Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS834.roa
File: AS834.roa (raw, json)
Hash identifier: 8XJX+2yTmZ/WwNuh7sp3f9v0VnqlRHWn0DMGi4tqAuU=
Subject key identifier: B8:FC:D4:D4:E3:66:50:8F:3E:EB:44:C1:98:63:EE:47:B0:76:F0:A0
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 216B8A5413CE523398C047D90B0051094BB6B760
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS834.roa
Signing time: Wed 25 Mar 2026 14:10:05 +0000
ROA not before: Wed 25 Mar 2026 14:05:05 +0000
ROA not after: Wed 24 Mar 2027 14:10:05 +0000
asID: 834
IP address blocks: 5.252.83.0/24 maxlen: 24
45.87.184.0/23 maxlen: 24
45.88.98.0/24 maxlen: 24
45.89.249.0/24 maxlen: 24
45.89.253.0/24 maxlen: 24
45.93.44.0/24 maxlen: 24
45.95.22.0/24 maxlen: 24
45.137.116.0/23 maxlen: 24
45.137.118.0/24 maxlen: 24
89.19.49.0/24 maxlen: 24
89.19.50.0/24 maxlen: 24
92.118.162.0/24 maxlen: 24
92.119.33.0/24 maxlen: 24
92.119.34.0/24 maxlen: 24
109.106.3.0/24 maxlen: 24
179.61.140.0/24 maxlen: 24
179.61.150.0/24 maxlen: 24
179.61.207.0/24 maxlen: 24
179.61.226.0/24 maxlen: 24
179.61.237.0/24 maxlen: 24
179.61.243.0/24 maxlen: 24
179.61.248.0/24 maxlen: 24
179.61.253.0/24 maxlen: 24
181.41.200.0/24 maxlen: 24
181.41.219.0/24 maxlen: 24
181.214.4.0/24 maxlen: 24
181.214.14.0/24 maxlen: 24
181.214.212.0/24 maxlen: 24
181.214.254.0/24 maxlen: 24
181.215.3.0/24 maxlen: 24
181.215.31.0/24 maxlen: 24
181.215.55.0/24 maxlen: 24
181.215.58.0/24 maxlen: 24
181.215.62.0/24 maxlen: 24
181.215.64.0/24 maxlen: 24
181.215.73.0/24 maxlen: 24
181.215.84.0/24 maxlen: 24
181.215.88.0/24 maxlen: 24
181.215.91.0/24 maxlen: 24
181.215.95.0/24 maxlen: 24
181.215.108.0/23 maxlen: 24
181.215.110.0/24 maxlen: 24
181.215.112.0/24 maxlen: 24
181.215.147.0/24 maxlen: 24
181.215.237.0/24 maxlen: 24
181.215.240.0/24 maxlen: 24
185.137.93.0/24 maxlen: 24
185.137.95.0/24 maxlen: 24
185.139.0.0/24 maxlen: 24
185.141.166.0/24 maxlen: 24
185.145.37.0/24 maxlen: 24
185.151.58.0/24 maxlen: 24
185.173.35.0/24 maxlen: 24
191.96.4.0/23 maxlen: 24
191.96.6.0/24 maxlen: 24
191.96.24.0/24 maxlen: 24
191.96.65.0/24 maxlen: 24
191.96.80.0/24 maxlen: 24
191.96.89.0/24 maxlen: 24
191.96.99.0/24 maxlen: 24
191.96.102.0/24 maxlen: 24
191.96.111.0/24 maxlen: 24
191.96.116.0/24 maxlen: 24
191.96.120.0/24 maxlen: 24
191.96.126.0/24 maxlen: 24
191.96.136.0/24 maxlen: 24
191.96.140.0/23 maxlen: 24
191.96.143.0/24 maxlen: 24
191.96.145.0/24 maxlen: 24
191.96.149.0/24 maxlen: 24
191.96.153.0/24 maxlen: 24
191.96.157.0/24 maxlen: 24
191.96.164.0/24 maxlen: 24
191.96.180.0/24 maxlen: 24
191.96.182.0/24 maxlen: 24
191.96.190.0/24 maxlen: 24
191.96.207.0/24 maxlen: 24
191.96.222.0/24 maxlen: 24
191.96.230.0/24 maxlen: 24
191.101.9.0/24 maxlen: 24
191.101.29.0/24 maxlen: 24
191.101.39.0/24 maxlen: 24
191.101.66.0/23 maxlen: 24
191.101.76.0/24 maxlen: 24
191.101.82.0/24 maxlen: 24
191.101.88.0/23 maxlen: 24
191.101.97.0/24 maxlen: 24
191.101.102.0/24 maxlen: 24
191.101.116.0/24 maxlen: 24
191.101.120.0/24 maxlen: 24
191.101.123.0/24 maxlen: 24
191.101.124.0/23 maxlen: 24
191.101.135.0/24 maxlen: 24
191.101.136.0/24 maxlen: 24
191.101.144.0/23 maxlen: 24
191.101.151.0/24 maxlen: 24
191.101.171.0/24 maxlen: 24
191.101.177.0/24 maxlen: 24
191.101.180.0/24 maxlen: 24
191.101.182.0/24 maxlen: 24
191.101.186.0/24 maxlen: 24
191.101.189.0/24 maxlen: 24
191.101.192.0/24 maxlen: 24
191.101.198.0/24 maxlen: 24
191.101.204.0/24 maxlen: 24
191.101.206.0/24 maxlen: 24
191.101.212.0/22 maxlen: 24
191.101.218.0/23 maxlen: 24
191.101.223.0/24 maxlen: 24
191.101.236.0/24 maxlen: 24
191.101.240.0/24 maxlen: 24
191.101.247.0/24 maxlen: 24
191.101.252.0/24 maxlen: 24
193.107.211.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.mft
rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:18:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
21:6b:8a:54:13:ce:52:33:98:c0:47:d9:0b:00:51:09:4b:b6:b7:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Mar 25 14:05:05 2026 GMT
Not After : Mar 24 14:10:05 2027 GMT
Subject: CN=B8FCD4D4E366508F3EEB44C19863EE47B076F0A0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:21:8a:0b:5f:b4:8e:45:4c:a7:2c:56:01:ef:
2d:30:72:7d:44:dc:2f:3a:92:3d:ba:ad:df:bf:e1:
b4:13:27:08:a1:fb:cc:30:45:b5:00:74:ed:4e:3e:
7e:c2:73:3e:6d:e7:91:fb:07:75:28:89:6f:80:d0:
cf:03:b8:52:7d:95:81:c6:b1:3f:f4:9e:39:15:aa:
98:81:2a:f4:b2:cf:a4:20:33:dd:fa:fc:9d:71:d7:
9f:8e:1f:cb:60:4a:5c:e6:fa:f9:30:2a:27:56:8a:
77:40:55:0c:db:60:08:df:a6:62:df:cf:6b:65:41:
6c:d3:8e:35:29:4b:fa:6b:76:94:e3:a7:65:ab:d1:
5f:fc:f0:cc:6f:0c:d4:1d:13:65:f1:8a:42:d1:5d:
d4:46:66:5a:bb:08:db:e9:93:36:e5:c6:f2:13:06:
1e:ce:9f:61:ec:8e:8d:02:55:99:59:59:e0:0b:e1:
02:9a:7f:7c:56:f1:c7:ff:9a:43:20:f7:39:b3:9a:
9f:88:f3:c2:bb:fb:87:0f:01:5a:c0:3a:fa:69:bf:
3f:aa:7f:8f:6e:c3:b1:dd:40:70:3d:30:80:00:6b:
d9:9f:a6:b9:e5:aa:26:44:c9:43:12:57:8c:36:c0:
5e:57:0a:c5:e7:1e:ae:c8:0c:e0:3f:07:a3:30:c4:
de:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:FC:D4:D4:E3:66:50:8F:3E:EB:44:C1:98:63:EE:47:B0:76:F0:A0
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS834.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.252.83.0/24
45.87.184.0/23
45.88.98.0/24
45.89.249.0/24
45.89.253.0/24
45.93.44.0/24
45.95.22.0/24
45.137.116.0-45.137.118.255
89.19.49.0-89.19.50.255
92.118.162.0/24
92.119.33.0-92.119.34.255
109.106.3.0/24
179.61.140.0/24
179.61.150.0/24
179.61.207.0/24
179.61.226.0/24
179.61.237.0/24
179.61.243.0/24
179.61.248.0/24
179.61.253.0/24
181.41.200.0/24
181.41.219.0/24
181.214.4.0/24
181.214.14.0/24
181.214.212.0/24
181.214.254.0/24
181.215.3.0/24
181.215.31.0/24
181.215.55.0/24
181.215.58.0/24
181.215.62.0/24
181.215.64.0/24
181.215.73.0/24
181.215.84.0/24
181.215.88.0/24
181.215.91.0/24
181.215.95.0/24
181.215.108.0-181.215.110.255
181.215.112.0/24
181.215.147.0/24
181.215.237.0/24
181.215.240.0/24
185.137.93.0/24
185.137.95.0/24
185.139.0.0/24
185.141.166.0/24
185.145.37.0/24
185.151.58.0/24
185.173.35.0/24
191.96.4.0-191.96.6.255
191.96.24.0/24
191.96.65.0/24
191.96.80.0/24
191.96.89.0/24
191.96.99.0/24
191.96.102.0/24
191.96.111.0/24
191.96.116.0/24
191.96.120.0/24
191.96.126.0/24
191.96.136.0/24
191.96.140.0/23
191.96.143.0/24
191.96.145.0/24
191.96.149.0/24
191.96.153.0/24
191.96.157.0/24
191.96.164.0/24
191.96.180.0/24
191.96.182.0/24
191.96.190.0/24
191.96.207.0/24
191.96.222.0/24
191.96.230.0/24
191.101.9.0/24
191.101.29.0/24
191.101.39.0/24
191.101.66.0/23
191.101.76.0/24
191.101.82.0/24
191.101.88.0/23
191.101.97.0/24
191.101.102.0/24
191.101.116.0/24
191.101.120.0/24
191.101.123.0-191.101.125.255
191.101.135.0-191.101.136.255
191.101.144.0/23
191.101.151.0/24
191.101.171.0/24
191.101.177.0/24
191.101.180.0/24
191.101.182.0/24
191.101.186.0/24
191.101.189.0/24
191.101.192.0/24
191.101.198.0/24
191.101.204.0/24
191.101.206.0/24
191.101.212.0/22
191.101.218.0/23
191.101.223.0/24
191.101.236.0/24
191.101.240.0/24
191.101.247.0/24
191.101.252.0/24
193.107.211.0/24
Signature Algorithm: sha256WithRSAEncryption
31:cc:c9:97:07:ea:f3:57:02:42:18:d1:b0:6a:00:e1:bb:c0:
60:db:96:32:8c:9f:c7:37:7c:fe:36:a3:f8:e6:3c:2d:1b:87:
18:d6:e0:ee:cb:7d:22:d7:f4:93:0c:28:16:62:d0:4f:b4:e8:
02:2e:06:82:83:63:71:86:85:fe:4f:5a:89:a8:e8:0a:17:a2:
3a:3b:3c:ef:57:e4:56:b8:65:b1:1e:47:90:c7:a5:a5:b0:5a:
f6:68:8d:f7:30:ee:5c:69:74:23:03:e2:17:4a:90:f6:2e:df:
6c:11:98:67:81:18:91:0f:71:db:61:08:a2:d7:cd:54:fc:e3:
b1:05:a2:cb:62:8b:60:6f:e5:1a:d6:86:1c:91:72:77:da:6d:
ae:1a:21:ec:f2:61:39:5c:4c:76:4b:70:11:eb:d3:f5:6f:15:
31:20:25:dd:ab:6a:61:12:0f:62:4a:6d:0c:3a:12:64:c7:7d:
cf:e1:37:98:a7:ce:31:a5:52:7c:90:99:a5:b0:ad:39:63:50:
20:fd:bb:ba:4a:9c:d0:85:5d:ca:c7:8a:0c:d4:33:60:31:01:
15:e4:63:82:85:0c:1a:55:9b:ec:f4:fa:68:af:5c:d0:66:54:
2e:56:ac:1a:99:82:5b:3b:71:1a:b8:b1:22:d7:2b:3a:7d:81:
7c:ca:c9:bc
-----BEGIN CERTIFICATE-----
MIIHuzCCBqOgAwIBAgIUIWuKVBPOUjOYwEfZCwBRCUu2t2AwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjFiMWJiNDQ0NzcxOGYxNmIzZDM2Njc1ZDIwNWM0ZGVh
NDFiYmEwYTAeFw0yNjAzMjUxNDA1MDVaFw0yNzAzMjQxNDEwMDVaMDMxMTAvBgNV
BAMTKEI4RkNENEQ0RTM2NjUwOEYzRUVCNDRDMTk4NjNFRTQ3QjA3NkYwQTAwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDeIYoLX7SORUynLFYB7y0wcn1E
3C86kj26rd+/4bQTJwih+8wwRbUAdO1OPn7Ccz5t55H7B3UoiW+A0M8DuFJ9lYHG
sT/0njkVqpiBKvSyz6QgM936/J1x15+OH8tgSlzm+vkwKidWindAVQzbYAjfpmLf
z2tlQWzTjjUpS/prdpTjp2Wr0V/88MxvDNQdE2XxikLRXdRGZlq7CNvpkzblxvIT
Bh7On2Hsjo0CVZlZWeAL4QKaf3xW8cf/mkMg9zmzmp+I88K7+4cPAVrAOvppvz+q
f49uw7HdQHA9MIAAa9mfprnlqiZEyUMSV4w2wF5XCsXnHq7IDOA/B6MwxN53AgMB
AAGjggTFMIIEwTAdBgNVHQ4EFgQUuPzU1ONmUI8+60TBmGPuR7B28KAwHwYDVR0j
BBgwFoAUYbG7REdxjxaz02Z10gXE3qQbugowDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvNTM3NDU5ZTctMmE4My00M2QxLTlhYTEtNTg0MTdhYmFj
NGI2LzEvNjFCMUJCNDQ0NzcxOEYxNkIzRDM2Njc1RDIwNUM0REVBNDFCQkEwQS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1liRzdSRWR4anhhejAyWjEwZ1hFM3FR
YnVnby5jZXIweAYIKwYBBQUHAQsEbDBqMGgGCCsGAQUFBzALhlxyc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzUzNzQ1OWU3LTJhODMt
NDNkMS05YWExLTU4NDE3YWJhYzRiNi8xL0FTODM0LnJvYTAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIC2wYIKwYBBQUHAQcBAf8EggLKMIICxjCCAsIEAgABMIIC
ugMEAAX8UwMEAS1XuAMEAC1YYgMEAC1Z+QMEAC1Z/QMEAC1dLAMEAC1fFjAMAwQC
LYl0AwQALYl2MAwDBABZEzEDBABZEzIDBABcdqIwDAMEAFx3IQMEAFx3IgMEAG1q
AwMEALM9jAMEALM9lgMEALM9zwMEALM94gMEALM97QMEALM98wMEALM9+AMEALM9
/QMEALUpyAMEALUp2wMEALXWBAMEALXWDgMEALXW1AMEALXW/gMEALXXAwMEALXX
HwMEALXXNwMEALXXOgMEALXXPgMEALXXQAMEALXXSQMEALXXVAMEALXXWAMEALXX
WwMEALXXXzAMAwQCtddsAwQAtdduAwQAtddwAwQAtdeTAwQAtdftAwQAtdfwAwQA
uYldAwQAuYlfAwQAuYsAAwQAuY2mAwQAuZElAwQAuZc6AwQAua0jMAwDBAK/YAQD
BAC/YAYDBAC/YBgDBAC/YEEDBAC/YFADBAC/YFkDBAC/YGMDBAC/YGYDBAC/YG8D
BAC/YHQDBAC/YHgDBAC/YH4DBAC/YIgDBAG/YIwDBAC/YI8DBAC/YJEDBAC/YJUD
BAC/YJkDBAC/YJ0DBAC/YKQDBAC/YLQDBAC/YLYDBAC/YL4DBAC/YM8DBAC/YN4D
BAC/YOYDBAC/ZQkDBAC/ZR0DBAC/ZScDBAG/ZUIDBAC/ZUwDBAC/ZVIDBAG/ZVgD
BAC/ZWEDBAC/ZWYDBAC/ZXQDBAC/ZXgwDAMEAL9lewMEAb9lfDAMAwQAv2WHAwQA
v2WIAwQBv2WQAwQAv2WXAwQAv2WrAwQAv2WxAwQAv2W0AwQAv2W2AwQAv2W6AwQA
v2W9AwQAv2XAAwQAv2XGAwQAv2XMAwQAv2XOAwQCv2XUAwQBv2XaAwQAv2XfAwQA
v2XsAwQAv2XwAwQAv2X3AwQAv2X8AwQAwWvTMA0GCSqGSIb3DQEBCwUAA4IBAQAx
zMmXB+rzVwJCGNGwagDhu8Bg25YyjJ/HN3z+NqP45jwtG4cY1uDuy30i1/STDCgW
YtBPtOgCLgaCg2NxhoX+T1qJqOgKF6I6OzzvV+RWuGWxHkeQx6WlsFr2aI33MO5c
aXQjA+IXSpD2Lt9sEZhngRiRD3HbYQii181U/OOxBaLLYotgb+Ua1oYckXJ32m2u
GiHs8mE5XEx2S3AR69P1bxUxICXdq2phEg9iSm0MOhJkx33P4TeYp84xpVJ8kJml
sK05Y1Ag/bu6SpzQhV3Kx4oM1DNgMQEV5GOChQwaVZvs9Ppor1zQZlQuVqwamYJb
O3EauLEi1ys6fYF8ysm8
-----END CERTIFICATE-----
Generated at Thu Mar 26 04:02:25 2026 by rpki-client