Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/AS834.roa
File: AS834.roa (raw, json)
Hash identifier: k9YbGxWWfQOBqrlUjRrgFXCfewHssNRzNlWRLYvZShU=
Subject key identifier: 0B:B6:47:96:06:AD:E6:1C:D4:6A:26:E5:EF:EB:9D:6C:60:05:C8:EC
Certificate issuer: /CN=9dfbff217105df8877d463f6e9bac28a4084d20c
Certificate serial: 798EF88EFE011CE015547F43CCAD45FEA21E01C2
Authority key identifier: 9D:FB:FF:21:71:05:DF:88:77:D4:63:F6:E9:BA:C2:8A:40:84:D2:0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nfv_IXEF34h31GP26brCikCE0gw.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/AS834.roa
Signing time: Fri 27 Mar 2026 09:13:10 +0000
ROA not before: Fri 27 Mar 2026 09:08:10 +0000
ROA not after: Fri 26 Mar 2027 09:13:10 +0000
asID: 834
IP address blocks: 83.171.244.0/23 maxlen: 24
83.171.246.0/24 maxlen: 24
188.119.69.0/24 maxlen: 24
193.32.205.0/24 maxlen: 24
193.187.134.0/24 maxlen: 24
194.93.50.0/23 maxlen: 24
212.115.102.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/9DFBFF217105DF8877D463F6E9BAC28A4084D20C.crl
rsync://rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/9DFBFF217105DF8877D463F6E9BAC28A4084D20C.mft
rsync://rpki.ripe.net/repository/DEFAULT/nfv_IXEF34h31GP26brCikCE0gw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Mar 2026 00:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
79:8e:f8:8e:fe:01:1c:e0:15:54:7f:43:cc:ad:45:fe:a2:1e:01:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9dfbff217105df8877d463f6e9bac28a4084d20c
Validity
Not Before: Mar 27 09:08:10 2026 GMT
Not After : Mar 26 09:13:10 2027 GMT
Subject: CN=0BB6479606ADE61CD46A26E5EFEB9D6C6005C8EC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:1a:ee:e5:7d:ae:98:62:3c:7e:01:7b:46:6c:
fc:75:4b:64:10:bb:f8:2a:23:82:a7:53:26:02:69:
ac:f0:bf:ff:1f:2d:09:62:68:52:5e:8a:f9:e4:64:
2f:96:b2:57:90:67:0f:7e:97:ac:83:07:bb:58:f3:
89:0d:e9:ef:83:6a:c0:0d:d7:0c:59:1d:16:1d:99:
f3:e2:42:7f:17:46:9d:01:d0:22:12:c7:76:b1:3e:
9e:54:0d:1e:3c:d6:7e:d9:63:d6:c4:16:ef:af:23:
e6:c3:49:db:29:51:78:5b:4d:8e:8d:6f:48:ab:50:
cf:3b:93:2f:73:d4:e3:90:2d:69:0d:1f:74:29:31:
2c:d0:18:53:6c:ac:99:6f:2a:27:51:5d:9d:2d:5c:
67:a5:a4:9b:f2:26:12:1b:2d:14:93:da:47:0a:75:
7b:c6:dd:86:f8:fc:6f:58:67:c0:1b:d8:79:77:e4:
c4:18:10:58:ea:39:3c:a4:f6:96:b4:b5:e0:a4:0b:
fd:89:33:df:b5:52:2a:a0:cc:6c:e7:f1:a5:49:45:
17:0e:c0:37:57:1a:5a:e7:70:86:33:66:18:9e:f9:
72:f8:c3:d6:50:aa:67:94:f8:bf:9c:4e:c2:e6:e4:
66:ad:20:e3:65:cc:35:4f:df:b9:20:42:2f:65:77:
76:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:B6:47:96:06:AD:E6:1C:D4:6A:26:E5:EF:EB:9D:6C:60:05:C8:EC
X509v3 Authority Key Identifier:
keyid:9D:FB:FF:21:71:05:DF:88:77:D4:63:F6:E9:BA:C2:8A:40:84:D2:0C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/9DFBFF217105DF8877D463F6E9BAC28A4084D20C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nfv_IXEF34h31GP26brCikCE0gw.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/AS834.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.171.244.0-83.171.246.255
188.119.69.0/24
193.32.205.0/24
193.187.134.0/24
194.93.50.0/23
212.115.102.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:5b:e1:44:33:f8:5a:47:7d:82:0f:4c:22:23:55:5f:b4:43:
51:80:6a:59:ef:ec:9a:3b:76:e2:cc:de:69:00:f1:4b:a5:98:
88:8f:4c:cc:de:b3:2e:6d:f5:03:36:ad:ec:42:5f:91:8b:68:
e0:63:22:2a:68:1e:4d:8a:28:da:b7:7d:7d:33:a3:02:53:0b:
ab:8d:65:ab:02:be:46:9c:59:66:4a:8a:e8:05:cb:55:ba:cd:
5b:b5:f3:95:bc:af:8c:f4:9b:45:c8:99:21:ab:fb:fa:08:e5:
84:21:ee:7f:13:b1:84:95:bf:dc:26:bf:e2:f3:0f:10:f1:da:
55:b6:eb:54:77:11:83:72:17:e2:bc:8c:e0:85:4c:f4:76:23:
de:f5:f6:22:3b:bd:14:db:3b:3b:03:24:a6:3b:47:70:93:d6:
0e:0c:ab:ba:85:12:67:c6:8c:7b:47:51:5c:a9:5c:a8:a6:b9:
b7:ea:da:b9:55:c8:8e:6b:e5:4b:9e:7c:93:4b:2f:ca:cc:dc:
d2:ae:84:a0:f7:59:4d:06:af:8b:03:ce:2c:56:0d:b7:c6:82:
80:0e:eb:c4:77:ef:e7:13:b9:72:f6:63:de:68:d6:85:77:dc:
a2:17:55:1d:2a:e3:ee:73:ab:9a:c6:22:0c:df:7a:b1:bd:ec:
e1:20:85:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 28 06:31:25 2026 by rpki-client