Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS22427.roa
File: AS22427.roa (raw, json)
Hash identifier: XwMcT8HmS075wlHHfbEnW48bvdlrQdG43MwPw3PljPY=
Subject key identifier: F8:53:77:3F:02:27:49:20:80:20:0B:01:72:BD:4B:6F:52:E3:DD:A4
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 1EDC29A9FA8B16827C72D64CE180B325575A5CE9
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS22427.roa
Signing time: Wed 12 Feb 2025 12:52:04 +0000
ROA not before: Wed 12 Feb 2025 12:47:04 +0000
ROA not after: Wed 11 Feb 2026 12:52:04 +0000
asID: 22427
IP address blocks: 82.22.78.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1e:dc:29:a9:fa:8b:16:82:7c:72:d6:4c:e1:80:b3:25:57:5a:5c:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Feb 12 12:47:04 2025 GMT
Not After : Feb 11 12:52:04 2026 GMT
Subject: CN=F853773F0227492080200B0172BD4B6F52E3DDA4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:4a:ac:bc:97:44:c4:fd:e5:57:d8:74:25:3e:
e9:68:ec:73:7a:e0:61:8d:a6:fb:ee:65:f2:48:30:
48:77:61:8e:59:dd:9d:6a:3d:e4:61:03:c3:0a:00:
bf:05:c3:30:ef:4d:1d:74:b2:47:e2:7f:c2:76:aa:
8d:7b:63:a3:42:fb:db:ac:6b:d9:76:8a:37:a4:3c:
43:ba:d4:f9:4e:63:bd:c0:0c:0f:ba:39:05:67:e2:
3b:17:e6:ba:54:a4:aa:89:8a:fa:4e:d0:be:92:86:
52:96:49:a0:3e:b0:f0:97:35:7c:88:5e:92:2d:3f:
9c:b1:67:2a:f6:17:bf:96:50:d3:f8:e1:da:bb:65:
5c:b6:a2:58:13:f2:bb:a7:db:dd:0d:8a:e8:74:7d:
88:28:f1:d8:e8:47:e5:e0:f5:e2:7d:3d:58:d5:27:
3b:c1:16:e2:b6:d9:97:cd:69:3a:b4:5b:b5:d5:e2:
5e:30:4d:2c:a6:84:49:29:61:83:87:2f:b9:b9:5e:
f6:5f:4d:c0:e1:75:97:70:38:94:f5:7e:ea:0c:ce:
b2:23:1f:cb:51:5b:13:4b:3c:92:e7:58:0d:00:26:
78:5b:a3:e8:d7:2a:1f:26:06:cd:78:5b:c2:07:e8:
50:d2:de:03:2f:a4:81:29:b0:fb:73:e2:8d:aa:60:
77:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:53:77:3F:02:27:49:20:80:20:0B:01:72:BD:4B:6F:52:E3:DD:A4
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS22427.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.22.78.0/24
Signature Algorithm: sha256WithRSAEncryption
19:d0:7d:03:cd:63:80:08:ad:8a:88:d3:fe:09:7e:ec:36:a0:
7b:74:a7:f4:9e:91:b3:db:c3:4d:81:75:ff:e0:fb:a6:29:c2:
b4:7d:ab:69:6a:c9:51:a8:16:27:c7:6c:21:84:9e:ed:f3:a6:
dd:a3:b8:e4:69:7a:0e:63:b5:3e:77:9d:68:9d:86:30:da:3a:
9c:6d:36:5b:c1:b3:91:d7:59:33:b0:a1:c5:d2:41:d4:a4:f7:
35:67:1f:ee:26:5f:69:7a:c8:91:79:f3:f1:32:c3:7d:75:43:
34:22:bd:fb:59:b3:90:1a:2e:c8:21:cf:04:75:79:f5:2b:fc:
98:ab:33:16:41:4d:51:e0:a3:47:b0:2a:fc:a7:a8:d9:c0:3c:
6f:64:82:89:19:f8:d7:26:b0:48:5b:33:4c:fd:32:f0:8d:35:
b7:28:dd:58:33:43:37:b4:aa:23:b7:4c:a4:31:69:ff:50:38:
03:48:cc:bf:c4:54:ad:dd:36:db:b6:8b:5d:20:fd:74:85:ab:
4e:ce:8e:23:af:91:a7:fc:29:45:13:44:fd:6d:17:50:23:fb:
01:e6:3f:c8:89:71:e0:ed:43:9e:f8:63:0b:00:6a:f1:2e:dc:
2c:1e:ac:69:99:4f:6c:f9:f5:0a:33:5a:b6:ab:72:2c:d9:a3:
24:8d:75:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 21:23:51 2025 by rpki-client