Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS22427.roa
File: AS22427.roa (raw, json)
Hash identifier: rSv/iXcevdsgsLji55r2ZwqxDpHTwjVzUrJ1/Tkruuk=
Subject key identifier: B8:AC:0E:8A:39:B4:BF:BD:B3:88:F9:5A:4C:1A:BE:B6:8D:4D:90:EF
Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Certificate serial: 7E0E7F4E896CDD8EB3C91E6BE8BFAE6B20822FE7
Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS22427.roa
Signing time: Mon 01 Jun 2026 12:24:52 +0000
ROA not before: Mon 01 Jun 2026 12:19:52 +0000
ROA not after: Mon 31 May 2027 12:24:52 +0000
asID: 22427
IP address blocks: 146.103.52.0/24 maxlen: 24
155.117.247.0/24 maxlen: 24
167.148.28.0/24 maxlen: 24
167.148.140.0/24 maxlen: 24
167.148.179.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.mft
rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 04 Jun 2026 15:08:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7e:0e:7f:4e:89:6c:dd:8e:b3:c9:1e:6b:e8:bf:ae:6b:20:82:2f:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Validity
Not Before: Jun 1 12:19:52 2026 GMT
Not After : May 31 12:24:52 2027 GMT
Subject: CN=B8AC0E8A39B4BFBDB388F95A4C1ABEB68D4D90EF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:9c:c0:9a:46:3d:62:21:a3:83:5a:11:0f:c0:
74:d8:32:f6:bd:62:c1:40:cd:14:9d:bd:72:c3:6e:
de:b0:bb:04:c8:2e:64:1b:68:88:b2:34:76:94:55:
e5:18:cc:4b:b5:e4:2d:84:f6:93:44:1d:76:ac:37:
91:52:39:c7:96:41:7b:80:bf:ae:70:b6:e3:fa:f1:
e0:80:24:c7:86:db:a9:27:e5:61:47:39:40:d8:7a:
a9:7a:d8:96:4a:3b:d0:a1:07:2d:d1:c9:8e:23:df:
bd:30:2d:58:a1:b9:33:1b:18:08:ae:9c:9b:60:60:
18:8a:b8:8a:41:98:ef:34:d7:78:66:c7:cf:0b:c2:
dd:5e:9a:d0:f7:c3:f5:9c:11:a1:e1:cf:06:05:fb:
ba:b0:d7:95:b2:ca:75:ec:68:98:76:34:c4:00:7b:
c6:3f:2f:fe:3e:19:d2:05:ac:4f:0b:b5:3b:29:de:
d1:d8:ba:ee:1d:fa:9f:78:98:37:c8:dc:9f:16:16:
6e:f6:18:56:60:a4:f6:02:2b:bd:d0:17:a1:d8:74:
db:e5:a3:8d:d0:cd:e8:41:09:e8:fd:83:9e:eb:86:
a2:b5:e8:4d:4c:ea:18:93:4f:cf:5c:76:49:d8:01:
66:64:02:3d:c6:de:d5:7b:06:f6:00:37:5c:ff:0d:
9e:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:AC:0E:8A:39:B4:BF:BD:B3:88:F9:5A:4C:1A:BE:B6:8D:4D:90:EF
X509v3 Authority Key Identifier:
keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS22427.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.103.52.0/24
155.117.247.0/24
167.148.28.0/24
167.148.140.0/24
167.148.179.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:57:a0:1f:fe:a7:a6:30:30:b7:96:34:07:4c:b5:e4:8f:de:
2b:c9:18:95:6a:89:50:2a:0e:10:42:8e:fe:5d:7b:5c:eb:9d:
5b:25:6e:f6:55:19:6f:3b:43:28:4a:04:c6:6c:f9:3a:8c:fd:
bf:d6:bf:81:b7:cd:15:84:eb:0c:5b:03:01:d1:72:26:83:51:
cd:f8:f4:69:bc:63:5b:ec:98:5c:b2:bf:a2:2b:12:48:61:79:
63:33:02:42:78:fc:10:50:7c:d5:96:cd:e1:51:75:87:b1:02:
6f:06:33:48:88:9e:dd:d0:d1:7b:e1:40:d3:31:67:96:bb:f5:
1c:7c:d7:36:ae:70:99:ea:85:56:a2:25:e3:b7:ae:94:40:cf:
c8:c6:e8:7e:2c:cb:c2:bb:eb:95:16:7e:5b:e7:f3:44:b8:f4:
3e:ad:7a:89:ea:8c:45:80:c5:ad:dd:84:9e:45:4d:e5:b7:39:
15:b9:2f:f3:91:4a:f7:2d:cf:2c:21:34:9f:53:ae:4b:be:2a:
61:fb:e4:f1:b3:c8:26:68:df:e7:8b:28:ed:66:90:b2:ba:1d:
83:f7:e8:6e:aa:f8:9a:d3:b7:83:b2:d7:7f:54:2f:0f:3c:11:
f0:a2:45:28:5a:3e:b9:93:d4:77:02:5a:e4:e7:20:66:6b:d3:
50:d0:f9:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 4 01:18:14 2026 by rpki-client