Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS834.roa
File: AS834.roa (raw, json)
Hash identifier: Hlst1alfk+L2UzCnEe+qD9ZP1sp4QxC3omkDCpgom5E=
Subject key identifier: C7:B4:40:00:8E:6C:B8:76:DA:B7:07:0E:A1:11:6E:03:E3:D9:62:E7
Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Certificate serial: 64B674C23449C9AF99476D7DECC56DC5428C932A
Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS834.roa
Signing time: Wed 03 Jun 2026 21:45:05 +0000
ROA not before: Wed 03 Jun 2026 21:40:05 +0000
ROA not after: Wed 02 Jun 2027 21:45:05 +0000
asID: 834
IP address blocks: 96.62.96.0/23 maxlen: 24
96.62.103.0/24 maxlen: 24
96.62.114.0/23 maxlen: 24
140.150.239.0/24 maxlen: 24
140.233.174.0/24 maxlen: 24
140.233.183.0/24 maxlen: 24
140.233.187.0/24 maxlen: 24
143.14.68.0/24 maxlen: 24
143.14.128.0/24 maxlen: 24
143.14.130.0/24 maxlen: 24
143.14.140.0/24 maxlen: 24
143.14.150.0/24 maxlen: 24
143.14.152.0/24 maxlen: 24
143.14.182.0/23 maxlen: 24
143.14.185.0/24 maxlen: 24
143.14.186.0/23 maxlen: 24
143.14.192.0/23 maxlen: 24
143.14.194.0/24 maxlen: 24
143.14.198.0/24 maxlen: 24
143.14.218.0/24 maxlen: 24
143.14.229.0/24 maxlen: 24
143.14.248.0/23 maxlen: 24
146.103.22.0/24 maxlen: 24
147.79.7.0/24 maxlen: 24
147.79.17.0/24 maxlen: 24
147.79.30.0/24 maxlen: 24
148.135.172.0/24 maxlen: 24
148.135.194.0/24 maxlen: 24
148.135.196.0/23 maxlen: 24
148.135.198.0/24 maxlen: 24
148.135.204.0/23 maxlen: 24
148.135.255.0/24 maxlen: 24
150.241.138.0/24 maxlen: 24
150.241.200.0/23 maxlen: 24
155.117.17.0/24 maxlen: 24
155.117.113.0/24 maxlen: 24
155.117.124.0/23 maxlen: 24
155.117.126.0/24 maxlen: 24
155.117.145.0/24 maxlen: 24
155.117.159.0/24 maxlen: 24
155.117.167.0/24 maxlen: 24
155.117.168.0/23 maxlen: 24
155.117.180.0/22 maxlen: 24
155.117.186.0/24 maxlen: 24
155.117.190.0/24 maxlen: 24
155.117.200.0/24 maxlen: 24
155.117.202.0/24 maxlen: 24
155.117.207.0/24 maxlen: 24
155.117.212.0/23 maxlen: 24
155.117.215.0/24 maxlen: 24
155.117.221.0/24 maxlen: 24
155.117.222.0/24 maxlen: 24
155.117.228.0/24 maxlen: 24
155.117.248.0/22 maxlen: 24
162.141.8.0/24 maxlen: 24
162.141.66.0/24 maxlen: 24
162.141.70.0/24 maxlen: 24
162.141.82.0/23 maxlen: 24
162.141.113.0/24 maxlen: 24
162.141.158.0/24 maxlen: 24
162.141.160.0/23 maxlen: 24
162.141.163.0/24 maxlen: 24
167.148.105.0/24 maxlen: 24
167.148.119.0/24 maxlen: 24
167.148.186.0/24 maxlen: 24
167.148.215.0/24 maxlen: 24
168.222.44.0/24 maxlen: 24
168.222.51.0/24 maxlen: 24
168.222.52.0/23 maxlen: 24
168.222.54.0/24 maxlen: 24
168.222.62.0/24 maxlen: 24
168.222.68.0/22 maxlen: 24
168.222.76.0/24 maxlen: 24
168.222.79.0/24 maxlen: 24
168.222.82.0/24 maxlen: 24
168.222.89.0/24 maxlen: 24
168.222.90.0/24 maxlen: 24
168.222.105.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.mft
rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 04 Jun 2026 15:08:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
64:b6:74:c2:34:49:c9:af:99:47:6d:7d:ec:c5:6d:c5:42:8c:93:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Validity
Not Before: Jun 3 21:40:05 2026 GMT
Not After : Jun 2 21:45:05 2027 GMT
Subject: CN=C7B440008E6CB876DAB7070EA1116E03E3D962E7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:4b:4b:62:ad:f4:0f:93:da:ae:e1:f9:d6:05:
59:79:a6:99:90:44:ef:cb:b6:20:b2:04:50:ff:d4:
c2:bc:d0:c0:4a:3b:84:70:4e:76:96:28:e4:ee:47:
fd:80:a6:8e:2c:26:67:8b:5c:e4:0b:3c:c7:e3:20:
51:7b:71:c2:e8:d7:07:50:87:44:09:69:61:57:c1:
09:f1:de:67:0c:1a:9d:f2:41:7d:f4:be:bb:c4:e6:
f4:89:52:9e:62:af:5f:8c:41:4d:25:43:4f:3b:ba:
f0:49:78:8b:e2:85:60:d2:4e:79:43:63:d4:1a:2c:
d1:e8:26:2d:52:04:cf:9f:26:72:d1:4c:8b:85:de:
a0:55:99:5f:4b:ae:d9:59:3b:45:36:da:35:0d:7f:
f3:64:fc:4f:cc:c9:0a:d4:db:1a:49:1c:59:8c:8c:
c2:8c:e4:68:ca:3f:f1:3f:0a:11:ee:8a:fc:f4:e2:
d4:8b:e6:b5:ca:1e:37:a6:b8:5e:89:c7:b6:e4:61:
28:4b:62:0b:26:62:8d:ae:5e:dd:c0:7b:9f:d8:f7:
8e:13:1f:5d:e3:fb:19:30:73:68:00:5e:55:a7:34:
2a:ce:ab:3d:d3:76:9a:f6:fc:c6:b1:bd:f9:b9:f6:
df:99:b1:8f:84:0b:af:0c:ce:79:88:48:39:6d:c7:
5f:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:B4:40:00:8E:6C:B8:76:DA:B7:07:0E:A1:11:6E:03:E3:D9:62:E7
X509v3 Authority Key Identifier:
keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS834.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
96.62.96.0/23
96.62.103.0/24
96.62.114.0/23
140.150.239.0/24
140.233.174.0/24
140.233.183.0/24
140.233.187.0/24
143.14.68.0/24
143.14.128.0/24
143.14.130.0/24
143.14.140.0/24
143.14.150.0/24
143.14.152.0/24
143.14.182.0/23
143.14.185.0-143.14.187.255
143.14.192.0-143.14.194.255
143.14.198.0/24
143.14.218.0/24
143.14.229.0/24
143.14.248.0/23
146.103.22.0/24
147.79.7.0/24
147.79.17.0/24
147.79.30.0/24
148.135.172.0/24
148.135.194.0/24
148.135.196.0-148.135.198.255
148.135.204.0/23
148.135.255.0/24
150.241.138.0/24
150.241.200.0/23
155.117.17.0/24
155.117.113.0/24
155.117.124.0-155.117.126.255
155.117.145.0/24
155.117.159.0/24
155.117.167.0-155.117.169.255
155.117.180.0/22
155.117.186.0/24
155.117.190.0/24
155.117.200.0/24
155.117.202.0/24
155.117.207.0/24
155.117.212.0/23
155.117.215.0/24
155.117.221.0-155.117.222.255
155.117.228.0/24
155.117.248.0/22
162.141.8.0/24
162.141.66.0/24
162.141.70.0/24
162.141.82.0/23
162.141.113.0/24
162.141.158.0/24
162.141.160.0/23
162.141.163.0/24
167.148.105.0/24
167.148.119.0/24
167.148.186.0/24
167.148.215.0/24
168.222.44.0/24
168.222.51.0-168.222.54.255
168.222.62.0/24
168.222.68.0/22
168.222.76.0/24
168.222.79.0/24
168.222.82.0/24
168.222.89.0-168.222.90.255
168.222.105.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:b6:b3:ba:bd:b6:4b:bb:9d:80:2b:28:7f:cc:6f:2f:2f:62:
30:18:c2:8f:d7:06:9c:99:3e:86:5c:fa:79:21:6d:be:50:91:
bc:ee:ac:52:40:e4:d9:de:4b:bf:d6:e4:c9:7e:28:b4:40:cc:
11:6c:24:f0:b3:26:d5:34:d4:50:cb:b7:3b:23:38:01:67:10:
91:49:a4:68:a6:da:d3:88:13:44:85:72:bb:63:c1:99:51:fa:
58:69:3e:68:b5:a4:04:eb:a9:c5:8d:bc:92:9f:55:7f:52:da:
96:cf:36:19:d4:ee:fc:c2:a1:4e:6e:99:29:e3:88:e9:3c:8b:
bb:72:ad:9c:45:af:56:6d:65:c8:8a:3b:4c:4c:46:6e:4f:60:
8c:0b:2e:a2:f0:6e:e5:a3:0d:62:46:fa:73:ed:29:3f:e3:95:
58:a1:cd:e7:4f:18:40:87:35:47:7b:05:43:15:a8:ca:df:63:
a0:fe:ab:f5:85:25:2c:04:10:46:24:84:df:c7:71:82:c9:af:
7e:56:35:bd:c6:f1:aa:ce:8a:b9:95:91:97:95:1f:7c:6d:53:
97:39:b4:85:1e:8a:75:73:5d:52:ee:f5:eb:f8:cd:05:f4:47:
96:91:af:09:c7:95:d7:e0:35:4d:28:78:c1:df:59:b6:ae:48:
3a:b3:1f:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 4 01:16:53 2026 by rpki-client