Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS834.roa
File: AS834.roa (raw, json)
Hash identifier: kfvJFAZYWz29NCDi2SpqC0MBxbaJS0qykN/e1pE85N4=
Subject key identifier: BA:9A:AE:22:F2:F4:C6:3A:1B:01:32:F9:CE:D0:86:A2:59:0A:26:65
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 302A67C4981FF656D722E389F71F492765701D13
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS834.roa
Signing time: Fri 25 Apr 2025 00:01:48 +0000
ROA not before: Thu 24 Apr 2025 23:56:48 +0000
ROA not after: Fri 24 Apr 2026 00:01:48 +0000
asID: 834
IP address blocks: 5.252.74.0/24 maxlen: 24
5.252.82.0/24 maxlen: 24
45.87.185.0/24 maxlen: 24
45.95.36.0/24 maxlen: 24
89.19.50.0/24 maxlen: 24
92.118.162.0/24 maxlen: 24
92.119.33.0/24 maxlen: 24
92.242.186.0/24 maxlen: 24
109.106.3.0/24 maxlen: 24
130.185.127.0/24 maxlen: 24
179.61.226.0/23 maxlen: 24
179.61.229.0/24 maxlen: 24
179.61.243.0/24 maxlen: 24
181.41.196.0/24 maxlen: 24
181.214.0.0/24 maxlen: 24
181.214.4.0/24 maxlen: 24
181.214.14.0/24 maxlen: 24
181.214.79.0/24 maxlen: 24
181.214.91.0/24 maxlen: 24
181.214.97.0/24 maxlen: 24
181.214.100.0/24 maxlen: 24
181.214.108.0/24 maxlen: 24
181.214.110.0/23 maxlen: 24
181.214.113.0/24 maxlen: 24
181.214.119.0/24 maxlen: 24
181.214.120.0/24 maxlen: 24
181.214.124.0/23 maxlen: 24
181.214.148.0/24 maxlen: 24
181.214.154.0/24 maxlen: 24
181.214.161.0/24 maxlen: 24
181.214.201.0/24 maxlen: 24
181.214.212.0/24 maxlen: 24
181.214.216.0/24 maxlen: 24
181.214.248.0/24 maxlen: 24
181.214.254.0/24 maxlen: 24
181.215.3.0/24 maxlen: 24
181.215.22.0/23 maxlen: 24
181.215.73.0/24 maxlen: 24
181.215.91.0/24 maxlen: 24
181.215.95.0/24 maxlen: 24
181.215.108.0/23 maxlen: 24
181.215.111.0/24 maxlen: 24
181.215.112.0/22 maxlen: 24
181.215.159.0/24 maxlen: 24
181.215.186.0/23 maxlen: 24
181.215.189.0/24 maxlen: 24
181.215.200.0/24 maxlen: 24
181.215.216.0/24 maxlen: 24
181.215.225.0/24 maxlen: 24
181.215.227.0/24 maxlen: 24
181.215.237.0/24 maxlen: 24
181.215.240.0/24 maxlen: 24
181.215.250.0/24 maxlen: 24
185.139.238.0/24 maxlen: 24
191.96.24.0/24 maxlen: 24
191.96.58.0/24 maxlen: 24
191.96.64.0/24 maxlen: 24
191.96.88.0/23 maxlen: 24
191.96.91.0/24 maxlen: 24
191.96.99.0/24 maxlen: 24
191.96.102.0/24 maxlen: 24
191.96.105.0/24 maxlen: 24
191.96.116.0/24 maxlen: 24
191.96.120.0/24 maxlen: 24
191.96.126.0/24 maxlen: 24
191.96.140.0/24 maxlen: 24
191.96.143.0/24 maxlen: 24
191.96.149.0/24 maxlen: 24
191.96.157.0/24 maxlen: 24
191.96.164.0/24 maxlen: 24
191.96.180.0/24 maxlen: 24
191.96.182.0/24 maxlen: 24
191.101.9.0/24 maxlen: 24
191.101.20.0/24 maxlen: 24
191.101.22.0/24 maxlen: 24
191.101.39.0/24 maxlen: 24
191.101.56.0/24 maxlen: 24
191.101.58.0/24 maxlen: 24
191.101.63.0/24 maxlen: 24
191.101.76.0/24 maxlen: 24
191.101.82.0/24 maxlen: 24
191.101.87.0/24 maxlen: 24
191.101.88.0/24 maxlen: 24
191.101.95.0/24 maxlen: 24
191.101.97.0/24 maxlen: 24
191.101.102.0/24 maxlen: 24
191.101.116.0/24 maxlen: 24
191.101.120.0/24 maxlen: 24
191.101.124.0/24 maxlen: 24
191.101.148.0/24 maxlen: 24
191.101.180.0/24 maxlen: 24
191.101.182.0/24 maxlen: 24
191.101.187.0/24 maxlen: 24
191.101.192.0/24 maxlen: 24
191.101.198.0/24 maxlen: 24
191.101.239.0/24 maxlen: 24
191.101.240.0/24 maxlen: 24
191.101.252.0/24 maxlen: 24
193.31.41.0/24 maxlen: 24
213.109.168.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.mft
rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Apr 2025 10:58:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
30:2a:67:c4:98:1f:f6:56:d7:22:e3:89:f7:1f:49:27:65:70:1d:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Apr 24 23:56:48 2025 GMT
Not After : Apr 24 00:01:48 2026 GMT
Subject: CN=BA9AAE22F2F4C63A1B0132F9CED086A2590A2665
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:e9:10:1f:a8:88:55:b8:35:a2:db:ab:68:bd:
1b:47:8e:d2:cb:6d:25:1d:a3:b1:ea:84:d4:6f:48:
a7:bc:77:1c:0f:05:8e:97:fe:54:7e:49:da:27:fa:
09:f0:89:2f:71:db:90:2d:8c:b4:a8:fc:d0:6a:c8:
8d:fc:46:02:cb:8f:ce:e8:79:fc:17:56:be:f6:bb:
fd:57:a6:67:ce:2d:0e:c9:af:6b:2d:2b:ad:8e:b4:
7c:c9:b5:4d:ee:67:40:3d:1c:77:38:21:eb:bb:8b:
9d:f3:61:b1:e5:cd:df:b8:27:9f:72:bb:61:75:4d:
91:3f:92:4a:9a:35:2a:17:27:1a:b8:48:3a:e4:5d:
63:69:7a:4c:27:f3:f5:fb:6f:68:4a:bb:55:78:b5:
a4:2a:20:11:aa:b7:9a:af:db:62:5e:a3:e0:91:d5:
a1:17:19:46:c6:00:a8:4c:a2:1b:64:be:bd:b0:56:
58:af:e2:56:b7:52:6d:a8:83:18:02:15:e0:01:92:
fd:e3:8e:2a:15:ad:fe:bd:1f:e7:15:4d:7e:07:8f:
e8:df:b2:0a:07:72:a3:78:58:88:fa:e5:fa:59:ec:
c0:6e:85:b4:34:f7:2f:dc:8d:7a:96:10:35:94:3e:
99:2c:7c:5b:6f:2a:e9:41:c9:6e:1c:23:af:9d:ae:
57:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:9A:AE:22:F2:F4:C6:3A:1B:01:32:F9:CE:D0:86:A2:59:0A:26:65
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS834.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.252.74.0/24
5.252.82.0/24
45.87.185.0/24
45.95.36.0/24
89.19.50.0/24
92.118.162.0/24
92.119.33.0/24
92.242.186.0/24
109.106.3.0/24
130.185.127.0/24
179.61.226.0/23
179.61.229.0/24
179.61.243.0/24
181.41.196.0/24
181.214.0.0/24
181.214.4.0/24
181.214.14.0/24
181.214.79.0/24
181.214.91.0/24
181.214.97.0/24
181.214.100.0/24
181.214.108.0/24
181.214.110.0/23
181.214.113.0/24
181.214.119.0-181.214.120.255
181.214.124.0/23
181.214.148.0/24
181.214.154.0/24
181.214.161.0/24
181.214.201.0/24
181.214.212.0/24
181.214.216.0/24
181.214.248.0/24
181.214.254.0/24
181.215.3.0/24
181.215.22.0/23
181.215.73.0/24
181.215.91.0/24
181.215.95.0/24
181.215.108.0/23
181.215.111.0-181.215.115.255
181.215.159.0/24
181.215.186.0/23
181.215.189.0/24
181.215.200.0/24
181.215.216.0/24
181.215.225.0/24
181.215.227.0/24
181.215.237.0/24
181.215.240.0/24
181.215.250.0/24
185.139.238.0/24
191.96.24.0/24
191.96.58.0/24
191.96.64.0/24
191.96.88.0/23
191.96.91.0/24
191.96.99.0/24
191.96.102.0/24
191.96.105.0/24
191.96.116.0/24
191.96.120.0/24
191.96.126.0/24
191.96.140.0/24
191.96.143.0/24
191.96.149.0/24
191.96.157.0/24
191.96.164.0/24
191.96.180.0/24
191.96.182.0/24
191.101.9.0/24
191.101.20.0/24
191.101.22.0/24
191.101.39.0/24
191.101.56.0/24
191.101.58.0/24
191.101.63.0/24
191.101.76.0/24
191.101.82.0/24
191.101.87.0-191.101.88.255
191.101.95.0/24
191.101.97.0/24
191.101.102.0/24
191.101.116.0/24
191.101.120.0/24
191.101.124.0/24
191.101.148.0/24
191.101.180.0/24
191.101.182.0/24
191.101.187.0/24
191.101.192.0/24
191.101.198.0/24
191.101.239.0-191.101.240.255
191.101.252.0/24
193.31.41.0/24
213.109.168.0/24
Signature Algorithm: sha256WithRSAEncryption
ad:03:5a:59:f1:e4:e3:02:97:bd:51:ef:02:68:cf:12:b0:9f:
b6:cd:55:e3:32:2c:93:ab:60:0f:8e:e3:49:da:28:6e:9d:7c:
5a:10:05:4c:f7:f1:a8:aa:94:da:65:2c:7d:e6:eb:4c:f4:e3:
e7:f2:75:9f:a0:b0:25:43:9d:89:35:f6:48:b1:ad:3d:c4:0c:
1e:ba:13:7e:b4:cd:c5:1b:3a:16:6d:df:0e:14:99:65:3c:a5:
2f:fd:d3:a5:1f:67:b4:2b:03:88:92:e5:c8:24:bc:43:28:1d:
30:27:ba:4e:df:a4:d6:17:51:e7:a9:e0:3f:59:7d:81:76:2f:
67:cb:da:e1:73:81:20:2f:c8:a2:30:78:5c:b3:fe:fe:5d:32:
ef:e5:93:25:47:79:8e:f6:fb:6e:75:e1:29:33:6a:e5:4e:2f:
c5:e7:ee:21:18:c1:10:af:08:65:2d:3b:35:3c:92:2a:2f:ff:
5f:5e:55:b7:e6:2b:ba:eb:0c:e1:36:08:b9:6f:2d:35:5c:c2:
5f:c7:fe:a1:f1:2b:30:ff:53:48:1b:a5:69:1d:cb:ab:9e:ba:
48:f4:14:79:c1:62:20:a1:ad:4e:da:a4:6f:12:5b:be:00:02:
55:70:df:04:2d:b0:5a:20:a4:bf:de:e5:c3:dd:1e:ac:5a:0e:
a7:e5:30:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 15:51:25 2025 by rpki-client