Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS834.roa
File: AS834.roa (raw, json)
Hash identifier: TFtLp7eDh7LGpjOTaFFUMwRgj8i2Ja8E22NOWkPQXnM=
Subject key identifier: 21:D6:04:78:62:7C:26:51:D6:54:4F:07:4F:57:63:65:A0:14:92:46
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 4738949749C784B656D80D68474205246D43CDAD
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS834.roa
Signing time: Sun 01 Mar 2026 16:04:24 +0000
ROA not before: Sun 01 Mar 2026 15:59:24 +0000
ROA not after: Sun 28 Feb 2027 16:04:24 +0000
asID: 834
IP address blocks: 82.21.0.0/24 maxlen: 24
82.21.3.0/24 maxlen: 24
82.22.28.0/24 maxlen: 24
82.22.32.0/24 maxlen: 24
82.22.61.0/24 maxlen: 24
82.23.13.0/24 maxlen: 24
82.23.14.0/24 maxlen: 24
82.23.250.0/24 maxlen: 24
82.24.16.0/24 maxlen: 24
82.24.105.0/24 maxlen: 24
82.24.107.0/24 maxlen: 24
82.24.122.0/24 maxlen: 24
82.25.11.0/24 maxlen: 24
82.25.24.0/24 maxlen: 24
82.25.26.0/24 maxlen: 24
82.25.143.0/24 maxlen: 24
82.26.65.0/24 maxlen: 24
82.26.202.0/24 maxlen: 24
82.27.3.0/24 maxlen: 24
82.29.8.0/21 maxlen: 24
82.29.41.0/24 maxlen: 24
82.29.74.0/24 maxlen: 24
82.29.78.0/24 maxlen: 24
82.38.5.0/24 maxlen: 24
82.38.6.0/23 maxlen: 24
82.38.9.0/24 maxlen: 24
82.38.19.0/24 maxlen: 24
82.38.20.0/22 maxlen: 24
82.38.28.0/24 maxlen: 24
82.38.42.0/23 maxlen: 24
82.38.46.0/23 maxlen: 24
82.38.51.0/24 maxlen: 24
82.38.80.0/24 maxlen: 24
82.38.98.0/24 maxlen: 24
82.38.100.0/22 maxlen: 24
82.38.104.0/23 maxlen: 24
82.38.107.0/24 maxlen: 24
82.38.108.0/23 maxlen: 24
82.38.111.0/24 maxlen: 24
82.38.112.0/22 maxlen: 24
82.38.120.0/24 maxlen: 24
82.38.122.0/24 maxlen: 24
82.38.131.0/24 maxlen: 24
82.38.132.0/23 maxlen: 24
82.38.136.0/23 maxlen: 24
82.38.138.0/24 maxlen: 24
82.38.168.0/24 maxlen: 24
82.38.172.0/24 maxlen: 24
82.38.175.0/24 maxlen: 24
82.38.198.0/24 maxlen: 24
82.39.103.0/24 maxlen: 24
82.39.164.0/24 maxlen: 24
82.39.173.0/24 maxlen: 24
82.39.188.0/24 maxlen: 24
82.39.194.0/23 maxlen: 24
82.39.221.0/24 maxlen: 24
82.39.228.0/23 maxlen: 24
82.39.240.0/22 maxlen: 24
82.39.250.0/24 maxlen: 24
82.40.21.0/24 maxlen: 24
82.40.22.0/24 maxlen: 24
82.40.63.0/24 maxlen: 24
82.41.19.0/24 maxlen: 24
82.41.37.0/24 maxlen: 24
82.41.64.0/23 maxlen: 24
82.41.67.0/24 maxlen: 24
82.41.117.0/24 maxlen: 24
82.41.120.0/24 maxlen: 24
82.41.158.0/23 maxlen: 24
82.41.168.0/24 maxlen: 24
82.41.180.0/24 maxlen: 24
82.41.195.0/24 maxlen: 24
82.41.197.0/24 maxlen: 24
82.41.198.0/24 maxlen: 24
82.41.202.0/24 maxlen: 24
82.41.208.0/24 maxlen: 24
82.41.210.0/23 maxlen: 24
82.41.221.0/24 maxlen: 24
178.83.5.0/24 maxlen: 24
178.83.6.0/23 maxlen: 24
178.83.8.0/23 maxlen: 24
178.83.10.0/24 maxlen: 24
178.83.12.0/22 maxlen: 24
178.83.17.0/24 maxlen: 24
178.83.20.0/23 maxlen: 24
178.83.40.0/24 maxlen: 24
178.83.44.0/23 maxlen: 24
178.83.47.0/24 maxlen: 24
178.83.48.0/23 maxlen: 24
178.83.63.0/24 maxlen: 24
178.83.65.0/24 maxlen: 24
178.83.70.0/23 maxlen: 24
178.83.80.0/24 maxlen: 24
178.83.82.0/24 maxlen: 24
178.83.86.0/23 maxlen: 24
178.83.93.0/24 maxlen: 24
178.83.96.0/24 maxlen: 24
178.83.99.0/24 maxlen: 24
178.83.101.0/24 maxlen: 24
178.83.102.0/23 maxlen: 24
178.83.108.0/22 maxlen: 24
178.83.116.0/23 maxlen: 24
178.83.119.0/24 maxlen: 24
178.83.120.0/22 maxlen: 24
178.83.125.0/24 maxlen: 24
178.83.126.0/23 maxlen: 24
178.83.132.0/22 maxlen: 24
178.83.136.0/22 maxlen: 24
178.83.143.0/24 maxlen: 24
178.83.146.0/24 maxlen: 24
178.83.150.0/24 maxlen: 24
178.83.159.0/24 maxlen: 24
178.83.166.0/24 maxlen: 24
178.83.170.0/23 maxlen: 24
178.83.172.0/24 maxlen: 24
178.83.174.0/23 maxlen: 24
178.83.176.0/23 maxlen: 24
178.83.179.0/24 maxlen: 24
178.83.180.0/22 maxlen: 24
178.83.184.0/24 maxlen: 24
178.83.186.0/24 maxlen: 24
178.83.189.0/24 maxlen: 24
178.83.191.0/24 maxlen: 24
178.83.192.0/23 maxlen: 24
178.83.194.0/24 maxlen: 24
178.83.198.0/24 maxlen: 24
178.83.202.0/23 maxlen: 24
178.83.206.0/23 maxlen: 24
178.83.208.0/21 maxlen: 24
178.83.220.0/23 maxlen: 24
178.83.223.0/24 maxlen: 24
178.83.225.0/24 maxlen: 24
178.83.226.0/23 maxlen: 24
178.83.231.0/24 maxlen: 24
178.83.232.0/24 maxlen: 24
178.83.234.0/24 maxlen: 24
178.83.237.0/24 maxlen: 24
178.83.241.0/24 maxlen: 24
178.83.244.0/22 maxlen: 24
178.83.248.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 09:38:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
47:38:94:97:49:c7:84:b6:56:d8:0d:68:47:42:05:24:6d:43:cd:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Mar 1 15:59:24 2026 GMT
Not After : Feb 28 16:04:24 2027 GMT
Subject: CN=21D60478627C2651D6544F074F576365A0149246
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:94:a1:29:8e:e5:82:be:78:a8:6e:51:20:99:
56:b1:60:37:0e:1c:4d:2e:f2:5d:39:5e:29:8e:8b:
9c:df:25:45:a0:8f:d2:16:42:10:61:12:5f:a4:e4:
74:79:28:e5:79:ac:07:65:ac:7b:27:c3:a6:b1:b6:
58:9e:c5:75:76:ed:c0:3e:2d:c5:a1:b3:10:73:75:
97:9a:31:b7:0d:22:06:77:f8:3b:dc:94:42:eb:37:
1f:d6:20:d4:0c:fe:13:69:e9:c1:56:b2:2b:09:bd:
c0:7f:6a:2d:df:84:00:41:16:ab:59:14:a4:52:e7:
6f:e7:dc:71:ad:6f:31:54:e9:e2:6b:e9:70:74:90:
13:d4:8a:f1:ba:ee:0d:7a:7a:fb:24:37:41:1d:92:
65:f5:81:fa:7c:bc:80:af:7b:6f:6c:b0:2d:d9:e9:
4d:58:df:ba:de:5d:fc:bd:e5:f3:1d:17:5b:9f:d3:
b9:07:d4:99:58:40:ba:10:0f:2c:05:a9:66:af:52:
f1:d0:66:fe:9c:88:1e:ca:5d:75:06:90:1a:ac:2f:
0f:fe:e5:38:03:ca:64:81:1c:02:69:04:e0:1d:19:
44:1d:4e:69:7c:93:4f:e2:e1:0d:0b:50:76:7a:92:
07:96:f7:0d:42:37:b7:c5:d8:3e:c4:7d:a3:55:9f:
6f:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:D6:04:78:62:7C:26:51:D6:54:4F:07:4F:57:63:65:A0:14:92:46
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS834.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.21.0.0/24
82.21.3.0/24
82.22.28.0/24
82.22.32.0/24
82.22.61.0/24
82.23.13.0-82.23.14.255
82.23.250.0/24
82.24.16.0/24
82.24.105.0/24
82.24.107.0/24
82.24.122.0/24
82.25.11.0/24
82.25.24.0/24
82.25.26.0/24
82.25.143.0/24
82.26.65.0/24
82.26.202.0/24
82.27.3.0/24
82.29.8.0/21
82.29.41.0/24
82.29.74.0/24
82.29.78.0/24
82.38.5.0-82.38.7.255
82.38.9.0/24
82.38.19.0-82.38.23.255
82.38.28.0/24
82.38.42.0/23
82.38.46.0/23
82.38.51.0/24
82.38.80.0/24
82.38.98.0/24
82.38.100.0-82.38.105.255
82.38.107.0-82.38.109.255
82.38.111.0-82.38.115.255
82.38.120.0/24
82.38.122.0/24
82.38.131.0-82.38.133.255
82.38.136.0-82.38.138.255
82.38.168.0/24
82.38.172.0/24
82.38.175.0/24
82.38.198.0/24
82.39.103.0/24
82.39.164.0/24
82.39.173.0/24
82.39.188.0/24
82.39.194.0/23
82.39.221.0/24
82.39.228.0/23
82.39.240.0/22
82.39.250.0/24
82.40.21.0-82.40.22.255
82.40.63.0/24
82.41.19.0/24
82.41.37.0/24
82.41.64.0/23
82.41.67.0/24
82.41.117.0/24
82.41.120.0/24
82.41.158.0/23
82.41.168.0/24
82.41.180.0/24
82.41.195.0/24
82.41.197.0-82.41.198.255
82.41.202.0/24
82.41.208.0/24
82.41.210.0/23
82.41.221.0/24
178.83.5.0-178.83.10.255
178.83.12.0/22
178.83.17.0/24
178.83.20.0/23
178.83.40.0/24
178.83.44.0/23
178.83.47.0-178.83.49.255
178.83.63.0/24
178.83.65.0/24
178.83.70.0/23
178.83.80.0/24
178.83.82.0/24
178.83.86.0/23
178.83.93.0/24
178.83.96.0/24
178.83.99.0/24
178.83.101.0-178.83.103.255
178.83.108.0/22
178.83.116.0/23
178.83.119.0-178.83.123.255
178.83.125.0-178.83.127.255
178.83.132.0-178.83.139.255
178.83.143.0/24
178.83.146.0/24
178.83.150.0/24
178.83.159.0/24
178.83.166.0/24
178.83.170.0-178.83.172.255
178.83.174.0-178.83.177.255
178.83.179.0-178.83.184.255
178.83.186.0/24
178.83.189.0/24
178.83.191.0-178.83.194.255
178.83.198.0/24
178.83.202.0/23
178.83.206.0-178.83.215.255
178.83.220.0/23
178.83.223.0/24
178.83.225.0-178.83.227.255
178.83.231.0-178.83.232.255
178.83.234.0/24
178.83.237.0/24
178.83.241.0/24
178.83.244.0-178.83.255.255
Signature Algorithm: sha256WithRSAEncryption
15:7c:56:fc:a2:11:d4:d7:08:00:b8:9a:15:2a:4a:5a:c8:71:
d2:83:a0:ed:c2:9e:1f:a0:e8:1b:c5:9e:5b:c7:e5:0b:34:2a:
b6:9a:6f:50:ac:9b:58:38:ee:cc:6f:86:f6:35:ed:57:bc:cd:
14:c3:b2:dd:db:32:38:15:7c:4d:ee:72:e2:9f:b1:07:25:b6:
f1:15:7e:14:78:5d:5e:f6:03:a6:46:d5:fd:4b:08:ae:15:8a:
59:b9:ef:fa:f3:e0:c4:b6:5f:c0:87:20:4c:64:c9:06:f7:98:
dd:58:d0:b6:6a:62:96:81:b6:e1:b2:49:37:01:18:bc:40:6e:
c9:26:37:3f:7c:48:a7:08:15:1c:53:56:47:59:96:b4:43:9b:
21:7b:6e:5e:91:5f:ba:7c:11:3e:3f:6f:e0:23:00:50:9b:4a:
3f:0f:8e:f3:aa:2e:a5:3f:79:ce:3d:90:d0:fc:26:25:25:1f:
81:29:05:a3:2c:9a:eb:0e:49:5b:eb:e3:6b:b5:e2:1e:36:ff:
77:df:fe:03:0d:dc:99:45:67:9b:3b:2e:eb:42:93:15:07:47:
45:85:11:1d:1a:f9:4b:00:8a:ef:d5:a2:92:d4:51:a8:c9:14:
70:03:22:a5:e4:af:51:bc:5f:fe:3d:b8:1c:dd:8a:94:e0:eb:
71:6b:ab:09
-----BEGIN CERTIFICATE-----
MIIIYDCCB0igAwIBAgIURziUl0nHhLZW2A1oR0IFJG1Dza0wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMjE4Y2M2ZTI0MTA1ZGU2YzVjOTAwM2Q2NTI0Mzg5M2Ni
M2NmZGQwMTAeFw0yNjAzMDExNTU5MjRaFw0yNzAyMjgxNjA0MjRaMDMxMTAvBgNV
BAMTKDIxRDYwNDc4NjI3QzI2NTFENjU0NEYwNzRGNTc2MzY1QTAxNDkyNDYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3lKEpjuWCvnioblEgmVaxYDcO
HE0u8l05XimOi5zfJUWgj9IWQhBhEl+k5HR5KOV5rAdlrHsnw6axtliexXV27cA+
LcWhsxBzdZeaMbcNIgZ3+DvclELrNx/WINQM/hNp6cFWsisJvcB/ai3fhABBFqtZ
FKRS52/n3HGtbzFU6eJr6XB0kBPUivG67g16evskN0EdkmX1gfp8vICve29ssC3Z
6U1Y37reXfy95fMdF1uf07kH1JlYQLoQDywFqWavUvHQZv6ciB7KXXUGkBqsLw/+
5TgDymSBHAJpBOAdGUQdTml8k0/i4Q0LUHZ6kgeW9w1CN7fF2D7EfaNVn28NAgMB
AAGjggVqMIIFZjAdBgNVHQ4EFgQUIdYEeGJ8JlHWVE8HT1djZaAUkkYwHwYDVR0j
BBgwFoAUIYzG4kEF3mxckAPWUkOJPLPP3QEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYtYjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWEx
YWY2LzAvMjE4Q0M2RTI0MTA1REU2QzVDOTAwM0Q2NTI0Mzg5M0NCM0NGREQwMS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0lZekc0a0VGM214Y2tBUFdVa09KUExQ
UDNRRS5jZXIweAYIKwYBBQUHAQsEbDBqMGgGCCsGAQUFBzALhlxyc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzcxOGExYjRmLWI2NGMt
NDAyYy1iZTE1LWRkODJhNDFhMWFmNi8wL0FTODM0LnJvYTAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIDgAYIKwYBBQUHAQcBAf8EggNvMIIDazCCA2cEAgABMIID
XwMEAFIVAAMEAFIVAwMEAFIWHAMEAFIWIAMEAFIWPTAMAwQAUhcNAwQAUhcOAwQA
Uhf6AwQAUhgQAwQAUhhpAwQAUhhrAwQAUhh6AwQAUhkLAwQAUhkYAwQAUhkaAwQA
UhmPAwQAUhpBAwQAUhrKAwQAUhsDAwQDUh0IAwQAUh0pAwQAUh1KAwQAUh1OMAwD
BABSJgUDBANSJgADBABSJgkwDAMEAFImEwMEA1ImEAMEAFImHAMEAVImKgMEAVIm
LgMEAFImMwMEAFImUAMEAFImYjAMAwQCUiZkAwQBUiZoMAwDBABSJmsDBAFSJmww
DAMEAFImbwMEAlImcAMEAFImeAMEAFImejAMAwQAUiaDAwQBUiaEMAwDBANSJogD
BABSJooDBABSJqgDBABSJqwDBABSJq8DBABSJsYDBABSJ2cDBABSJ6QDBABSJ60D
BABSJ7wDBAFSJ8IDBABSJ90DBAFSJ+QDBAJSJ/ADBABSJ/owDAMEAFIoFQMEAFIo
FgMEAFIoPwMEAFIpEwMEAFIpJQMEAVIpQAMEAFIpQwMEAFIpdQMEAFIpeAMEAVIp
ngMEAFIpqAMEAFIptAMEAFIpwzAMAwQAUinFAwQAUinGAwQAUinKAwQAUinQAwQB
UinSAwQAUindMAwDBACyUwUDBACyUwoDBAKyUwwDBACyUxEDBAGyUxQDBACyUygD
BAGyUywwDAMEALJTLwMEAbJTMAMEALJTPwMEALJTQQMEAbJTRgMEALJTUAMEALJT
UgMEAbJTVgMEALJTXQMEALJTYAMEALJTYzAMAwQAslNlAwQDslNgAwQCslNsAwQB
slN0MAwDBACyU3cDBAKyU3gwDAMEALJTfQMEB7JTADAMAwQCslOEAwQCslOIAwQA
slOPAwQAslOSAwQAslOWAwQAslOfAwQAslOmMAwDBAGyU6oDBACyU6wwDAMEAbJT
rgMEAbJTsDAMAwQAslOzAwQAslO4AwQAslO6AwQAslO9MAwDBACyU78DBACyU8ID
BACyU8YDBAGyU8owDAMEAbJTzgMEA7JT0AMEAbJT3AMEALJT3zAMAwQAslPhAwQC
slPgMAwDBACyU+cDBACyU+gDBACyU+oDBACyU+0DBACyU/EwCwMEArJT9AMDArJQ
MA0GCSqGSIb3DQEBCwUAA4IBAQAVfFb8ohHU1wgAuJoVKkpayHHSg6Dtwp4foOgb
xZ5bx+ULNCq2mm9QrJtYOO7Mb4b2Ne1XvM0Uw7Ld2zI4FXxN7nLin7EHJbbxFX4U
eF1e9gOmRtX9SwiuFYpZue/68+DEtl/AhyBMZMkG95jdWNC2amKWgbbhskk3ARi8
QG7JJjc/fEinCBUcU1ZHWZa0Q5she25ekV+6fBE+P2/gIwBQm0o/D47zqi6lP3nO
PZDQ/CYlJR+BKQWjLJrrDklb6+NrteIeNv933/4DDdyZRWebOy7rQpMVB0dFhREd
GvlLAIrv1aKS1FGoyRRwAyKl5K9RvF/+Pbgc3YqU4Otxa6sJ
-----END CERTIFICATE-----
Generated at Sun Mar 1 20:10:36 2026 by rpki-client