Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/22db7555-9aa4-4983-9316-73809dd354bc/0/AS834.roa
File: AS834.roa (raw, json)
Hash identifier: YQec9SaUQi0he4uuKZXeoevkx6S2g8WxJv1Pz0ngS4Y=
Subject key identifier: BF:0A:06:44:3D:75:69:15:5F:57:04:8C:FC:B8:D3:13:68:E8:1D:20
Certificate issuer: /CN=3feccb17be51ee59ec74d64eed917e221ee28a1b
Certificate serial: 6F453D0794EE1AFEC4014BE6BD03598CBEAE4BD0
Authority key identifier: 3F:EC:CB:17:BE:51:EE:59:EC:74:D6:4E:ED:91:7E:22:1E:E2:8A:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P-zLF75R7lnsdNZO7ZF-Ih7iihs.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/22db7555-9aa4-4983-9316-73809dd354bc/0/AS834.roa
Signing time: Thu 16 Apr 2026 05:04:50 +0000
ROA not before: Thu 16 Apr 2026 04:59:50 +0000
ROA not after: Thu 15 Apr 2027 05:04:50 +0000
asID: 834
IP address blocks: 46.236.192.0/22 maxlen: 24
46.236.197.0/24 maxlen: 24
46.236.202.0/24 maxlen: 24
46.236.207.0/24 maxlen: 24
46.236.209.0/24 maxlen: 24
46.236.212.0/24 maxlen: 24
46.236.223.0/24 maxlen: 24
46.236.241.0/24 maxlen: 24
46.236.243.0/24 maxlen: 24
46.236.252.0/22 maxlen: 24
82.139.194.0/24 maxlen: 24
82.139.204.0/24 maxlen: 24
82.139.206.0/24 maxlen: 24
82.139.215.0/24 maxlen: 24
82.139.218.0/23 maxlen: 24
82.139.220.0/24 maxlen: 24
82.139.224.0/23 maxlen: 24
82.139.227.0/24 maxlen: 24
82.139.228.0/23 maxlen: 24
82.139.231.0/24 maxlen: 24
82.139.232.0/22 maxlen: 24
82.139.236.0/24 maxlen: 24
82.139.241.0/24 maxlen: 24
82.139.242.0/23 maxlen: 24
82.139.244.0/22 maxlen: 24
82.139.248.0/23 maxlen: 24
82.139.251.0/24 maxlen: 24
212.60.144.0/24 maxlen: 24
212.60.147.0/24 maxlen: 24
212.60.152.0/24 maxlen: 24
212.60.154.0/23 maxlen: 24
212.60.156.0/23 maxlen: 24
212.60.159.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/22db7555-9aa4-4983-9316-73809dd354bc/0/3FECCB17BE51EE59EC74D64EED917E221EE28A1B.crl
rsync://rsync.paas.rpki.ripe.net/repository/22db7555-9aa4-4983-9316-73809dd354bc/0/3FECCB17BE51EE59EC74D64EED917E221EE28A1B.mft
rsync://rpki.ripe.net/repository/DEFAULT/P-zLF75R7lnsdNZO7ZF-Ih7iihs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6f:45:3d:07:94:ee:1a:fe:c4:01:4b:e6:bd:03:59:8c:be:ae:4b:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3feccb17be51ee59ec74d64eed917e221ee28a1b
Validity
Not Before: Apr 16 04:59:50 2026 GMT
Not After : Apr 15 05:04:50 2027 GMT
Subject: CN=BF0A06443D7569155F57048CFCB8D31368E81D20
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:b9:61:0e:3a:a8:1e:98:82:f7:9c:a7:98:35:
6a:be:0b:27:7a:e5:86:bb:ab:1d:88:2d:72:6b:4c:
11:de:6c:07:87:ce:29:5a:23:ba:70:62:79:17:c0:
03:e8:30:44:f4:90:49:bb:89:b1:1b:ac:04:a1:4a:
69:37:d3:28:3f:d0:14:90:06:cd:cc:30:a1:0d:d2:
f2:ac:02:3f:2b:41:b6:30:9b:e7:4f:82:a9:1e:38:
2d:d2:6c:bc:8f:ec:33:b8:e9:f4:9b:a6:69:be:37:
1e:5d:39:2b:55:0e:50:30:05:69:d8:99:c4:4e:24:
2a:8c:0f:d3:a5:b2:ce:0d:bb:6f:a9:96:88:4c:a1:
e2:8e:ea:f6:32:01:2b:41:37:7c:67:56:f6:9f:a0:
e6:53:cf:f8:06:96:eb:e6:81:85:69:e8:f3:d0:14:
ac:fe:b0:ca:51:86:57:80:2f:4b:75:81:1e:30:1e:
c8:ab:d1:c8:92:16:90:37:ba:e2:76:03:0e:95:fb:
41:7d:e4:81:69:4d:23:85:c0:65:d0:9d:dd:ff:ba:
e0:98:71:4e:10:3f:36:6d:40:6f:7d:b4:a2:32:a6:
27:7c:7e:49:68:4c:51:49:2b:07:2c:05:ca:5c:04:
0c:ae:50:24:26:92:79:d6:09:ca:7c:59:d7:8b:fd:
de:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:0A:06:44:3D:75:69:15:5F:57:04:8C:FC:B8:D3:13:68:E8:1D:20
X509v3 Authority Key Identifier:
keyid:3F:EC:CB:17:BE:51:EE:59:EC:74:D6:4E:ED:91:7E:22:1E:E2:8A:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/22db7555-9aa4-4983-9316-73809dd354bc/0/3FECCB17BE51EE59EC74D64EED917E221EE28A1B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P-zLF75R7lnsdNZO7ZF-Ih7iihs.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/22db7555-9aa4-4983-9316-73809dd354bc/0/AS834.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.236.192.0/22
46.236.197.0/24
46.236.202.0/24
46.236.207.0/24
46.236.209.0/24
46.236.212.0/24
46.236.223.0/24
46.236.241.0/24
46.236.243.0/24
46.236.252.0/22
82.139.194.0/24
82.139.204.0/24
82.139.206.0/24
82.139.215.0/24
82.139.218.0-82.139.220.255
82.139.224.0/23
82.139.227.0-82.139.229.255
82.139.231.0-82.139.236.255
82.139.241.0-82.139.249.255
82.139.251.0/24
212.60.144.0/24
212.60.147.0/24
212.60.152.0/24
212.60.154.0-212.60.157.255
212.60.159.0/24
Signature Algorithm: sha256WithRSAEncryption
14:09:64:40:47:67:8d:b0:c6:3c:75:e7:cf:46:5d:91:1a:09:
89:05:f2:78:f8:5f:36:ba:7e:cc:28:31:6a:f3:8c:60:38:a2:
19:c4:d9:61:8e:fe:c4:34:ee:33:e1:01:b4:41:a9:a8:8f:17:
10:56:94:67:5d:5e:01:4b:4c:cf:b5:ab:a9:a6:0c:94:fb:1a:
9e:fd:c6:ba:91:a0:29:5d:e1:6f:bc:3c:1e:a7:b4:99:27:0f:
70:33:83:49:c7:09:ba:27:78:a3:5d:fb:6d:0c:38:27:3c:0c:
d1:90:94:12:92:82:f9:bf:b6:2c:89:7e:ee:c0:63:95:a6:f8:
90:37:bf:d0:2e:57:df:35:88:91:0c:f4:9a:de:94:fa:33:a5:
05:6e:4f:a5:b7:3a:c0:ee:2c:2c:d4:3e:fc:f7:cf:2c:a9:47:
f5:22:93:3e:2c:0e:03:d0:bb:d5:23:64:0f:0e:de:f7:28:74:
d4:44:bc:31:31:cc:8a:23:c4:9d:76:17:50:00:d0:00:f8:dc:
93:e6:93:e2:e2:a8:c4:dc:af:55:22:06:21:40:13:dd:a0:05:
2a:d8:d5:87:f9:d0:b9:7a:01:44:4e:0d:1d:d4:9d:bf:9e:9f:
91:09:6c:e7:27:8f:a1:d7:f6:b8:fb:c6:7d:d8:b0:a1:a4:a4:
a8:ca:ac:c8
-----BEGIN CERTIFICATE-----
MIIFujCCBKKgAwIBAgIUb0U9B5TuGv7EAUvmvQNZjL6uS9AwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoM2ZlY2NiMTdiZTUxZWU1OWVjNzRkNjRlZWQ5MTdlMjIx
ZWUyOGExYjAeFw0yNjA0MTYwNDU5NTBaFw0yNzA0MTUwNTA0NTBaMDMxMTAvBgNV
BAMTKEJGMEEwNjQ0M0Q3NTY5MTU1RjU3MDQ4Q0ZDQjhEMzEzNjhFODFEMjAwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJuWEOOqgemIL3nKeYNWq+Cyd6
5Ya7qx2ILXJrTBHebAeHzilaI7pwYnkXwAPoMET0kEm7ibEbrAShSmk30yg/0BSQ
Bs3MMKEN0vKsAj8rQbYwm+dPgqkeOC3SbLyP7DO46fSbpmm+Nx5dOStVDlAwBWnY
mcROJCqMD9Olss4Nu2+plohMoeKO6vYyAStBN3xnVvafoOZTz/gGluvmgYVp6PPQ
FKz+sMpRhleAL0t1gR4wHsir0ciSFpA3uuJ2Aw6V+0F95IFpTSOFwGXQnd3/uuCY
cU4QPzZtQG99tKIypid8fkloTFFJKwcsBcpcBAyuUCQmknnWCcp8WdeL/d7tAgMB
AAGjggLEMIICwDAdBgNVHQ4EFgQUvwoGRD11aRVfVwSM/LjTE2joHSAwHwYDVR0j
BBgwFoAUP+zLF75R7lnsdNZO7ZF+Ih7iihswDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvMjJkYjc1NTUtOWFhNC00OTgzLTkzMTYtNzM4MDlkZDM1
NGJjLzAvM0ZFQ0NCMTdCRTUxRUU1OUVDNzRENjRFRUQ5MTdFMjIxRUUyOEExQi5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1AtekxGNzVSN2xuc2ROWk83WkYtSWg3
aWlocy5jZXIweAYIKwYBBQUHAQsEbDBqMGgGCCsGAQUFBzALhlxyc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzIyZGI3NTU1LTlhYTQt
NDk4My05MzE2LTczODA5ZGQzNTRiYy8wL0FTODM0LnJvYTAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIHbBggrBgEFBQcBBwEB/wSByzCByDCBxQQCAAEwgb4DBAIu
7MADBAAu7MUDBAAu7MoDBAAu7M8DBAAu7NEDBAAu7NQDBAAu7N8DBAAu7PEDBAAu
7PMDBAIu7PwDBABSi8IDBABSi8wDBABSi84DBABSi9cwDAMEAVKL2gMEAFKL3AME
AVKL4DAMAwQAUovjAwQBUovkMAwDBABSi+cDBABSi+wwDAMEAFKL8QMEAVKL+AME
AFKL+wMEANQ8kAMEANQ8kwMEANQ8mDAMAwQB1DyaAwQB1DycAwQA1DyfMA0GCSqG
SIb3DQEBCwUAA4IBAQAUCWRAR2eNsMY8defPRl2RGgmJBfJ4+F82un7MKDFq84xg
OKIZxNlhjv7ENO4z4QG0QamojxcQVpRnXV4BS0zPtauppgyU+xqe/ca6kaApXeFv
vDwep7SZJw9wM4NJxwm6J3ijXfttDDgnPAzRkJQSkoL5v7YsiX7uwGOVpviQN7/Q
LlffNYiRDPSa3pT6M6UFbk+ltzrA7iws1D78988sqUf1IpM+LA4D0LvVI2QPDt73
KHTURLwxMcyKI8SddhdQANAA+NyT5pPi4qjE3K9VIgYhQBPdoAUq2NWH+dC5egFE
Tg0d1J2/np+RCWznJ4+h1/a4+8Z92LChpKSoyqzI
-----END CERTIFICATE-----
Generated at Fri Apr 17 03:31:35 2026 by rpki-client