Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/179c664b-afae-4c21-9c97-2a2a3985d5b0.roa
File: 179c664b-afae-4c21-9c97-2a2a3985d5b0.roa (raw, json)
Hash identifier: MuNPPm4Swnb9GhX757oOEKi4Nixg3rpOO2eOutuZerM=
Subject key identifier: 99:EE:2D:33:1B:44:0B:74:14:B9:47:54:D5:36:9B:2C:99:E6:F5:DB
Certificate issuer: /CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Certificate serial: 6C9058A7C28B293BC4395B51B081346BAC98B5B3
Authority key identifier: 45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/179c664b-afae-4c21-9c97-2a2a3985d5b0.roa
Signing time: Tue 19 May 2026 05:50:08 +0000
ROA not before: Tue 19 May 2026 05:50:08 +0000
ROA not after: Mon 17 Aug 2026 23:59:59 +0000
asID: 16509
IP address blocks: 51.117.0.0/16 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.mft
rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6c:90:58:a7:c2:8b:29:3b:c4:39:5b:51:b0:81:34:6b:ac:98:b5:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Validity
Not Before: May 19 05:50:08 2026 GMT
Not After : Aug 17 23:59:59 2026 GMT
Subject: serialNumber=a4bbff3a30b2633884e5583d717c306ecb4aeb745fe2cc991d7b5023e37efa81, CN=c336411a-6651-4f13-8ef9-de681c7c9444
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:7f:7c:43:10:13:b6:08:71:b9:d6:f1:68:de:
2a:94:03:de:42:f4:01:ad:29:f5:8f:8c:41:3c:7e:
38:12:bb:29:7f:b7:50:1e:21:56:f3:64:35:cd:25:
6f:88:c5:dc:17:98:9f:e1:d0:45:16:e0:d9:4e:18:
e0:c0:4e:49:69:1d:a4:9c:7a:54:5f:cf:c9:49:f4:
40:4b:94:e2:f5:e3:d6:6d:82:d4:7e:fb:a4:86:b8:
5b:d7:6b:28:5b:b7:4b:78:1b:5f:6b:6d:03:70:0f:
34:af:09:d7:85:ea:2b:8d:97:1e:6c:5c:e7:8d:fc:
14:f0:8d:f5:b1:2e:23:5e:97:15:fb:ff:81:67:59:
95:f9:0d:93:76:b5:08:d7:65:c5:d8:a9:49:5a:55:
7e:fa:8a:5c:f7:ac:93:25:fd:51:87:bf:e0:60:79:
49:37:06:0c:60:e0:4c:33:d1:10:1a:0e:f3:68:da:
6b:82:95:90:b8:4d:0d:d2:25:e7:6f:93:ee:70:3f:
85:18:28:7a:a9:59:d4:83:50:d6:f7:bd:be:ba:7a:
77:1f:b9:fa:8a:3c:ba:d3:63:8e:b9:ed:d5:9a:75:
f8:f1:9b:e5:2a:69:d3:94:e1:57:c0:f0:99:c7:28:
6d:f5:6d:05:8f:b3:b2:47:ea:4d:5d:9b:ca:6f:9e:
d7:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:EE:2D:33:1B:44:0B:74:14:B9:47:54:D5:36:9B:2C:99:E6:F5:DB
X509v3 Authority Key Identifier:
keyid:45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/179c664b-afae-4c21-9c97-2a2a3985d5b0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
51.117.0.0/16
Signature Algorithm: sha256WithRSAEncryption
85:f8:52:d5:a6:62:b5:e5:53:21:64:28:9d:ca:8a:97:6c:0d:
b1:ca:96:06:ba:ce:18:b0:f3:2d:8a:b8:ba:ff:c8:07:a5:2c:
58:89:96:c1:30:5a:fd:91:f6:b7:eb:e3:f2:f8:3d:73:fd:41:
62:b7:af:13:e1:90:a0:2c:c1:78:6e:b5:88:dc:91:4a:1b:09:
36:81:d7:9c:54:3f:02:4b:f2:b8:28:b3:bb:2f:4c:1a:97:f8:
0c:36:3c:a1:44:d2:17:fb:7c:6a:ed:af:75:4d:e9:3f:bb:38:
30:66:27:98:4a:3c:45:a3:2a:79:72:03:a0:56:c8:54:2e:d6:
fd:94:d4:9f:bc:38:8f:85:5c:19:7d:79:09:54:6f:08:31:17:
9f:c9:8f:a5:2d:63:e7:6d:4f:0c:3a:27:d0:f6:9a:ee:18:02:
00:ed:8b:df:73:00:fe:8f:92:40:f4:af:dc:e7:ef:41:ca:dc:
84:22:b1:e4:20:6f:6c:7c:c1:48:9a:ba:7b:23:34:b3:f2:ab:
2a:70:95:c2:58:ec:88:fc:a9:c3:bc:dc:72:b1:4d:b5:8d:2e:
48:c6:e8:da:b9:85:c1:e9:ae:dd:7d:ce:4f:3a:a9:29:d0:7b:
d5:19:87:db:fb:32:93:eb:b3:10:dd:3f:ce:e1:b4:0e:df:f9:
c6:bb:5e:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 10:24:29 2026 by rpki-client