Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS834.roa
File: AS834.roa (raw, json)
Hash identifier: yGyVivsVH8OeQyb9EdWiTR2UZlOai5Uei2S7/EQUafI=
Subject key identifier: E3:E0:3F:62:2C:BA:D1:9B:D8:4C:69:46:CB:75:B8:17:27:2F:45:8B
Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Certificate serial: 13DE7F1B54A5B8891D8F6141E87D95B199DF2C5B
Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS834.roa
Signing time: Mon 02 Mar 2026 13:50:44 +0000
ROA not before: Mon 02 Mar 2026 13:45:44 +0000
ROA not after: Mon 01 Mar 2027 13:50:44 +0000
asID: 834
IP address blocks: 140.150.153.0/24 maxlen: 24
140.150.156.0/24 maxlen: 24
140.150.232.0/23 maxlen: 24
140.233.167.0/24 maxlen: 24
140.233.173.0/24 maxlen: 24
140.233.180.0/22 maxlen: 24
140.233.184.0/24 maxlen: 24
143.14.1.0/24 maxlen: 24
143.14.7.0/24 maxlen: 24
143.14.16.0/24 maxlen: 24
143.14.23.0/24 maxlen: 24
143.14.47.0/24 maxlen: 24
143.14.49.0/24 maxlen: 24
143.14.51.0/24 maxlen: 24
143.14.59.0/24 maxlen: 24
143.14.68.0/24 maxlen: 24
143.14.81.0/24 maxlen: 24
143.14.91.0/24 maxlen: 24
143.14.92.0/24 maxlen: 24
143.14.129.0/24 maxlen: 24
143.14.133.0/24 maxlen: 24
143.14.147.0/24 maxlen: 24
143.14.150.0/24 maxlen: 24
143.14.152.0/24 maxlen: 24
143.14.181.0/24 maxlen: 24
143.14.182.0/24 maxlen: 24
143.14.185.0/24 maxlen: 24
143.14.186.0/24 maxlen: 24
143.14.191.0/24 maxlen: 24
143.14.192.0/23 maxlen: 24
143.14.208.0/23 maxlen: 24
143.14.217.0/24 maxlen: 24
143.14.218.0/24 maxlen: 24
143.14.220.0/23 maxlen: 24
143.14.248.0/23 maxlen: 24
143.14.252.0/24 maxlen: 24
146.103.29.0/24 maxlen: 24
146.103.37.0/24 maxlen: 24
146.103.52.0/24 maxlen: 24
147.79.2.0/24 maxlen: 24
147.79.18.0/24 maxlen: 24
147.79.30.0/24 maxlen: 24
148.135.171.0/24 maxlen: 24
148.135.173.0/24 maxlen: 24
148.135.175.0/24 maxlen: 24
148.135.193.0/24 maxlen: 24
148.135.198.0/24 maxlen: 24
148.135.203.0/24 maxlen: 24
148.135.255.0/24 maxlen: 24
150.241.138.0/23 maxlen: 24
150.241.141.0/24 maxlen: 24
150.241.142.0/24 maxlen: 24
150.241.174.0/24 maxlen: 24
150.241.208.0/23 maxlen: 24
150.241.228.0/24 maxlen: 24
150.241.234.0/24 maxlen: 24
150.241.242.0/24 maxlen: 24
150.241.253.0/24 maxlen: 24
155.117.4.0/24 maxlen: 24
155.117.6.0/24 maxlen: 24
155.117.51.0/24 maxlen: 24
155.117.63.0/24 maxlen: 24
155.117.76.0/24 maxlen: 24
155.117.112.0/24 maxlen: 24
155.117.119.0/24 maxlen: 24
155.117.120.0/24 maxlen: 24
155.117.136.0/23 maxlen: 24
155.117.154.0/24 maxlen: 24
155.117.171.0/24 maxlen: 24
155.117.186.0/24 maxlen: 24
155.117.198.0/23 maxlen: 24
155.117.210.0/24 maxlen: 24
155.117.220.0/24 maxlen: 24
155.117.228.0/24 maxlen: 24
155.117.241.0/24 maxlen: 24
162.141.1.0/24 maxlen: 24
162.141.5.0/24 maxlen: 24
162.141.8.0/24 maxlen: 24
162.141.44.0/24 maxlen: 24
162.141.46.0/23 maxlen: 24
162.141.48.0/24 maxlen: 24
162.141.50.0/24 maxlen: 24
162.141.66.0/23 maxlen: 24
162.141.68.0/23 maxlen: 24
162.141.78.0/24 maxlen: 24
162.141.82.0/23 maxlen: 24
162.141.100.0/24 maxlen: 24
162.141.105.0/24 maxlen: 24
162.141.107.0/24 maxlen: 24
162.141.108.0/23 maxlen: 24
162.141.115.0/24 maxlen: 24
162.141.116.0/24 maxlen: 24
162.141.120.0/24 maxlen: 24
162.141.123.0/24 maxlen: 24
162.141.136.0/23 maxlen: 24
162.141.139.0/24 maxlen: 24
162.141.153.0/24 maxlen: 24
162.141.160.0/24 maxlen: 24
162.141.163.0/24 maxlen: 24
162.141.166.0/24 maxlen: 24
167.148.2.0/23 maxlen: 24
167.148.15.0/24 maxlen: 24
167.148.42.0/24 maxlen: 24
167.148.46.0/24 maxlen: 24
167.148.68.0/24 maxlen: 24
167.148.122.0/23 maxlen: 24
167.148.136.0/24 maxlen: 24
167.148.149.0/24 maxlen: 24
167.148.161.0/24 maxlen: 24
167.148.171.0/24 maxlen: 24
167.148.175.0/24 maxlen: 24
167.148.181.0/24 maxlen: 24
167.148.194.0/24 maxlen: 24
167.148.197.0/24 maxlen: 24
167.148.200.0/24 maxlen: 24
167.148.206.0/24 maxlen: 24
167.148.209.0/24 maxlen: 24
167.148.214.0/24 maxlen: 24
168.222.3.0/24 maxlen: 24
168.222.12.0/24 maxlen: 24
168.222.14.0/24 maxlen: 24
168.222.17.0/24 maxlen: 24
168.222.22.0/23 maxlen: 24
168.222.26.0/24 maxlen: 24
168.222.50.0/23 maxlen: 24
168.222.61.0/24 maxlen: 24
168.222.62.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.mft
rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 13:50:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
13:de:7f:1b:54:a5:b8:89:1d:8f:61:41:e8:7d:95:b1:99:df:2c:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Validity
Not Before: Mar 2 13:45:44 2026 GMT
Not After : Mar 1 13:50:44 2027 GMT
Subject: CN=E3E03F622CBAD19BD84C6946CB75B817272F458B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:59:80:fd:c6:b9:96:17:65:ad:ce:3c:ac:58:
8c:3f:cf:19:61:0d:88:26:d8:c5:99:a2:ab:3d:7f:
94:53:3b:c4:85:b4:4b:ae:4a:1e:e0:fd:a6:5a:93:
c0:66:f4:03:89:b3:fb:8b:4c:22:ff:82:82:d0:db:
5b:5f:45:61:56:17:f0:aa:fe:86:64:0d:7d:d1:bc:
15:4c:02:5a:1e:4f:74:66:8d:5c:5f:55:83:db:94:
2b:4c:b4:c9:f1:c3:98:26:48:40:e8:02:cd:20:42:
ae:95:55:42:60:50:66:77:77:30:5b:58:25:1e:d5:
a4:38:a2:f7:79:fe:50:be:97:dc:d8:60:12:aa:b8:
74:0b:79:74:59:5a:41:dd:90:73:9d:d5:ab:e8:ff:
f4:db:3f:d6:f2:b4:d4:63:6a:2b:37:0e:b9:c1:28:
56:9d:4a:5b:42:e8:2f:80:9d:7f:13:d3:88:eb:46:
d2:16:c8:c0:1c:58:04:06:6f:c6:69:89:2c:c5:54:
15:38:a5:8c:4c:ad:b9:8f:4c:5f:0d:48:63:e1:2e:
8b:50:28:eb:6a:75:7d:aa:1a:26:89:60:ac:32:5d:
c4:fe:8a:81:89:78:1d:1a:1d:9a:6d:ed:5e:aa:77:
4a:9d:b4:12:61:7a:cc:e0:71:70:47:39:53:64:51:
51:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:E0:3F:62:2C:BA:D1:9B:D8:4C:69:46:CB:75:B8:17:27:2F:45:8B
X509v3 Authority Key Identifier:
keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS834.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.150.153.0/24
140.150.156.0/24
140.150.232.0/23
140.233.167.0/24
140.233.173.0/24
140.233.180.0-140.233.184.255
143.14.1.0/24
143.14.7.0/24
143.14.16.0/24
143.14.23.0/24
143.14.47.0/24
143.14.49.0/24
143.14.51.0/24
143.14.59.0/24
143.14.68.0/24
143.14.81.0/24
143.14.91.0-143.14.92.255
143.14.129.0/24
143.14.133.0/24
143.14.147.0/24
143.14.150.0/24
143.14.152.0/24
143.14.181.0-143.14.182.255
143.14.185.0-143.14.186.255
143.14.191.0-143.14.193.255
143.14.208.0/23
143.14.217.0-143.14.218.255
143.14.220.0/23
143.14.248.0/23
143.14.252.0/24
146.103.29.0/24
146.103.37.0/24
146.103.52.0/24
147.79.2.0/24
147.79.18.0/24
147.79.30.0/24
148.135.171.0/24
148.135.173.0/24
148.135.175.0/24
148.135.193.0/24
148.135.198.0/24
148.135.203.0/24
148.135.255.0/24
150.241.138.0/23
150.241.141.0-150.241.142.255
150.241.174.0/24
150.241.208.0/23
150.241.228.0/24
150.241.234.0/24
150.241.242.0/24
150.241.253.0/24
155.117.4.0/24
155.117.6.0/24
155.117.51.0/24
155.117.63.0/24
155.117.76.0/24
155.117.112.0/24
155.117.119.0-155.117.120.255
155.117.136.0/23
155.117.154.0/24
155.117.171.0/24
155.117.186.0/24
155.117.198.0/23
155.117.210.0/24
155.117.220.0/24
155.117.228.0/24
155.117.241.0/24
162.141.1.0/24
162.141.5.0/24
162.141.8.0/24
162.141.44.0/24
162.141.46.0-162.141.48.255
162.141.50.0/24
162.141.66.0-162.141.69.255
162.141.78.0/24
162.141.82.0/23
162.141.100.0/24
162.141.105.0/24
162.141.107.0-162.141.109.255
162.141.115.0-162.141.116.255
162.141.120.0/24
162.141.123.0/24
162.141.136.0/23
162.141.139.0/24
162.141.153.0/24
162.141.160.0/24
162.141.163.0/24
162.141.166.0/24
167.148.2.0/23
167.148.15.0/24
167.148.42.0/24
167.148.46.0/24
167.148.68.0/24
167.148.122.0/23
167.148.136.0/24
167.148.149.0/24
167.148.161.0/24
167.148.171.0/24
167.148.175.0/24
167.148.181.0/24
167.148.194.0/24
167.148.197.0/24
167.148.200.0/24
167.148.206.0/24
167.148.209.0/24
167.148.214.0/24
168.222.3.0/24
168.222.12.0/24
168.222.14.0/24
168.222.17.0/24
168.222.22.0/23
168.222.26.0/24
168.222.50.0/23
168.222.61.0-168.222.62.255
Signature Algorithm: sha256WithRSAEncryption
3b:e1:98:c9:94:a5:85:bd:b4:8a:8f:c1:c8:f0:16:9e:61:c7:
5a:17:dd:f6:a9:48:e7:1e:08:8b:2d:b4:ce:05:9b:c6:19:72:
b0:9e:ab:a9:da:2d:0d:ed:71:23:e1:e0:ab:3e:5a:34:22:99:
2a:57:ef:f5:75:39:48:12:1e:5a:2a:8a:59:ec:56:56:96:1d:
d5:a9:b3:9b:48:54:82:4f:9e:27:82:50:21:a6:69:47:93:68:
53:e4:a3:ad:cc:bd:dc:13:79:96:d4:5e:9b:31:55:64:c1:a2:
d6:0a:d5:5d:0a:c4:f2:da:20:8a:72:6b:4f:75:9b:a4:ad:e4:
48:4d:1a:74:78:f3:cf:91:6d:a4:e2:78:74:ad:aa:bb:67:fd:
45:ab:00:2d:04:81:9f:e3:2a:3a:b3:59:5a:95:8a:88:e5:87:
d3:4c:a8:36:fa:e1:e9:fe:6d:79:64:74:c0:2b:af:a0:35:60:
ef:76:bc:5c:34:aa:bc:0d:a0:e5:2e:e4:1b:f1:37:d0:7e:e2:
8b:61:b3:39:57:a9:7e:52:e1:dd:79:4e:10:0a:e2:c9:66:6f:
72:78:77:06:d5:3a:29:8e:f6:8a:62:ef:67:9d:6d:37:c5:20:
b9:7e:8d:e0:fa:87:bf:3c:18:5c:f7:27:09:0c:50:75:57:2d:
b5:8b:44:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 16:06:39 2026 by rpki-client