Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS834.roa
File: AS834.roa (raw, json)
Hash identifier: tRII6MMvwrvgo7C81fFrkmdonEKTkx0blHYIjVHzTBY=
Subject key identifier: AC:F6:E2:90:F8:1D:29:67:2F:2E:AD:D0:E4:3D:71:AF:FC:F7:2F:FE
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 1704F6E8081DD1E358E131C5FA01BC746A1B507C
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS834.roa
Signing time: Sun 15 Jun 2025 11:48:20 +0000
ROA not before: Sun 15 Jun 2025 11:43:20 +0000
ROA not after: Sun 14 Jun 2026 11:48:20 +0000
asID: 834
IP address blocks: 45.87.185.0/24 maxlen: 24
45.87.187.0/24 maxlen: 24
45.95.36.0/24 maxlen: 24
85.208.72.0/24 maxlen: 24
92.118.162.0/24 maxlen: 24
92.119.33.0/24 maxlen: 24
92.242.186.0/24 maxlen: 24
103.141.69.0/24 maxlen: 24
109.106.3.0/24 maxlen: 24
130.185.127.0/24 maxlen: 24
179.61.134.0/24 maxlen: 24
179.61.226.0/23 maxlen: 24
179.61.229.0/24 maxlen: 24
179.61.241.0/24 maxlen: 24
179.61.243.0/24 maxlen: 24
181.41.196.0/24 maxlen: 24
181.214.0.0/24 maxlen: 24
181.214.4.0/24 maxlen: 24
181.214.14.0/24 maxlen: 24
181.214.41.0/24 maxlen: 24
181.214.57.0/24 maxlen: 24
181.214.58.0/24 maxlen: 24
181.214.79.0/24 maxlen: 24
181.214.91.0/24 maxlen: 24
181.214.94.0/24 maxlen: 24
181.214.97.0/24 maxlen: 24
181.214.100.0/24 maxlen: 24
181.214.108.0/24 maxlen: 24
181.214.111.0/24 maxlen: 24
181.214.113.0/24 maxlen: 24
181.214.119.0/24 maxlen: 24
181.214.120.0/24 maxlen: 24
181.214.124.0/23 maxlen: 24
181.214.148.0/24 maxlen: 24
181.214.154.0/24 maxlen: 24
181.214.161.0/24 maxlen: 24
181.214.197.0/24 maxlen: 24
181.214.201.0/24 maxlen: 24
181.214.212.0/24 maxlen: 24
181.214.216.0/24 maxlen: 24
181.214.248.0/24 maxlen: 24
181.214.254.0/24 maxlen: 24
181.215.3.0/24 maxlen: 24
181.215.22.0/23 maxlen: 24
181.215.73.0/24 maxlen: 24
181.215.91.0/24 maxlen: 24
181.215.95.0/24 maxlen: 24
181.215.108.0/23 maxlen: 24
181.215.111.0/24 maxlen: 24
181.215.112.0/22 maxlen: 24
181.215.141.0/24 maxlen: 24
181.215.159.0/24 maxlen: 24
181.215.186.0/23 maxlen: 24
181.215.189.0/24 maxlen: 24
181.215.216.0/24 maxlen: 24
181.215.225.0/24 maxlen: 24
181.215.227.0/24 maxlen: 24
181.215.237.0/24 maxlen: 24
181.215.240.0/24 maxlen: 24
181.215.250.0/24 maxlen: 24
185.137.15.0/24 maxlen: 24
185.142.25.0/24 maxlen: 24
185.151.58.0/24 maxlen: 24
191.96.3.0/24 maxlen: 24
191.96.24.0/24 maxlen: 24
191.96.58.0/24 maxlen: 24
191.96.64.0/24 maxlen: 24
191.96.88.0/23 maxlen: 24
191.96.91.0/24 maxlen: 24
191.96.99.0/24 maxlen: 24
191.96.102.0/24 maxlen: 24
191.96.105.0/24 maxlen: 24
191.96.116.0/24 maxlen: 24
191.96.120.0/24 maxlen: 24
191.96.126.0/24 maxlen: 24
191.96.140.0/23 maxlen: 24
191.96.143.0/24 maxlen: 24
191.96.149.0/24 maxlen: 24
191.96.157.0/24 maxlen: 24
191.96.164.0/24 maxlen: 24
191.96.180.0/23 maxlen: 24
191.96.182.0/24 maxlen: 24
191.101.9.0/24 maxlen: 24
191.101.20.0/24 maxlen: 24
191.101.22.0/24 maxlen: 24
191.101.39.0/24 maxlen: 24
191.101.56.0/24 maxlen: 24
191.101.58.0/24 maxlen: 24
191.101.63.0/24 maxlen: 24
191.101.76.0/24 maxlen: 24
191.101.82.0/24 maxlen: 24
191.101.85.0/24 maxlen: 24
191.101.87.0/24 maxlen: 24
191.101.88.0/24 maxlen: 24
191.101.95.0/24 maxlen: 24
191.101.97.0/24 maxlen: 24
191.101.102.0/24 maxlen: 24
191.101.116.0/24 maxlen: 24
191.101.120.0/24 maxlen: 24
191.101.124.0/24 maxlen: 24
191.101.135.0/24 maxlen: 24
191.101.145.0/24 maxlen: 24
191.101.148.0/24 maxlen: 24
191.101.180.0/24 maxlen: 24
191.101.182.0/24 maxlen: 24
191.101.187.0/24 maxlen: 24
191.101.192.0/24 maxlen: 24
191.101.198.0/24 maxlen: 24
191.101.223.0/24 maxlen: 24
191.101.239.0/24 maxlen: 24
191.101.240.0/24 maxlen: 24
191.101.247.0/24 maxlen: 24
191.101.252.0/24 maxlen: 24
193.31.41.0/24 maxlen: 24
213.109.168.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.mft
rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 16 Jun 2025 12:46:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
17:04:f6:e8:08:1d:d1:e3:58:e1:31:c5:fa:01:bc:74:6a:1b:50:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Jun 15 11:43:20 2025 GMT
Not After : Jun 14 11:48:20 2026 GMT
Subject: CN=ACF6E290F81D29672F2EADD0E43D71AFFCF72FFE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:71:a5:89:a5:d3:15:3b:97:d0:68:61:78:28:
51:c1:75:59:39:66:34:af:52:7f:03:27:ee:23:f5:
82:6a:00:05:df:ec:99:ce:9f:de:20:1e:b0:86:cb:
f9:e4:21:be:7e:00:fc:46:31:a2:24:0e:10:ab:8a:
67:c7:8a:44:ba:7e:02:52:bf:f1:2d:bb:5d:ef:8a:
f8:15:72:b5:c8:2e:f6:d3:53:f7:e1:b7:82:a0:b2:
9c:bc:bb:56:b6:85:8e:a2:1d:7d:30:a2:86:17:0d:
58:1e:c3:7e:f4:88:67:47:dd:ed:26:f2:71:b0:ae:
6f:cc:f3:46:5c:d5:e8:df:6e:16:62:55:96:f4:57:
81:d7:37:c0:22:87:6c:95:a5:61:08:1c:d4:be:ae:
7e:ac:5e:88:ed:d0:6c:41:12:e9:d2:d7:49:cf:c1:
eb:0c:74:ff:d7:02:0b:19:56:29:31:3b:0e:b3:e8:
7b:f2:58:ef:f2:43:ac:15:91:fa:70:d1:ed:d7:08:
7b:c5:17:3e:6e:03:84:7e:45:ed:d2:3f:91:b6:4b:
13:ad:85:9b:dd:93:ff:06:57:22:56:aa:d9:97:d3:
4b:82:c6:0f:e1:9a:7c:9d:62:63:34:2e:05:bd:4f:
45:5b:56:eb:27:3a:09:e3:e0:09:cb:13:58:3a:ad:
61:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:F6:E2:90:F8:1D:29:67:2F:2E:AD:D0:E4:3D:71:AF:FC:F7:2F:FE
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS834.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.87.185.0/24
45.87.187.0/24
45.95.36.0/24
85.208.72.0/24
92.118.162.0/24
92.119.33.0/24
92.242.186.0/24
103.141.69.0/24
109.106.3.0/24
130.185.127.0/24
179.61.134.0/24
179.61.226.0/23
179.61.229.0/24
179.61.241.0/24
179.61.243.0/24
181.41.196.0/24
181.214.0.0/24
181.214.4.0/24
181.214.14.0/24
181.214.41.0/24
181.214.57.0-181.214.58.255
181.214.79.0/24
181.214.91.0/24
181.214.94.0/24
181.214.97.0/24
181.214.100.0/24
181.214.108.0/24
181.214.111.0/24
181.214.113.0/24
181.214.119.0-181.214.120.255
181.214.124.0/23
181.214.148.0/24
181.214.154.0/24
181.214.161.0/24
181.214.197.0/24
181.214.201.0/24
181.214.212.0/24
181.214.216.0/24
181.214.248.0/24
181.214.254.0/24
181.215.3.0/24
181.215.22.0/23
181.215.73.0/24
181.215.91.0/24
181.215.95.0/24
181.215.108.0/23
181.215.111.0-181.215.115.255
181.215.141.0/24
181.215.159.0/24
181.215.186.0/23
181.215.189.0/24
181.215.216.0/24
181.215.225.0/24
181.215.227.0/24
181.215.237.0/24
181.215.240.0/24
181.215.250.0/24
185.137.15.0/24
185.142.25.0/24
185.151.58.0/24
191.96.3.0/24
191.96.24.0/24
191.96.58.0/24
191.96.64.0/24
191.96.88.0/23
191.96.91.0/24
191.96.99.0/24
191.96.102.0/24
191.96.105.0/24
191.96.116.0/24
191.96.120.0/24
191.96.126.0/24
191.96.140.0/23
191.96.143.0/24
191.96.149.0/24
191.96.157.0/24
191.96.164.0/24
191.96.180.0-191.96.182.255
191.101.9.0/24
191.101.20.0/24
191.101.22.0/24
191.101.39.0/24
191.101.56.0/24
191.101.58.0/24
191.101.63.0/24
191.101.76.0/24
191.101.82.0/24
191.101.85.0/24
191.101.87.0-191.101.88.255
191.101.95.0/24
191.101.97.0/24
191.101.102.0/24
191.101.116.0/24
191.101.120.0/24
191.101.124.0/24
191.101.135.0/24
191.101.145.0/24
191.101.148.0/24
191.101.180.0/24
191.101.182.0/24
191.101.187.0/24
191.101.192.0/24
191.101.198.0/24
191.101.223.0/24
191.101.239.0-191.101.240.255
191.101.247.0/24
191.101.252.0/24
193.31.41.0/24
213.109.168.0/23
Signature Algorithm: sha256WithRSAEncryption
0c:dc:19:09:eb:a8:5a:36:3c:8d:d8:44:32:53:de:63:ee:73:
f5:e9:06:62:a2:d7:3f:28:0d:5d:fd:e0:53:db:f1:d4:31:cd:
ec:f6:2e:ab:c4:1a:84:06:32:b5:97:a7:c0:df:68:73:92:0c:
26:69:1f:58:03:e5:7b:fb:c2:69:ee:30:e7:ae:d5:84:1e:87:
67:5f:6f:63:21:df:e1:a7:04:aa:0e:8e:dc:7a:94:10:c0:80:
21:c1:1f:f7:d3:f7:0d:ee:da:00:3b:54:4f:61:e7:02:97:ca:
06:aa:8e:5d:56:19:f9:03:2e:12:8b:27:42:27:d9:18:20:a9:
5e:1d:c9:b0:da:5c:10:11:f1:aa:c6:83:91:4c:cb:5c:7b:c0:
8a:29:fa:52:a3:23:fc:68:8f:8d:ac:85:2d:d4:4b:72:ff:ec:
1c:5b:ea:6f:95:42:f2:61:57:b1:db:81:d8:6f:ad:dd:21:77:
04:f9:7f:ea:1f:e4:9b:92:49:e0:e1:6d:9a:41:4f:77:18:b9:
7f:fa:4f:89:70:c5:da:7e:a2:fb:8c:32:70:5f:ed:de:68:b3:
c4:27:ef:d7:e0:24:61:a8:ec:69:b5:e0:85:4f:b3:29:82:c3:
5e:c9:b2:40:5a:f5:2a:f3:85:80:7d:3b:d6:e6:07:a1:dc:51:
cc:e4:c5:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 16 04:24:42 2025 by rpki-client