff:4a:ff:b9:91:e9:97:6d:0d:d0:f8:05:07:11:de:d7:af:
32:35:f7:a1:6e:a6:f6:19:fe:79:45:f3:3b:24:17:43:ad:5d:
17:de:91:14:13:4e:84:7c:d9:29:81:ba:d9:e3:64:4b:b5:b7:
e9:8f:a7:79:f7:8f:d2:1d:c4:4a:c7:61:08:e8:50:58:5e:91:
af:5e:46:ed:67:3e:5c:53:65:47:67:65:58:4e:71:6d:85:47:
c1:b3:2d:56:8c:1f:2a:93:f1:13:31:06:dc:ae:e2:7b:22:80:
4c:96:6a:59:97:82:69:b9:40:4a:ff:ce:f4:7f:53:a4:88:f4:
e3:42:19:9a:79:fe:71:d3:5e:5a:18:49:ab:22:7a:dc:63:a4:
dc:ef:71:96
-----BEGIN CERTIFICATE-----
MIIFJTCCBA2gAwIBAgIUN8NSYxQTGda9OY1EdjuvQN0z3W0wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoM2ZlY2NiMTdiZTUxZWU1OWVjNzRkNjRlZWQ5MTdlMjIx
ZWUyOGExYjAeFw0yNTEwMTkxMjQ5NDRaFw0yNjEwMTgxMjU0NDRaMDMxMTAvBgNV
BAMTKDJENTQyNDJEMDRDMzhGREUxQ0Y3ODZDQkE5OEJCODQ4QzQyODlBNUUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDkDLrocXvwLc494PG13zRFV1Vr
Fi4vHmJLeTrM0GdBpaoabxajfe85C78BXoRPXE+MsfThSW8StWn6wzl61Gu6N+yW
Bs+vIPZbp9vnafEAVPCPHuRqa31t/nCY7+WXqqiTwzhC2a3nMO+rSU+arBD8OKHC
88+PdTiAT/B7vmyRKu3QaaaW+Qj+nUk80OnxRJ7ab/avLSc5Zcpx36LRVWhxYWD2
qvb+AJNBbNoaFGE9RtJPJMgIkmhFehs7nYxyB16LXbKHjjQUg0M27krugSZOs7R8
m+DggsyMi3TR8BC3ntKaWmYW2BamawTcDQg9VfbpboRbPUCZOsqanbKN77KNAgMB
AAGjggIvMIICKzAdBgNVHQ4EFgQULVQkLQTDj94c94bLqYu4SMQoml4wHwYDVR0j
BBgwFoAUP+zLF75R7lnsdNZO7ZF+Ih7iihswDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvMjJkYjc1NTUtOWFhNC00OTgzLTkzMTYtNzM4MDlkZDM1
NGJjLzAvM0ZFQ0NCMTdCRTUxRUU1OUVDNzRENjRFRUQ5MTdFMjIxRUUyOEExQi5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1AtekxGNzVSN2xuc2ROWk83WkYtSWg3
aWlocy5jZXIweAYIKwYBBQUHAQsEbDBqMGgGCCsGAQUFBzALhlxyc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzIyZGI3NTU1LTlhYTQt
NDk4My05MzE2LTczODA5ZGQzNTRiYy8wL0FTODM0LnJvYTAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMEcGCCsGAQUFBwEHAQH/BDgwNjA0BAIAATAuAwQALuzVAwQA
LuzfMAwDBABSi8EDBABSi8IwDAMEAFKLzQMEAFKLzgMEAFKL5zANBgkqhkiG9w0B
AQsFAAOCAQEAHZElX5SbLNvptKcq2ReQLTJWOKtIMgbQimWJDy+3bqGFgFPYAv2H
Hn+moepWpC67rlJoF1zHCywlVGUUunykNNaL2KVCNVK8bsqhvVgW1sktjkO7uzfs
eIWrQFhbzmXWcLUbmYuPtz+QYbbjuP9K/7mR6ZdtDdD4BQcR3tevMjX3oW6m9hn+
eUXzOyQXQ61dF96RFBNOhHzZKYG62eNkS7W36Y+nefeP0h3ESsdhCOhQWF6Rr15G
7Wc+XFNlR2dlWE5xbYVHwbMtVowfKpPxEzEG3K7ieyKATJZqWZeCablASv/O9H9T
pIj040IZmnn+cdNeWhhJqyJ63GOk3O9xlg==
-----END CERTIFICATE-----
Generated at Sun Oct 19 14:41:25 2025 by rpki-client