Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS834.roa
File: AS834.roa (raw, json)
Hash identifier: dHq4vpB63c4IAwR/mwa02z949v/GAbAHSmwdM/wIQdE=
Subject key identifier: EE:9F:C7:E9:0A:C8:75:91:50:D1:DC:2E:FF:75:BD:0F:54:E6:A7:21
Certificate issuer: /CN=c2302af143c15daad50042d8455e689d0828eca9
Certificate serial: 439027390F9E13B82E94D4838B0F190E5C332CCD
Authority key identifier: C2:30:2A:F1:43:C1:5D:AA:D5:00:42:D8:45:5E:68:9D:08:28:EC:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS834.roa
Signing time: Fri 18 Apr 2025 06:55:20 +0000
ROA not before: Fri 18 Apr 2025 06:50:20 +0000
ROA not after: Fri 17 Apr 2026 06:55:20 +0000
asID: 834
IP address blocks: 141.11.39.0/24 maxlen: 24
141.11.68.0/24 maxlen: 24
141.11.124.0/24 maxlen: 24
141.11.236.0/24 maxlen: 24
194.60.89.0/24 maxlen: 24
194.60.90.0/24 maxlen: 24
194.60.92.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/C2302AF143C15DAAD50042D8455E689D0828ECA9.crl
rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/C2302AF143C15DAAD50042D8455E689D0828ECA9.mft
rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Apr 2025 11:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
43:90:27:39:0f:9e:13:b8:2e:94:d4:83:8b:0f:19:0e:5c:33:2c:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2302af143c15daad50042d8455e689d0828eca9
Validity
Not Before: Apr 18 06:50:20 2025 GMT
Not After : Apr 17 06:55:20 2026 GMT
Subject: CN=EE9FC7E90AC8759150D1DC2EFF75BD0F54E6A721
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:46:4f:2e:0a:54:d8:35:33:90:47:d1:db:53:
f7:38:2b:85:8d:ef:df:32:bf:3a:19:bf:8c:f7:0a:
49:f3:83:47:0a:55:8a:88:45:c2:d0:24:dd:81:46:
0a:0c:d4:c5:eb:6b:11:5e:7c:15:c2:81:57:31:df:
5f:42:31:58:bf:40:66:a8:de:85:e9:c5:79:fb:03:
96:50:70:1c:5f:82:cd:8c:b5:e1:f7:92:34:68:23:
ad:8b:84:87:06:fa:2d:96:c5:0e:fb:74:65:81:1b:
e2:b2:1a:f3:69:71:83:6f:54:6a:69:d5:4d:5b:82:
b7:89:9c:4a:6a:d2:15:1b:4b:36:e4:b8:a0:b9:af:
2d:7a:9c:57:ff:b2:5a:16:96:67:b5:b4:d9:d2:51:
f9:eb:bd:2c:7c:d5:55:d6:f3:5e:16:fe:cc:d1:5a:
27:47:80:26:3f:c6:09:25:99:a5:6d:07:8c:80:09:
14:50:3b:92:71:1b:9c:b4:cb:80:40:dc:60:76:ee:
a5:20:e4:f3:47:45:6c:a7:ea:22:0d:75:2b:77:64:
03:ab:cd:63:61:11:0b:9b:32:67:d4:a7:68:f7:75:
24:a8:65:9d:49:7c:36:c6:8a:e6:47:d4:aa:d1:a6:
27:ca:eb:36:15:2f:44:38:20:6c:cd:01:2d:3d:c4:
8c:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:9F:C7:E9:0A:C8:75:91:50:D1:DC:2E:FF:75:BD:0F:54:E6:A7:21
X509v3 Authority Key Identifier:
keyid:C2:30:2A:F1:43:C1:5D:AA:D5:00:42:D8:45:5E:68:9D:08:28:EC:A9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/C2302AF143C15DAAD50042D8455E689D0828ECA9.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS834.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.11.39.0/24
141.11.68.0/24
141.11.124.0/24
141.11.236.0/24
194.60.89.0-194.60.90.255
194.60.92.0/23
Signature Algorithm: sha256WithRSAEncryption
a5:03:1b:d5:ee:7b:bb:2f:e3:69:38:54:d4:dd:ce:cf:40:ee:
98:97:9f:0b:00:3f:47:c4:e7:83:11:6c:d9:74:1f:b7:47:ff:
f3:84:48:21:6e:c4:9c:3a:e2:d8:4e:0b:e6:b9:1b:99:5f:72:
40:05:5f:27:60:aa:ae:0c:1b:71:ac:fb:05:dc:d6:f7:d0:c4:
c0:be:ee:1d:09:4f:59:a1:29:dd:10:e1:24:89:a0:d3:2f:23:
9e:3d:bf:0d:8d:e6:3a:e5:f1:03:c1:5f:35:68:c5:f8:c2:55:
21:87:ef:43:3c:85:00:c6:8a:e5:b2:ec:42:9b:13:28:88:2c:
57:54:24:2a:0b:39:e8:da:d9:19:e0:62:f5:2d:b3:60:6d:04:
de:40:71:0e:26:72:81:80:cf:29:5f:cc:51:83:75:8a:3d:14:
db:61:df:22:42:a0:a8:0f:cd:b0:30:d4:d5:ca:20:2d:95:7f:
6b:df:5b:ac:7d:4b:f1:6f:9c:e3:d7:29:cf:9b:d0:64:2b:dc:
44:38:69:c5:7e:19:e4:d3:b1:11:1a:cc:d2:3d:c3:a5:c9:72:
6e:43:35:95:5c:7d:9e:01:22:77:bd:2a:e3:59:57:ba:4c:5f:
0f:cb:3b:d1:9e:48:c7:d2:19:93:51:ed:96:03:6b:38:b3:bc:
2d:9b:1d:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 18:28:49 2025 by rpki-client