Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS834.roa
File: AS834.roa (raw, json)
Hash identifier: ds49QROzPdPFM+SvLHbpOGuQr2YmhprHd7rSN8tHnUY=
Subject key identifier: 1F:3C:42:3A:10:27:70:D7:85:AD:0A:FE:7A:1F:46:91:95:2C:AF:A0
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 58B815B60E781D5590607D0521C11E5919D3B534
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS834.roa
Signing time: Tue 01 Jul 2025 00:04:12 +0000
ROA not before: Mon 30 Jun 2025 23:59:12 +0000
ROA not after: Tue 30 Jun 2026 00:04:12 +0000
asID: 834
IP address blocks: 5.182.110.0/24 maxlen: 24
45.87.185.0/24 maxlen: 24
45.87.187.0/24 maxlen: 24
45.95.36.0/24 maxlen: 24
92.118.162.0/24 maxlen: 24
92.119.33.0/24 maxlen: 24
92.242.186.0/24 maxlen: 24
103.141.69.0/24 maxlen: 24
109.106.3.0/24 maxlen: 24
130.185.127.0/24 maxlen: 24
179.61.226.0/23 maxlen: 24
179.61.229.0/24 maxlen: 24
179.61.243.0/24 maxlen: 24
181.41.196.0/24 maxlen: 24
181.214.0.0/24 maxlen: 24
181.214.4.0/24 maxlen: 24
181.214.14.0/24 maxlen: 24
181.214.41.0/24 maxlen: 24
181.214.54.0/24 maxlen: 24
181.214.58.0/24 maxlen: 24
181.214.79.0/24 maxlen: 24
181.214.91.0/24 maxlen: 24
181.214.94.0/24 maxlen: 24
181.214.97.0/24 maxlen: 24
181.214.98.0/24 maxlen: 24
181.214.108.0/24 maxlen: 24
181.214.111.0/24 maxlen: 24
181.214.113.0/24 maxlen: 24
181.214.119.0/24 maxlen: 24
181.214.120.0/23 maxlen: 24
181.214.124.0/23 maxlen: 24
181.214.148.0/24 maxlen: 24
181.214.154.0/24 maxlen: 24
181.214.161.0/24 maxlen: 24
181.214.167.0/24 maxlen: 24
181.214.201.0/24 maxlen: 24
181.214.212.0/24 maxlen: 24
181.214.236.0/23 maxlen: 24
181.214.248.0/24 maxlen: 24
181.214.254.0/24 maxlen: 24
181.215.3.0/24 maxlen: 24
181.215.22.0/23 maxlen: 24
181.215.58.0/24 maxlen: 24
181.215.64.0/24 maxlen: 24
181.215.73.0/24 maxlen: 24
181.215.91.0/24 maxlen: 24
181.215.95.0/24 maxlen: 24
181.215.108.0/23 maxlen: 24
181.215.111.0/24 maxlen: 24
181.215.112.0/22 maxlen: 24
181.215.159.0/24 maxlen: 24
181.215.186.0/23 maxlen: 24
181.215.189.0/24 maxlen: 24
181.215.216.0/24 maxlen: 24
181.215.225.0/24 maxlen: 24
181.215.227.0/24 maxlen: 24
181.215.237.0/24 maxlen: 24
181.215.240.0/24 maxlen: 24
181.215.250.0/24 maxlen: 24
185.137.15.0/24 maxlen: 24
185.142.25.0/24 maxlen: 24
185.151.58.0/24 maxlen: 24
191.96.3.0/24 maxlen: 24
191.96.24.0/24 maxlen: 24
191.96.58.0/24 maxlen: 24
191.96.64.0/24 maxlen: 24
191.96.88.0/23 maxlen: 24
191.96.91.0/24 maxlen: 24
191.96.99.0/24 maxlen: 24
191.96.102.0/24 maxlen: 24
191.96.105.0/24 maxlen: 24
191.96.116.0/24 maxlen: 24
191.96.120.0/24 maxlen: 24
191.96.126.0/24 maxlen: 24
191.96.140.0/23 maxlen: 24
191.96.143.0/24 maxlen: 24
191.96.149.0/24 maxlen: 24
191.96.157.0/24 maxlen: 24
191.96.164.0/24 maxlen: 24
191.96.180.0/23 maxlen: 24
191.96.182.0/24 maxlen: 24
191.96.222.0/24 maxlen: 24
191.101.9.0/24 maxlen: 24
191.101.20.0/24 maxlen: 24
191.101.22.0/24 maxlen: 24
191.101.39.0/24 maxlen: 24
191.101.56.0/24 maxlen: 24
191.101.58.0/24 maxlen: 24
191.101.63.0/24 maxlen: 24
191.101.76.0/24 maxlen: 24
191.101.82.0/24 maxlen: 24
191.101.85.0/24 maxlen: 24
191.101.87.0/24 maxlen: 24
191.101.88.0/24 maxlen: 24
191.101.95.0/24 maxlen: 24
191.101.97.0/24 maxlen: 24
191.101.102.0/24 maxlen: 24
191.101.116.0/24 maxlen: 24
191.101.120.0/24 maxlen: 24
191.101.124.0/24 maxlen: 24
191.101.135.0/24 maxlen: 24
191.101.145.0/24 maxlen: 24
191.101.148.0/24 maxlen: 24
191.101.180.0/24 maxlen: 24
191.101.182.0/24 maxlen: 24
191.101.187.0/24 maxlen: 24
191.101.192.0/24 maxlen: 24
191.101.198.0/24 maxlen: 24
191.101.223.0/24 maxlen: 24
191.101.236.0/24 maxlen: 24
191.101.238.0/23 maxlen: 24
191.101.240.0/24 maxlen: 24
191.101.247.0/24 maxlen: 24
191.101.252.0/24 maxlen: 24
193.7.202.0/24 maxlen: 24
193.31.41.0/24 maxlen: 24
213.109.169.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.mft
rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 02 Jul 2025 16:29:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
58:b8:15:b6:0e:78:1d:55:90:60:7d:05:21:c1:1e:59:19:d3:b5:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Jun 30 23:59:12 2025 GMT
Not After : Jun 30 00:04:12 2026 GMT
Subject: CN=1F3C423A102770D785AD0AFE7A1F4691952CAFA0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:40:1f:a9:f0:82:d9:d3:fa:e3:d3:47:29:9f:
f8:ac:f0:5c:27:89:ff:83:cb:fe:be:c7:fa:eb:8b:
61:e8:2b:48:54:a9:3d:9c:eb:48:69:f7:de:f0:17:
92:08:49:ff:20:b6:7f:4c:b9:28:5c:a7:28:e2:b2:
15:97:c6:b1:9c:68:a3:44:19:ee:1b:93:0f:67:47:
c9:3b:e3:66:25:b3:4b:90:7c:60:d6:c7:a7:6d:a0:
88:0e:ee:db:67:eb:9b:1e:31:05:0b:30:97:22:d0:
a7:be:f1:52:6e:10:0a:0e:cd:ad:6e:f8:44:bc:52:
49:e5:e9:6f:36:96:a6:dc:7a:4c:ad:c1:ed:c3:c8:
e6:04:8f:5c:c4:ce:8a:b4:1a:94:8a:8f:85:80:2d:
c9:02:01:d0:d1:d0:19:05:78:ef:75:95:44:2e:20:
e6:72:2f:b6:a1:eb:bf:f0:2d:1e:89:d7:ad:fb:57:
01:28:b9:d2:98:e6:c5:03:a8:1a:ea:a6:e7:61:23:
cf:7c:1e:47:09:38:cc:5d:24:b6:64:07:bf:de:95:
11:ac:12:c6:16:e6:7a:86:08:b3:99:6f:f4:b2:12:
85:29:7a:3c:f1:e3:6b:f4:f6:f2:8a:c7:f0:82:ca:
dc:e9:62:e2:f8:17:54:61:68:ff:e2:d0:3a:41:31:
8b:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:3C:42:3A:10:27:70:D7:85:AD:0A:FE:7A:1F:46:91:95:2C:AF:A0
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS834.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.110.0/24
45.87.185.0/24
45.87.187.0/24
45.95.36.0/24
92.118.162.0/24
92.119.33.0/24
92.242.186.0/24
103.141.69.0/24
109.106.3.0/24
130.185.127.0/24
179.61.226.0/23
179.61.229.0/24
179.61.243.0/24
181.41.196.0/24
181.214.0.0/24
181.214.4.0/24
181.214.14.0/24
181.214.41.0/24
181.214.54.0/24
181.214.58.0/24
181.214.79.0/24
181.214.91.0/24
181.214.94.0/24
181.214.97.0-181.214.98.255
181.214.108.0/24
181.214.111.0/24
181.214.113.0/24
181.214.119.0-181.214.121.255
181.214.124.0/23
181.214.148.0/24
181.214.154.0/24
181.214.161.0/24
181.214.167.0/24
181.214.201.0/24
181.214.212.0/24
181.214.236.0/23
181.214.248.0/24
181.214.254.0/24
181.215.3.0/24
181.215.22.0/23
181.215.58.0/24
181.215.64.0/24
181.215.73.0/24
181.215.91.0/24
181.215.95.0/24
181.215.108.0/23
181.215.111.0-181.215.115.255
181.215.159.0/24
181.215.186.0/23
181.215.189.0/24
181.215.216.0/24
181.215.225.0/24
181.215.227.0/24
181.215.237.0/24
181.215.240.0/24
181.215.250.0/24
185.137.15.0/24
185.142.25.0/24
185.151.58.0/24
191.96.3.0/24
191.96.24.0/24
191.96.58.0/24
191.96.64.0/24
191.96.88.0/23
191.96.91.0/24
191.96.99.0/24
191.96.102.0/24
191.96.105.0/24
191.96.116.0/24
191.96.120.0/24
191.96.126.0/24
191.96.140.0/23
191.96.143.0/24
191.96.149.0/24
191.96.157.0/24
191.96.164.0/24
191.96.180.0-191.96.182.255
191.96.222.0/24
191.101.9.0/24
191.101.20.0/24
191.101.22.0/24
191.101.39.0/24
191.101.56.0/24
191.101.58.0/24
191.101.63.0/24
191.101.76.0/24
191.101.82.0/24
191.101.85.0/24
191.101.87.0-191.101.88.255
191.101.95.0/24
191.101.97.0/24
191.101.102.0/24
191.101.116.0/24
191.101.120.0/24
191.101.124.0/24
191.101.135.0/24
191.101.145.0/24
191.101.148.0/24
191.101.180.0/24
191.101.182.0/24
191.101.187.0/24
191.101.192.0/24
191.101.198.0/24
191.101.223.0/24
191.101.236.0/24
191.101.238.0-191.101.240.255
191.101.247.0/24
191.101.252.0/24
193.7.202.0/24
193.31.41.0/24
213.109.169.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:a5:bd:99:22:d8:45:bf:54:b4:c4:ad:85:f1:09:40:d7:f4:
b7:16:a4:ef:25:10:42:55:ca:2d:76:c8:39:22:3c:d5:a2:13:
2c:21:cd:2b:24:2b:51:92:f2:62:61:23:87:02:a3:3c:80:1a:
43:49:ec:41:e8:a1:b1:ef:6d:b1:a1:94:69:43:cb:b7:cf:af:
4d:12:79:96:10:0b:55:de:fa:2b:7f:39:12:4a:13:45:9a:e7:
63:78:f9:2f:db:87:b8:15:3e:69:18:d4:6f:47:91:27:58:60:
12:82:d7:87:93:03:b6:d2:b9:5b:18:3b:56:e4:1f:30:eb:6f:
29:bd:f3:9a:71:f9:9c:28:46:28:6c:22:01:4a:08:66:4a:a9:
4b:7f:fb:44:3d:a6:31:08:d3:b2:1f:40:f3:ca:1d:c7:0d:fb:
c4:99:15:60:48:01:04:12:55:b2:de:53:27:4b:dd:23:9b:9f:
53:60:e8:d1:27:c4:e7:90:6a:2e:23:04:5f:d4:37:fb:45:7b:
f4:91:92:ee:37:91:97:8a:08:d5:03:74:df:65:0b:25:19:c6:
89:16:1c:d2:8f:10:32:e6:cc:05:60:71:ad:77:c5:6c:8e:3d:
67:ac:76:91:db:47:70:07:17:91:c6:56:dd:e4:08:29:aa:58:
5a:c9:09:49
-----BEGIN CERTIFICATE-----
MIIHyzCCBrOgAwIBAgIUWLgVtg54HVWQYH0FIcEeWRnTtTQwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjFiMWJiNDQ0NzcxOGYxNmIzZDM2Njc1ZDIwNWM0ZGVh
NDFiYmEwYTAeFw0yNTA2MzAyMzU5MTJaFw0yNjA2MzAwMDA0MTJaMDMxMTAvBgNV
BAMTKDFGM0M0MjNBMTAyNzcwRDc4NUFEMEFGRTdBMUY0NjkxOTUyQ0FGQTAwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpQB+p8ILZ0/rj00cpn/is8Fwn
if+Dy/6+x/rri2HoK0hUqT2c60hp997wF5IISf8gtn9MuShcpyjishWXxrGcaKNE
Ge4bkw9nR8k742Yls0uQfGDWx6dtoIgO7ttn65seMQULMJci0Ke+8VJuEAoOza1u
+ES8Uknl6W82lqbcekytwe3DyOYEj1zEzoq0GpSKj4WALckCAdDR0BkFeO91lUQu
IOZyL7ah67/wLR6J1637VwEoudKY5sUDqBrqpudhI898HkcJOMxdJLZkB7/elRGs
EsYW5nqGCLOZb/SyEoUpejzx42v09vKKx/CCytzpYuL4F1RhaP/i0DpBMYuNAgMB
AAGjggTVMIIE0TAdBgNVHQ4EFgQUHzxCOhAncNeFrQr+eh9GkZUsr6AwHwYDVR0j
BBgwFoAUYbG7REdxjxaz02Z10gXE3qQbugowDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvNTM3NDU5ZTctMmE4My00M2QxLTlhYTEtNTg0MTdhYmFj
NGI2LzEvNjFCMUJCNDQ0NzcxOEYxNkIzRDM2Njc1RDIwNUM0REVBNDFCQkEwQS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1liRzdSRWR4anhhejAyWjEwZ1hFM3FR
YnVnby5jZXIweAYIKwYBBQUHAQsEbDBqMGgGCCsGAQUFBzALhlxyc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzUzNzQ1OWU3LTJhODMt
NDNkMS05YWExLTU4NDE3YWJhYzRiNi8xL0FTODM0LnJvYTAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIC6wYIKwYBBQUHAQcBAf8EggLaMIIC1jCCAtIEAgABMIIC
ygMEAAW2bgMEAC1XuQMEAC1XuwMEAC1fJAMEAFx2ogMEAFx3IQMEAFzyugMEAGeN
RQMEAG1qAwMEAIK5fwMEAbM94gMEALM95QMEALM98wMEALUpxAMEALXWAAMEALXW
BAMEALXWDgMEALXWKQMEALXWNgMEALXWOgMEALXWTwMEALXWWwMEALXWXjAMAwQA
tdZhAwQAtdZiAwQAtdZsAwQAtdZvAwQAtdZxMAwDBAC11ncDBAG11ngDBAG11nwD
BAC11pQDBAC11poDBAC11qEDBAC11qcDBAC11skDBAC11tQDBAG11uwDBAC11vgD
BAC11v4DBAC11wMDBAG11xYDBAC11zoDBAC110ADBAC110kDBAC111sDBAC1118D
BAG112wwDAMEALXXbwMEArXXcAMEALXXnwMEAbXXugMEALXXvQMEALXX2AMEALXX
4QMEALXX4wMEALXX7QMEALXX8AMEALXX+gMEALmJDwMEALmOGQMEALmXOgMEAL9g
AwMEAL9gGAMEAL9gOgMEAL9gQAMEAb9gWAMEAL9gWwMEAL9gYwMEAL9gZgMEAL9g
aQMEAL9gdAMEAL9geAMEAL9gfgMEAb9gjAMEAL9gjwMEAL9glQMEAL9gnQMEAL9g
pDAMAwQCv2C0AwQAv2C2AwQAv2DeAwQAv2UJAwQAv2UUAwQAv2UWAwQAv2UnAwQA
v2U4AwQAv2U6AwQAv2U/AwQAv2VMAwQAv2VSAwQAv2VVMAwDBAC/ZVcDBAC/ZVgD
BAC/ZV8DBAC/ZWEDBAC/ZWYDBAC/ZXQDBAC/ZXgDBAC/ZXwDBAC/ZYcDBAC/ZZED
BAC/ZZQDBAC/ZbQDBAC/ZbYDBAC/ZbsDBAC/ZcADBAC/ZcYDBAC/Zd8DBAC/Zeww
DAMEAb9l7gMEAL9l8AMEAL9l9wMEAL9l/AMEAMEHygMEAMEfKQMEANVtqTANBgkq
hkiG9w0BAQsFAAOCAQEAXqW9mSLYRb9UtMSthfEJQNf0txak7yUQQlXKLXbIOSI8
1aITLCHNKyQrUZLyYmEjhwKjPIAaQ0nsQeihse9tsaGUaUPLt8+vTRJ5lhALVd76
K385EkoTRZrnY3j5L9uHuBU+aRjUb0eRJ1hgEoLXh5MDttK5Wxg7VuQfMOtvKb3z
mnH5nChGKGwiAUoIZkqpS3/7RD2mMQjTsh9A88odxw37xJkVYEgBBBJVst5TJ0vd
I5ufU2Do0SfE55BqLiMEX9Q3+0V79JGS7jeRl4oI1QN032ULJRnGiRYc0o8QMubM
BWBxrXfFbI49Z6x2kdtHcAcXkcZW3eQIKapYWskJSQ==
-----END CERTIFICATE-----
Generated at Tue Jul 1 20:01:32 2025 by rpki-client