Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS834.roa
File: AS834.roa (raw, json)
Hash identifier: S0qdcBzSBUr12DNug+98+4fSP6XcVzSOKSdwExoTqM8=
Subject key identifier: 86:0E:39:24:AA:EB:B9:66:81:7F:A3:DE:5C:5B:92:F0:EB:2B:35:87
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 3C5EF97139D6E96136231839101E23B8ABC550EF
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS834.roa
Signing time: Tue 12 May 2026 06:49:41 +0000
ROA not before: Tue 12 May 2026 06:44:41 +0000
ROA not after: Tue 11 May 2027 06:49:41 +0000
asID: 834
IP address blocks: 2.57.17.0/24 maxlen: 24
5.181.125.0/24 maxlen: 24
5.181.126.0/24 maxlen: 24
5.181.135.0/24 maxlen: 24
5.182.109.0/24 maxlen: 24
5.182.110.0/24 maxlen: 24
5.252.83.0/24 maxlen: 24
45.87.185.0/24 maxlen: 24
45.88.98.0/24 maxlen: 24
45.89.253.0/24 maxlen: 24
45.93.44.0/24 maxlen: 24
45.95.22.0/24 maxlen: 24
45.133.172.0/23 maxlen: 24
45.137.116.0/23 maxlen: 24
45.137.118.0/24 maxlen: 24
45.139.182.0/23 maxlen: 24
89.19.49.0/24 maxlen: 24
89.19.50.0/24 maxlen: 24
92.118.162.0/24 maxlen: 24
92.119.33.0/24 maxlen: 24
92.119.34.0/24 maxlen: 24
92.242.184.0/24 maxlen: 24
92.242.186.0/24 maxlen: 24
109.106.3.0/24 maxlen: 24
130.185.124.0/24 maxlen: 24
130.185.127.0/24 maxlen: 24
141.98.89.0/24 maxlen: 24
179.61.130.0/24 maxlen: 24
179.61.140.0/24 maxlen: 24
179.61.150.0/24 maxlen: 24
179.61.207.0/24 maxlen: 24
179.61.226.0/24 maxlen: 24
179.61.237.0/24 maxlen: 24
179.61.248.0/24 maxlen: 24
179.61.253.0/24 maxlen: 24
181.41.210.0/24 maxlen: 24
181.41.219.0/24 maxlen: 24
181.214.0.0/24 maxlen: 24
181.214.4.0/24 maxlen: 24
181.214.7.0/24 maxlen: 24
181.214.209.0/24 maxlen: 24
181.214.212.0/24 maxlen: 24
181.215.3.0/24 maxlen: 24
181.215.12.0/24 maxlen: 24
181.215.31.0/24 maxlen: 24
181.215.55.0/24 maxlen: 24
181.215.58.0/24 maxlen: 24
181.215.64.0/24 maxlen: 24
181.215.73.0/24 maxlen: 24
181.215.84.0/24 maxlen: 24
181.215.88.0/24 maxlen: 24
181.215.91.0/24 maxlen: 24
181.215.108.0/24 maxlen: 24
181.215.112.0/24 maxlen: 24
181.215.147.0/24 maxlen: 24
181.215.170.0/24 maxlen: 24
181.215.176.0/24 maxlen: 24
181.215.237.0/24 maxlen: 24
181.215.240.0/24 maxlen: 24
185.137.12.0/24 maxlen: 24
185.137.95.0/24 maxlen: 24
185.139.0.0/24 maxlen: 24
185.142.25.0/24 maxlen: 24
185.145.37.0/24 maxlen: 24
185.151.58.0/24 maxlen: 24
185.158.135.0/24 maxlen: 24
185.173.35.0/24 maxlen: 24
191.96.6.0/24 maxlen: 24
191.96.24.0/24 maxlen: 24
191.96.37.0/24 maxlen: 24
191.96.65.0/24 maxlen: 24
191.96.99.0/24 maxlen: 24
191.96.102.0/23 maxlen: 24
191.96.111.0/24 maxlen: 24
191.96.116.0/24 maxlen: 24
191.96.120.0/24 maxlen: 24
191.96.126.0/24 maxlen: 24
191.96.136.0/24 maxlen: 24
191.96.143.0/24 maxlen: 24
191.96.145.0/24 maxlen: 24
191.96.153.0/24 maxlen: 24
191.96.157.0/24 maxlen: 24
191.96.164.0/24 maxlen: 24
191.96.180.0/24 maxlen: 24
191.96.182.0/24 maxlen: 24
191.96.190.0/24 maxlen: 24
191.96.206.0/23 maxlen: 24
191.96.222.0/24 maxlen: 24
191.96.230.0/24 maxlen: 24
191.96.245.0/24 maxlen: 24
191.101.9.0/24 maxlen: 24
191.101.20.0/24 maxlen: 24
191.101.22.0/24 maxlen: 24
191.101.66.0/23 maxlen: 24
191.101.76.0/24 maxlen: 24
191.101.82.0/24 maxlen: 24
191.101.89.0/24 maxlen: 24
191.101.97.0/24 maxlen: 24
191.101.102.0/24 maxlen: 24
191.101.116.0/24 maxlen: 24
191.101.120.0/24 maxlen: 24
191.101.123.0/24 maxlen: 24
191.101.124.0/23 maxlen: 24
191.101.135.0/24 maxlen: 24
191.101.136.0/24 maxlen: 24
191.101.144.0/23 maxlen: 24
191.101.151.0/24 maxlen: 24
191.101.171.0/24 maxlen: 24
191.101.176.0/23 maxlen: 24
191.101.180.0/24 maxlen: 24
191.101.182.0/24 maxlen: 24
191.101.186.0/24 maxlen: 24
191.101.189.0/24 maxlen: 24
191.101.192.0/24 maxlen: 24
191.101.198.0/24 maxlen: 24
191.101.204.0/24 maxlen: 24
191.101.206.0/24 maxlen: 24
191.101.209.0/24 maxlen: 24
191.101.223.0/24 maxlen: 24
191.101.236.0/24 maxlen: 24
191.101.240.0/24 maxlen: 24
191.101.247.0/24 maxlen: 24
191.101.252.0/24 maxlen: 24
193.107.210.0/23 maxlen: 24
194.53.141.0/24 maxlen: 24
194.110.13.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.mft
rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 08:12:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3c:5e:f9:71:39:d6:e9:61:36:23:18:39:10:1e:23:b8:ab:c5:50:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: May 12 06:44:41 2026 GMT
Not After : May 11 06:49:41 2027 GMT
Subject: CN=860E3924AAEBB966817FA3DE5C5B92F0EB2B3587
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:43:0f:bd:4b:6c:1a:db:f4:74:4b:90:74:67:
85:1a:75:8f:20:1d:5c:2a:a2:73:90:71:ea:3c:5f:
c2:27:2a:c0:ca:83:e0:d9:57:81:49:59:9c:7f:7d:
d1:84:25:35:d2:53:41:33:98:22:03:43:97:49:50:
fd:c1:b4:a2:78:53:fb:6c:aa:ad:7f:d3:bf:d4:d9:
10:4f:e3:8c:d8:a3:3c:92:a6:ce:83:f6:6e:75:fd:
29:a8:91:aa:d8:4e:e6:74:58:56:45:a9:d6:26:5f:
22:b5:de:af:f3:32:c8:15:50:06:0d:ed:6d:94:81:
6b:77:82:1f:f3:9f:8e:35:b9:cc:5c:65:02:ec:80:
83:a4:d6:6e:74:43:74:53:a6:f4:a3:ac:e9:28:44:
a3:6d:53:44:9b:af:d9:06:90:4d:ab:96:6b:2a:83:
60:48:c8:8a:d3:53:c2:72:33:1f:2e:e4:57:18:0f:
43:42:bd:90:9a:8d:82:f8:3a:7b:ba:4d:44:f4:72:
e5:bd:1e:fd:a9:94:5d:69:11:a8:db:8b:7f:3b:df:
84:57:db:00:8c:f8:61:c2:1f:19:bf:8c:31:41:7c:
ea:44:6e:a0:00:84:ce:8a:4b:66:27:45:8c:33:84:
2a:cb:d3:c4:1f:47:0a:d8:e7:c5:95:c2:9f:60:62:
2c:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:0E:39:24:AA:EB:B9:66:81:7F:A3:DE:5C:5B:92:F0:EB:2B:35:87
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS834.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.57.17.0/24
5.181.125.0-5.181.126.255
5.181.135.0/24
5.182.109.0-5.182.110.255
5.252.83.0/24
45.87.185.0/24
45.88.98.0/24
45.89.253.0/24
45.93.44.0/24
45.95.22.0/24
45.133.172.0/23
45.137.116.0-45.137.118.255
45.139.182.0/23
89.19.49.0-89.19.50.255
92.118.162.0/24
92.119.33.0-92.119.34.255
92.242.184.0/24
92.242.186.0/24
109.106.3.0/24
130.185.124.0/24
130.185.127.0/24
141.98.89.0/24
179.61.130.0/24
179.61.140.0/24
179.61.150.0/24
179.61.207.0/24
179.61.226.0/24
179.61.237.0/24
179.61.248.0/24
179.61.253.0/24
181.41.210.0/24
181.41.219.0/24
181.214.0.0/24
181.214.4.0/24
181.214.7.0/24
181.214.209.0/24
181.214.212.0/24
181.215.3.0/24
181.215.12.0/24
181.215.31.0/24
181.215.55.0/24
181.215.58.0/24
181.215.64.0/24
181.215.73.0/24
181.215.84.0/24
181.215.88.0/24
181.215.91.0/24
181.215.108.0/24
181.215.112.0/24
181.215.147.0/24
181.215.170.0/24
181.215.176.0/24
181.215.237.0/24
181.215.240.0/24
185.137.12.0/24
185.137.95.0/24
185.139.0.0/24
185.142.25.0/24
185.145.37.0/24
185.151.58.0/24
185.158.135.0/24
185.173.35.0/24
191.96.6.0/24
191.96.24.0/24
191.96.37.0/24
191.96.65.0/24
191.96.99.0/24
191.96.102.0/23
191.96.111.0/24
191.96.116.0/24
191.96.120.0/24
191.96.126.0/24
191.96.136.0/24
191.96.143.0/24
191.96.145.0/24
191.96.153.0/24
191.96.157.0/24
191.96.164.0/24
191.96.180.0/24
191.96.182.0/24
191.96.190.0/24
191.96.206.0/23
191.96.222.0/24
191.96.230.0/24
191.96.245.0/24
191.101.9.0/24
191.101.20.0/24
191.101.22.0/24
191.101.66.0/23
191.101.76.0/24
191.101.82.0/24
191.101.89.0/24
191.101.97.0/24
191.101.102.0/24
191.101.116.0/24
191.101.120.0/24
191.101.123.0-191.101.125.255
191.101.135.0-191.101.136.255
191.101.144.0/23
191.101.151.0/24
191.101.171.0/24
191.101.176.0/23
191.101.180.0/24
191.101.182.0/24
191.101.186.0/24
191.101.189.0/24
191.101.192.0/24
191.101.198.0/24
191.101.204.0/24
191.101.206.0/24
191.101.209.0/24
191.101.223.0/24
191.101.236.0/24
191.101.240.0/24
191.101.247.0/24
191.101.252.0/24
193.107.210.0/23
194.53.141.0/24
194.110.13.0/24
Signature Algorithm: sha256WithRSAEncryption
73:86:74:cb:68:56:37:b7:16:0f:ad:f2:6e:0f:f9:f4:87:8a:
7e:9b:07:e3:21:f1:62:de:3e:f7:7b:d9:55:ca:57:69:fc:08:
03:86:30:e4:4d:03:f5:03:3a:f1:6e:b5:ac:97:f0:a9:17:56:
79:ac:aa:48:91:b7:23:64:32:e3:01:13:7a:7b:84:a0:dc:08:
ee:d5:0b:ed:e2:d0:e2:a0:52:b7:7e:54:c4:d0:7f:86:b3:ba:
d1:4e:8b:1b:96:ef:d5:e7:06:af:04:ce:31:4d:b5:01:3d:82:
06:18:fc:b2:aa:3f:0e:f4:5a:e5:f7:61:18:58:2a:ec:50:7d:
5b:53:1b:a7:ad:0c:b7:6e:7c:48:fd:2e:99:fd:2b:41:b4:af:
ec:10:69:56:95:03:80:e6:ba:c8:76:14:06:f0:c3:bd:24:04:
53:f3:6e:aa:d0:0b:1b:47:5c:4d:cf:b4:f3:17:1a:32:37:fc:
9a:ba:a6:dd:41:45:a7:ea:73:c0:4f:b2:c7:6c:ae:82:15:26:
89:86:e6:21:dd:47:30:18:4e:31:61:96:e7:de:af:6a:1c:95:
23:ee:b7:12:7a:03:fb:56:d6:9f:d1:ce:00:d4:87:81:b5:63:
30:56:30:a6:91:06:23:9d:f4:fa:87:0c:89:41:c6:1c:ad:71:
ba:29:4b:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 23:45:38 2026 by rpki-client