Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS22427.roa
File: AS22427.roa (raw, json)
Hash identifier: rUXnWcTDRbAEaOtkmf/JAHL9R3YFi33zlQ3wb8EveII=
Subject key identifier: F7:DC:DA:2C:5C:DE:DA:C6:4C:6A:D0:D2:49:84:B4:F1:02:EF:1A:0A
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 512EC82F4503F984EA62BF55DA6F84D288F4D99B
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS22427.roa
Signing time: Thu 04 Jun 2026 11:13:24 +0000
ROA not before: Thu 04 Jun 2026 11:08:24 +0000
ROA not after: Thu 03 Jun 2027 11:13:24 +0000
asID: 22427
IP address blocks: 82.22.195.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 13 Jun 2026 15:07:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
51:2e:c8:2f:45:03:f9:84:ea:62:bf:55:da:6f:84:d2:88:f4:d9:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Jun 4 11:08:24 2026 GMT
Not After : Jun 3 11:13:24 2027 GMT
Subject: CN=F7DCDA2C5CDEDAC64C6AD0D24984B4F102EF1A0A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:c8:81:68:53:22:e0:d2:78:01:54:5c:16:20:
e2:34:0b:74:bd:13:fb:97:7c:2c:93:e3:a4:d7:76:
fa:76:65:43:2d:bf:fa:72:9d:68:b6:9e:08:75:d1:
69:de:dd:6e:d5:d5:b7:8f:3d:44:fc:76:c3:4c:c1:
74:28:87:d5:1a:42:18:1c:3a:6a:26:2f:fe:31:dd:
cc:23:ff:48:da:a4:6b:74:82:21:fb:ae:c3:c1:a5:
2f:dd:21:0e:01:97:78:89:69:4b:ba:d8:c4:16:f1:
80:7b:d5:d6:2b:6e:c5:4d:cb:f6:34:ca:95:78:75:
6a:04:a2:e6:6a:8a:35:26:24:73:68:73:3a:c4:22:
21:45:8c:14:7f:7d:a1:bd:57:b0:2a:65:ed:f5:de:
2d:58:95:9c:2d:cd:00:2e:bf:72:65:86:07:20:af:
41:b6:31:4d:86:08:dd:07:05:43:3f:66:3a:e4:53:
c9:09:1c:b3:dc:16:02:a9:9d:2c:11:92:fc:19:96:
3a:a2:a5:25:4a:ac:87:be:9f:55:9c:40:19:e6:58:
f1:3c:43:8e:d7:18:43:5f:2f:5e:03:61:14:50:9e:
fd:5d:d5:68:ab:27:36:f5:b0:5c:b7:63:a2:35:9b:
23:9d:b3:ce:e1:2a:40:09:78:31:44:65:e3:89:f6:
c0:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:DC:DA:2C:5C:DE:DA:C6:4C:6A:D0:D2:49:84:B4:F1:02:EF:1A:0A
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS22427.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.22.195.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:e4:67:2d:9e:22:0d:9b:ca:da:4e:f9:ba:31:ab:80:49:82:
d6:be:e9:51:92:2c:8c:66:f2:de:0d:ed:e1:e0:d3:3f:9b:9f:
e2:83:8e:21:77:7d:68:8b:05:2f:78:7c:3e:a0:c6:51:d4:a8:
b5:31:9b:45:2e:90:44:90:51:c0:9e:52:64:11:25:e4:ee:ae:
46:ee:ca:67:cf:ef:7b:88:b5:3d:5d:3f:42:a8:6e:ab:76:b0:
a2:4a:2d:73:c5:8d:a7:b6:f5:53:d9:1a:64:f0:10:85:e0:1b:
a7:8f:6d:ff:b2:54:d8:dd:4c:e4:bc:53:e9:90:12:0b:75:10:
cb:82:59:9f:77:5f:9b:eb:bd:3f:19:69:d0:ca:e3:50:e1:f9:
ea:8a:2c:5e:da:b1:65:2d:2b:dc:ac:c1:09:e7:3b:82:a2:ab:
01:46:b7:eb:30:07:59:0a:98:54:41:f8:a3:9f:47:70:e5:34:
ef:ab:1a:f0:a6:40:cc:19:bc:0a:c3:43:9c:d8:fd:ed:21:04:
88:27:f2:9e:02:98:be:95:26:8f:8b:b0:be:b6:3b:62:44:00:
64:87:f4:a4:75:5a:f2:93:7d:ed:6e:7d:99:d2:67:a8:fa:1d:
aa:42:c6:cc:4f:20:58:e1:e4:4d:8e:53:e5:f1:29:64:2e:b0:
8a:bc:a2:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 05:42:24 2026 by rpki-client