Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS834.roa
File: AS834.roa (raw, json)
Hash identifier: k0CeeoKSess/NUX3ln7ajzB4WSvDWTzX36SKMOieAKA=
Subject key identifier: 3D:C3:46:30:B0:FE:A3:FE:6F:7B:B0:18:42:79:4F:1A:B2:9E:99:84
Certificate issuer: /CN=c2302af143c15daad50042d8455e689d0828eca9
Certificate serial: 58F66B967091CE4D73BA25DABE116E65B7BCE2EC
Authority key identifier: C2:30:2A:F1:43:C1:5D:AA:D5:00:42:D8:45:5E:68:9D:08:28:EC:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS834.roa
Signing time: Sun 11 May 2025 00:01:22 +0000
ROA not before: Sat 10 May 2025 23:56:22 +0000
ROA not after: Sun 10 May 2026 00:01:22 +0000
asID: 834
IP address blocks: 141.11.39.0/24 maxlen: 24
141.11.124.0/24 maxlen: 24
141.11.243.0/24 maxlen: 24
141.11.245.0/24 maxlen: 24
194.60.89.0/24 maxlen: 24
194.60.90.0/24 maxlen: 24
194.60.92.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/C2302AF143C15DAAD50042D8455E689D0828ECA9.crl
rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/C2302AF143C15DAAD50042D8455E689D0828ECA9.mft
rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 00:26:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
58:f6:6b:96:70:91:ce:4d:73:ba:25:da:be:11:6e:65:b7:bc:e2:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2302af143c15daad50042d8455e689d0828eca9
Validity
Not Before: May 10 23:56:22 2025 GMT
Not After : May 10 00:01:22 2026 GMT
Subject: CN=3DC34630B0FEA3FE6F7BB01842794F1AB29E9984
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:f3:13:64:cc:dd:5c:0c:6e:3d:7f:1b:5e:e9:
c0:c1:58:2f:bb:4a:9a:91:1b:cd:89:d9:ba:1d:ac:
7f:cb:42:bb:2a:3d:9b:4c:74:ab:67:4d:e1:3f:5e:
9e:45:7d:db:f7:2d:fb:9d:6f:af:01:50:0d:fc:f7:
4c:83:4a:13:53:f8:3a:41:fc:bb:bd:ba:d8:3e:97:
9f:ec:41:be:a0:ba:63:5c:e9:58:89:be:2c:a1:42:
c9:14:16:db:8e:5a:3b:09:87:9d:a8:34:cf:a9:d6:
2c:61:e2:67:7d:d6:52:b8:31:d6:0f:5b:45:d8:d3:
d1:61:8c:e7:f2:23:f9:c6:cf:1d:9f:ab:ea:54:6f:
96:2e:e5:7b:21:74:59:60:11:26:f0:5f:83:7c:e6:
79:25:48:e0:61:29:40:1c:5c:de:59:1c:9d:79:f5:
5d:86:d6:34:c3:92:d7:ec:fd:3e:fd:03:23:6e:c5:
8f:bc:02:4d:56:09:df:2b:ed:fd:f8:5c:6f:91:fc:
b5:08:ab:c4:73:22:f3:b7:6a:ab:cd:40:60:81:b2:
da:d4:9a:16:ea:9b:4c:33:09:eb:e0:f9:a9:76:a1:
42:62:11:2b:79:75:0f:46:76:9b:b8:4c:7a:1a:fa:
3f:96:08:2d:5f:94:e8:6f:42:b8:cb:dd:29:c6:b2:
21:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:C3:46:30:B0:FE:A3:FE:6F:7B:B0:18:42:79:4F:1A:B2:9E:99:84
X509v3 Authority Key Identifier:
keyid:C2:30:2A:F1:43:C1:5D:AA:D5:00:42:D8:45:5E:68:9D:08:28:EC:A9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/C2302AF143C15DAAD50042D8455E689D0828ECA9.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS834.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.11.39.0/24
141.11.124.0/24
141.11.243.0/24
141.11.245.0/24
194.60.89.0-194.60.90.255
194.60.92.0/23
Signature Algorithm: sha256WithRSAEncryption
62:7d:89:41:cb:11:60:83:30:1c:2a:3d:80:b3:73:a2:e3:f8:
86:a8:91:5e:8f:01:9b:59:ec:ca:ef:ac:a2:ce:d8:dc:7b:25:
54:8d:ed:23:01:e0:96:03:3f:f0:cd:3c:c8:27:8e:b4:50:be:
70:79:ee:c5:19:cb:a0:9a:9f:30:d1:97:4c:a8:2b:08:3d:1d:
11:91:49:ac:c2:92:38:fe:47:a3:3c:f9:09:c8:2a:a5:1b:15:
76:54:d3:0c:db:d3:67:24:24:8b:f2:89:6e:40:d0:d6:1f:c8:
81:7b:b1:d4:e2:80:84:11:c1:44:bd:df:85:95:d4:bc:05:0d:
4e:c7:6b:cb:fa:cd:10:ce:6b:58:06:1c:a0:e7:ae:57:9c:80:
fc:2a:5b:b2:97:07:a6:8e:e9:69:b5:01:e3:28:4d:3c:39:74:
76:bb:62:4f:19:3b:27:89:c0:1a:fb:ca:16:53:cd:5f:fa:24:
7f:9a:6f:5d:bd:84:ed:c5:d4:cf:ae:2a:b0:59:df:5c:56:10:
c3:2a:fa:77:e6:52:e7:be:ec:db:e2:34:5d:9d:af:ef:08:ec:
b7:a5:56:93:42:32:95:42:8c:93:45:06:0d:fe:bb:76:eb:f3:
67:32:4c:0b:45:ff:f9:c7:d4:47:45:79:f9:95:28:60:e5:14:
89:60:3c:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 12:27:59 2025 by rpki-client