Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS834.roa
File: AS834.roa (raw, json)
Hash identifier: DYx8+DiT6369J8Or4JGodEpgTh8gAZmnBDAeEpQoU/A=
Subject key identifier: 31:04:FC:71:1B:23:38:B1:EE:87:14:39:B7:FE:36:F0:48:7F:FE:91
Certificate issuer: /CN=c2302af143c15daad50042d8455e689d0828eca9
Certificate serial: 4D0FE980FC85096337F2AD2B5D91605B29205CEF
Authority key identifier: C2:30:2A:F1:43:C1:5D:AA:D5:00:42:D8:45:5E:68:9D:08:28:EC:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS834.roa
Signing time: Fri 05 Jun 2026 18:46:27 +0000
ROA not before: Fri 05 Jun 2026 18:41:27 +0000
ROA not after: Fri 04 Jun 2027 18:46:27 +0000
asID: 834
IP address blocks: 141.11.44.0/24 maxlen: 24
141.11.47.0/24 maxlen: 24
141.11.50.0/23 maxlen: 24
141.11.79.0/24 maxlen: 24
141.11.88.0/23 maxlen: 24
141.11.192.0/23 maxlen: 24
141.11.212.0/23 maxlen: 24
141.11.218.0/24 maxlen: 24
141.11.234.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/C2302AF143C15DAAD50042D8455E689D0828ECA9.crl
rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/C2302AF143C15DAAD50042D8455E689D0828ECA9.mft
rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 06 Jun 2026 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4d:0f:e9:80:fc:85:09:63:37:f2:ad:2b:5d:91:60:5b:29:20:5c:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2302af143c15daad50042d8455e689d0828eca9
Validity
Not Before: Jun 5 18:41:27 2026 GMT
Not After : Jun 4 18:46:27 2027 GMT
Subject: CN=3104FC711B2338B1EE871439B7FE36F0487FFE91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:9b:49:7f:ec:7a:18:51:35:3e:32:72:5a:8a:
fb:e5:6e:13:47:72:b6:bd:2e:77:51:c9:0f:d6:75:
f1:78:96:78:87:c1:95:73:1d:0a:18:3f:2a:4d:72:
c9:8a:50:5a:63:60:55:1c:26:59:5c:3f:c2:fa:8d:
7c:25:3d:e9:38:65:5c:e8:93:0e:28:3f:a7:d2:96:
2e:34:09:33:cc:e8:2e:52:49:1b:17:1a:4e:32:c8:
b6:d6:1b:78:38:e3:08:c1:27:ae:e3:86:8c:40:a8:
b8:d5:97:43:00:09:4f:b6:66:fc:de:59:c9:88:6f:
1f:e3:dc:63:8e:8c:fd:dd:eb:1e:fb:c0:4f:08:9a:
c4:23:3c:c7:84:37:aa:22:ec:df:52:2b:9f:95:20:
50:fb:70:6e:36:b0:52:ca:2c:74:1c:4e:bf:06:80:
fb:ad:83:74:07:de:d0:db:eb:37:37:a0:3b:c0:8c:
f6:e2:6c:8e:6c:7e:16:52:71:86:80:08:26:a9:fe:
7a:50:25:46:f0:f8:15:23:00:c7:1d:cc:d0:fd:ca:
3e:b3:b3:b2:a4:b0:bb:bf:19:31:86:44:15:2d:fa:
70:1c:54:b4:67:72:d2:1e:64:f3:fd:96:57:af:a9:
d8:ec:62:9f:64:51:01:f1:3d:b8:79:d5:0e:1a:39:
ff:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:04:FC:71:1B:23:38:B1:EE:87:14:39:B7:FE:36:F0:48:7F:FE:91
X509v3 Authority Key Identifier:
keyid:C2:30:2A:F1:43:C1:5D:AA:D5:00:42:D8:45:5E:68:9D:08:28:EC:A9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/C2302AF143C15DAAD50042D8455E689D0828ECA9.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS834.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.11.44.0/24
141.11.47.0/24
141.11.50.0/23
141.11.79.0/24
141.11.88.0/23
141.11.192.0/23
141.11.212.0/23
141.11.218.0/24
141.11.234.0/23
Signature Algorithm: sha256WithRSAEncryption
7d:dc:ad:51:1e:56:c4:3b:74:65:ab:62:fc:22:8c:c8:74:3e:
5d:cf:88:f5:7a:37:16:18:70:77:21:3b:63:c5:70:1e:87:9e:
fc:a4:e6:bb:f6:84:d9:4b:e3:ea:77:d3:1a:f6:62:ce:be:be:
40:5e:55:0d:2e:d8:bd:08:e6:71:d8:fd:15:1b:b4:84:14:e4:
6b:55:f0:7d:62:b7:aa:95:eb:97:8e:a3:94:19:78:26:e8:22:
bc:24:25:d1:62:b8:4a:ed:88:b9:26:10:99:64:5e:57:bd:71:
55:80:d0:e9:fe:e5:9c:ea:77:87:73:a2:70:1e:c8:b6:0a:a4:
5a:63:f4:ad:d4:13:61:1a:91:85:e3:99:eb:13:87:49:6c:8e:
45:b3:59:38:0a:c1:06:71:ed:52:70:e1:e4:3c:93:86:ad:5f:
f9:19:e3:ed:f8:90:c3:9a:04:ee:22:8d:3d:a7:21:4c:0f:e9:
59:83:7e:1c:20:70:1f:3d:25:06:ca:02:bd:85:91:87:9b:c5:
de:6e:54:0b:21:d0:73:67:85:be:bb:c9:c1:9b:27:0a:9c:a0:
f4:1d:c4:c7:3e:87:a0:d8:6b:21:4d:bb:e0:48:ff:74:87:a1:
99:38:e4:70:b9:14:85:a4:b9:92:fd:f4:f5:00:1b:6a:90:06:
4b:54:f5:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 6 04:01:06 2026 by rpki-client