Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS834.roa
File: AS834.roa (raw, json)
Hash identifier: Jd4dN5CzN1mf8jNoGlQkUSELOqSxd6+cKsxf2C7A6Tk=
Subject key identifier: B2:8E:1B:EB:A2:5C:2B:53:BA:A9:8A:7D:90:B2:5A:42:81:EB:7B:D3
Certificate issuer: /CN=c2302af143c15daad50042d8455e689d0828eca9
Certificate serial: 10AD3BBD784F8EEEB65A719E332A8EEB3BDBE618
Authority key identifier: C2:30:2A:F1:43:C1:5D:AA:D5:00:42:D8:45:5E:68:9D:08:28:EC:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS834.roa
Signing time: Mon 04 Aug 2025 00:05:40 +0000
ROA not before: Mon 04 Aug 2025 00:00:40 +0000
ROA not after: Mon 03 Aug 2026 00:05:40 +0000
asID: 834
IP address blocks: 141.11.40.0/24 maxlen: 24
141.11.48.0/24 maxlen: 24
141.11.57.0/24 maxlen: 24
141.11.144.0/23 maxlen: 24
141.11.172.0/23 maxlen: 24
141.11.181.0/24 maxlen: 24
141.11.236.0/23 maxlen: 24
194.60.93.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/C2302AF143C15DAAD50042D8455E689D0828ECA9.crl
rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/C2302AF143C15DAAD50042D8455E689D0828ECA9.mft
rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 01:12:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
10:ad:3b:bd:78:4f:8e:ee:b6:5a:71:9e:33:2a:8e:eb:3b:db:e6:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2302af143c15daad50042d8455e689d0828eca9
Validity
Not Before: Aug 4 00:00:40 2025 GMT
Not After : Aug 3 00:05:40 2026 GMT
Subject: CN=B28E1BEBA25C2B53BAA98A7D90B25A4281EB7BD3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:22:2f:9e:4a:ac:b9:76:96:15:1e:9b:1c:d4:
01:78:71:fa:0a:66:46:62:64:c3:63:79:e9:e4:2c:
98:ff:fa:cc:5f:7c:11:df:22:c6:3d:b3:ba:d6:60:
88:05:6b:13:d8:34:a3:f2:6a:da:76:4d:40:00:20:
4e:e5:e3:0c:c4:11:e0:8a:de:18:8b:ae:44:6a:b9:
13:fd:35:42:80:15:91:e9:b2:36:f1:d5:d6:54:0a:
37:0d:c0:de:44:b6:4c:c4:3a:e3:04:0c:51:f6:68:
69:7b:b1:8c:37:48:27:4a:5b:ec:90:34:35:b6:81:
2d:47:3d:6e:36:f6:c1:b7:d8:92:45:1f:46:80:d4:
55:e3:57:5b:69:0d:ba:89:b5:9f:45:34:f0:10:cb:
6e:8e:d5:cb:be:32:4a:21:71:11:11:f9:d9:35:8f:
73:eb:f4:9b:44:25:c0:49:82:e1:75:28:2b:9c:67:
17:5d:da:d1:53:58:57:4e:e3:a6:87:fa:cd:a1:bc:
cd:9d:a8:44:5e:be:c5:4f:94:ad:21:97:f9:b4:c6:
43:52:e3:ff:7d:4b:a5:c3:3b:3d:2e:b2:b0:81:59:
bf:7f:00:69:34:8b:c4:9f:37:ee:7f:1b:5f:13:89:
ef:e0:ea:69:97:77:3d:59:ed:c6:b2:55:35:6a:d7:
01:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:8E:1B:EB:A2:5C:2B:53:BA:A9:8A:7D:90:B2:5A:42:81:EB:7B:D3
X509v3 Authority Key Identifier:
keyid:C2:30:2A:F1:43:C1:5D:AA:D5:00:42:D8:45:5E:68:9D:08:28:EC:A9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/C2302AF143C15DAAD50042D8455E689D0828ECA9.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS834.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.11.40.0/24
141.11.48.0/24
141.11.57.0/24
141.11.144.0/23
141.11.172.0/23
141.11.181.0/24
141.11.236.0/23
194.60.93.0/24
Signature Algorithm: sha256WithRSAEncryption
07:ee:cc:d2:33:93:8e:0a:cc:33:2e:c6:96:63:65:d0:33:ef:
fa:dd:12:cc:8d:6d:86:b1:79:55:38:f8:d1:55:de:ca:46:b9:
12:93:7c:f5:c9:be:28:b4:e3:49:44:a5:b7:d5:dc:33:2c:46:
bb:60:f4:5a:e3:e9:5b:77:8b:ac:98:e8:62:f1:cf:79:b2:b5:
55:77:de:7a:45:9d:8f:b1:e9:37:80:67:d0:23:14:4a:7e:ee:
69:83:85:3b:8c:15:2d:5a:ed:c7:45:75:ac:d8:5d:44:e2:ca:
02:6c:af:ea:bc:d1:e0:46:9b:2f:2e:b3:44:a9:71:fe:0d:9b:
f1:7b:80:02:f2:c1:61:27:eb:c1:39:64:8b:44:44:eb:60:38:
09:ac:6b:54:19:b8:12:06:15:8e:34:34:35:0e:94:1a:f5:e3:
bc:05:c0:46:af:12:22:cf:aa:97:87:71:be:cf:e5:b0:d7:aa:
bc:6c:58:15:71:71:7e:61:0f:80:ce:b2:6e:a0:54:6f:aa:56:
b3:8b:9e:0e:74:e9:40:a1:2c:30:6a:03:7d:33:08:6d:d2:1e:
52:1c:86:23:08:ba:78:9b:ea:a1:cd:90:c2:e5:42:9a:f5:a7:
55:64:51:17:49:e1:32:9f:71:a8:1a:bf:74:6f:09:19:36:a0:
08:ae:78:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 07:57:54 2025 by rpki-client