Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS834.roa
File: AS834.roa (raw, json)
Hash identifier: IAQTouH6hK6FuW+CZfsE1aOI/VDV9YzDAf725B0QnSQ=
Subject key identifier: C7:96:23:5B:7D:13:D8:09:BA:EE:2B:55:DE:0F:3D:1B:14:2D:C6:E9
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 0295FDB0DE0E825906020052DEF3987E98203E52
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS834.roa
Signing time: Sun 13 Apr 2025 00:01:33 +0000
ROA not before: Sat 12 Apr 2025 23:56:33 +0000
ROA not after: Sun 12 Apr 2026 00:01:33 +0000
asID: 834
IP address blocks: 82.21.7.0/24 maxlen: 24
82.21.187.0/24 maxlen: 24
82.21.206.0/24 maxlen: 24
82.21.228.0/24 maxlen: 24
82.21.234.0/24 maxlen: 24
82.21.239.0/24 maxlen: 24
82.21.240.0/24 maxlen: 24
82.22.78.0/24 maxlen: 24
82.22.211.0/24 maxlen: 24
82.22.233.0/24 maxlen: 24
82.22.235.0/24 maxlen: 24
82.23.203.0/24 maxlen: 24
82.23.206.0/24 maxlen: 24
82.23.216.0/24 maxlen: 24
82.23.222.0/24 maxlen: 24
82.23.226.0/24 maxlen: 24
82.23.228.0/24 maxlen: 24
82.23.246.0/24 maxlen: 24
82.23.248.0/21 maxlen: 24
82.24.126.0/24 maxlen: 24
82.24.183.0/24 maxlen: 24
82.24.212.0/24 maxlen: 24
82.24.219.0/24 maxlen: 24
82.24.230.0/24 maxlen: 24
82.24.233.0/24 maxlen: 24
82.24.238.0/24 maxlen: 24
82.25.227.0/24 maxlen: 24
82.25.239.0/24 maxlen: 24
82.26.65.0/24 maxlen: 24
82.26.208.0/24 maxlen: 24
82.26.212.0/24 maxlen: 24
82.26.218.0/24 maxlen: 24
82.26.236.0/24 maxlen: 24
82.26.238.0/24 maxlen: 24
82.27.98.0/24 maxlen: 24
82.27.226.0/24 maxlen: 24
82.27.240.0/24 maxlen: 24
82.29.148.0/24 maxlen: 24
82.29.234.0/24 maxlen: 24
82.29.238.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
02:95:fd:b0:de:0e:82:59:06:02:00:52:de:f3:98:7e:98:20:3e:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Apr 12 23:56:33 2025 GMT
Not After : Apr 12 00:01:33 2026 GMT
Subject: CN=C796235B7D13D809BAEE2B55DE0F3D1B142DC6E9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:86:37:bf:6b:7e:6b:52:37:17:db:99:9a:db:
ff:49:f9:82:bc:7d:af:aa:14:41:3b:4d:19:50:ee:
41:bc:fc:df:43:e8:81:75:4c:85:c7:c1:13:0d:45:
40:89:6a:52:87:2a:d2:6b:b5:69:bb:23:42:42:b5:
9f:bf:f3:b2:d4:e7:34:f4:eb:97:ca:65:76:63:52:
46:95:af:b3:f7:aa:98:07:0d:db:5b:9e:cb:4a:c0:
58:da:1e:52:c0:55:80:b0:2f:81:5b:d0:34:87:c4:
89:92:75:8a:39:99:8f:97:3d:20:56:04:36:0b:af:
ad:5b:c9:fa:cf:27:93:ee:7d:e0:02:45:e8:02:5e:
90:be:21:f6:19:e4:98:e2:9c:57:02:49:af:a9:66:
82:ba:7d:08:73:21:14:f0:2b:00:ed:90:ed:6d:77:
f5:50:c5:ef:6f:bf:a3:ab:01:3a:ec:b6:05:a5:08:
b5:81:70:32:68:45:9e:67:51:e0:03:2d:b2:ac:ce:
04:ff:e7:78:19:19:08:cb:70:3d:f6:d4:e6:0c:e2:
1b:6b:41:53:bd:a4:28:eb:53:73:c3:a2:d9:f6:ce:
72:5e:f4:ca:c4:e7:ff:14:8e:68:0c:e0:bc:5e:b6:
42:c4:37:3a:82:83:8a:ff:c0:e3:75:4b:9f:a7:98:
f0:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:96:23:5B:7D:13:D8:09:BA:EE:2B:55:DE:0F:3D:1B:14:2D:C6:E9
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS834.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.21.7.0/24
82.21.187.0/24
82.21.206.0/24
82.21.228.0/24
82.21.234.0/24
82.21.239.0-82.21.240.255
82.22.78.0/24
82.22.211.0/24
82.22.233.0/24
82.22.235.0/24
82.23.203.0/24
82.23.206.0/24
82.23.216.0/24
82.23.222.0/24
82.23.226.0/24
82.23.228.0/24
82.23.246.0/24
82.23.248.0/21
82.24.126.0/24
82.24.183.0/24
82.24.212.0/24
82.24.219.0/24
82.24.230.0/24
82.24.233.0/24
82.24.238.0/24
82.25.227.0/24
82.25.239.0/24
82.26.65.0/24
82.26.208.0/24
82.26.212.0/24
82.26.218.0/24
82.26.236.0/24
82.26.238.0/24
82.27.98.0/24
82.27.226.0/24
82.27.240.0/24
82.29.148.0/24
82.29.234.0/24
82.29.238.0/23
Signature Algorithm: sha256WithRSAEncryption
98:7b:75:47:f4:b1:3c:e9:ec:78:ca:97:e5:6b:0a:18:8c:cb:
cf:ee:bc:c7:c8:e7:a6:b0:08:b6:6a:0a:30:58:99:05:f5:66:
8f:28:cf:e9:91:67:df:ac:bd:d9:8e:70:f8:7f:58:90:b2:59:
ee:49:8f:a0:7e:1f:04:f5:c5:49:7a:d2:58:d6:f4:6e:8e:05:
95:f0:7a:0d:c9:e2:bd:e0:ca:e3:02:99:a2:da:69:82:92:b9:
3e:a0:1d:ed:b8:f6:37:7c:59:7f:e1:27:09:bd:28:3d:1c:e4:
d6:94:31:68:ab:5b:fe:1e:8d:71:f8:7e:8c:fe:05:86:07:e0:
1c:32:8f:db:90:5f:f6:86:0b:c4:57:24:03:ef:cb:b4:35:18:
ce:b0:80:9f:58:5f:24:ba:60:8c:ce:99:c2:ad:cf:37:93:ff:
0f:82:3b:00:6a:86:44:2c:5a:b1:44:5d:c7:85:bd:22:fe:4d:
8e:92:d0:3e:cc:ea:27:cb:61:61:3d:2e:1b:16:a7:28:09:66:
79:f5:d8:03:5c:0a:85:e3:6a:72:99:59:cd:1a:e3:f4:d6:c4:
a3:04:34:19:5e:16:d5:d5:51:09:fa:b1:55:08:00:5c:81:12:
f3:70:5b:e3:2a:f4:28:2e:4d:a0:a5:76:53:c4:c6:4f:e2:e3:
16:bb:70:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:34:27 2025 by rpki-client on console.sobornost.net