Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/AS834.roa
File: AS834.roa (raw, json)
Hash identifier: 0eDFe7ZuJYTm2R2iM4cynXOuwVN3SBVtNf1tXUleg9A=
Subject key identifier: 4D:75:6C:F0:59:A8:BF:E2:EF:8C:AD:29:15:AF:05:18:74:12:DE:FB
Certificate issuer: /CN=7051b4c2f7ae9ef80b53000b32ab8f5d2f2f415b
Certificate serial: 40B2B81CFE4B51177625B9C8F1375E648E5B6D06
Authority key identifier: 70:51:B4:C2:F7:AE:9E:F8:0B:53:00:0B:32:AB:8F:5D:2F:2F:41:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cFG0wveunvgLUwALMquPXS8vQVs.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/AS834.roa
Signing time: Tue 03 Jun 2025 15:04:43 +0000
ROA not before: Tue 03 Jun 2025 14:59:43 +0000
ROA not after: Tue 02 Jun 2026 15:04:43 +0000
asID: 834
IP address blocks: 176.53.168.0/24 maxlen: 24
193.32.205.0/24 maxlen: 24
193.32.206.0/24 maxlen: 24
193.38.46.0/24 maxlen: 24
193.187.132.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/7051B4C2F7AE9EF80B53000B32AB8F5D2F2F415B.crl
rsync://rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/7051B4C2F7AE9EF80B53000B32AB8F5D2F2F415B.mft
rsync://rpki.ripe.net/repository/DEFAULT/cFG0wveunvgLUwALMquPXS8vQVs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 06 Jun 2025 05:49:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
40:b2:b8:1c:fe:4b:51:17:76:25:b9:c8:f1:37:5e:64:8e:5b:6d:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7051b4c2f7ae9ef80b53000b32ab8f5d2f2f415b
Validity
Not Before: Jun 3 14:59:43 2025 GMT
Not After : Jun 2 15:04:43 2026 GMT
Subject: CN=4D756CF059A8BFE2EF8CAD2915AF05187412DEFB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:b4:2f:5b:d4:7a:cf:f4:e7:9b:9d:1a:66:94:
f7:03:c4:63:cf:1a:e0:9a:2d:06:0f:af:e5:3d:2b:
1a:40:69:06:f3:87:7a:67:de:72:d6:56:17:54:85:
bb:3a:08:44:8a:ef:32:b0:ef:be:19:e1:34:86:6e:
bf:0d:f5:5a:df:1a:1b:ed:40:53:9f:1d:d7:fe:7e:
45:33:83:58:19:b4:9a:29:6a:f9:4b:dd:cd:db:1a:
ed:4c:94:c1:af:1d:87:3e:88:21:ba:b4:ad:0c:2d:
97:ae:14:80:b1:cb:ec:09:91:e6:fe:6f:2e:e6:66:
70:a3:b0:dd:9c:95:1c:4b:96:bd:01:d6:aa:37:ad:
8a:97:0f:ca:9f:35:df:1a:fe:d9:83:a7:f6:48:35:
8e:f7:c7:e9:67:02:c0:5f:a6:38:ca:19:ce:db:06:
7b:7d:3c:a4:28:c4:16:f3:53:d4:44:bd:15:de:ce:
45:45:96:a8:1b:e8:8d:f4:49:cd:a3:c2:2e:01:02:
c8:d3:ac:d1:c3:66:fd:cb:3d:cb:c0:51:5d:29:f6:
55:23:be:e7:96:a5:79:1a:53:94:b5:a3:7b:63:0d:
e4:e2:39:64:29:03:6d:b8:71:14:4e:c4:98:27:06:
f8:a4:c1:d7:d7:a4:85:a6:38:f6:2d:4b:c3:71:ed:
93:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:75:6C:F0:59:A8:BF:E2:EF:8C:AD:29:15:AF:05:18:74:12:DE:FB
X509v3 Authority Key Identifier:
keyid:70:51:B4:C2:F7:AE:9E:F8:0B:53:00:0B:32:AB:8F:5D:2F:2F:41:5B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/7051B4C2F7AE9EF80B53000B32AB8F5D2F2F415B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cFG0wveunvgLUwALMquPXS8vQVs.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/AS834.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.53.168.0/24
193.32.205.0-193.32.206.255
193.38.46.0/24
193.187.132.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:a1:06:b2:de:89:2a:97:3a:4c:86:86:0e:80:8b:7d:c7:ed:
f5:c2:b5:4f:88:4a:d0:6b:8e:b5:2f:c6:5e:92:e3:20:86:6c:
6d:21:3e:f2:76:35:63:7b:c3:6b:13:03:3f:a4:88:be:06:6c:
1d:fc:74:c0:64:6b:06:92:6f:c0:f7:dc:0e:cc:7a:a5:2e:65:
f2:37:97:bf:90:69:c6:ed:60:65:1e:d8:35:f8:71:2a:e4:63:
a0:90:3f:d6:36:8c:4e:95:e2:70:36:b1:c8:a0:3e:6c:3e:08:
b1:da:af:7d:1d:a5:84:8b:1a:8f:0e:ca:e9:bd:bf:40:cd:f5:
d8:91:63:1a:15:59:fa:6d:96:a5:c9:3a:bb:d0:b3:53:11:86:
e1:23:fc:05:ac:63:d1:22:b8:58:76:56:cb:3a:5e:0e:03:a7:
8e:e8:80:9c:7c:1d:de:13:3e:d0:df:ed:4d:d3:e7:d5:63:9e:
4b:2a:68:71:eb:81:42:cd:c2:45:3c:0e:0e:a7:2d:74:d2:88:
9b:74:74:ee:95:41:2f:f7:fb:57:84:1d:03:2a:26:27:6a:c2:
15:85:76:3c:87:c6:db:b9:15:52:ba:86:c0:66:f8:4d:71:b4:
6a:c0:3e:39:4e:a8:c8:13:c3:1f:df:47:1d:2f:aa:4c:27:0e:
d1:97:01:d2
-----BEGIN CERTIFICATE-----
MIIFFzCCA/+gAwIBAgIUQLK4HP5LURd2JbnI8TdeZI5bbQYwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNzA1MWI0YzJmN2FlOWVmODBiNTMwMDBiMzJhYjhmNWQy
ZjJmNDE1YjAeFw0yNTA2MDMxNDU5NDNaFw0yNjA2MDIxNTA0NDNaMDMxMTAvBgNV
BAMTKDRENzU2Q0YwNTlBOEJGRTJFRjhDQUQyOTE1QUYwNTE4NzQxMkRFRkIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDtC9b1HrP9OebnRpmlPcDxGPP
GuCaLQYPr+U9KxpAaQbzh3pn3nLWVhdUhbs6CESK7zKw774Z4TSGbr8N9VrfGhvt
QFOfHdf+fkUzg1gZtJopavlL3c3bGu1MlMGvHYc+iCG6tK0MLZeuFICxy+wJkeb+
by7mZnCjsN2clRxLlr0B1qo3rYqXD8qfNd8a/tmDp/ZINY73x+lnAsBfpjjKGc7b
Bnt9PKQoxBbzU9REvRXezkVFlqgb6I30Sc2jwi4BAsjTrNHDZv3LPcvAUV0p9lUj
vueWpXkaU5S1o3tjDeTiOWQpA224cRROxJgnBvikwdfXpIWmOPYtS8Nx7ZPVAgMB
AAGjggIhMIICHTAdBgNVHQ4EFgQUTXVs8Fmov+LvjK0pFa8FGHQS3vswHwYDVR0j
BBgwFoAUcFG0wveunvgLUwALMquPXS8vQVswDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvOWM1Y2U5ZmEtOWE2Zi00ZTBjLTk4MDktN2E0Nzg4NzQ0
ODkzLzAvNzA1MUI0QzJGN0FFOUVGODBCNTMwMDBCMzJBQjhGNUQyRjJGNDE1Qi5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2NGRzB3dmV1bnZnTFV3QUxNcXVQWFM4
dlFWcy5jZXIweAYIKwYBBQUHAQsEbDBqMGgGCCsGAQUFBzALhlxyc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzljNWNlOWZhLTlhNmYt
NGUwYy05ODA5LTdhNDc4ODc0NDg5My8wL0FTODM0LnJvYTAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDkGCCsGAQUFBwEHAQH/BCowKDAmBAIAATAgAwQAsDWoMAwD
BADBIM0DBADBIM4DBADBJi4DBADBu4QwDQYJKoZIhvcNAQELBQADggEBAGuhBrLe
iSqXOkyGhg6Ai33H7fXCtU+IStBrjrUvxl6S4yCGbG0hPvJ2NWN7w2sTAz+kiL4G
bB38dMBkawaSb8D33A7MeqUuZfI3l7+QacbtYGUe2DX4cSrkY6CQP9Y2jE6V4nA2
scigPmw+CLHar30dpYSLGo8Oyum9v0DN9diRYxoVWfptlqXJOrvQs1MRhuEj/AWs
Y9EiuFh2Vss6Xg4Dp47ogJx8Hd4TPtDf7U3T59VjnksqaHHrgULNwkU8Dg6nLXTS
iJt0dO6VQS/3+1eEHQMqJidqwhWFdjyHxtu5FVK6hsBm+E1xtGrAPjlOqMgTwx/f
Rx0vqkwnDtGXAdI=
-----END CERTIFICATE-----
Generated at Thu Jun 5 18:11:10 2025 by rpki-client