Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/22db7555-9aa4-4983-9316-73809dd354bc/0/AS834.roa
File: AS834.roa (raw, json)
Hash identifier: ty9DW8hCr/3ogLKj17TIGhLC1Z1Gl/rJbwO5o/nwnN0=
Subject key identifier: E9:38:ED:0B:69:88:68:56:64:1D:63:F4:2C:8C:1B:29:D7:26:29:FD
Certificate issuer: /CN=3feccb17be51ee59ec74d64eed917e221ee28a1b
Certificate serial: 053966844A3F3E7BC1BB1B5138B21C264DA2C5E4
Authority key identifier: 3F:EC:CB:17:BE:51:EE:59:EC:74:D6:4E:ED:91:7E:22:1E:E2:8A:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P-zLF75R7lnsdNZO7ZF-Ih7iihs.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/22db7555-9aa4-4983-9316-73809dd354bc/0/AS834.roa
Signing time: Sun 19 Apr 2026 11:57:45 +0000
ROA not before: Sun 19 Apr 2026 11:52:45 +0000
ROA not after: Sun 18 Apr 2027 11:57:45 +0000
asID: 834
IP address blocks: 46.236.192.0/22 maxlen: 24
46.236.197.0/24 maxlen: 24
46.236.202.0/24 maxlen: 24
46.236.207.0/24 maxlen: 24
46.236.209.0/24 maxlen: 24
46.236.210.0/24 maxlen: 24
46.236.212.0/24 maxlen: 24
46.236.223.0/24 maxlen: 24
46.236.241.0/24 maxlen: 24
46.236.243.0/24 maxlen: 24
46.236.252.0/22 maxlen: 24
82.139.194.0/24 maxlen: 24
82.139.204.0/24 maxlen: 24
82.139.206.0/24 maxlen: 24
82.139.215.0/24 maxlen: 24
82.139.218.0/23 maxlen: 24
82.139.220.0/23 maxlen: 24
82.139.224.0/23 maxlen: 24
82.139.227.0/24 maxlen: 24
82.139.228.0/23 maxlen: 24
82.139.231.0/24 maxlen: 24
82.139.232.0/22 maxlen: 24
82.139.236.0/24 maxlen: 24
82.139.241.0/24 maxlen: 24
82.139.242.0/23 maxlen: 24
82.139.244.0/22 maxlen: 24
82.139.248.0/23 maxlen: 24
82.139.251.0/24 maxlen: 24
212.60.144.0/24 maxlen: 24
212.60.147.0/24 maxlen: 24
212.60.152.0/24 maxlen: 24
212.60.154.0/23 maxlen: 24
212.60.156.0/23 maxlen: 24
212.60.159.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/22db7555-9aa4-4983-9316-73809dd354bc/0/3FECCB17BE51EE59EC74D64EED917E221EE28A1B.crl
rsync://rsync.paas.rpki.ripe.net/repository/22db7555-9aa4-4983-9316-73809dd354bc/0/3FECCB17BE51EE59EC74D64EED917E221EE28A1B.mft
rsync://rpki.ripe.net/repository/DEFAULT/P-zLF75R7lnsdNZO7ZF-Ih7iihs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 22 Apr 2026 20:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
05:39:66:84:4a:3f:3e:7b:c1:bb:1b:51:38:b2:1c:26:4d:a2:c5:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3feccb17be51ee59ec74d64eed917e221ee28a1b
Validity
Not Before: Apr 19 11:52:45 2026 GMT
Not After : Apr 18 11:57:45 2027 GMT
Subject: CN=E938ED0B69886856641D63F42C8C1B29D72629FD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:ac:3f:85:b6:09:23:2f:89:97:76:38:5b:fe:
1e:53:94:bf:1e:50:ba:d3:db:ee:2e:f7:39:7b:4c:
cf:38:5e:ae:dd:97:04:2f:e4:18:64:96:21:61:88:
b3:68:6c:e8:7b:cd:32:80:90:b3:7a:5f:4e:db:26:
56:80:09:d4:89:1d:aa:6b:21:ce:35:fa:78:14:c6:
70:4f:f9:81:ce:df:bc:fc:c1:75:e4:34:dd:36:36:
c1:20:60:9a:47:16:f8:35:3f:e1:60:88:bc:62:22:
33:30:9b:e2:ec:20:95:79:76:eb:68:41:40:f5:e1:
8a:85:e0:4c:62:ef:87:ad:f5:75:45:ec:16:65:68:
b3:6e:ad:a6:b3:af:7e:96:e1:c6:b3:70:63:a2:b6:
5e:53:ef:3c:c8:93:86:d4:87:f3:18:48:98:37:ce:
f4:b9:6d:f3:49:78:09:58:cd:1e:e8:92:0e:6b:2e:
68:5a:51:9c:2c:46:01:52:17:88:ca:82:21:e3:0f:
26:6c:d8:d8:79:f7:7c:d4:49:4a:b9:34:5f:a8:e8:
20:82:f9:e2:11:26:94:f2:a1:78:b9:60:8b:d3:2d:
aa:9f:de:19:70:b4:9d:56:58:68:8d:cb:4e:01:b3:
1f:b6:20:89:14:f1:f4:84:c0:16:02:8b:09:51:00:
51:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:38:ED:0B:69:88:68:56:64:1D:63:F4:2C:8C:1B:29:D7:26:29:FD
X509v3 Authority Key Identifier:
keyid:3F:EC:CB:17:BE:51:EE:59:EC:74:D6:4E:ED:91:7E:22:1E:E2:8A:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/22db7555-9aa4-4983-9316-73809dd354bc/0/3FECCB17BE51EE59EC74D64EED917E221EE28A1B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P-zLF75R7lnsdNZO7ZF-Ih7iihs.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/22db7555-9aa4-4983-9316-73809dd354bc/0/AS834.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.236.192.0/22
46.236.197.0/24
46.236.202.0/24
46.236.207.0/24
46.236.209.0-46.236.210.255
46.236.212.0/24
46.236.223.0/24
46.236.241.0/24
46.236.243.0/24
46.236.252.0/22
82.139.194.0/24
82.139.204.0/24
82.139.206.0/24
82.139.215.0/24
82.139.218.0-82.139.221.255
82.139.224.0/23
82.139.227.0-82.139.229.255
82.139.231.0-82.139.236.255
82.139.241.0-82.139.249.255
82.139.251.0/24
212.60.144.0/24
212.60.147.0/24
212.60.152.0/24
212.60.154.0-212.60.157.255
212.60.159.0/24
Signature Algorithm: sha256WithRSAEncryption
72:07:3b:dc:b4:85:3b:3e:58:16:34:a3:88:31:15:8e:e7:36:
55:b5:fe:67:01:09:92:6e:87:11:84:fb:01:ca:03:e7:42:57:
c2:1e:fd:89:4d:72:bf:9a:bc:49:65:5b:20:c3:30:4c:ec:7f:
61:e8:63:9c:1f:16:5c:cc:f5:49:a7:ea:89:fa:92:19:1f:3d:
be:ae:88:dd:16:b2:c0:6c:58:39:6d:a7:46:8c:aa:b7:9e:58:
1d:a5:af:0b:ae:56:b1:96:a7:7e:de:0b:db:c6:57:6d:b1:3a:
63:d1:1a:f3:e2:4c:eb:68:09:0b:02:67:48:de:c7:18:68:d7:
c0:14:7d:f8:17:84:1a:8c:6e:83:4e:3f:7b:04:08:e9:05:20:
ba:b7:6c:b6:cd:c6:2d:59:2b:ce:1b:8e:ac:e8:fe:ab:2d:0c:
ad:59:3c:49:e1:c8:70:b4:be:ac:97:53:85:2d:97:7b:03:3a:
ed:cd:8d:35:6a:82:0f:c4:cb:6c:fc:67:bf:90:73:5c:5b:cd:
aa:2c:ad:83:35:94:ab:78:a5:94:b8:68:13:6d:dd:f5:e3:7f:
cd:c3:5c:8c:c8:3d:c7:16:09:ea:0e:ef:e9:48:16:42:24:ac:
ac:23:45:ef:73:4b:61:49:aa:f0:79:e8:31:d0:ae:73:38:21:
c6:b0:5b:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 22 07:55:52 2026 by rpki-client