Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/AS834.roa
File: AS834.roa (raw, json)
Hash identifier: H9IExlRZN1m58NQ8FxJdt0K35VXTeYgJKagRMHhprEg=
Subject key identifier: BF:C9:C5:13:27:72:60:30:BA:0B:35:60:2E:E9:74:A6:5B:D0:10:6C
Certificate issuer: /CN=9dfbff217105df8877d463f6e9bac28a4084d20c
Certificate serial: 55BD234575DDAB74FF598D25C578F9649C884BDF
Authority key identifier: 9D:FB:FF:21:71:05:DF:88:77:D4:63:F6:E9:BA:C2:8A:40:84:D2:0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nfv_IXEF34h31GP26brCikCE0gw.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/AS834.roa
Signing time: Mon 13 Apr 2026 11:44:01 +0000
ROA not before: Mon 13 Apr 2026 11:39:01 +0000
ROA not after: Mon 12 Apr 2027 11:44:01 +0000
asID: 834
IP address blocks: 83.171.244.0/23 maxlen: 24
83.171.246.0/24 maxlen: 24
188.119.69.0/24 maxlen: 24
193.32.205.0/24 maxlen: 24
194.93.50.0/23 maxlen: 24
212.115.102.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/9DFBFF217105DF8877D463F6E9BAC28A4084D20C.crl
rsync://rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/9DFBFF217105DF8877D463F6E9BAC28A4084D20C.mft
rsync://rpki.ripe.net/repository/DEFAULT/nfv_IXEF34h31GP26brCikCE0gw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
55:bd:23:45:75:dd:ab:74:ff:59:8d:25:c5:78:f9:64:9c:88:4b:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9dfbff217105df8877d463f6e9bac28a4084d20c
Validity
Not Before: Apr 13 11:39:01 2026 GMT
Not After : Apr 12 11:44:01 2027 GMT
Subject: CN=BFC9C51327726030BA0B35602EE974A65BD0106C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:f9:2b:4b:8b:10:a1:d3:17:39:60:0d:e3:e8:
e1:7b:e1:79:87:68:0f:87:15:00:a6:be:2f:76:34:
78:fe:42:d5:4a:12:f4:90:eb:84:f3:d1:81:4b:33:
0f:ed:2e:53:9f:e2:f7:53:d6:7d:21:cb:2a:32:b1:
8a:58:c0:84:ff:9f:f2:bd:61:f7:c0:fa:22:d2:b1:
ad:5f:84:6a:9c:4f:be:ec:c0:b7:1e:ed:36:58:36:
e1:66:25:ed:61:75:34:08:e7:94:7e:56:3f:5d:c6:
06:75:2f:89:ea:02:43:89:be:b0:be:1a:c4:29:48:
24:6a:8e:e7:93:bc:a6:8c:86:34:24:a7:ad:ab:06:
8d:8d:05:a1:3e:d4:a2:26:57:8b:70:00:8a:dc:47:
09:75:53:d4:27:60:9b:28:82:39:5e:21:4d:0d:0e:
c5:3b:0b:e8:c4:11:09:f7:df:71:b6:a8:32:82:e1:
57:84:b4:17:fd:8f:01:a5:79:3b:6c:cf:93:df:44:
e8:1f:de:08:61:d7:13:c8:20:47:0d:b2:9d:88:11:
ca:2c:ed:50:88:99:13:45:3e:4d:74:81:52:d3:f7:
21:d7:a3:67:7f:37:87:7e:41:a1:aa:ea:a2:a8:9f:
49:0c:b9:06:86:e2:b1:28:d0:df:c1:75:7c:5c:76:
bb:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:C9:C5:13:27:72:60:30:BA:0B:35:60:2E:E9:74:A6:5B:D0:10:6C
X509v3 Authority Key Identifier:
keyid:9D:FB:FF:21:71:05:DF:88:77:D4:63:F6:E9:BA:C2:8A:40:84:D2:0C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/9DFBFF217105DF8877D463F6E9BAC28A4084D20C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nfv_IXEF34h31GP26brCikCE0gw.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/AS834.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.171.244.0-83.171.246.255
188.119.69.0/24
193.32.205.0/24
194.93.50.0/23
212.115.102.0/24
Signature Algorithm: sha256WithRSAEncryption
ab:42:a2:8f:aa:6f:10:3a:77:77:7a:2c:2d:c3:4d:8e:5e:56:
a8:a7:67:6d:78:94:34:5c:42:1c:28:8b:f5:27:86:24:b6:f2:
4c:6d:69:22:bc:47:2b:eb:4d:6f:90:cb:e3:b4:48:39:2f:14:
22:88:5f:20:c8:e0:c8:e8:da:cb:72:20:23:e3:2e:42:a0:17:
d4:8a:1e:50:f3:14:23:30:96:ff:e7:ce:e2:34:22:4d:f7:c2:
33:f4:61:00:7c:ea:ea:91:92:c9:d4:fe:c7:0b:7a:88:c5:d5:
82:57:89:1c:a6:fe:9f:7a:8d:bb:4c:fb:33:02:9d:27:52:70:
95:5c:6c:be:1b:71:1b:12:80:66:4f:fa:71:bc:8a:b2:3a:4a:
20:b3:b7:3b:0e:40:53:32:e5:d1:90:cc:f1:0c:0a:61:08:06:
f2:5b:fb:e5:cc:92:db:c1:b8:5e:d3:a8:91:a3:4e:39:97:05:
49:da:49:ae:9d:31:d4:06:18:33:6e:d5:23:59:53:db:2d:88:
63:39:4b:ec:e2:16:88:3c:24:65:a8:ef:c5:5b:3f:cf:b0:f3:
55:4b:98:7c:f4:4f:f1:9b:fe:37:33:a4:9c:e6:43:4a:ae:1b:
90:bc:ba:a9:84:2d:8a:0b:cd:df:be:76:da:74:eb:70:ce:19:
f7:f7:11:32
-----BEGIN CERTIFICATE-----
MIIFHTCCBAWgAwIBAgIUVb0jRXXdq3T/WY0lxXj5ZJyIS98wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOWRmYmZmMjE3MTA1ZGY4ODc3ZDQ2M2Y2ZTliYWMyOGE0
MDg0ZDIwYzAeFw0yNjA0MTMxMTM5MDFaFw0yNzA0MTIxMTQ0MDFaMDMxMTAvBgNV
BAMTKEJGQzlDNTEzMjc3MjYwMzBCQTBCMzU2MDJFRTk3NEE2NUJEMDEwNkMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDS+StLixCh0xc5YA3j6OF74XmH
aA+HFQCmvi92NHj+QtVKEvSQ64Tz0YFLMw/tLlOf4vdT1n0hyyoysYpYwIT/n/K9
YffA+iLSsa1fhGqcT77swLce7TZYNuFmJe1hdTQI55R+Vj9dxgZ1L4nqAkOJvrC+
GsQpSCRqjueTvKaMhjQkp62rBo2NBaE+1KImV4twAIrcRwl1U9QnYJsogjleIU0N
DsU7C+jEEQn333G2qDKC4VeEtBf9jwGleTtsz5PfROgf3ghh1xPIIEcNsp2IEcos
7VCImRNFPk10gVLT9yHXo2d/N4d+QaGq6qKon0kMuQaG4rEo0N/BdXxcdrtJAgMB
AAGjggInMIICIzAdBgNVHQ4EFgQUv8nFEydyYDC6CzVgLul0plvQEGwwHwYDVR0j
BBgwFoAUnfv/IXEF34h31GP26brCikCE0gwwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvNTViNGQ5ZTgtNDExMS00Mzk0LWEzYTYtYmQ4MjUxZTdm
YmJkLzAvOURGQkZGMjE3MTA1REY4ODc3RDQ2M0Y2RTlCQUMyOEE0MDg0RDIwQy5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL25mdl9JWEVGMzRoMzFHUDI2YnJDaWtD
RTBndy5jZXIweAYIKwYBBQUHAQsEbDBqMGgGCCsGAQUFBzALhlxyc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzU1YjRkOWU4LTQxMTEt
NDM5NC1hM2E2LWJkODI1MWU3ZmJiZC8wL0FTODM0LnJvYTAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMD8GCCsGAQUFBwEHAQH/BDAwLjAsBAIAATAmMAwDBAJTq/QD
BABTq/YDBAC8d0UDBADBIM0DBAHCXTIDBADUc2YwDQYJKoZIhvcNAQELBQADggEB
AKtCoo+qbxA6d3d6LC3DTY5eVqinZ214lDRcQhwoi/UnhiS28kxtaSK8RyvrTW+Q
y+O0SDkvFCKIXyDI4Mjo2styICPjLkKgF9SKHlDzFCMwlv/nzuI0Ik33wjP0YQB8
6uqRksnU/scLeojF1YJXiRym/p96jbtM+zMCnSdScJVcbL4bcRsSgGZP+nG8irI6
SiCztzsOQFMy5dGQzPEMCmEIBvJb++XMktvBuF7TqJGjTjmXBUnaSa6dMdQGGDNu
1SNZU9stiGM5S+ziFog8JGWo78VbP8+w81VLmHz0T/Gb/jczpJzmQ0quG5C8uqmE
LYoLzd++dtp063DOGff3ETI=
-----END CERTIFICATE-----
Generated at Fri Apr 17 07:45:28 2026 by rpki-client