Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS834.roa
File: AS834.roa (raw, json)
Hash identifier: jK2qAziueoEk+rdcH9Y6oJlsqvYLv90COqeXucxyf2M=
Subject key identifier: 75:4F:8F:6C:67:F0:E3:6F:9A:B6:4D:73:FC:34:6D:C3:83:AB:BE:42
Certificate issuer: /CN=c2302af143c15daad50042d8455e689d0828eca9
Certificate serial: 1C7E2DA1828C4C4CEA2E28D76599EB73E3826188
Authority key identifier: C2:30:2A:F1:43:C1:5D:AA:D5:00:42:D8:45:5E:68:9D:08:28:EC:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS834.roa
Signing time: Sat 28 Jun 2025 09:28:23 +0000
ROA not before: Sat 28 Jun 2025 09:23:23 +0000
ROA not after: Sat 27 Jun 2026 09:28:23 +0000
asID: 834
IP address blocks: 141.11.57.0/24 maxlen: 24
141.11.172.0/23 maxlen: 24
141.11.230.0/23 maxlen: 24
141.11.236.0/23 maxlen: 24
194.60.95.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/C2302AF143C15DAAD50042D8455E689D0828ECA9.crl
rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/C2302AF143C15DAAD50042D8455E689D0828ECA9.mft
rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:24:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1c:7e:2d:a1:82:8c:4c:4c:ea:2e:28:d7:65:99:eb:73:e3:82:61:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2302af143c15daad50042d8455e689d0828eca9
Validity
Not Before: Jun 28 09:23:23 2025 GMT
Not After : Jun 27 09:28:23 2026 GMT
Subject: CN=754F8F6C67F0E36F9AB64D73FC346DC383ABBE42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:f1:ff:e6:4b:d0:9b:65:c1:1d:a8:78:89:4c:
13:7a:95:fa:b5:e4:73:00:4a:5a:6c:81:33:db:f2:
04:93:8d:e4:b3:b4:b9:12:d1:ec:79:05:15:35:a3:
12:c0:b6:23:56:82:e2:2e:9f:e1:08:fe:2b:2c:e4:
fc:ac:3f:5d:f2:a3:75:1d:14:44:ee:2a:1c:b8:29:
18:23:4e:d4:3e:4c:72:da:00:91:20:c2:7f:bc:f8:
40:45:92:05:5f:62:54:16:de:be:7a:0f:72:7a:35:
8d:49:05:e0:ff:30:8e:0b:a0:f8:7f:5e:2d:da:69:
ca:c5:0f:bc:98:58:1a:cc:b8:b0:be:0a:36:69:ee:
e8:12:20:b9:38:06:32:1e:76:a4:b8:d9:86:e7:94:
e7:7a:4c:cf:c5:f6:58:be:54:9b:9b:36:ab:a2:aa:
22:55:71:93:0c:bf:19:eb:69:95:70:d5:7b:1f:3b:
91:25:05:92:93:da:35:76:b1:c3:f7:29:65:92:09:
34:2b:58:c8:24:4d:3d:4f:ca:cc:39:21:3c:51:ee:
0f:81:8d:ef:c8:8e:84:5f:a0:81:73:f4:95:af:51:
0f:d2:4f:5a:84:d4:9b:5f:f3:d3:e2:8d:cb:2d:15:
ee:fb:2f:4c:a3:9e:54:63:d2:5e:f0:6c:3a:9a:7d:
7d:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:4F:8F:6C:67:F0:E3:6F:9A:B6:4D:73:FC:34:6D:C3:83:AB:BE:42
X509v3 Authority Key Identifier:
keyid:C2:30:2A:F1:43:C1:5D:AA:D5:00:42:D8:45:5E:68:9D:08:28:EC:A9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/C2302AF143C15DAAD50042D8455E689D0828ECA9.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS834.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.11.57.0/24
141.11.172.0/23
141.11.230.0/23
141.11.236.0/23
194.60.95.0/24
Signature Algorithm: sha256WithRSAEncryption
c9:eb:25:1f:c9:a8:2b:ff:c1:af:23:b5:9a:d3:67:02:42:1e:
c7:c8:d7:f9:14:03:f5:ac:41:e2:9d:f2:c7:5f:24:30:31:ae:
3d:e8:1a:e5:2e:ed:ba:3e:02:d1:f0:b1:ff:2c:17:d5:3a:28:
60:45:6a:34:6d:72:5a:11:68:e9:8e:80:c4:ab:6b:14:e4:f1:
f1:46:b5:44:aa:21:b2:b9:83:f6:8c:25:45:4d:c0:a5:5a:82:
9a:6c:1c:bb:5e:10:80:6d:89:61:fa:c4:48:94:2c:8e:46:6e:
a0:a7:8e:e6:65:d7:8a:62:da:1e:3c:eb:e2:09:58:89:67:9e:
77:d4:1a:62:e2:ad:f1:f4:50:0f:a5:9c:69:78:37:c4:96:da:
8d:a2:5f:15:02:49:d2:16:44:11:d2:a3:bd:02:f8:71:da:46:
93:e0:31:d5:a1:16:05:14:d8:13:eb:c6:d8:8b:ba:2f:92:13:
11:78:30:48:9d:4d:dd:6f:13:8e:07:a1:96:a0:14:9f:56:52:
27:59:53:fc:46:4e:b9:63:d5:2b:f2:e6:f8:d7:f9:48:0a:c7:
08:e5:5d:7b:55:97:bb:d2:aa:3f:4b:26:9d:e1:9f:f4:28:04:
95:58:28:eb:82:f6:96:6e:2e:7b:d4:a3:77:f9:d5:15:40:f5:
b2:b5:81:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 00:17:15 2025 by rpki-client