Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS834.roa
File: AS834.roa (raw, json)
Hash identifier: aQClRFqTbPo1TQPGTot12PCw8qmA9FF/+Tsa7WbUJNQ=
Subject key identifier: 24:82:AA:06:31:EA:13:D0:AB:D1:78:6E:D7:D8:6D:42:7C:A1:2B:9A
Certificate issuer: /CN=c2302af143c15daad50042d8455e689d0828eca9
Certificate serial: 2595D7A4CD73E74C6EBD8A8A8E76C9BAD549774F
Authority key identifier: C2:30:2A:F1:43:C1:5D:AA:D5:00:42:D8:45:5E:68:9D:08:28:EC:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS834.roa
Signing time: Tue 12 May 2026 06:05:43 +0000
ROA not before: Tue 12 May 2026 06:00:43 +0000
ROA not after: Tue 11 May 2027 06:05:43 +0000
asID: 834
IP address blocks: 141.11.32.0/24 maxlen: 24
141.11.56.0/24 maxlen: 24
141.11.136.0/23 maxlen: 24
141.11.208.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/C2302AF143C15DAAD50042D8455E689D0828ECA9.crl
rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/C2302AF143C15DAAD50042D8455E689D0828ECA9.mft
rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 08:58:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
25:95:d7:a4:cd:73:e7:4c:6e:bd:8a:8a:8e:76:c9:ba:d5:49:77:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2302af143c15daad50042d8455e689d0828eca9
Validity
Not Before: May 12 06:00:43 2026 GMT
Not After : May 11 06:05:43 2027 GMT
Subject: CN=2482AA0631EA13D0ABD1786ED7D86D427CA12B9A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:1b:48:0c:03:cd:8f:fa:00:aa:0b:24:eb:3e:
cc:89:a1:b3:3e:fa:b8:2e:e5:cb:ca:cb:ad:24:ef:
d4:2c:4b:d2:35:4a:58:bd:26:2d:d2:10:98:76:89:
00:ac:00:55:19:d4:95:01:e1:27:60:51:88:0b:f1:
5d:5b:f5:2b:8f:cf:8a:4a:5a:50:01:68:95:96:aa:
18:56:ce:c8:9e:b4:1d:26:5d:af:2d:af:04:98:1d:
f5:dc:e0:63:dc:d2:1c:c9:91:cf:ba:6c:0f:76:bb:
8b:37:f7:7d:c7:66:21:00:89:01:fc:28:dd:76:30:
70:b4:c1:3d:64:0e:30:24:b4:4e:31:f8:c4:df:12:
b5:a3:6d:3e:4f:81:2a:9a:e5:5b:49:ce:3d:2d:cb:
a7:52:d9:08:19:63:82:bc:bc:4a:76:cb:74:8c:b3:
42:4f:9a:a2:1e:4d:f6:19:1e:19:59:3a:be:54:03:
c8:30:58:8e:17:bc:a7:3f:e5:52:63:31:e2:51:2a:
c5:71:35:b0:7c:83:36:a2:b9:43:51:a8:67:24:65:
a9:e4:7a:3d:c3:27:64:8e:96:58:dc:dc:ba:4d:fb:
dc:33:81:83:a8:28:b6:8b:20:e9:73:5c:9d:17:bc:
a2:1e:7c:c7:49:39:46:a5:d4:89:88:78:d9:2f:96:
65:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:82:AA:06:31:EA:13:D0:AB:D1:78:6E:D7:D8:6D:42:7C:A1:2B:9A
X509v3 Authority Key Identifier:
keyid:C2:30:2A:F1:43:C1:5D:AA:D5:00:42:D8:45:5E:68:9D:08:28:EC:A9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/C2302AF143C15DAAD50042D8455E689D0828ECA9.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS834.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.11.32.0/24
141.11.56.0/24
141.11.136.0/23
141.11.208.0/22
Signature Algorithm: sha256WithRSAEncryption
96:01:35:0c:08:d2:42:4f:73:eb:17:e4:98:b1:77:c6:26:fc:
51:1b:63:83:07:ed:6b:49:32:64:65:db:7c:36:e7:b6:6d:c1:
f6:ed:51:05:1f:e7:3d:71:c7:ef:7a:3c:70:76:72:0f:86:ab:
c0:65:49:cd:09:41:50:fb:15:93:ff:52:dd:b0:d9:7a:59:3d:
16:44:6c:c2:96:46:02:7c:f3:bc:7b:7a:47:bb:96:51:8a:23:
2d:bf:a6:70:3e:28:b8:d5:7b:d9:4d:54:0b:c0:60:eb:e4:a2:
99:37:f7:94:97:01:06:85:14:17:c8:ce:63:bd:97:4a:8c:9d:
e3:3d:86:af:a2:55:e4:ef:a1:3b:8b:38:82:d8:fa:c7:5c:32:
c0:78:35:a4:d8:74:0d:c8:5b:96:e2:88:7e:c8:86:75:b4:b8:
a1:fc:f6:bc:9d:ee:d4:e6:4d:96:69:c2:b5:2f:26:ac:74:39:
98:f3:5a:77:97:e8:d8:7b:7d:9a:4a:a2:80:b9:fb:22:68:d5:
51:01:a5:ae:d1:2e:da:2f:a1:fb:f2:7d:23:ba:80:13:7b:06:
6d:55:8f:72:6a:3a:76:bc:12:e6:f2:0d:ae:19:79:d9:00:8b:
a3:92:e0:18:e2:56:95:1a:36:66:f4:71:18:a5:e0:89:a8:82:
db:de:d7:9a
-----BEGIN CERTIFICATE-----
MIIFDzCCA/egAwIBAgIUJZXXpM1z50xuvYqKjnbJutVJd08wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYzIzMDJhZjE0M2MxNWRhYWQ1MDA0MmQ4NDU1ZTY4OWQw
ODI4ZWNhOTAeFw0yNjA1MTIwNjAwNDNaFw0yNzA1MTEwNjA1NDNaMDMxMTAvBgNV
BAMTKDI0ODJBQTA2MzFFQTEzRDBBQkQxNzg2RUQ3RDg2RDQyN0NBMTJCOUEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCRG0gMA82P+gCqCyTrPsyJobM+
+rgu5cvKy60k79QsS9I1Sli9Ji3SEJh2iQCsAFUZ1JUB4SdgUYgL8V1b9SuPz4pK
WlABaJWWqhhWzsietB0mXa8trwSYHfXc4GPc0hzJkc+6bA92u4s3933HZiEAiQH8
KN12MHC0wT1kDjAktE4x+MTfErWjbT5PgSqa5VtJzj0ty6dS2QgZY4K8vEp2y3SM
s0JPmqIeTfYZHhlZOr5UA8gwWI4XvKc/5VJjMeJRKsVxNbB8gzaiuUNRqGckZank
ej3DJ2SOlljc3LpN+9wzgYOoKLaLIOlzXJ0XvKIefMdJOUal1ImIeNkvlmX7AgMB
AAGjggIZMIICFTAdBgNVHQ4EFgQUJIKqBjHqE9Cr0Xhu19htQnyhK5owHwYDVR0j
BBgwFoAUwjAq8UPBXarVAELYRV5onQgo7KkwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvYTkzY2I1NWMtOTU3MS00NGM4LTkwZTEtOTY1YjkyNzY5
ZTRlLzAvQzIzMDJBRjE0M0MxNURBQUQ1MDA0MkQ4NDU1RTY4OUQwODI4RUNBOS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3dqQXE4VVBCWGFyVkFFTFlSVjVvblFn
bzdLay5jZXIweAYIKwYBBQUHAQsEbDBqMGgGCCsGAQUFBzALhlxyc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2E5M2NiNTVjLTk1NzEt
NDRjOC05MGUxLTk2NWI5Mjc2OWU0ZS8wL0FTODM0LnJvYTAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDEGCCsGAQUFBwEHAQH/BCIwIDAeBAIAATAYAwQAjQsgAwQA
jQs4AwQBjQuIAwQCjQvQMA0GCSqGSIb3DQEBCwUAA4IBAQCWATUMCNJCT3PrF+SY
sXfGJvxRG2ODB+1rSTJkZdt8Nue2bcH27VEFH+c9ccfvejxwdnIPhqvAZUnNCUFQ
+xWT/1LdsNl6WT0WRGzClkYCfPO8e3pHu5ZRiiMtv6ZwPii41XvZTVQLwGDr5KKZ
N/eUlwEGhRQXyM5jvZdKjJ3jPYavolXk76E7iziC2PrHXDLAeDWk2HQNyFuW4oh+
yIZ1tLih/Pa8ne7U5k2WacK1LyasdDmY81p3l+jYe32aSqKAufsiaNVRAaWu0S7a
L6H78n0juoATewZtVY9yajp2vBLm8g2uGXnZAIujkuAY4laVGjZm9HEYpeCJqILb
3tea
-----END CERTIFICATE-----
Generated at Tue May 12 22:29:26 2026 by rpki-client