Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS834.roa
File: AS834.roa (raw, json)
Hash identifier: Wh4fwV/isAz6Yin/QEL0GLIjPcvUOSQFk5KBaPYQhQ4=
Subject key identifier: 66:5E:52:37:BD:4A:BF:91:E5:FF:17:40:C8:6F:D4:39:43:00:BD:19
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 4C526919E598F54AF1EC58CF8C9EE9260F175034
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS834.roa
Signing time: Sun 19 Apr 2026 11:57:48 +0000
ROA not before: Sun 19 Apr 2026 11:52:48 +0000
ROA not after: Sun 18 Apr 2027 11:57:48 +0000
asID: 834
IP address blocks: 2.57.17.0/24 maxlen: 24
5.181.126.0/24 maxlen: 24
5.181.135.0/24 maxlen: 24
5.252.83.0/24 maxlen: 24
45.87.185.0/24 maxlen: 24
45.88.98.0/24 maxlen: 24
45.89.253.0/24 maxlen: 24
45.93.44.0/24 maxlen: 24
45.95.22.0/24 maxlen: 24
45.133.172.0/23 maxlen: 24
45.137.116.0/23 maxlen: 24
45.137.118.0/24 maxlen: 24
45.139.183.0/24 maxlen: 24
89.19.49.0/24 maxlen: 24
89.19.50.0/24 maxlen: 24
92.118.162.0/24 maxlen: 24
92.119.33.0/24 maxlen: 24
92.119.34.0/24 maxlen: 24
92.242.184.0/24 maxlen: 24
92.242.186.0/24 maxlen: 24
109.106.3.0/24 maxlen: 24
130.185.124.0/24 maxlen: 24
130.185.127.0/24 maxlen: 24
179.61.130.0/24 maxlen: 24
179.61.140.0/24 maxlen: 24
179.61.150.0/24 maxlen: 24
179.61.226.0/24 maxlen: 24
179.61.253.0/24 maxlen: 24
181.41.196.0/24 maxlen: 24
181.214.0.0/24 maxlen: 24
181.214.4.0/24 maxlen: 24
181.215.12.0/24 maxlen: 24
181.215.73.0/24 maxlen: 24
181.215.91.0/24 maxlen: 24
181.215.95.0/24 maxlen: 24
181.215.112.0/24 maxlen: 24
181.215.176.0/24 maxlen: 24
185.137.12.0/24 maxlen: 24
185.139.0.0/24 maxlen: 24
185.141.166.0/24 maxlen: 24
185.142.25.0/24 maxlen: 24
185.173.35.0/24 maxlen: 24
191.96.24.0/24 maxlen: 24
191.96.80.0/24 maxlen: 24
191.96.89.0/24 maxlen: 24
191.96.102.0/23 maxlen: 24
191.96.111.0/24 maxlen: 24
191.96.116.0/24 maxlen: 24
191.96.120.0/24 maxlen: 24
191.96.126.0/24 maxlen: 24
191.96.149.0/24 maxlen: 24
191.96.153.0/24 maxlen: 24
191.96.180.0/24 maxlen: 24
191.96.190.0/24 maxlen: 24
191.96.207.0/24 maxlen: 24
191.96.222.0/24 maxlen: 24
191.101.20.0/24 maxlen: 24
191.101.66.0/23 maxlen: 24
191.101.88.0/24 maxlen: 24
191.101.97.0/24 maxlen: 24
191.101.102.0/24 maxlen: 24
191.101.116.0/24 maxlen: 24
191.101.120.0/24 maxlen: 24
191.101.124.0/23 maxlen: 24
191.101.144.0/24 maxlen: 24
191.101.177.0/24 maxlen: 24
191.101.182.0/24 maxlen: 24
191.101.189.0/24 maxlen: 24
191.101.192.0/24 maxlen: 24
191.101.198.0/24 maxlen: 24
191.101.204.0/24 maxlen: 24
191.101.209.0/24 maxlen: 24
191.101.236.0/24 maxlen: 24
191.101.240.0/24 maxlen: 24
191.101.252.0/24 maxlen: 24
193.107.211.0/24 maxlen: 24
194.53.141.0/24 maxlen: 24
194.110.13.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.mft
rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 15:53:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4c:52:69:19:e5:98:f5:4a:f1:ec:58:cf:8c:9e:e9:26:0f:17:50:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Apr 19 11:52:48 2026 GMT
Not After : Apr 18 11:57:48 2027 GMT
Subject: CN=665E5237BD4ABF91E5FF1740C86FD4394300BD19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:c8:cc:b2:4d:70:77:88:73:59:fc:46:b5:ea:
f7:52:80:1e:a0:b2:1a:66:47:79:b1:e9:4a:23:31:
36:43:d8:32:bc:c3:c5:72:26:01:93:0a:1b:a6:47:
95:44:64:b1:e9:be:ff:47:b7:84:26:e2:58:62:5a:
17:6a:3a:8d:89:a3:93:ac:86:ba:9d:c0:24:e9:e8:
17:18:a5:7a:3e:a9:f7:2f:0c:39:c2:49:bd:b2:f2:
b4:cc:31:81:4e:16:ab:26:5b:9b:f2:56:5d:59:a7:
77:19:d9:06:cf:92:f1:83:6d:8e:68:d7:68:0e:61:
de:a8:b3:f2:3e:76:a9:48:c7:fb:c4:98:ac:5a:d5:
92:26:f5:22:97:d3:3d:fb:e4:3f:7c:05:d3:90:4d:
e7:ad:2c:c8:fc:b9:cc:fc:23:bd:a2:c2:ad:c9:5c:
4e:e7:0a:93:e1:40:95:da:4f:67:49:04:e3:c5:2a:
f7:f9:52:38:37:08:52:0d:d5:ec:69:ca:f1:a2:39:
d8:53:b2:00:ef:85:c6:8c:e4:f6:81:32:52:a4:4d:
ff:72:ed:9c:1a:55:e5:4e:8f:40:e2:ab:fc:d6:7e:
26:5e:b3:6d:26:df:bb:b9:db:26:c2:64:39:84:a2:
02:ff:aa:8c:a5:ff:0c:cf:68:46:de:60:ad:87:d1:
81:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:5E:52:37:BD:4A:BF:91:E5:FF:17:40:C8:6F:D4:39:43:00:BD:19
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS834.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.57.17.0/24
5.181.126.0/24
5.181.135.0/24
5.252.83.0/24
45.87.185.0/24
45.88.98.0/24
45.89.253.0/24
45.93.44.0/24
45.95.22.0/24
45.133.172.0/23
45.137.116.0-45.137.118.255
45.139.183.0/24
89.19.49.0-89.19.50.255
92.118.162.0/24
92.119.33.0-92.119.34.255
92.242.184.0/24
92.242.186.0/24
109.106.3.0/24
130.185.124.0/24
130.185.127.0/24
179.61.130.0/24
179.61.140.0/24
179.61.150.0/24
179.61.226.0/24
179.61.253.0/24
181.41.196.0/24
181.214.0.0/24
181.214.4.0/24
181.215.12.0/24
181.215.73.0/24
181.215.91.0/24
181.215.95.0/24
181.215.112.0/24
181.215.176.0/24
185.137.12.0/24
185.139.0.0/24
185.141.166.0/24
185.142.25.0/24
185.173.35.0/24
191.96.24.0/24
191.96.80.0/24
191.96.89.0/24
191.96.102.0/23
191.96.111.0/24
191.96.116.0/24
191.96.120.0/24
191.96.126.0/24
191.96.149.0/24
191.96.153.0/24
191.96.180.0/24
191.96.190.0/24
191.96.207.0/24
191.96.222.0/24
191.101.20.0/24
191.101.66.0/23
191.101.88.0/24
191.101.97.0/24
191.101.102.0/24
191.101.116.0/24
191.101.120.0/24
191.101.124.0/23
191.101.144.0/24
191.101.177.0/24
191.101.182.0/24
191.101.189.0/24
191.101.192.0/24
191.101.198.0/24
191.101.204.0/24
191.101.209.0/24
191.101.236.0/24
191.101.240.0/24
191.101.252.0/24
193.107.211.0/24
194.53.141.0/24
194.110.13.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:34:6d:c3:93:fa:2d:d1:bc:21:2b:27:a7:3b:77:52:fe:ce:
ca:e1:ab:f9:8d:7a:b7:0b:5a:99:6c:5e:08:fd:ea:18:72:25:
ae:55:3e:31:9d:49:12:f1:bb:7f:61:50:12:24:bf:cc:27:0e:
1b:c6:64:eb:20:94:6f:d1:f3:6d:9f:a9:b3:75:3b:dd:cf:cc:
3d:67:03:79:dd:2b:eb:eb:97:53:41:26:2b:d9:ad:4f:3b:51:
6b:17:6c:c3:fc:54:7c:68:6d:bc:bb:3f:83:45:bb:fb:6b:1f:
84:3f:3d:65:22:bd:a3:34:95:2c:42:3d:2e:1e:01:91:32:56:
d1:16:e2:b1:c2:b5:87:c4:84:d7:03:1f:65:30:4f:8a:9b:e9:
e3:87:09:0c:51:2d:9e:8e:8e:6c:ee:02:9f:d6:76:95:66:2a:
8d:39:03:2d:9d:b0:02:7b:ee:39:fe:91:14:03:b9:ff:9c:7d:
f8:7d:de:7b:84:cd:0d:ca:00:71:a4:15:7a:95:9f:cb:4a:06:
9f:aa:14:e9:f8:38:36:ac:28:23:e6:d0:0d:c6:5d:79:55:2a:
90:1f:e5:d1:ca:4b:4a:e6:e3:c2:d3:61:7c:d3:a0:a2:b2:2c:
e3:e0:a0:40:92:ae:18:d7:17:46:dc:f8:38:67:f5:1f:48:90:
e3:ce:9c:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 20 00:29:59 2026 by rpki-client