Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS22427.roa
File: AS22427.roa (raw, json)
Hash identifier: byduzJRjJfv5XxL1T5b3EhthUXjEmI9xkiGy6IVIpM4=
Subject key identifier: 4B:19:75:8A:02:2F:AD:4A:D6:6A:F7:68:00:E3:69:89:9A:CC:1D:6A
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 45BDB16B82F968FDD56B3CBBD0DCB6C9BCBB2C67
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS22427.roa
Signing time: Wed 04 Mar 2026 03:07:52 +0000
ROA not before: Wed 04 Mar 2026 03:02:52 +0000
ROA not after: Wed 03 Mar 2027 03:07:52 +0000
asID: 22427
IP address blocks: 82.22.51.0/24 maxlen: 24
82.22.195.0/24 maxlen: 24
178.83.40.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 05 Mar 2026 09:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
45:bd:b1:6b:82:f9:68:fd:d5:6b:3c:bb:d0:dc:b6:c9:bc:bb:2c:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Mar 4 03:02:52 2026 GMT
Not After : Mar 3 03:07:52 2027 GMT
Subject: CN=4B19758A022FAD4AD66AF76800E369899ACC1D6A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:9b:67:b2:68:6c:51:f7:0c:7d:3c:a7:25:a6:
da:19:d6:16:40:2f:07:89:bf:b3:06:7a:58:ae:27:
db:12:cf:c4:b4:ac:34:4a:14:7c:ad:1a:af:05:49:
3c:bd:70:6a:8c:12:c5:02:f8:f7:d3:57:0a:ca:fa:
43:ab:13:59:7c:bd:3b:9a:fb:76:50:53:c2:00:83:
67:6d:e3:8a:e4:8b:b0:5e:39:b8:cc:ad:df:8f:17:
85:29:44:d7:96:0f:e3:58:9b:85:48:1d:ef:f4:16:
b1:35:ad:5c:e0:9c:6b:2d:ca:08:f7:9f:1c:d4:59:
c1:1e:4a:e7:11:41:b4:12:40:41:9a:31:24:97:6e:
48:e5:fb:b6:23:1e:35:11:95:d0:c6:c5:e2:8b:69:
6b:bb:3f:14:b9:84:4e:ae:f3:ae:5c:ea:68:79:21:
4c:4d:40:60:d6:96:75:1a:0d:7a:33:04:7e:5e:32:
e3:60:cc:93:78:c5:08:d9:06:ea:7a:ce:c0:fe:24:
d5:91:27:63:cc:e4:07:41:0d:4b:a3:44:d9:fe:9a:
62:27:f8:ae:72:38:72:fc:6b:5b:ce:99:d2:dc:76:
22:c6:47:17:52:8d:68:ba:e8:62:09:fc:9b:e7:b9:
ad:be:c0:13:27:cf:20:8d:de:d4:9a:3d:49:69:f7:
c0:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:19:75:8A:02:2F:AD:4A:D6:6A:F7:68:00:E3:69:89:9A:CC:1D:6A
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS22427.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.22.51.0/24
82.22.195.0/24
178.83.40.0/24
Signature Algorithm: sha256WithRSAEncryption
16:4b:ed:08:e1:1c:65:eb:5f:31:13:fe:7c:c0:b1:da:17:59:
fd:68:0c:20:09:25:dc:aa:93:c9:82:61:b0:9e:7c:11:86:82:
15:9d:a1:44:c5:43:4b:3b:2f:61:b6:33:5a:8d:48:87:7e:b5:
1b:22:10:c8:be:16:71:da:87:13:08:f5:a2:57:a0:0d:60:bf:
bc:9b:d5:8b:a7:85:f4:61:f7:88:ab:76:97:ea:a1:d5:20:92:
ab:e5:94:75:1f:eb:45:4b:da:c0:75:81:1e:b4:3c:63:ae:1c:
b9:14:c3:20:f0:a1:10:9a:66:ae:31:13:49:1a:c1:a4:b6:fc:
f2:9a:a6:8f:48:60:a7:6a:22:be:e4:e7:50:36:f5:4d:eb:cd:
3a:b3:6e:84:b2:63:18:27:0e:3f:3f:c3:b2:e4:96:1e:0b:fb:
5b:f0:03:77:c2:32:eb:fd:7f:4f:6d:bb:55:f3:86:95:ea:53:
81:cd:b4:90:3e:d7:3f:9f:a1:06:c7:a5:12:38:8c:76:dc:64:
f2:4e:77:f8:d1:01:77:75:0a:0c:72:bb:43:7f:0f:d5:13:3b:
11:d0:4c:cf:97:4b:2b:13:9a:e1:6a:07:ee:e1:00:4d:b6:e8:
1d:2e:7c:2c:85:bc:11:ed:1a:cb:ec:15:66:9e:a0:47:fd:85:
6d:ca:8a:4f
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Wed Mar 4 16:05:09 2026 by rpki-client