
Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS834.roa
File: AS834.roa (raw, json)
Hash identifier: +9A17Dkrw9ViD60YhMvpw6hy4kpzpeVd5ULk+S/xuzY=
Subject key identifier: B4:E6:ED:A1:55:4F:52:2B:E1:91:CA:EB:FD:53:F8:A7:09:BC:B7:12
Certificate issuer: /CN=c2302af143c15daad50042d8455e689d0828eca9
Certificate serial: 1F34D9B6ECF58B5B5CBE2BDDFAA8C01679C29568
Authority key identifier: C2:30:2A:F1:43:C1:5D:AA:D5:00:42:D8:45:5E:68:9D:08:28:EC:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS834.roa
Signing time: Sun 19 Oct 2025 12:54:06 +0000
ROA not before: Sun 19 Oct 2025 12:49:06 +0000
ROA not after: Sun 18 Oct 2026 12:54:06 +0000
asID: 834
IP address blocks: 141.11.115.0/24 maxlen: 24
141.11.117.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/C2302AF143C15DAAD50042D8455E689D0828ECA9.crl
rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/C2302AF143C15DAAD50042D8455E689D0828ECA9.mft
rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1f:34:d9:b6:ec:f5:8b:5b:5c:be:2b:dd:fa:a8:c0:16:79:c2:95:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2302af143c15daad50042d8455e689d0828eca9
Validity
Not Before: Oct 19 12:49:06 2025 GMT
Not After : Oct 18 12:54:06 2026 GMT
Subject: CN=B4E6EDA1554F522BE191CAEBFD53F8A709BCB712
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:63:60:27:fd:e1:59:01:2f:c0:40:2b:6f:52:
3a:41:2c:df:aa:6c:fc:51:74:3e:62:a8:ec:f7:1f:
59:7d:b9:16:82:ff:9c:60:5a:0f:f9:40:83:eb:06:
8f:06:04:65:a8:db:ff:db:3b:97:1d:fc:5f:09:54:
8a:f6:73:45:a3:ef:f0:0f:63:24:da:38:cf:05:43:
60:5d:95:e9:3e:4c:31:34:1f:db:b3:4f:98:73:ca:
69:44:58:78:b0:8e:4c:9b:e7:bd:88:b5:00:50:76:
51:da:0b:40:18:e3:10:9d:e3:1d:25:63:d8:74:47:
ba:f3:50:6a:90:ba:4f:ff:49:8d:95:2f:aa:a9:d8:
70:f3:96:e2:0c:17:c8:c4:51:7d:94:28:f4:a6:17:
7f:7f:37:d0:d4:ad:fd:4d:9f:30:83:56:d5:a4:5f:
42:a6:73:f0:b1:f2:3e:59:50:c0:63:42:d3:5e:71:
d2:84:b2:c8:50:c0:14:52:3f:7a:64:50:bc:90:69:
23:55:fa:76:f3:34:7b:70:d6:49:ba:50:00:a3:f9:
a0:43:ec:b3:25:69:67:bc:f0:4b:bf:ba:01:9b:0f:
47:83:84:ee:33:4a:eb:d3:05:b4:41:9f:a7:af:0f:
b9:d3:cb:9e:8f:31:e2:9a:15:87:4b:6f:e7:a9:5d:
35:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:E6:ED:A1:55:4F:52:2B:E1:91:CA:EB:FD:53:F8:A7:09:BC:B7:12
X509v3 Authority Key Identifier:
keyid:C2:30:2A:F1:43:C1:5D:AA:D5:00:42:D8:45:5E:68:9D:08:28:EC:A9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/C2302AF143C15DAAD50042D8455E689D0828ECA9.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS834.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.11.115.0/24
141.11.117.0/24
Signature Algorithm: sha256WithRSAEncryption
c7:3d:3f:b2:7d:43:1f:50:9c:f6:cb:b0:c1:46:94:ba:84:eb:
28:8f:72:83:98:04:24:02:4b:1c:7e:b9:1d:d0:e3:29:c0:83:
12:63:23:92:e1:a4:40:4d:3b:6a:d9:8a:c2:df:8e:de:c2:4e:
40:50:7f:71:1d:23:06:44:13:91:e2:f0:c6:ab:dd:e9:9a:49:
c9:07:38:34:ca:ff:01:f7:91:9a:35:eb:12:b3:59:e5:e1:7f:
ac:6c:d7:a5:17:8d:fb:59:eb:00:f1:d8:79:16:e8:93:ce:73:
7e:fd:fd:3a:a7:42:62:16:93:47:e4:99:8b:d3:8d:f9:2d:69:
b7:a5:9b:e4:b3:58:ed:f7:bd:a1:75:92:39:4b:7e:cf:f8:24:
13:25:51:3b:5a:33:68:45:6e:62:86:d3:5e:e5:e8:0b:0d:3e:
d5:f6:67:cc:01:e9:8c:dc:1b:f1:01:f7:3b:d5:eb:33:0a:a5:
5c:70:1b:06:a1:4c:c1:82:02:94:08:33:ed:09:96:41:80:95:
db:e9:05:bf:27:10:9d:d2:ec:ce:5a:0c:94:c3:f9:8e:be:3d:
89:23:27:f3:9a:61:9d:4b:06:9a:ae:39:89:a3:12:91:b1:bb:
dc:bd:2f:de:9e:4d:f2:ef:5b:6a:3d:98:ce:01:6c:26:0d:21:
b0:b8:e8:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 14:43:33 2025 by rpki-client