Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/AS834.roa
File: AS834.roa (raw, json)
Hash identifier: cG7jk1ZcbPHnyuykigPj8JQ6m9yeBJEI4iMGJrSuDQo=
Subject key identifier: 21:09:84:57:70:6A:71:11:AC:4B:0B:74:63:57:5F:54:3D:66:5B:56
Certificate issuer: /CN=9dfbff217105df8877d463f6e9bac28a4084d20c
Certificate serial: 1DA39E71852DED2C67BC96190E4D2F86BBCE8625
Authority key identifier: 9D:FB:FF:21:71:05:DF:88:77:D4:63:F6:E9:BA:C2:8A:40:84:D2:0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nfv_IXEF34h31GP26brCikCE0gw.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/AS834.roa
Signing time: Sun 07 Jun 2026 03:22:50 +0000
ROA not before: Sun 07 Jun 2026 03:17:50 +0000
ROA not after: Sun 06 Jun 2027 03:22:50 +0000
asID: 834
IP address blocks: 83.171.246.0/24 maxlen: 24
139.28.50.0/24 maxlen: 24
188.119.69.0/24 maxlen: 24
193.32.207.0/24 maxlen: 24
193.187.133.0/24 maxlen: 24
193.187.134.0/24 maxlen: 24
194.93.50.0/23 maxlen: 24
212.115.102.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/9DFBFF217105DF8877D463F6E9BAC28A4084D20C.crl
rsync://rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/9DFBFF217105DF8877D463F6E9BAC28A4084D20C.mft
rsync://rpki.ripe.net/repository/DEFAULT/nfv_IXEF34h31GP26brCikCE0gw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1d:a3:9e:71:85:2d:ed:2c:67:bc:96:19:0e:4d:2f:86:bb:ce:86:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9dfbff217105df8877d463f6e9bac28a4084d20c
Validity
Not Before: Jun 7 03:17:50 2026 GMT
Not After : Jun 6 03:22:50 2027 GMT
Subject: CN=21098457706A7111AC4B0B7463575F543D665B56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:cb:00:5b:70:e4:33:3e:8a:e7:f9:85:79:ea:
93:66:6a:ca:2d:75:5f:6b:e2:49:51:27:66:0d:9e:
48:2b:b0:f8:21:16:c6:3e:05:12:30:d4:c0:bc:25:
d7:10:79:de:19:9e:ec:58:45:9d:0e:8a:60:f8:4a:
07:47:26:7e:45:5e:07:31:ea:db:39:d3:2c:2e:21:
f8:be:d4:ae:a1:e4:54:66:f6:65:b3:3d:fb:5c:b4:
4a:8d:07:4e:5d:94:7f:05:81:63:98:83:73:83:cd:
5c:6e:cd:ee:7b:98:1d:bf:61:8c:b1:3c:c5:9e:30:
ac:80:c8:e5:2f:ef:00:6c:93:03:61:f9:87:03:89:
8a:bf:48:60:56:11:82:72:6f:e4:7f:c2:8c:ce:b9:
15:2a:e2:55:7f:73:39:f5:35:cb:36:4f:bd:1a:83:
77:00:99:5e:35:5e:cd:3f:9f:b3:98:8b:1f:75:11:
b7:7d:de:fd:b0:09:d7:38:7a:11:40:b8:35:e3:9d:
3e:6e:67:6f:48:3b:c3:37:60:43:8c:e2:0d:2d:c3:
66:cc:cd:4a:35:d2:17:25:f1:9c:21:f6:66:88:ce:
44:43:aa:4b:11:ba:46:ca:f1:42:c1:77:8f:3c:69:
51:7b:9f:95:f8:78:63:e9:17:dc:98:72:43:fa:2a:
fd:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:09:84:57:70:6A:71:11:AC:4B:0B:74:63:57:5F:54:3D:66:5B:56
X509v3 Authority Key Identifier:
keyid:9D:FB:FF:21:71:05:DF:88:77:D4:63:F6:E9:BA:C2:8A:40:84:D2:0C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/9DFBFF217105DF8877D463F6E9BAC28A4084D20C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nfv_IXEF34h31GP26brCikCE0gw.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/AS834.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.171.246.0/24
139.28.50.0/24
188.119.69.0/24
193.32.207.0/24
193.187.133.0-193.187.134.255
194.93.50.0/23
212.115.102.0/24
Signature Algorithm: sha256WithRSAEncryption
ab:48:5b:9b:0e:fb:00:cc:94:07:5c:53:b7:86:01:ab:dc:20:
d6:af:6c:d5:b3:f0:e9:52:cb:55:67:a7:9d:7e:6c:9a:6b:dc:
5e:2f:3b:1c:2d:3c:cd:49:77:86:35:d7:bf:0f:12:41:bc:3d:
4a:fb:0b:28:45:dd:5c:48:35:9d:b7:7f:6d:04:e5:2a:42:d0:
38:53:6b:bb:c1:b3:84:6e:05:a5:a0:49:13:04:8e:c2:ae:26:
07:f3:3d:13:29:52:1d:1b:91:bf:0a:aa:69:52:b0:96:e8:d9:
7a:b1:14:7c:bf:c8:08:aa:58:77:f0:fb:11:b8:cd:e8:4d:1d:
9c:82:39:a1:83:5f:34:b8:53:63:b0:ae:5a:c2:98:65:fd:3e:
3a:43:d5:92:c9:42:7a:a5:ae:c4:10:e1:d6:62:57:c8:2e:e8:
b8:d3:78:93:1e:9c:25:f7:63:67:1e:1d:4b:b1:3e:2f:13:6e:
8d:20:cf:1e:8c:d5:cb:06:7f:47:ca:9c:99:a6:79:79:d0:fa:
14:a4:fe:29:b0:7d:9c:76:36:45:af:77:ca:31:e8:28:2b:3c:
8e:e2:b5:02:24:ab:1e:8d:1b:72:7d:64:f2:5a:8d:92:46:40:
8d:39:b6:df:80:89:14:bf:e5:b2:12:d0:3e:5e:3a:55:57:2f:
57:aa:30:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 06:43:01 2026 by rpki-client