Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/22db7555-9aa4-4983-9316-73809dd354bc/0/AS834.roa
File: AS834.roa (raw, json)
Hash identifier: xkocPYY+mi009W06hZvO4CNFwjYiaPMGAhTitxttoS4=
Subject key identifier: 56:8C:E6:2A:69:B0:20:2A:B8:BB:E4:6F:16:9C:1E:9F:8B:12:1B:C1
Certificate issuer: /CN=3feccb17be51ee59ec74d64eed917e221ee28a1b
Certificate serial: 1F0E1581DD808A6D1E77F3B106C65A8D03CE7B50
Authority key identifier: 3F:EC:CB:17:BE:51:EE:59:EC:74:D6:4E:ED:91:7E:22:1E:E2:8A:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P-zLF75R7lnsdNZO7ZF-Ih7iihs.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/22db7555-9aa4-4983-9316-73809dd354bc/0/AS834.roa
Signing time: Tue 21 Oct 2025 07:36:36 +0000
ROA not before: Tue 21 Oct 2025 07:31:36 +0000
ROA not after: Tue 20 Oct 2026 07:36:36 +0000
asID: 834
IP address blocks: 46.236.213.0/24 maxlen: 24
46.236.223.0/24 maxlen: 24
82.139.193.0/24 maxlen: 24
82.139.194.0/24 maxlen: 24
82.139.205.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/22db7555-9aa4-4983-9316-73809dd354bc/0/3FECCB17BE51EE59EC74D64EED917E221EE28A1B.crl
rsync://rsync.paas.rpki.ripe.net/repository/22db7555-9aa4-4983-9316-73809dd354bc/0/3FECCB17BE51EE59EC74D64EED917E221EE28A1B.mft
rsync://rpki.ripe.net/repository/DEFAULT/P-zLF75R7lnsdNZO7ZF-Ih7iihs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 22 Oct 2025 10:14:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1f:0e:15:81:dd:80:8a:6d:1e:77:f3:b1:06:c6:5a:8d:03:ce:7b:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3feccb17be51ee59ec74d64eed917e221ee28a1b
Validity
Not Before: Oct 21 07:31:36 2025 GMT
Not After : Oct 20 07:36:36 2026 GMT
Subject: CN=568CE62A69B0202AB8BBE46F169C1E9F8B121BC1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:a7:01:f3:7e:fb:46:c4:05:69:3f:34:42:72:
80:d1:15:11:12:87:67:7b:c7:06:f0:ee:b8:3e:cf:
67:da:09:88:00:94:43:13:d8:45:48:87:a1:8e:ee:
e3:6d:11:f1:d3:df:ae:b0:de:7a:66:fc:cd:73:fe:
2e:23:7c:ba:06:36:95:0d:51:17:da:1b:70:d0:85:
9a:e8:21:b9:b0:63:d2:4c:55:82:b8:4d:a4:0a:aa:
0d:77:68:81:df:dc:cb:1b:a9:1f:08:75:7d:24:fb:
a2:5b:0e:94:6e:76:f3:42:49:7f:30:91:e3:bb:1c:
0a:7b:76:f9:39:48:dc:a9:e4:15:e9:6a:75:11:d8:
20:8e:e3:d4:2a:73:41:a5:d4:ec:f9:35:43:bd:8d:
63:03:98:0d:31:a6:3d:91:51:69:04:b2:2c:76:73:
4e:a3:c4:10:3b:cf:b3:a2:79:98:fe:9a:c5:a5:ec:
b7:3a:4a:93:f4:1d:dc:89:ec:d6:59:b5:bc:c0:9b:
42:02:27:3b:a5:3a:25:c5:13:80:7c:b9:9a:38:5b:
0c:0f:14:8d:ad:d0:43:12:71:98:b6:92:8f:bd:19:
6f:0f:73:05:d2:08:05:e3:11:57:57:32:c4:cd:99:
82:48:bf:14:8d:cd:29:af:f7:d7:a7:b8:85:54:1c:
93:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:8C:E6:2A:69:B0:20:2A:B8:BB:E4:6F:16:9C:1E:9F:8B:12:1B:C1
X509v3 Authority Key Identifier:
keyid:3F:EC:CB:17:BE:51:EE:59:EC:74:D6:4E:ED:91:7E:22:1E:E2:8A:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/22db7555-9aa4-4983-9316-73809dd354bc/0/3FECCB17BE51EE59EC74D64EED917E221EE28A1B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P-zLF75R7lnsdNZO7ZF-Ih7iihs.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/22db7555-9aa4-4983-9316-73809dd354bc/0/AS834.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.236.213.0/24
46.236.223.0/24
82.139.193.0-82.139.194.255
82.139.205.0/24
Signature Algorithm: sha256WithRSAEncryption
75:fc:27:74:80:93:f6:a5:4d:ae:39:ea:38:24:ce:e3:3e:58:
43:39:33:af:a5:30:72:ba:3a:14:17:04:e2:8b:9d:d6:cd:8a:
3b:46:f8:2a:cb:1a:d7:3e:5e:e0:aa:0e:64:71:e1:18:3e:46:
ed:4d:0c:7f:59:6f:af:61:70:c2:be:d3:cb:08:f5:c7:ab:31:
2e:5c:6e:5e:1e:7a:7c:dc:a6:c6:8f:c2:cf:cd:23:40:11:73:
e9:f2:40:78:e3:dc:3b:09:7b:00:ba:08:0c:8e:8d:a6:ba:76:
77:59:db:20:20:9d:27:78:f2:c4:1f:2e:2a:f5:a6:9a:6d:0e:
72:f5:2c:ba:6e:e7:b3:07:0d:5c:43:dc:94:78:1a:53:4f:89:
5d:54:e9:78:c2:28:28:ec:f8:49:65:f2:66:ba:bb:42:1d:31:
3b:3e:d3:94:5e:8a:81:78:94:d1:53:c9:2e:f8:ea:22:d5:c5:
d1:ad:b2:88:2f:a3:9c:54:ed:09:b2:5a:ec:de:56:ed:72:b4:
99:a4:c1:24:29:f8:f1:5a:c3:92:46:30:9c:7e:50:2e:b3:f7:
c0:81:83:d0:7d:79:7d:bb:d4:8e:d3:17:8e:9f:db:f5:01:8f:
7e:04:fd:db:75:8a:6a:66:6e:27:e5:2e:55:55:9a:8b:be:76:
7c:ba:d9:15
-----BEGIN CERTIFICATE-----
MIIFFzCCA/+gAwIBAgIUHw4Vgd2Aim0ed/OxBsZajQPOe1AwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoM2ZlY2NiMTdiZTUxZWU1OWVjNzRkNjRlZWQ5MTdlMjIx
ZWUyOGExYjAeFw0yNTEwMjEwNzMxMzZaFw0yNjEwMjAwNzM2MzZaMDMxMTAvBgNV
BAMTKDU2OENFNjJBNjlCMDIwMkFCOEJCRTQ2RjE2OUMxRTlGOEIxMjFCQzEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9pwHzfvtGxAVpPzRCcoDRFRES
h2d7xwbw7rg+z2faCYgAlEMT2EVIh6GO7uNtEfHT366w3npm/M1z/i4jfLoGNpUN
URfaG3DQhZroIbmwY9JMVYK4TaQKqg13aIHf3MsbqR8IdX0k+6JbDpRudvNCSX8w
keO7HAp7dvk5SNyp5BXpanUR2CCO49Qqc0Gl1Oz5NUO9jWMDmA0xpj2RUWkEsix2
c06jxBA7z7OieZj+msWl7Lc6SpP0HdyJ7NZZtbzAm0ICJzulOiXFE4B8uZo4WwwP
FI2t0EMScZi2ko+9GW8PcwXSCAXjEVdXMsTNmYJIvxSNzSmv99enuIVUHJMxAgMB
AAGjggIhMIICHTAdBgNVHQ4EFgQUVozmKmmwICq4u+RvFpwen4sSG8EwHwYDVR0j
BBgwFoAUP+zLF75R7lnsdNZO7ZF+Ih7iihswDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvMjJkYjc1NTUtOWFhNC00OTgzLTkzMTYtNzM4MDlkZDM1
NGJjLzAvM0ZFQ0NCMTdCRTUxRUU1OUVDNzRENjRFRUQ5MTdFMjIxRUUyOEExQi5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1AtekxGNzVSN2xuc2ROWk83WkYtSWg3
aWlocy5jZXIweAYIKwYBBQUHAQsEbDBqMGgGCCsGAQUFBzALhlxyc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzIyZGI3NTU1LTlhYTQt
NDk4My05MzE2LTczODA5ZGQzNTRiYy8wL0FTODM0LnJvYTAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDkGCCsGAQUFBwEHAQH/BCowKDAmBAIAATAgAwQALuzVAwQA
LuzfMAwDBABSi8EDBABSi8IDBABSi80wDQYJKoZIhvcNAQELBQADggEBAHX8J3SA
k/alTa456jgkzuM+WEM5M6+lMHK6OhQXBOKLndbNijtG+CrLGtc+XuCqDmRx4Rg+
Ru1NDH9Zb69hcMK+08sI9cerMS5cbl4eenzcpsaPws/NI0ARc+nyQHjj3DsJewC6
CAyOjaa6dndZ2yAgnSd48sQfLir1ppptDnL1LLpu57MHDVxD3JR4GlNPiV1U6XjC
KCjs+Ell8ma6u0IdMTs+05ReioF4lNFTyS746iLVxdGtsogvo5xU7QmyWuzeVu1y
tJmkwSQp+PFaw5JGMJx+UC6z98CBg9B9eX271I7TF46f2/UBj34E/dt1impmbifl
LlVVmou+dny62RU=
-----END CERTIFICATE-----
Generated at Tue Oct 21 23:28:59 2025 by rpki-client