Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS834.roa
File: AS834.roa (raw, json)
Hash identifier: y/QTNk791V1USXmlenLoGbDFds9YgVT8NFo8baMsA6I=
Subject key identifier: 00:5C:F5:CC:25:3F:6E:29:DC:06:BE:88:AD:D9:EB:B4:92:FC:E9:AE
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 62CA3F5774F9E6F9F8F82DD57E38D7F992290D52
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS834.roa
Signing time: Sat 18 Apr 2026 12:53:21 +0000
ROA not before: Sat 18 Apr 2026 12:48:21 +0000
ROA not after: Sat 17 Apr 2027 12:53:21 +0000
asID: 834
IP address blocks: 82.21.0.0/24 maxlen: 24
82.21.3.0/24 maxlen: 24
82.22.28.0/23 maxlen: 24
82.22.37.0/24 maxlen: 24
82.22.126.0/24 maxlen: 24
82.25.11.0/24 maxlen: 24
82.25.20.0/24 maxlen: 24
82.26.65.0/24 maxlen: 24
82.26.129.0/24 maxlen: 24
82.38.92.0/22 maxlen: 24
82.38.131.0/24 maxlen: 24
82.38.151.0/24 maxlen: 24
82.38.168.0/23 maxlen: 24
82.38.175.0/24 maxlen: 24
82.39.228.0/23 maxlen: 24
82.39.240.0/22 maxlen: 24
82.40.51.0/24 maxlen: 24
82.40.62.0/23 maxlen: 24
82.41.120.0/24 maxlen: 24
82.41.210.0/23 maxlen: 24
82.41.221.0/24 maxlen: 24
82.47.19.0/24 maxlen: 24
82.47.20.0/24 maxlen: 24
82.47.22.0/24 maxlen: 24
82.47.24.0/23 maxlen: 24
82.47.26.0/24 maxlen: 24
82.47.29.0/24 maxlen: 24
82.47.30.0/24 maxlen: 24
82.47.36.0/23 maxlen: 24
82.47.38.0/24 maxlen: 24
82.47.40.0/23 maxlen: 24
82.47.42.0/24 maxlen: 24
82.47.45.0/24 maxlen: 24
82.47.46.0/24 maxlen: 24
82.47.49.0/24 maxlen: 24
82.47.50.0/23 maxlen: 24
82.47.53.0/24 maxlen: 24
82.47.54.0/24 maxlen: 24
82.47.56.0/24 maxlen: 24
82.47.58.0/24 maxlen: 24
82.47.60.0/22 maxlen: 24
82.47.96.0/21 maxlen: 24
82.47.105.0/24 maxlen: 24
82.47.108.0/23 maxlen: 24
82.47.111.0/24 maxlen: 24
82.47.113.0/24 maxlen: 24
82.47.114.0/23 maxlen: 24
82.47.116.0/24 maxlen: 24
82.47.118.0/23 maxlen: 24
82.47.120.0/21 maxlen: 24
82.47.128.0/23 maxlen: 24
82.47.131.0/24 maxlen: 24
82.47.132.0/23 maxlen: 24
82.47.134.0/24 maxlen: 24
82.47.136.0/21 maxlen: 24
82.47.144.0/24 maxlen: 24
82.47.146.0/24 maxlen: 24
82.47.149.0/24 maxlen: 24
82.47.150.0/23 maxlen: 24
82.47.152.0/21 maxlen: 24
82.47.160.0/20 maxlen: 24
82.47.176.0/23 maxlen: 24
82.47.179.0/24 maxlen: 24
82.47.181.0/24 maxlen: 24
82.47.183.0/24 maxlen: 24
82.47.185.0/24 maxlen: 24
82.47.186.0/23 maxlen: 24
82.47.188.0/23 maxlen: 24
82.47.190.0/24 maxlen: 24
82.47.208.0/23 maxlen: 24
82.47.210.0/24 maxlen: 24
82.47.212.0/24 maxlen: 24
82.47.214.0/23 maxlen: 24
82.47.216.0/24 maxlen: 24
82.47.218.0/23 maxlen: 24
82.47.221.0/24 maxlen: 24
82.47.222.0/24 maxlen: 24
82.47.224.0/23 maxlen: 24
82.47.228.0/23 maxlen: 24
82.47.231.0/24 maxlen: 24
82.47.240.0/22 maxlen: 24
82.47.252.0/23 maxlen: 24
82.47.254.0/24 maxlen: 24
84.75.8.0/24 maxlen: 24
84.75.12.0/22 maxlen: 24
84.75.20.0/22 maxlen: 24
84.75.25.0/24 maxlen: 24
84.75.27.0/24 maxlen: 24
84.75.44.0/22 maxlen: 24
84.75.56.0/22 maxlen: 24
84.75.77.0/24 maxlen: 24
84.75.80.0/23 maxlen: 24
84.75.82.0/24 maxlen: 24
84.75.84.0/24 maxlen: 24
84.75.139.0/24 maxlen: 24
84.75.204.0/24 maxlen: 24
84.75.222.0/23 maxlen: 24
84.75.224.0/20 maxlen: 24
84.75.244.0/22 maxlen: 24
84.75.248.0/22 maxlen: 24
84.75.252.0/23 maxlen: 24
178.83.13.0/24 maxlen: 24
178.83.17.0/24 maxlen: 24
178.83.34.0/24 maxlen: 24
178.83.155.0/24 maxlen: 24
178.83.164.0/24 maxlen: 24
178.83.177.0/24 maxlen: 24
178.83.180.0/23 maxlen: 24
178.83.184.0/24 maxlen: 24
178.83.191.0/24 maxlen: 24
178.83.193.0/24 maxlen: 24
178.83.197.0/24 maxlen: 24
178.83.207.0/24 maxlen: 24
178.83.212.0/24 maxlen: 24
178.83.215.0/24 maxlen: 24
178.83.226.0/24 maxlen: 24
178.83.246.0/24 maxlen: 24
178.83.248.0/22 maxlen: 24
178.83.254.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 19 Apr 2026 09:01:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
62:ca:3f:57:74:f9:e6:f9:f8:f8:2d:d5:7e:38:d7:f9:92:29:0d:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Apr 18 12:48:21 2026 GMT
Not After : Apr 17 12:53:21 2027 GMT
Subject: CN=005CF5CC253F6E29DC06BE88ADD9EBB492FCE9AE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:2d:7d:17:22:90:35:7b:8c:34:ef:2d:02:5e:
a1:d1:e6:47:2c:f4:9a:20:0e:4e:c9:b8:5f:93:f8:
9f:85:bc:38:2d:f6:b2:94:03:4d:9e:62:b8:92:73:
ec:04:c0:3b:4a:1a:cd:0b:cc:4d:7e:f4:cb:48:3a:
2b:bb:cd:d5:9e:69:f6:cc:c3:ec:f8:a5:9a:81:a1:
a3:f8:e5:d2:68:72:16:ed:6a:00:56:9d:d9:a6:51:
4d:da:d7:61:c8:9f:f1:e3:f1:89:8e:3d:14:7a:6f:
b5:cf:3a:81:ec:9f:5a:76:34:91:2b:fb:a3:77:76:
f0:b5:c0:d7:3f:5c:f2:93:e9:09:9a:9e:85:fd:02:
e0:59:ab:d0:94:21:21:97:3d:37:da:44:4c:f3:25:
ad:06:fc:33:d0:c8:ed:ab:1a:c6:06:f1:4d:ff:e5:
c9:a7:be:dd:7a:45:bd:ae:f7:39:6e:63:57:78:29:
d3:df:92:b6:a0:ee:28:90:d1:85:ea:74:47:c2:6d:
53:fa:43:49:77:79:ba:9f:6e:a3:1b:16:9d:42:4f:
ea:d3:d6:64:23:a0:3b:17:a1:f4:00:55:df:ff:35:
d3:0c:5c:b6:f6:a9:fe:77:94:59:e7:d0:0e:1a:13:
94:a2:9f:04:e6:b7:37:59:b5:48:9e:aa:b6:2f:f5:
04:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:5C:F5:CC:25:3F:6E:29:DC:06:BE:88:AD:D9:EB:B4:92:FC:E9:AE
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS834.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.21.0.0/24
82.21.3.0/24
82.22.28.0/23
82.22.37.0/24
82.22.126.0/24
82.25.11.0/24
82.25.20.0/24
82.26.65.0/24
82.26.129.0/24
82.38.92.0/22
82.38.131.0/24
82.38.151.0/24
82.38.168.0/23
82.38.175.0/24
82.39.228.0/23
82.39.240.0/22
82.40.51.0/24
82.40.62.0/23
82.41.120.0/24
82.41.210.0/23
82.41.221.0/24
82.47.19.0-82.47.20.255
82.47.22.0/24
82.47.24.0-82.47.26.255
82.47.29.0-82.47.30.255
82.47.36.0-82.47.38.255
82.47.40.0-82.47.42.255
82.47.45.0-82.47.46.255
82.47.49.0-82.47.51.255
82.47.53.0-82.47.54.255
82.47.56.0/24
82.47.58.0/24
82.47.60.0/22
82.47.96.0/21
82.47.105.0/24
82.47.108.0/23
82.47.111.0/24
82.47.113.0-82.47.116.255
82.47.118.0-82.47.129.255
82.47.131.0-82.47.134.255
82.47.136.0-82.47.144.255
82.47.146.0/24
82.47.149.0-82.47.177.255
82.47.179.0/24
82.47.181.0/24
82.47.183.0/24
82.47.185.0-82.47.190.255
82.47.208.0-82.47.210.255
82.47.212.0/24
82.47.214.0-82.47.216.255
82.47.218.0/23
82.47.221.0-82.47.222.255
82.47.224.0/23
82.47.228.0/23
82.47.231.0/24
82.47.240.0/22
82.47.252.0-82.47.254.255
84.75.8.0/24
84.75.12.0/22
84.75.20.0/22
84.75.25.0/24
84.75.27.0/24
84.75.44.0/22
84.75.56.0/22
84.75.77.0/24
84.75.80.0-84.75.82.255
84.75.84.0/24
84.75.139.0/24
84.75.204.0/24
84.75.222.0-84.75.239.255
84.75.244.0-84.75.253.255
178.83.13.0/24
178.83.17.0/24
178.83.34.0/24
178.83.155.0/24
178.83.164.0/24
178.83.177.0/24
178.83.180.0/23
178.83.184.0/24
178.83.191.0/24
178.83.193.0/24
178.83.197.0/24
178.83.207.0/24
178.83.212.0/24
178.83.215.0/24
178.83.226.0/24
178.83.246.0/24
178.83.248.0/22
178.83.254.0/24
Signature Algorithm: sha256WithRSAEncryption
20:f4:25:26:bc:0c:43:a5:8a:0b:16:3c:7b:3d:fd:a6:7e:cf:
04:ae:40:d1:59:c3:0f:49:18:0f:2a:9a:f3:78:23:db:71:86:
32:d9:e3:7c:e6:a3:33:53:ab:ac:8d:dd:97:8e:03:7d:02:b3:
1e:9b:92:89:4f:3e:8c:32:4d:67:91:41:c4:6a:7a:9a:7b:3b:
c3:e2:9f:54:15:70:81:d4:54:a5:c2:06:e4:1d:8a:03:a4:aa:
33:3b:05:ad:de:0a:55:fe:e4:d6:fb:43:18:b6:a2:ad:b4:4e:
65:46:2b:7d:5c:f6:d6:ed:d5:a0:ea:76:64:47:3c:c2:77:11:
37:81:c3:00:73:ec:44:ae:dd:09:65:0f:30:fa:e4:b2:14:dd:
ba:99:7c:2b:17:ce:b7:39:ef:85:2a:76:d8:84:c4:7a:99:d1:
67:55:ce:3d:64:66:af:21:85:3c:a4:d0:10:08:1e:74:91:c2:
6a:43:19:f0:71:b6:4f:3f:52:89:ca:0d:71:f9:65:23:86:66:
b2:88:f2:3d:1a:b5:e4:e9:f3:18:69:9c:09:65:6f:51:6d:e4:
08:a2:0e:03:0c:44:4c:cd:3e:73:b4:24:56:94:06:88:8e:bc:
e0:bd:c3:bf:f1:46:9e:1e:eb:59:96:de:9a:b8:ae:23:7f:a4:
5a:a9:44:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 18 19:37:57 2026 by rpki-client